This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft File: Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft (raw, json) Hash identifier: lAJRyOa8LOWCsrPTSc05PvHBp+cpFrDFy+kZHzuY10k= Subject key identifier: 60:8E:86:CC:1B:85:CA:2E:4B:61:58:77:A7:E0:95:0C:62:76:5E:77 Authority key identifier: 0E:1D:D5:39:52:5A:39:D8:47:01:4E:8F:EA:3C:64:1D:97:3C:C8:66 Certificate issuer: /CN=0e1dd539525a39d847014e8fea3c641d973cc866 Certificate serial: 019AF12F48DA6B35D9FC347CDDC7716C0C95 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft Manifest number: 06E4 Signing time: Sat 06 Dec 2025 01:03:19 +0000 Manifest this update: Sat 06 Dec 2025 01:03:19 +0000 Manifest next update: Sun 07 Dec 2025 01:03:19 +0000 Files and hashes: 1: 5qU9a0oGWmmroynSN69UsFF4Lyw.roa (hash: ck+/DYuUP9vUcXqAS40voGKy/13DDBxa+VF1/FTp/II=) 2: Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl (hash: H1QQ86BUElUpG8Gafu6vVRj6uP9n7SMJ2z+coByngjE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:03:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2f:48:da:6b:35:d9:fc:34:7c:dd:c7:71:6c:0c:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e1dd539525a39d847014e8fea3c641d973cc866 Validity Not Before: Dec 6 01:03:19 2025 GMT Not After : Dec 7 01:03:19 2025 GMT Subject: CN=608e86cc1b85ca2e4b615877a7e0950c62765e77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:4d:ee:4a:82:38:64:e7:8d:64:9b:d8:7d:7c: 25:15:5a:cb:b1:ee:51:3c:60:ba:40:18:e4:1f:ce: 4b:60:de:ee:60:dc:31:bb:34:1c:20:6f:1a:35:94: 19:5b:11:5e:01:89:7e:82:b8:30:20:83:1c:7e:92: 30:73:b5:66:75:a6:a4:69:ee:62:34:9e:65:62:ee: 44:f1:97:fd:9c:d9:5e:84:e4:25:ec:48:bd:67:0e: 67:05:97:75:a7:e4:6a:30:e4:e4:c5:c1:70:8c:47: db:8a:15:34:06:51:5b:d7:46:73:82:df:35:24:d5: db:ef:bb:73:a3:92:7a:b5:1d:1a:54:06:39:b4:80: 5c:02:5f:17:b5:b2:f8:39:53:aa:d0:0b:fc:a7:70: 1f:17:49:fc:7c:a6:fb:4f:d1:1a:b3:ff:16:ac:b2: b2:e2:ee:4f:1d:b8:ac:18:60:c6:d0:a3:46:d5:9f: 5d:d9:0b:49:cf:c9:c8:4c:d0:84:35:8f:2c:55:2f: a0:cb:c5:24:ae:f9:41:62:be:89:21:63:f1:a2:69: 13:02:88:40:6c:08:44:2b:fa:11:30:13:7c:97:aa: 58:ce:63:21:99:0e:39:e8:06:66:90:05:c9:c6:13: 67:33:35:27:28:f9:b3:af:76:a3:80:54:a2:55:81: 1f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:8E:86:CC:1B:85:CA:2E:4B:61:58:77:A7:E0:95:0C:62:76:5E:77 X509v3 Authority Key Identifier: keyid:0E:1D:D5:39:52:5A:39:D8:47:01:4E:8F:EA:3C:64:1D:97:3C:C8:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:e2:c3:a0:94:12:83:9a:74:7f:f9:cd:49:40:b1:30:d5:df: 