This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/f10f41-5a15-484d-b95f-df6bda389905/1/PbbHfudmfXoeivbnKly0P5_DSA4.mft File: PbbHfudmfXoeivbnKly0P5_DSA4.mft (raw, json) Hash identifier: y4k1NXbJVyz/ldT/Cwv4beCF3B48ZJjBys2I4DaO8Ew= Subject key identifier: B4:9C:CD:2B:06:4B:34:23:5A:72:EB:8A:4D:BE:65:71:48:A3:61:AE Authority key identifier: 3D:B6:C7:7E:E7:66:7D:7A:1E:8A:F6:E7:2A:5C:B4:3F:9F:C3:48:0E Certificate issuer: /CN=3db6c77ee7667d7a1e8af6e72a5cb43f9fc3480e Certificate serial: 019AF0BF702FC1F7C6BEBB48889ECDE7FA14 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PbbHfudmfXoeivbnKly0P5_DSA4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/f10f41-5a15-484d-b95f-df6bda389905/1/PbbHfudmfXoeivbnKly0P5_DSA4.mft Manifest number: 01CB Signing time: Fri 05 Dec 2025 23:01:09 +0000 Manifest this update: Fri 05 Dec 2025 23:01:09 +0000 Manifest next update: Sat 06 Dec 2025 23:01:09 +0000 Files and hashes: 1: PbbHfudmfXoeivbnKly0P5_DSA4.crl (hash: mvKPGh8HisfaJ7MEhUjE56xp387uw7qJAKnz/q0H9rQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/f10f41-5a15-484d-b95f-df6bda389905/1/PbbHfudmfXoeivbnKly0P5_DSA4.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/f10f41-5a15-484d-b95f-df6bda389905/1/PbbHfudmfXoeivbnKly0P5_DSA4.mft rsync://rpki.ripe.net/repository/DEFAULT/PbbHfudmfXoeivbnKly0P5_DSA4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:70:2f:c1:f7:c6:be:bb:48:88:9e:cd:e7:fa:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3db6c77ee7667d7a1e8af6e72a5cb43f9fc3480e Validity Not Before: Dec 5 23:01:09 2025 GMT Not After : Dec 6 23:01:09 2025 GMT Subject: CN=b49ccd2b064b34235a72eb8a4dbe657148a361ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:30:0f:34:db:57:2a:9b:9d:25:0e:15:83:ab: e6:3e:d6:a8:4b:b4:7e:e5:21:e6:2e:87:7f:fa:d2: 51:94:3e:4b:37:9d:80:93:0f:6a:f5:22:b7:e7:83: 36:b0:00:74:42:7b:99:d4:9a:cc:d2:7d:e0:c1:b5: d0:c5:0a:e1:5e:58:8a:55:b2:29:ef:ef:e9:a5:3f: cc:4e:4f:cc:09:aa:ed:2c:4f:fb:f6:e6:f8:50:5a: 5b:fb:0f:ee:b9:04:f7:8b:65:79:c9:fc:e3:0b:ec: e0:84:61:d1:07:d4:dc:64:e4:90:d6:8e:09:f5:8e: 38:29:ae:9c:ac:64:f1:eb:43:f7:41:64:f9:21:b7: 02:d1:62:be:91:a1:96:69:6e:59:58:74:dc:2d:fc: a4:46:6c:3c:90:64:93:72:98:fa:75:71:3e:fc:ec: fb:f9:e8:12:99:bc:63:c6:24:e2:1b:fb:ff:94:52: ed:c9:1b:4c:b4:a8:7a:2a:b8:1d:93:48:76:a1:58: 44:68:f7:89:31:7e:28:60:f5:12:63:d8:39:8a:7b: e7:b1:5b:ed:d9:04:a7:ec:ad:a4:a5:78:90:9c:70: 69:0b:94:2c:76:51:0e:5b:ee:74:5b:4c:65:30:3f: d9:56:09:f5:da:8a:77:8f:21:58:6e:36:31:5d:91: 13:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:9C:CD:2B:06:4B:34:23:5A:72:EB:8A:4D:BE:65:71:48:A3:61:AE X509v3 Authority Key Identifier: keyid:3D:B6:C7:7E:E7:66:7D:7A:1E:8A:F6:E7:2A:5C:B4:3F:9F:C3:48:0E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PbbHfudmfXoeivbnKly0P5_DSA4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f10f41-5a15-484d-b95f-df6bda389905/1/PbbHfudmfXoeivbnKly0P5_DSA4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f10f41-5a15-484d-b95f-df6bda389905/1/PbbHfudmfXoeivbnKly0P5_DSA4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:e1:15:6c:ea:e4:d6:a5:fd:92:fb:ce:d6:88:88:a8:97:e9: cf:a1:cb:fe:ae:a6:ee:c7:49:9d:34:b5:fc:18:c0:db:0c:61: 38:a4:ac:ca:62:44:68:87:43:da:18:99:2f:21:8a:0b:ef:6a: fb:8a:33:be:2a:1a:c0:f3:d1:6b:81:0d:77:6d:c2:b1:25:a5: f0:5b:04:3e:46:0f:77:ba:ee:d7:bd:98:a5:52:51:9a:64:24: 52:4f:4f:1b:8e:11:71:bc:52:72:04:28:21:7a:e4:52:4b:47: b9:ce:9b:55:3f:67:e1:0c:19:76:8a:09:35:94:41:08:d1:cb: e4:55:84:f4:71:f2:5c:b4:fe:c8:c8:31:2a:9b:8e:9f:bf:cc: 4f:a3:0e:05:86:70:61:85:d7:86:e2:b9:55:3d:f7:04:ae:c5: ad:84:03:87:4c:67:8d:f7:1c:c0:32:5e:ad:db:43:ed:6b:df: f0:5a:a8:c8:5e:9b:40:a8:b3:10:09:f0:26:d1:90:ee:ca:7c: e1:b6:81:99:fb:bd:9b:9c:d6:71:1d:8c:e8:a2:73:5b:fd:a2: 27:16:ed:8d:50:8e:9d:16:21:62:55:00:e5:51:65:c6:23:6a: 6c:da:a8:5c:31:0c:c0:e8:9c:f0:3e:56:a3:78:93:c1:61:21: c6:bb:fb:81 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwv3AvwffGvrtIiJ7N5/oUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkYjZjNzdlZTc2NjdkN2ExZThhZjZlNzJhNWNiNDNmOWZj MzQ4MGUwHhcNMjUxMjA1MjMwMTA5WhcNMjUxMjA2MjMwMTA5WjAzMTEwLwYDVQQD EyhiNDljY2QyYjA2NGIzNDIzNWE3MmViOGE0ZGJlNjU3MTQ4YTM2MWFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4jAPNNtXKpudJQ4Vg6vmPtaoS7R+ 5SHmLod/+tJRlD5LN52Akw9q9SK354M2sAB0QnuZ1JrM0n3gwbXQxQrhXliKVbIp 7+/ppT/MTk/MCartLE/79ub4UFpb+w/uuQT3i2V5yfzjC+zghGHRB9TcZOSQ1o4J 9Y44Ka6crGTx60P3QWT5IbcC0WK+kaGWaW5ZWHTcLfykRmw8kGSTcpj6dXE+/Oz7 +egSmbxjxiTiG/v/lFLtyRtMtKh6Krgdk0h2oVhEaPeJMX4oYPUSY9g5invnsVvt 2QSn7K2kpXiQnHBpC5QsdlEOW+50W0xlMD/ZVgn12op3jyFYbjYxXZETAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLSczSsGSzQjWnLrik2+ZXFIo2GuMB8GA1UdIwQY MBaAFD22x37nZn16Hor25ypctD+fw0gOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGJiSGZ1ZG1mWG9laXZibktseTBQNV9EU0E0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9mMTBmNDEtNWExNS00ODRkLWI5NWYt ZGY2YmRhMzg5OTA1LzEvUGJiSGZ1ZG1mWG9laXZibktseTBQNV9EU0E0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy9mMTBmNDEtNWExNS00ODRkLWI5NWYtZGY2YmRhMzg5OTA1 LzEvUGJiSGZ1ZG1mWG9laXZibktseTBQNV9EU0E0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK+EVbOrk 1qX9kvvO1oiIqJfpz6HL/q6m7sdJnTS1/BjA2wxhOKSsymJEaIdD2hiZLyGKC+9q +4ozvioawPPRa4ENd23CsSWl8FsEPkYPd7ru172YpVJRmmQkUk9PG44RcbxScgQo IXrkUktHuc6bVT9n4QwZdooJNZRBCNHL5FWE9HHyXLT+yMgxKpuOn7/MT6MOBYZw YYXXhuK5VT33BK7FrYQDh0xnjfccwDJerdtD7Wvf8FqoyF6bQKizEAnwJtGQ7sp8 4baBmfu9m5zWcR2M6KJzW/2iJxbtjVCOnRYhYlUA5VFlxiNqbNqoXDEMwOic8D5W o3iTwWEhxrv7gQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:26:11 2025 by rpki-client