This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft File: DbPDFk09jCZEzymzI2dhpXHuWLo.mft (raw, json) Hash identifier: 31oVTVuWE262WYLcokMfnWo+iUrAl9nk88T8R1T1+Eo= Subject key identifier: 7D:27:1D:BE:82:4F:14:E0:73:C8:3C:FC:83:EA:36:19:6C:4D:0D:16 Authority key identifier: 0D:B3:C3:16:4D:3D:8C:26:44:CF:29:B3:23:67:61:A5:71:EE:58:BA Certificate issuer: /CN=0db3c3164d3d8c2644cf29b3236761a571ee58ba Certificate serial: 019AF19B780BEA1AFDE6D88D19419E0111C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbPDFk09jCZEzymzI2dhpXHuWLo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft Manifest number: 0D68 Signing time: Sat 06 Dec 2025 03:01:29 +0000 Manifest this update: Sat 06 Dec 2025 03:01:29 +0000 Manifest next update: Sun 07 Dec 2025 03:01:29 +0000 Files and hashes: 1: DbPDFk09jCZEzymzI2dhpXHuWLo.crl (hash: ZoaYYassC+Bh2gIE2Nh1XMW5TWoCedBU+aAA7zDJRZ0=) 2: VCOPnV4kZuweFLb_llPPHRAXNUA.roa (hash: cRLhBmbu/yT6hrLfR7qsKhKnC8knJg7oOO9Ome0I9Gw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft rsync://rpki.ripe.net/repository/DEFAULT/DbPDFk09jCZEzymzI2dhpXHuWLo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:78:0b:ea:1a:fd:e6:d8:8d:19:41:9e:01:11:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0db3c3164d3d8c2644cf29b3236761a571ee58ba Validity Not Before: Dec 6 03:01:29 2025 GMT Not After : Dec 7 03:01:29 2025 GMT Subject: CN=7d271dbe824f14e073c83cfc83ea36196c4d0d16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4a:37:41:92:06:4f:86:93:f8:e2:6b:47:e1: 0d:9e:e8:8a:d2:be:9e:1e:d9:da:c5:87:af:6b:85: c4:1e:05:76:76:fd:45:5a:18:0d:8c:48:dc:73:84: 96:cf:56:4d:0d:81:cf:a4:cd:cc:02:cd:1b:6f:48: 5b:43:85:f6:e4:df:d8:2f:90:bd:eb:ab:f6:16:45: ae:63:38:cb:ce:ab:91:ba:44:05:ef:33:0e:08:75: d6:69:1c:1c:d3:69:7d:bc:bb:3e:f1:6f:f2:83:7a: 7e:de:00:27:78:7b:31:cc:c6:25:58:66:15:de:91: ce:53:36:79:6a:f9:37:03:83:43:11:aa:6e:ec:1f: 9a:c0:b3:b5:24:d9:22:ab:0a:2a:bd:70:a6:dd:47: b0:51:02:d6:56:96:ee:f9:e5:1b:ed:e7:c9:7b:c2: 77:99:4e:33:4c:85:ac:51:75:a6:82:de:d3:9e:ec: 04:40:e1:52:8b:e7:db:51:9c:b8:01:ac:a7:21:39: d8:09:6a:49:82:c3:a0:77:c9:97:df:81:9a:c6:50: e0:c2:e6:f8:8e:66:0c:9b:40:4d:b6:f7:75:19:ab: b2:a9:c9:5b:4f:e1:02:82:79:c9:38:c3:5d:6e:2f: 2c:7b:3f:b0:b0:5c:96:d3:81:ba:f3:a8:10:b4:0a: c9:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:27:1D:BE:82:4F:14:E0:73:C8:3C:FC:83:EA:36:19:6C:4D:0D:16 X509v3 Authority Key Identifier: keyid:0D:B3:C3:16:4D:3D:8C:26:44:CF:29:B3:23:67:61:A5:71:EE:58:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbPDFk09jCZEzymzI2dhpXHuWLo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:8a:0d:7e:67:8c:28:9c:3f:5b:0b:28:0f:3b:aa:42:ac:2e: f3:9a:ca:03:d9:d3:16:09:c9:8e:25:1d:a5:7a:cc:6c:ce:65: 76:93:cb:b0:b0:69:ea:5c:fc:91:eb:f5:97:11:65:0e:63:51: 14:78:1d:0f:12:85:ca:43:1c:12:1b:07:ad:d2:77:5c:d5:da: 64:bc:f2:c3:32:0f:f7:c9:fe:a4:2d:52:08:b3:71:63:01:06: 2e:2d:34:44:0d:1e:98:98:dd:95:4d:cb:13:bc:8b:e1:f9:8c: d9:aa:ef:92:9e:bf:e0:87:6f:db:e7:38:4c:d1:f4:2a:8b:f6: 02:54:95:43:54:09:47:e0:15:da:eb:a5:d6:61:2d:c4:75:07: 85:ae:d7:4d:70:ce:ec:39:c8:a2:32:1b:71:3d:bb:67:47:5e: e9:e4:34:d5:0b:62:87:3a:c3:91:fc:b6:ea:0e:75:a4:af:10: d2:8e:44:fa:aa:71:22:b7:36:ce:46:05:cd:61:7b:96:71:ec: 82:5f:b5:78:e8:61:d5:d7:10:b5:57:40:20:8b:66:fb:80:25: 71:b4:fb:9b:66:5e:11:03:94:72:17:78:09:7e:1f:19:11:8d: 51:11:22:46:4f:24:3a:62:67:c2:fe:d8:96:d2:ac:8e:da:bc: 5f:53:67:a7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm3gL6hr95tiNGUGeARHCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkYjNjMzE2NGQzZDhjMjY0NGNmMjliMzIzNjc2MWE1NzFl ZTU4YmEwHhcNMjUxMjA2MDMwMTI5WhcNMjUxMjA3MDMwMTI5WjAzMTEwLwYDVQQD Eyg3ZDI3MWRiZTgyNGYxNGUwNzNjODNjZmM4M2VhMzYxOTZjNGQwZDE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr0o3QZIGT4aT+OJrR+ENnuiK0r6e HtnaxYeva4XEHgV2dv1FWhgNjEjcc4SWz1ZNDYHPpM3MAs0bb0hbQ4X25N/YL5C9 66v2FkWuYzjLzquRukQF7zMOCHXWaRwc02l9vLs+8W/yg3p+3gAneHsxzMYlWGYV 3pHOUzZ5avk3A4NDEapu7B+awLO1JNkiqwoqvXCm3UewUQLWVpbu+eUb7efJe8J3 mU4zTIWsUXWmgt7TnuwEQOFSi+fbUZy4AaynITnYCWpJgsOgd8mX34GaxlDgwub4 jmYMm0BNtvd1GauyqclbT+ECgnnJOMNdbi8sez+wsFyW04G686gQtArJcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH0nHb6CTxTgc8g8/IPqNhlsTQ0WMB8GA1UdIwQY MBaAFA2zwxZNPYwmRM8psyNnYaVx7li6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGJQREZrMDlqQ1pFenltekkyZGhwWEh1V0xvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi82Y2QzNjYtMzU1Ny00MmIyLTg4NWIt M2Q0NjQzOWFhNDFjLzEvRGJQREZrMDlqQ1pFenltekkyZGhwWEh1V0xvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi82Y2QzNjYtMzU1Ny00MmIyLTg4NWItM2Q0NjQzOWFhNDFj LzEvRGJQREZrMDlqQ1pFenltekkyZGhwWEh1V0xvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALYoNfmeM KJw/WwsoDzuqQqwu85rKA9nTFgnJjiUdpXrMbM5ldpPLsLBp6lz8kev1lxFlDmNR FHgdDxKFykMcEhsHrdJ3XNXaZLzywzIP98n+pC1SCLNxYwEGLi00RA0emJjdlU3L E7yL4fmM2arvkp6/4Idv2+c4TNH0Kov2AlSVQ1QJR+AV2uul1mEtxHUHha7XTXDO 7DnIojIbcT27Z0de6eQ01QtihzrDkfy26g51pK8Q0o5E+qpxIrc2zkYFzWF7lnHs gl+1eOhh1dcQtVdAIItm+4AlcbT7m2ZeEQOUchd4CX4fGRGNUREiRk8kOmJnwv7Y ltKsjtq8X1Nnpw== -----END CERTIFICATE-----Generated at Sat Dec 6 11:24:39 2025 by rpki-client