This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.mft File: DkTxM_OHWTqvor6rOIhJBPrJvRk.mft (raw, json) Hash identifier: KAXc/nFMjAtovewkFbHk2tq2u1qI+yHI6tAVnT+I1+U= Subject key identifier: 6A:94:F8:BF:F4:47:01:EF:72:D7:D8:2D:EC:82:EC:91:2B:BB:C8:74 Authority key identifier: 0E:44:F1:33:F3:87:59:3A:AF:A2:BE:AB:38:88:49:04:FA:C9:BD:19 Certificate issuer: /CN=0e44f133f387593aafa2beab38884904fac9bd19 Certificate serial: 019AF3F7ABC8710EAB4AFBDBBF3C7A172849 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkTxM_OHWTqvor6rOIhJBPrJvRk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.mft Manifest number: 03EE Signing time: Sat 06 Dec 2025 14:01:25 +0000 Manifest this update: Sat 06 Dec 2025 14:01:25 +0000 Manifest next update: Sun 07 Dec 2025 14:01:25 +0000 Files and hashes: 1: DkTxM_OHWTqvor6rOIhJBPrJvRk.crl (hash: z0Rfxof2l1lyDJQqJ0B8nypD41t/aOsJkvD8rkBqdkI=) 2: Wiv0DHdRF2zh8D5DY6J3_PLSV6Q.roa (hash: /xs5AGgsSlLOCnLD+1aaT+DfL+K36ivL9muQHygs7c4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.mft rsync://rpki.ripe.net/repository/DEFAULT/DkTxM_OHWTqvor6rOIhJBPrJvRk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:f7:ab:c8:71:0e:ab:4a:fb:db:bf:3c:7a:17:28:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e44f133f387593aafa2beab38884904fac9bd19 Validity Not Before: Dec 6 14:01:25 2025 GMT Not After : Dec 7 14:01:25 2025 GMT Subject: CN=6a94f8bff44701ef72d7d82dec82ec912bbbc874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:41:29:8c:e4:d7:bb:dc:b0:8b:85:8d:5e:43: 1f:9d:4d:3f:09:da:3a:76:31:18:79:a3:66:c0:21: 8b:23:79:8d:a0:df:93:0e:ac:68:f6:6d:86:a0:ec: 8a:b9:63:11:c1:c5:07:5b:62:0f:95:6f:0b:e5:35: 20:e6:ab:bd:f4:c9:8e:72:7c:38:eb:6c:bf:e6:b1: ba:08:11:c4:eb:c9:41:c2:24:3f:1c:42:8b:ec:b9: ce:5e:d5:46:80:3a:f4:ad:06:5b:71:a2:10:64:da: 6a:61:7b:89:0b:cb:d1:2a:e5:6f:df:2e:a1:ae:56: f9:87:87:cf:86:4b:b0:10:e0:e4:3a:ec:1a:b6:fc: 2a:6e:c3:8d:a3:b2:35:e2:11:2e:7b:ab:a7:f9:a3: 18:8c:11:ad:a9:4b:5f:19:36:54:ef:47:f9:b3:84: 93:ef:50:1e:94:b2:33:40:9c:63:6c:2b:2f:11:76: ef:56:a7:38:a6:44:f2:8e:0d:ef:b0:55:2b:86:d6: 32:c4:38:ea:3a:4c:03:af:19:8b:5d:f7:e3:40:51: c3:66:27:93:48:c8:cd:37:06:d4:bc:75:dc:dc:02: 04:de:40:00:a4:7b:67:48:ff:11:64:46:93:05:ca: a5:74:5c:ef:99:f3:6a:aa:37:cd:44:0a:4b:88:18: 11:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:94:F8:BF:F4:47:01:EF:72:D7:D8:2D:EC:82:EC:91:2B:BB:C8:74 X509v3 Authority Key Identifier: keyid:0E:44:F1:33:F3:87:59:3A:AF:A2:BE:AB:38:88:49:04:FA:C9:BD:19 