This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.mft File: 2-DL9NZpKl5OHgHSsRL-pru_90w.mft (raw, json) Hash identifier: SMkcs8Q38YJoFDOYSXaZ64GTturBYSOuErNbpyR6bDk= Subject key identifier: C4:AC:53:D6:B0:EC:10:9C:EC:65:5C:1D:EF:55:8D:C9:C3:E1:36:B5 Authority key identifier: DB:E0:CB:F4:D6:69:2A:5E:4E:1E:01:D2:B1:12:FE:A6:BB:BF:F7:4C Certificate issuer: /CN=dbe0cbf4d6692a5e4e1e01d2b112fea6bbbff74c Certificate serial: 019AF0BF7C8C99F57709134E0C6C0E74150C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-DL9NZpKl5OHgHSsRL-pru_90w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.mft Manifest number: 03E7 Signing time: Fri 05 Dec 2025 23:01:12 +0000 Manifest this update: Fri 05 Dec 2025 23:01:12 +0000 Manifest next update: Sat 06 Dec 2025 23:01:12 +0000 Files and hashes: 1: 2-DL9NZpKl5OHgHSsRL-pru_90w.crl (hash: 5WwBY6GJZitxsiLhbpRhbhOcooYAFQitxUyOCXlvQWM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.crl rsync://rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.mft rsync://rpki.ripe.net/repository/DEFAULT/2-DL9NZpKl5OHgHSsRL-pru_90w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:7c:8c:99:f5:77:09:13:4e:0c:6c:0e:74:15:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dbe0cbf4d6692a5e4e1e01d2b112fea6bbbff74c Validity Not Before: Dec 5 23:01:12 2025 GMT Not After : Dec 6 23:01:12 2025 GMT Subject: CN=c4ac53d6b0ec109cec655c1def558dc9c3e136b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:40:a5:7c:71:1f:58:4f:0b:b6:0f:ed:88:cb: bc:dd:6f:c0:5d:85:86:32:4b:03:be:ce:de:ff:81: 59:7f:d3:90:3f:2b:32:1d:ce:84:05:b7:7a:6b:4d: 0a:10:28:0f:12:ff:57:f8:b7:87:96:bc:54:71:71: 4c:66:22:2b:79:c1:f6:26:fa:1d:5d:bc:d7:18:59: 77:9e:4d:54:9f:de:ee:64:03:7b:28:99:b7:45:86: 1b:55:fa:3e:d5:6f:51:7e:b6:3b:24:f4:18:a2:09: 4a:95:c2:2a:39:64:78:a8:d4:e3:d4:20:91:b7:4a: a3:97:e4:ea:0b:57:6d:2f:2e:e4:e0:57:2d:52:e1: cd:db:23:83:eb:53:c2:10:d3:04:6e:ae:01:1d:85: a2:55:23:a7:1b:c6:15:29:34:82:98:3e:c5:65:d5: 94:c7:c4:71:3d:69:b6:e5:a7:70:77:de:70:5e:a7: 2b:fc:4e:ad:3f:c4:d7:67:1c:fc:07:2c:9f:15:70: 5e:67:53:db:00:8a:ad:e4:b6:8d:03:0b:46:6b:e7: 58:ee:21:eb:45:8f:67:19:3f:83:f5:c1:24:3a:30: 00:c2:ba:fa:c6:53:dc:51:be:42:68:de:4a:fb:01: 45:30:fa:3c:86:e7:78:e8:5e:dc:31:3f:95:52:64: f3:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:AC:53:D6:B0:EC:10:9C:EC:65:5C:1D:EF:55:8D:C9:C3:E1:36:B5 X509v3 Authority Key Identifier: keyid:DB:E0:CB:F4:D6:69:2A:5E:4E:1E:01:D2:B1:12:FE:A6:BB:BF:F7:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-DL9NZpKl5OHgHSsRL-pru_90w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:04:6b:a3:7d:82:5f:d0:3c:2c:a0:a3:bf:06:15:10:ed:66: ab:73:b0:3b:78:c9:82:61:bb:23:f3:ba:f2:cc:83:df:0b:9c: 83:52:26:b5:53:1f:6c:2f:fb:08:d1:99:2f:bb:4a:29:a4:01: a3:a8:c5:8d:5a:11:ab:76:5a:02:7a:f4:3b:4a:e9:60:5e:29: f6:fc:7a:b8:ee:96:47:17:ea:c5:80:d1:78:eb:e7:36:13:f3: 09:ab:6a:69:84:a0:4c:1a:75:f5:44:3b:6c:3e:f5:4e:58:bd: 46:d3:94:c3:42:04:43:4b:88:3b:bd:50:b9:6f:51:6f:3b:43: e6:9f:63:9d:0b:73:f1:80:4b:17:ef:95:e9:18:39:47:68:4c: 1c:00:30:ed:ab:2a:0c:5b:87:a6:bf:ba:a5:4f:9d:cb:ed:78: 8e:5a:38:13:49:84:93:76:2f:bf:87:12:f4:f5:11:a9:e3:34: 22:d7:7c:73:ba:09:db:12:f4:ff:c3:ad:88:3e:3e:ea:ce:00: 2a:93:33:c0:61:39:6c:3c:62:44:c3:79:14:03:5a:d3:01:65: d9:7e:15:56:d6:28:f8:99:fb:e5:7c:d8:11:6d:fb:53:e5:91: bd:19:c4:1b:f2:2d:eb:53:7f:df:9f:ef:7c:3c:97:ce:4a:1c: f1:bc:90:30 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwv3yMmfV3CRNODGwOdBUMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiZTBjYmY0ZDY2OTJhNWU0ZTFlMDFkMmIxMTJmZWE2YmJi ZmY3NGMwHhcNMjUxMjA1MjMwMTEyWhcNMjUxMjA2MjMwMTEyWjAzMTEwLwYDVQQD EyhjNGFjNTNkNmIwZWMxMDljZWM2NTVjMWRlZjU1OGRjOWMzZTEzNmI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnEClfHEfWE8Ltg/tiMu83W/AXYWG MksDvs7e/4FZf9OQPysyHc6EBbd6a00KECgPEv9X+LeHlrxUcXFMZiIrecH2Jvod XbzXGFl3nk1Un97uZAN7KJm3RYYbVfo+1W9RfrY7JPQYoglKlcIqOWR4qNTj1CCR t0qjl+TqC1dtLy7k4FctUuHN2yOD61PCENMEbq4BHYWiVSOnG8YVKTSCmD7FZdWU x8RxPWm25adwd95wXqcr/E6tP8TXZxz8ByyfFXBeZ1PbAIqt5LaNAwtGa+dY7iHr RY9nGT+D9cEkOjAAwrr6xlPcUb5CaN5K+wFFMPo8hud46F7cMT+VUmTzpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMSsU9aw7BCc7GVcHe9VjcnD4Ta1MB8GA1UdIwQY MBaAFNvgy/TWaSpeTh4B0rES/qa7v/dMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMi1ETDlOWnBLbDVPSGdIU3NSTC1wcnVfOTB3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9hZTUxOWMtMTY5MC00MGJjLWI2NzEt OTI3ZTljZjdiMDI1LzEvMi1ETDlOWnBLbDVPSGdIU3NSTC1wcnVfOTB3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy9hZTUxOWMtMTY5MC00MGJjLWI2NzEtOTI3ZTljZjdiMDI1 LzEvMi1ETDlOWnBLbDVPSGdIU3NSTC1wcnVfOTB3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVgRro32C X9A8LKCjvwYVEO1mq3OwO3jJgmG7I/O68syD3wucg1ImtVMfbC/7CNGZL7tKKaQB o6jFjVoRq3ZaAnr0O0rpYF4p9vx6uO6WRxfqxYDReOvnNhPzCatqaYSgTBp19UQ7 bD71Tli9RtOUw0IEQ0uIO71QuW9RbztD5p9jnQtz8YBLF++V6Rg5R2hMHAAw7asq DFuHpr+6pU+dy+14jlo4E0mEk3Yvv4cS9PURqeM0Itd8c7oJ2xL0/8OtiD4+6s4A KpMzwGE5bDxiRMN5FANa0wFl2X4VVtYo+Jn75XzYEW37U+WRvRnEG/It61N/35/v fDyXzkoc8byQMA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:21:43 2025 by rpki-client