This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft File: IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft (raw, json) Hash identifier: DCsUip6i/S1q8hKfcBJt24/wBsnlSwnn9zhQPc6fY6U= Subject key identifier: F7:4C:09:89:1B:98:B7:5E:FF:97:D1:2E:77:BA:E8:FA:A8:DB:27:68 Authority key identifier: 22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34 Certificate issuer: /CN=229a038176c796ea4f2769f6be3cace1a3597634 Certificate serial: 019AF2400C194DA75BD0A2923D1ED1A456B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 06:01:14 +0000 Manifest this update: Sat 06 Dec 2025 06:01:14 +0000 Manifest next update: Sun 07 Dec 2025 06:01:14 +0000 Files and hashes: 1: Hix749q65sYikumyIiO2w3pF6Ac.roa (hash: N0R4AArriY/KzHOEs+CuI34MlSMnkBHaO9k0W7jdIBQ=) 2: IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl (hash: vN9zXOOLOPNNDjM8qiexrDrD1XlL+Z5A7POmpgRgFeA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:40:0c:19:4d:a7:5b:d0:a2:92:3d:1e:d1:a4:56:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=229a038176c796ea4f2769f6be3cace1a3597634 Validity Not Before: Dec 6 06:01:14 2025 GMT Not After : Dec 7 06:01:14 2025 GMT Subject: CN=f74c09891b98b75eff97d12e77bae8faa8db2768 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:16:fd:8b:08:83:2f:cd:3e:30:8d:62:51:12: 4b:c5:c6:fc:56:81:7c:2f:b8:2a:9e:70:1f:6b:48: 2f:a0:bc:9a:39:0e:20:2e:32:3f:51:5d:68:06:05: 45:c6:f1:b7:5d:78:b2:86:e7:a6:1e:d5:b1:bb:73: 07:1b:6a:16:73:f3:67:7b:de:28:1d:11:1f:72:58: 08:71:ac:25:0e:80:2a:5e:62:cc:f6:2f:3a:a8:e5: 9c:c8:9c:11:5d:a9:7e:5f:8b:39:d9:48:68:09:51: 10:57:0b:d3:a4:c8:07:15:3d:ae:bf:d1:4c:6e:8a: 81:4a:af:3c:e7:ad:92:38:f0:05:73:c2:65:84:78: 0a:45:c9:3f:13:15:d7:88:88:03:66:2c:5b:b8:6a: 7e:29:88:23:6c:c9:3d:80:fa:b9:94:86:a7:8e:63: a6:31:67:b2:7d:16:39:db:f7:50:c6:1b:7f:f4:8d: 58:41:33:ce:71:79:58:22:7c:0f:97:47:1d:b6:f5: 2b:90:f6:0d:22:cf:72:2e:63:43:2a:c0:d7:5d:96: d5:48:a7:39:14:d6:e8:88:43:5d:2f:6c:3b:f7:25: da:b8:5f:22:b3:eb:35:50:22:ee:7b:2b:d0:a4:5f: a6:8c:58:9f:c7:45:08:12:3a:8e:d4:f6:e5:43:78: 5c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:4C:09:89:1B:98:B7:5E:FF:97:D1:2E:77:BA:E8:FA:A8:DB:27:68 X509v3 Authority Key Identifier: keyid:22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:fd:de:1f:9e:be:c0:a7:c9:5f:65:15:27:96:c6:84:98:62: 3a:c4:5f:22:e7:0a:3b:cb:64:ed:41:9c:71:47:33:e4:83:d5: 86:78:e0:08:0e:c7:b8:d4:c1:4f:fc:94:11:9c:6b:ef:2e:a6: aa:15:9c:e2:9b:98:22:45:dc:bc:6f:c4:92:23:d8:f5:71:c5: 69:c2:d5:3e:4e:6b:47:8f:f5:f1:9b:1d:a6:ce:5c:fa:5e:55: fa:9c:01:9d:c3:d3:f7:ae:ae:42:ab:45:79:a3:bd:67:7a:21: 6f:52:cd:52:53:9e:27:b8:69:7f:6e:4b:bf:4e:80:c9:b1:74: fb:7f:78:bc:82:59:ea:02:a9:5d:7d:0b:a2:2e:48:ab:06:10: df:c8:d6:5b:95:1e:37:10:41:62:24:13:98:b8:78:b7:1f:31: 00:1d:9c:20:eb:ce:cf:86:9f:1d:1a:54:0e:ce:9d:f8:51:da: 9c:70:ad:8a:81:5c:ef:51:94:02:6b:01:d0:af:f9:aa:83:bf: 2b:34:ea:8e:da:ec:67:96:66:de:28:48:2d:72:45:3f:33:b8: b8:2c:26:61:72:89:26:bf:41:e6:90:ca:8f:44:fb:da:56:98: 1a:c5:4e:ce:c8:f6:9a:00:86:6b:42:e2:83:62:4d:66:4d:68: a7:a0:ba:82 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryQAwZTadb0KKSPR7RpFa4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyOWEwMzgxNzZjNzk2ZWE0ZjI3NjlmNmJlM2NhY2UxYTM1 OTc2MzQwHhcNMjUxMjA2MDYwMTE0WhcNMjUxMjA3MDYwMTE0WjAzMTEwLwYDVQQD EyhmNzRjMDk4OTFiOThiNzVlZmY5N2QxMmU3N2JhZThmYWE4ZGIyNzY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApxb9iwiDL80+MI1iURJLxcb8VoF8 L7gqnnAfa0gvoLyaOQ4gLjI/UV1oBgVFxvG3XXiyhuemHtWxu3MHG2oWc/Nne94o HREfclgIcawlDoAqXmLM9i86qOWcyJwRXal+X4s52UhoCVEQVwvTpMgHFT2uv9FM boqBSq88562SOPAFc8JlhHgKRck/ExXXiIgDZixbuGp+KYgjbMk9gPq5lIanjmOm MWeyfRY52/dQxht/9I1YQTPOcXlYInwPl0cdtvUrkPYNIs9yLmNDKsDXXZbVSKc5 FNboiENdL2w79yXauF8is+s1UCLueyvQpF+mjFifx0UIEjqO1PblQ3hcKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPdMCYkbmLde/5fRLne66Pqo2ydoMB8GA1UdIwQY MBaAFCKaA4F2x5bqTydp9r48rOGjWXY0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS8zYjVmNGUtOTNmZi00ZGZiLWIwMmQt ZGMyMzAxZmJiYjdjLzEvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS8zYjVmNGUtOTNmZi00ZGZiLWIwMmQtZGMyMzAxZmJiYjdj LzEvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX/3eH56+ wKfJX2UVJ5bGhJhiOsRfIucKO8tk7UGccUcz5IPVhnjgCA7HuNTBT/yUEZxr7y6m qhWc4puYIkXcvG/EkiPY9XHFacLVPk5rR4/18Zsdps5c+l5V+pwBncPT966uQqtF eaO9Z3ohb1LNUlOeJ7hpf25Lv06AybF0+394vIJZ6gKpXX0Loi5IqwYQ38jWW5Ue NxBBYiQTmLh4tx8xAB2cIOvOz4afHRpUDs6d+FHanHCtioFc71GUAmsB0K/5qoO/ KzTqjtrsZ5Zm3ihILXJFPzO4uCwmYXKJJr9B5pDKj0T72laYGsVOzsj2mgCGa0Li g2JNZk1op6C6gg== -----END CERTIFICATE-----Generated at Sat Dec 6 08:11:45 2025 by rpki-client