This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.mft File: dqIj-utMXd95nTyiqWDAbB1tHZY.mft (raw, json) Hash identifier: /YIzwrx5/70xsHcEFsMHXMt7+2ofDKlMpxGT3QtB32Y= Subject key identifier: 5D:19:27:F0:E5:B0:C2:01:FA:42:33:C5:B9:E6:18:DD:2B:7C:59:22 Authority key identifier: 76:A2:23:FA:EB:4C:5D:DF:79:9D:3C:A2:A9:60:C0:6C:1D:6D:1D:96 Certificate issuer: /CN=76a223faeb4c5ddf799d3ca2a960c06c1d6d1d96 Certificate serial: 019AF23FD549C1E365CB22F894926846ABF7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqIj-utMXd95nTyiqWDAbB1tHZY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.mft Manifest number: 0D10 Signing time: Sat 06 Dec 2025 06:01:00 +0000 Manifest this update: Sat 06 Dec 2025 06:01:00 +0000 Manifest next update: Sun 07 Dec 2025 06:01:00 +0000 Files and hashes: 1: dqIj-utMXd95nTyiqWDAbB1tHZY.crl (hash: lQvTG2WIVGMZ+7y/is0nQuC7yXZtSbrx4B/mCb0SnoQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.mft rsync://rpki.ripe.net/repository/DEFAULT/dqIj-utMXd95nTyiqWDAbB1tHZY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:d5:49:c1:e3:65:cb:22:f8:94:92:68:46:ab:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76a223faeb4c5ddf799d3ca2a960c06c1d6d1d96 Validity Not Before: Dec 6 06:01:00 2025 GMT Not After : Dec 7 06:01:00 2025 GMT Subject: CN=5d1927f0e5b0c201fa4233c5b9e618dd2b7c5922 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f5:84:5e:07:06:b7:15:b2:71:04:0a:a7:26: fc:31:40:29:85:dc:20:9c:39:6c:1c:46:2d:91:c9: 0f:7f:94:01:03:5b:e6:9d:d9:5a:d2:c3:a6:af:03: 43:03:0d:5f:7d:4f:f9:22:78:86:e2:8c:ee:7b:74: fb:2d:35:15:01:d1:34:df:5f:e3:77:79:d7:ba:54: 73:f1:a6:8e:0e:45:60:a5:5c:43:84:e1:0b:e3:6e: 0e:14:fb:fb:8b:86:17:3d:cd:b4:7b:1e:9c:02:43: 58:5d:0d:2c:f7:a7:6d:2f:12:f4:17:14:4a:4d:a4: 00:67:1d:79:35:6b:22:6f:69:f9:e1:94:fd:1a:10: e6:82:d1:42:b4:e7:c7:0f:2b:de:14:29:50:df:fd: b8:aa:13:06:6b:fd:df:08:7b:ae:93:68:2a:3b:4e: bf:8f:9c:3a:ad:a6:77:23:9d:bf:61:46:47:07:41: bc:14:70:1b:12:09:62:1f:ae:56:62:89:df:8c:2f: 93:af:56:bf:29:cc:c5:10:50:f7:72:2e:67:a8:4d: c7:20:d9:1f:ea:81:f8:21:b3:af:f3:12:7e:f3:d8: 72:25:70:7d:5c:b8:5f:f2:33:76:7b:ef:d8:4f:9e: 18:83:5d:97:c1:19:36:0d:49:ba:33:af:be:37:ed: c2:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:19:27:F0:E5:B0:C2:01:FA:42:33:C5:B9:E6:18:DD:2B:7C:59:22 X509v3 Authority Key Identifier: keyid:76:A2:23:FA:EB:4C:5D:DF:79:9D:3C:A2:A9:60:C0:6C:1D:6D:1D:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqIj-utMXd95nTyiqWDAbB1tHZY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:1d:1d:89:43:38:0b:49:b0:ec:5f:93:49:1d:00:5b:0a:29: 