This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/D5x3odzbju1izTyoClFE3E4kP04.mft File: D5x3odzbju1izTyoClFE3E4kP04.mft (raw, json) Hash identifier: us7QxWudjObpPwCD1Ncl6kzVql6ARGZWNwjC/fRFI+4= Subject key identifier: BB:4C:E1:02:1A:AF:E3:94:55:6C:D5:D5:43:B7:27:5E:E1:3A:4A:56 Authority key identifier: 0F:9C:77:A1:DC:DB:8E:ED:62:CD:3C:A8:0A:51:44:DC:4E:24:3F:4E Certificate issuer: /CN=0f9c77a1dcdb8eed62cd3ca80a5144dc4e243f4e Certificate serial: 019AF31D1F1A790BBCC96BED45E5FCCFF7D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5x3odzbju1izTyoClFE3E4kP04.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/D5x3odzbju1izTyoClFE3E4kP04.mft Manifest number: 176D Signing time: Sat 06 Dec 2025 10:02:43 +0000 Manifest this update: Sat 06 Dec 2025 10:02:43 +0000 Manifest next update: Sun 07 Dec 2025 10:02:43 +0000 Files and hashes: 1: D5x3odzbju1izTyoClFE3E4kP04.crl (hash: DQrLSVUvWI18FhEXKZGWSJ74ocDfY0XoMCi0VYd9VPE=) 2: EU9ZI9FwGK9Je2LIHv8oyryDbQ0.roa (hash: lg1hblUtV5bfdjAsYpP/FKql2pfxKFHlS2JkI4euny0=) 3: UttiV2rZhXbpiEroK90NOoWzeyo.roa (hash: clJAUfrgzlJXm2cn+fD7HIKwQaoQPkMOMFf6DpqSgo0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/D5x3odzbju1izTyoClFE3E4kP04.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/D5x3odzbju1izTyoClFE3E4kP04.mft rsync://rpki.ripe.net/repository/DEFAULT/D5x3odzbju1izTyoClFE3E4kP04.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1d:1f:1a:79:0b:bc:c9:6b:ed:45:e5:fc:cf:f7:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f9c77a1dcdb8eed62cd3ca80a5144dc4e243f4e Validity Not Before: Dec 6 10:02:43 2025 GMT Not After : Dec 7 10:02:43 2025 GMT Subject: CN=bb4ce1021aafe394556cd5d543b7275ee13a4a56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d7:09:77:31:0a:ea:ec:8c:49:8b:14:a2:22: e0:40:25:8b:fe:31:cb:34:ec:a9:cd:0a:28:e1:f5: f6:fa:c6:07:49:84:6e:dc:1a:06:8c:c1:73:22:62: b2:54:05:03:59:33:04:cc:1e:63:a4:3d:e9:80:ec: a4:0a:25:d8:d7:c7:02:1c:e4:1b:82:b7:80:36:a4: b2:48:8e:d7:f3:e7:8c:05:e2:fc:90:c5:ac:eb:99: 5f:24:3a:4d:9f:cf:86:b6:de:af:54:37:66:6b:21: 89:93:b2:91:68:81:65:e8:5e:0e:3d:78:cf:19:fe: db:86:f1:72:f7:c4:01:e5:56:97:32:9f:e0:33:63: cd:24:b4:33:c2:50:95:91:44:25:1d:02:b8:a5:87: e8:21:c0:95:09:ee:e7:7a:d4:84:3f:d8:c6:2e:f8: 37:3b:41:26:27:4a:44:59:30:5a:01:7e:b2:9d:b0: 09:0d:f8:e4:c0:a5:e5:52:be:9d:e8:41:7b:11:cc: 83:3b:a6:61:b2:62:8b:29:c0:68:86:9b:a7:5e:1f: e7:d1:28:6c:d3:5c:9a:4a:34:13:69:99:7d:02:22: 8f:71:55:45:f3:3f:43:af:c2:ff:bb:b5:82:bb:0d: 4d:9f:1a:e8:96:6a:d9:5e:66:51:fb:d7:c9:2d:88: e6:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:4C:E1:02:1A:AF:E3:94:55:6C:D5:D5:43:B7:27:5E:E1:3A:4A:56 X509v3 Authority Key Identifier: keyid:0F:9C:77:A1:DC:DB:8E:ED:62:CD:3C:A8:0A:51:44:DC:4E:24:3F:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5x3odzbju1izTyoClFE3E4kP04.