This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft File: 28lQCYQ2KBzuVCoedFRlUeHlUoM.mft (raw, json) Hash identifier: jCqjRK56swXls4oBGQ6W8Y3qeHQpf3y9k60XUOPvmoY= Subject key identifier: 2F:EC:7F:85:BA:EA:FE:6F:5E:DC:BD:D3:6D:CF:76:AA:9E:F5:B9:7A Authority key identifier: DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83 Certificate issuer: /CN=dbc950098436281cee542a1e74546551e1e55283 Certificate serial: 019AF276DB8F7FCD224DF6EDB4B1B6955951 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 07:01:06 +0000 Manifest this update: Sat 06 Dec 2025 07:01:06 +0000 Manifest next update: Sun 07 Dec 2025 07:01:06 +0000 Files and hashes: 1: 28lQCYQ2KBzuVCoedFRlUeHlUoM.crl (hash: fFFwiFXlea6Nko1OyzbGSxx7DKu7zcn8k9vScqnYWl0=) 2: 5OG6iGTbUMv4yreuCzltBDVdDTU.roa (hash: B8Cg7jxvmm1JBGJPeKqbsREjncwII7bdGdlW3Ml3/PA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:db:8f:7f:cd:22:4d:f6:ed:b4:b1:b6:95:59:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dbc950098436281cee542a1e74546551e1e55283 Validity Not Before: Dec 6 07:01:06 2025 GMT Not After : Dec 7 07:01:06 2025 GMT Subject: CN=2fec7f85baeafe6f5edcbdd36dcf76aa9ef5b97a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:69:6a:37:80:8a:0a:c0:d4:b5:74:a0:b6:1e: 1c:70:8a:15:dc:c1:2f:25:ba:dd:11:6e:48:e3:31: 23:cd:57:54:69:28:26:33:66:e0:cc:91:a9:96:3e: 01:4e:4d:dc:c4:7c:f6:3c:f7:e7:ea:12:5f:8c:ff: 8f:72:43:db:0a:54:e2:76:e6:bd:71:c0:09:90:c7: 1d:57:9b:78:42:70:78:3b:4a:09:10:80:3b:1a:7e: c0:47:a4:b1:71:36:4f:ce:8b:6d:e4:5a:ae:83:70: 6e:68:ac:60:c4:18:ef:7a:4e:51:3f:c4:d4:63:fc: 7e:05:58:74:8a:8c:7d:8b:6b:01:24:bd:7d:51:32: cc:20:e1:dc:47:5f:d1:79:b7:ea:c0:a9:ae:1f:c8: 21:56:3e:0a:2d:ed:59:13:67:28:fd:57:b0:a5:c2: 31:b9:4a:21:12:78:02:a2:bc:aa:79:0a:b3:cd:28: 80:91:ba:2b:84:a8:8f:05:9b:a0:49:58:a5:44:95: 50:ae:34:2f:11:61:4f:47:00:11:a3:cc:17:ce:8d: fc:ee:ae:bd:e6:62:03:91:c8:7d:cc:43:f3:5b:5b: 4c:65:0f:4b:0e:1d:13:12:ae:a9:2a:1a:99:66:bc: 1e:84:78:53:dc:43:c0:ad:be:df:79:32:04:fd:f1: c7:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:EC:7F:85:BA:EA:FE:6F:5E:DC:BD:D3:6D:CF:76:AA:9E:F5:B9:7A X509v3 Authority Key Identifier: keyid:DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:a0:b9:d2:41:82:3c:30:3e:bd:60:1c:22:8e:32:fb:c2:66: b5:36:1c:1f:d4:2a:1e:4d:b7:35:a4:6e:2d:a0:77:9f:11:9a: f2:37:8e:ac:f5:70:3a:9e:e5:e7:c2:ae:df:77:b3:9f:24:a5: 00:63:27:e6:15:85:c6:2b:b5:f8:82:48:26:fa:b8:ec:99:64: 81:26:7d:00:4b:69:17:6e:90:43:31:e0:41:8d:d5:fa:fc:59: 11:f2:58:fe:45:37:e5:82:37:99:42:ee:ff:89:3b:4d:1f:8b: 74:a5:4b:44:fc:26:fb:90:ee:d8:ad:c1:67:40:4e:24:37:39: ea:97:8c:d0:ba:0f:08:16:e1:16:09:f2:b7:83:18:eb:99:c3: 99:86:4c:40:b4:fd:d2:bd:70:9e:40:4f:6c:3b:22:97:64:dc: 95:b4:a3:b9:a3:31:2c:4f:e9:bb:9e:d1:64:13:57:86:d8:98: 23:fc:3f:5c:7f:9e:0d:76:46:58:75:6d:0c:ed:20:4d:62:52: b4:c7:3f:20:8e:f2:4c:1d:aa:26:9c:4f:91:56:6c:2c:f8:1c: 89:92:9b:5f:31:15:86:99:d2:6e:3e:4b:06:14:3b:e5:a5:a2: d1:3c:f0:56:c9:80:e9:21:e4:d4:5d:9a:d2:b4:f5:fb:dd:78: 04:d6:8e:3d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydtuPf80iTfbttLG2lVlRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiYzk1MDA5ODQzNjI4MWNlZTU0MmExZTc0NTQ2NTUxZTFl NTUyODMwHhcNMjUxMjA2MDcwMTA2WhcNMjUxMjA3MDcwMTA2WjAzMTEwLwYDVQQD EygyZmVjN2Y4NWJhZWFmZTZmNWVkY2JkZDM2ZGNmNzZhYTllZjViOTdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlmlqN4CKCsDUtXSgth4ccIoV3MEv JbrdEW5I4zEjzVdUaSgmM2bgzJGplj4BTk3cxHz2PPfn6hJfjP+PckPbClTidua9 ccAJkMcdV5t4QnB4O0oJEIA7Gn7AR6SxcTZPzott5Fqug3BuaKxgxBjvek5RP8TU Y/x+BVh0iox9i2sBJL19UTLMIOHcR1/RebfqwKmuH8ghVj4KLe1ZE2co/VewpcIx uUohEngCoryqeQqzzSiAkborhKiPBZugSVilRJVQrjQvEWFPRwARo8wXzo387q69 5mIDkch9zEPzW1tMZQ9LDh0TEq6pKhqZZrwehHhT3EPArb7feTIE/fHH5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC/sf4W66v5vXty9023Pdqqe9bl6MB8GA1UdIwQY MBaAFNvJUAmENigc7lQqHnRUZVHh5VKDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjhsUUNZUTJLQnp1VkNvZWRGUmxVZUhsVW9NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi81YWE0NDgtNjQzZi00YWVlLTkwZDkt ZjQ3ZTE2OTI2NmMyLzEvMjhsUUNZUTJLQnp1VkNvZWRGUmxVZUhsVW9NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi81YWE0NDgtNjQzZi00YWVlLTkwZDktZjQ3ZTE2OTI2NmMy LzEvMjhsUUNZUTJLQnp1VkNvZWRGUmxVZUhsVW9NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAaC50kGC PDA+vWAcIo4y+8JmtTYcH9QqHk23NaRuLaB3nxGa8jeOrPVwOp7l58Ku33eznySl AGMn5hWFxiu1+IJIJvq47JlkgSZ9AEtpF26QQzHgQY3V+vxZEfJY/kU35YI3mULu /4k7TR+LdKVLRPwm+5Du2K3BZ0BOJDc56peM0LoPCBbhFgnyt4MY65nDmYZMQLT9 0r1wnkBPbDsil2TclbSjuaMxLE/pu57RZBNXhtiYI/w/XH+eDXZGWHVtDO0gTWJS tMc/II7yTB2qJpxPkVZsLPgciZKbXzEVhpnSbj5LBhQ75aWi0TzwVsmA6SHk1F2a 0rT1+914BNaOPQ== -----END CERTIFICATE-----Generated at Sat Dec 6 10:31:09 2025 by rpki-client