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkTxM_OHWTqvor6rOIhJBPrJvRk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:0d:28:c6:7e:4a:06:97:56:0b:d8:f2:c9:34:ab:54:6c:f9: 02:f2:a3:96:80:3d:f8:1d:6b:bb:e6:0d:cf:16:02:31:a1:ed: 36:f0:bf:d5:de:43:bf:df:43:7a:31:d5:01:79:6e:9c:e2:ce: 27:60:25:44:90:18:ef:6f:52:f4:04:95:f0:69:2c:b9:1a:92: 7c:18:58:7b:4d:3e:8e:d7:9f:f7:38:de:ef:bd:43:6e:6b:5b: 36:7a:11:bf:48:46:12:13:0b:26:be:03:f0:72:41:0a:f0:8c: 29:ab:b8:72:57:bb:a3:00:39:b5:33:4a:8b:33:5e:84:6c:3a: ea:4a:bf:e2:16:63:9b:db:0f:51:14:3c:2a:09:59:64:e3:d8: 84:6a:40:17:b5:c4:81:16:6c:c8:9a:2a:1c:00:90:13:56:a5: f9:ed:7c:78:39:dc:a9:c6:20:dd:59:d9:cb:40:08:64:55:6b: e9:dc:ca:22:a5:6b:76:7e:09:87:a1:95:97:2f:09:eb:ae:8a: aa:6c:3d:c0:e9:67:16:0a:96:fb:28:a0:e2:58:bb:22:03:7b: e0:44:0a:fa:99:66:d0:7e:5b:4d:d4:0a:89:44:0e:63:25:43: bb:24:6e:e6:cc:b8:52:6f:de:d3:f0:6b:23:2e:00:3d:ea:37: a0:84:8a:27 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrz96vIcQ6rSvvbvzx6FyhJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlNDRmMTMzZjM4NzU5M2FhZmEyYmVhYjM4ODg0OTA0ZmFj OWJkMTkwHhcNMjUxMjA2MTQwMTI1WhcNMjUxMjA3MTQwMTI1WjAzMTEwLwYDVQQD Eyg2YTk0ZjhiZmY0NDcwMWVmNzJkN2Q4MmRlYzgyZWM5MTJiYmJjODc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0EpjOTXu9ywi4WNXkMfnU0/Cdo6 djEYeaNmwCGLI3mNoN+TDqxo9m2GoOyKuWMRwcUHW2IPlW8L5TUg5qu99MmOcnw4 62y/5rG6CBHE68lBwiQ/HEKL7LnOXtVGgDr0rQZbcaIQZNpqYXuJC8vRKuVv3y6h rlb5h4fPhkuwEODkOuwatvwqbsONo7I14hEue6un+aMYjBGtqUtfGTZU70f5s4ST 71AelLIzQJxjbCsvEXbvVqc4pkTyjg3vsFUrhtYyxDjqOkwDrxmLXffjQFHDZieT SMjNNwbUvHXc3AIE3kAApHtnSP8RZEaTBcqldFzvmfNqqjfNRApLiBgRWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGqU+L/0RwHvctfYLeyC7JEru8h0MB8GA1UdIwQY MBaAFA5E8TPzh1k6r6K+qziISQT6yb0ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGtUeE1fT0hXVHF2b3I2ck9JaEpCUHJKdlJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC8wYjY4ZGMtYzVjOS00MGRkLTlkOGYt ZGJmZjBlZTFlMDllLzEvRGtUeE1fT0hXVHF2b3I2ck9JaEpCUHJKdlJrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC8wYjY4ZGMtYzVjOS00MGRkLTlkOGYtZGJmZjBlZTFlMDll LzEvRGtUeE1fT0hXVHF2b3I2ck9JaEpCUHJKdlJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANA0oxn5K BpdWC9jyyTSrVGz5AvKjloA9+B1ru+YNzxYCMaHtNvC/1d5Dv99DejHVAXlunOLO J2AlRJAY729S9ASV8GksuRqSfBhYe00+jtef9zje771DbmtbNnoRv0hGEhMLJr4D 8HJBCvCMKau4cle7owA5tTNKizNehGw66kq/4hZjm9sPURQ8KglZZOPYhGpAF7XE gRZsyJoqHACQE1al+e18eDncqcYg3VnZy0AIZFVr6dzKIqVrdn4Jh6GVly8J666K qmw9wOlnFgqW+yig4li7IgN74EQK+plm0H5bTdQKiUQOYyVDuyRu5sy4Um/e0/Br Iy4APeo3oISKJw== -----END CERTIFICATE-----Generated at Sat Dec 6 16:47:16 2025 by rpki-client