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/D5x3odzbju1izTyoClFE3E4kP04.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/D5x3odzbju1izTyoClFE3E4kP04.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:ac:e5:bb:4a:26:c7:64:71:ba:34:b3:59:b7:21:d7:fa:76: 1d:45:4d:d8:58:ee:80:51:41:e6:0e:e0:50:68:f7:f6:7e:fd: b6:4f:a1:bb:29:07:11:b6:3e:3a:e2:ff:87:90:60:93:21:d9: df:96:04:82:40:f6:0f:4e:3a:63:7c:b3:eb:85:72:5c:91:4f: a5:54:a4:8b:94:c1:47:5d:18:8d:e7:4d:1f:05:93:01:75:1f: 95:9a:5d:b8:2e:b2:16:45:14:83:31:a0:ab:bb:98:e1:fe:c9: eb:81:75:5f:aa:45:50:b8:84:ab:02:72:3c:2b:14:a7:6b:eb: a6:eb:57:d8:dc:68:84:73:54:04:1f:de:27:80:5c:f2:92:f9: 15:f6:6e:10:44:f1:33:70:ff:3f:74:25:4a:74:70:1d:f2:59: 09:25:0c:e3:32:05:cc:63:59:01:44:9b:e3:c2:96:a7:da:96: 78:4d:7b:e8:4d:14:20:e7:3f:30:20:37:28:a3:bc:4d:93:3b: 58:ec:fd:04:f2:bd:07:78:c2:95:8d:62:11:b3:05:91:ea:7f: 66:5e:c4:b4:a4:d5:55:5a:1b:9f:69:ed:1e:0a:05:77:14:da: a1:dc:97:a2:40:fb:2c:f5:49:f4:c6:b1:46:10:59:a6:39:a1: 08:63:ae:86 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHR8aeQu8yWvtReX8z/fZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmOWM3N2ExZGNkYjhlZWQ2MmNkM2NhODBhNTE0NGRjNGUy NDNmNGUwHhcNMjUxMjA2MTAwMjQzWhcNMjUxMjA3MTAwMjQzWjAzMTEwLwYDVQQD EyhiYjRjZTEwMjFhYWZlMzk0NTU2Y2Q1ZDU0M2I3Mjc1ZWUxM2E0YTU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvNcJdzEK6uyMSYsUoiLgQCWL/jHL NOypzQoo4fX2+sYHSYRu3BoGjMFzImKyVAUDWTMEzB5jpD3pgOykCiXY18cCHOQb greANqSySI7X8+eMBeL8kMWs65lfJDpNn8+Gtt6vVDdmayGJk7KRaIFl6F4OPXjP Gf7bhvFy98QB5VaXMp/gM2PNJLQzwlCVkUQlHQK4pYfoIcCVCe7netSEP9jGLvg3 O0EmJ0pEWTBaAX6ynbAJDfjkwKXlUr6d6EF7EcyDO6ZhsmKLKcBohpunXh/n0Shs 01yaSjQTaZl9AiKPcVVF8z9Dr8L/u7WCuw1NnxrolmrZXmZR+9fJLYjmAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLtM4QIar+OUVWzV1UO3J17hOkpWMB8GA1UdIwQY MBaAFA+cd6Hc247tYs08qApRRNxOJD9OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDV4M29kemJqdTFpelR5b0NsRkUzRTRrUDA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS85ZDBlMTQtMTEzYi00Y2JhLTgzMDgt YWNjNTY5NzdiNmY0LzEvRDV4M29kemJqdTFpelR5b0NsRkUzRTRrUDA0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS85ZDBlMTQtMTEzYi00Y2JhLTgzMDgtYWNjNTY5NzdiNmY0 LzEvRDV4M29kemJqdTFpelR5b0NsRkUzRTRrUDA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX6zlu0om x2RxujSzWbch1/p2HUVN2FjugFFB5g7gUGj39n79tk+huykHEbY+OuL/h5BgkyHZ 35YEgkD2D046Y3yz64VyXJFPpVSki5TBR10YjedNHwWTAXUflZpduC6yFkUUgzGg q7uY4f7J64F1X6pFULiEqwJyPCsUp2vrputX2NxohHNUBB/eJ4Bc8pL5FfZuEETx M3D/P3QlSnRwHfJZCSUM4zIFzGNZAUSb48KWp9qWeE176E0UIOc/MCA3KKO8TZM7 WOz9BPK9B3jClY1iEbMFkep/Zl7EtKTVVVobn2ntHgoFdxTaodyXokD7LPVJ9Max RhBZpjmhCGOuhg== -----END CERTIFICATE-----Generated at Sat Dec 6 20:29:42 2025 by rpki-client