72:6a:97:5c:48:a3:3f:df:a6:90:c6:1c:05:dc:34:92:5b:13: 86:59:cf:2d:61:a9:f6:74:76:8f:4f:94:f2:c5:6a:b6:3f:9b: 7f:66:5b:13:f4:86:28:b3:34:b5:dd:dc:be:57:95:f3:09:1d: d2:58:ea:60:91:1a:e2:17:c2:aa:15:c4:f8:4a:66:b3:4d:6c: 9e:08:d0:b9:91:6b:29:7c:1f:c4:02:bb:e8:ef:24:7d:8b:80: 72:5a:b3:93:e7:df:a3:81:a2:ea:b3:aa:ca:e3:10:9d:9b:e0: a7:83:84:d7:49:2d:41:93:78:59:03:20:0e:3f:1f:b0:5b:a9: e8:91:a7:ab:41:16:b5:e8:0b:8e:3b:8b:ac:c7:78:fa:3c:0f: 7e:51:cf:82:44:e7:6d:8c:3c:bc:bc:bf:69:0e:74:1a:b2:4d: b5:33:04:ba:59:12:b5:9c:49:85:12:bb:e2:1d:e5:99:f4:a5: 7f:f2:d1:8f:32:20:e5:65:49:85:b5:71:31:71:7c:9e:d2:f1: a7:74:6f:1f:b8:e9:8a:95:0c:e2:53:5b:44:61:5d:18:bb:11: 0f:2c:aa:d6:2e:65:fb:fd:14:28:09:0f:4b:a5:22:bc:73:99: 29:c7:74:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP9VJweNlyyL4lJJoRqv3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2YTIyM2ZhZWI0YzVkZGY3OTlkM2NhMmE5NjBjMDZjMWQ2 ZDFkOTYwHhcNMjUxMjA2MDYwMTAwWhcNMjUxMjA3MDYwMTAwWjAzMTEwLwYDVQQD Eyg1ZDE5MjdmMGU1YjBjMjAxZmE0MjMzYzViOWU2MThkZDJiN2M1OTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvPWEXgcGtxWycQQKpyb8MUAphdwg nDlsHEYtkckPf5QBA1vmndla0sOmrwNDAw1ffU/5IniG4ozue3T7LTUVAdE031/j d3nXulRz8aaODkVgpVxDhOEL424OFPv7i4YXPc20ex6cAkNYXQ0s96dtLxL0FxRK TaQAZx15NWsib2n54ZT9GhDmgtFCtOfHDyveFClQ3/24qhMGa/3fCHuuk2gqO06/ j5w6raZ3I52/YUZHB0G8FHAbEgliH65WYonfjC+Tr1a/KczFEFD3ci5nqE3HINkf 6oH4IbOv8xJ+89hyJXB9XLhf8jN2e+/YT54Yg12XwRk2DUm6M6++N+3CzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF0ZJ/DlsMIB+kIzxbnmGN0rfFkiMB8GA1UdIwQY MBaAFHaiI/rrTF3feZ08oqlgwGwdbR2WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHFJai11dE1YZDk1blR5aXFXREFiQjF0SFpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS81ZjBhYjEtMjM1Yy00Y2RhLWI1Mzgt MWRkZWU4NTVjZGY4LzEvZHFJai11dE1YZDk1blR5aXFXREFiQjF0SFpZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS81ZjBhYjEtMjM1Yy00Y2RhLWI1MzgtMWRkZWU4NTVjZGY4 LzEvZHFJai11dE1YZDk1blR5aXFXREFiQjF0SFpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkx0diUM4 C0mw7F+TSR0AWwopcmqXXEijP9+mkMYcBdw0klsThlnPLWGp9nR2j0+U8sVqtj+b f2ZbE/SGKLM0td3cvleV8wkd0ljqYJEa4hfCqhXE+Epms01sngjQuZFrKXwfxAK7 6O8kfYuAclqzk+ffo4Gi6rOqyuMQnZvgp4OE10ktQZN4WQMgDj8fsFup6JGnq0EW tegLjjuLrMd4+jwPflHPgkTnbYw8vLy/aQ50GrJNtTMEulkStZxJhRK74h3lmfSl f/LRjzIg5WVJhbVxMXF8ntLxp3RvH7jpipUM4lNbRGFdGLsRDyyq1i5l+/0UKAkP S6UivHOZKcd0jA== -----END CERTIFICATE-----Generated at Sat Dec 6 13:50:43 2025 by rpki-client