02:26:13:06:42:a0:b8:a9:c3:e5:d6:b0:a9:cf:e6:c4:74:2e: 7b:6f:4c:af:5b:23:0b:33:9e:c8:95:88:8a:58:f3:be:23:c1: 97:b1:18:f5:fc:ec:86:ae:22:c6:71:b8:a4:31:25:5e:f5:8a: 7c:8a:fd:84:1e:3e:46:52:73:73:3b:ea:5a:c5:cb:0f:4c:25: 9c:70:e9:ba:02:1f:03:88:06:df:47:fc:b5:28:fd:4b:04:36: ea:1b:e1:df:87:91:4e:8f:40:5c:90:48:15:c5:a9:1b:4e:18: bb:85:5f:c0:ac:a0:c0:6e:83:b8:25:c3:ba:1d:71:ca:db:4c: 4b:6a:4d:b0:10:36:77:d9:3c:d6:db:a3:75:c9:42:fe:f7:e6: ef:62:60:e8:8d:f2:78:0a:56:20:13:2e:9e:40:d9:5e:f5:8e: 2a:f3:8c:a0:7e:34:43:0b:01:fd:db:4e:26:3f:02:f9:7a:ed: af:6a:42:0b:da:0a:96:62:e1:b2:0a:2d:cb:c3:b6:73:9c:4e: 98:05:f4:e2:1c:10:52:de:84:48:8a:79:1c:d8:b7:93:90:be: 9d:1c:d9:4a:24:77:fa:53:df:a3:68:2c:c0:1c:24:f6:0a:66: 67:4f:d2:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxL0jaazXZ/DR83cdxbAyVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlMWRkNTM5NTI1YTM5ZDg0NzAxNGU4ZmVhM2M2NDFkOTcz Y2M4NjYwHhcNMjUxMjA2MDEwMzE5WhcNMjUxMjA3MDEwMzE5WjAzMTEwLwYDVQQD Eyg2MDhlODZjYzFiODVjYTJlNGI2MTU4NzdhN2UwOTUwYzYyNzY1ZTc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1k3uSoI4ZOeNZJvYfXwlFVrLse5R PGC6QBjkH85LYN7uYNwxuzQcIG8aNZQZWxFeAYl+grgwIIMcfpIwc7Vmdaakae5i NJ5lYu5E8Zf9nNlehOQl7Ei9Zw5nBZd1p+RqMOTkxcFwjEfbihU0BlFb10Zzgt81 JNXb77tzo5J6tR0aVAY5tIBcAl8XtbL4OVOq0Av8p3AfF0n8fKb7T9Eas/8WrLKy 4u5PHbisGGDG0KNG1Z9d2QtJz8nITNCENY8sVS+gy8UkrvlBYr6JIWPxomkTAohA bAhEK/oRMBN8l6pYzmMhmQ456AZmkAXJxhNnMzUnKPmzr3ajgFSiVYEf6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGCOhswbhcouS2FYd6fglQxidl53MB8GA1UdIwQY MBaAFA4d1TlSWjnYRwFOj+o8ZB2XPMhmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGgzVk9WSmFPZGhIQVU2UDZqeGtIWmM4eUdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS80NTBiMjktNDBkNi00ZGEzLTkwYjAt OTI5ODkzMDgxODY2LzEvRGgzVk9WSmFPZGhIQVU2UDZqeGtIWmM4eUdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS80NTBiMjktNDBkNi00ZGEzLTkwYjAtOTI5ODkzMDgxODY2 LzEvRGgzVk9WSmFPZGhIQVU2UDZqeGtIWmM4eUdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKOLDoJQS g5p0f/nNSUCxMNXfAiYTBkKguKnD5dawqc/mxHQue29Mr1sjCzOeyJWIiljzviPB l7EY9fzshq4ixnG4pDElXvWKfIr9hB4+RlJzczvqWsXLD0wlnHDpugIfA4gG30f8 tSj9SwQ26hvh34eRTo9AXJBIFcWpG04Yu4VfwKygwG6DuCXDuh1xyttMS2pNsBA2 d9k81tujdclC/vfm72Jg6I3yeApWIBMunkDZXvWOKvOMoH40QwsB/dtOJj8C+Xrt r2pCC9oKlmLhsgoty8O2c5xOmAX04hwQUt6ESIp5HNi3k5C+nRzZSiR3+lPfo2gs wBwk9gpmZ0/SRA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:13:45 2025 by rpki-client