This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft File: DbPDFk09jCZEzymzI2dhpXHuWLo.mft (raw, json) Hash identifier: tHuoMsmSbmjbRePXPUcKlsprAgo+5xI4X+5sNhwibF8= Subject key identifier: 51:8D:1A:B3:3A:0B:B0:73:B0:1A:F6:BB:28:BD:A6:6A:2B:28:56:AF Authority key identifier: 0D:B3:C3:16:4D:3D:8C:26:44:CF:29:B3:23:67:61:A5:71:EE:58:BA Certificate issuer: /CN=0db3c3164d3d8c2644cf29b3236761a571ee58ba Certificate serial: 019B3155B111CB48F80B3F1806475763E579 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbPDFk09jCZEzymzI2dhpXHuWLo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft Manifest number: 0D89 Signing time: Thu 18 Dec 2025 12:00:57 +0000 Manifest this update: Thu 18 Dec 2025 12:00:57 +0000 Manifest next update: Fri 19 Dec 2025 12:00:57 +0000 Files and hashes: 1: DbPDFk09jCZEzymzI2dhpXHuWLo.crl (hash: qJn2TarV9VDLHYiEuv9VCgLl461qrZd/nF+A1WmgztA=) 2: VCOPnV4kZuweFLb_llPPHRAXNUA.roa (hash: cRLhBmbu/yT6hrLfR7qsKhKnC8knJg7oOO9Ome0I9Gw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft rsync://rpki.ripe.net/repository/DEFAULT/DbPDFk09jCZEzymzI2dhpXHuWLo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 12:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:55:b1:11:cb:48:f8:0b:3f:18:06:47:57:63:e5:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0db3c3164d3d8c2644cf29b3236761a571ee58ba Validity Not Before: Dec 18 12:00:57 2025 GMT Not After : Dec 19 12:00:57 2025 GMT Subject: CN=518d1ab33a0bb073b01af6bb28bda66a2b2856af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:79:69:ea:c5:f3:90:a4:50:f0:73:b9:3d:53: e9:70:69:2e:2c:4c:b8:31:71:9e:34:57:0d:39:ce: a7:a2:16:fa:b3:14:3b:b8:62:fb:92:e0:4f:9b:2b: 1b:d5:e3:93:dc:17:6e:ea:1d:bb:b8:fe:80:5c:37: 48:dc:d4:5c:19:01:62:0c:d9:5b:47:b3:a1:2d:e9: 37:9c:42:f5:9f:87:cf:f7:f3:9a:cb:e5:99:4f:3e: 9a:9d:48:ab:fd:d5:fa:dd:55:25:a6:32:ed:c3:8e: a0:71:58:d9:58:51:37:be:2a:d4:30:5c:90:d1:4b: ab:ce:0c:90:18:9b:25:d6:18:25:6d:78:1b:de:2e: 8b:f3:82:78:95:bd:94:a5:96:fd:e6:e7:dc:df:5c: d9:11:fe:f8:8e:50:77:f1:ed:b0:4a:82:7e:ec:52: 3c:15:42:4c:e5:c6:de:f0:8b:ec:76:f1:aa:0c:88: b6:78:32:5d:38:e4:d0:53:60:10:b2:7d:67:68:b0: 86:7a:38:5e:74:c2:1f:61:4b:48:8c:a6:12:90:07: 05:2f:c6:c7:a2:24:6e:8d:14:f5:4d:0a:7e:9c:d3: 37:70:42:61:d2:05:56:2b:b9:62:98:c9:5c:18:52: 82:fb:ce:77:c2:0b:92:18:eb:90:40:e0:41:3e:40: d4:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:8D:1A:B3:3A:0B:B0:73:B0:1A:F6:BB:28:BD:A6:6A:2B:28:56:AF X509v3 Authority Key Identifier: keyid:0D:B3:C3:16:4D:3D:8C:26:44:CF:29:B3:23:67:61:A5:71:EE:58:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbPDFk09jCZEzymzI2dhpXHuWLo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:f0:b0:36:3c:c4:f8:dc:28:98:2f:d9:fe:5e:19:1e:67:f2: 1c:42:b7:e3:4f:91:45:27:04:7d:7e:94:17:3c:f8:79:c6:1b: 69:f9:a5:09:38:e8:99:da:20:37:f9:49:bb:86:58:27:6b:d7: a4:fd:71:aa:bd:48:57:ac:ff:4b:80:fd:50:9f:16:58:3f:d4: e4:f4:fc:7b:94:2b:73:fd:e1:b1:9a:64:99:4b:e5:29:89:7f: 35:9b:1d:c1:52:b6:af:27:be:59:9e:71:46:d6:b7:2e:c8:b4: 86:17:42:60:fd:f7:8e:1c:77:a2:03:01:61:49:28:8b:31:15: 25:f2:41:65:24:a9:0f:dd:9b:f7:5a:81:f0:46:43:bf:11:74: be:50:a9:b9:6a:75:f5:6f:4f:4e:eb:03:55:6e:5c:1a:b6:0f: 46:88:c1:62:24:73:23:f8:fc:55:cc:f3:ed:07:98:db:c9:e0: 4c:93:ec:1a:9a:a1:93:98:11:40:4f:2c:92:58:9f:12:93:19: e9:85:f2:e6:0e:d1:27:12:a6:5f:3c:e6:bd:f5:fb:a4:15:b5: 2b:e1:2c:e6:9c:48:36:4e:a2:23:af:5a:a7:f3:bc:e3:db:b7: 04:0d:e2:aa:e7:ed:be:57:f0:07:bc:f9:a7:90:2e:95:03:01: c2:38:02:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsxVbERy0j4Cz8YBkdXY+V5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkYjNjMzE2NGQzZDhjMjY0NGNmMjliMzIzNjc2MWE1NzFl ZTU4YmEwHhcNMjUxMjE4MTIwMDU3WhcNMjUxMjE5MTIwMDU3WjAzMTEwLwYDVQQD Eyg1MThkMWFiMzNhMGJiMDczYjAxYWY2YmIyOGJkYTY2YTJiMjg1NmFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp3lp6sXzkKRQ8HO5PVPpcGkuLEy4 MXGeNFcNOc6nohb6sxQ7uGL7kuBPmysb1eOT3Bdu6h27uP6AXDdI3NRcGQFiDNlb R7OhLek3nEL1n4fP9/Oay+WZTz6anUir/dX63VUlpjLtw46gcVjZWFE3virUMFyQ 0UurzgyQGJsl1hglbXgb3i6L84J4lb2UpZb95ufc31zZEf74jlB38e2wSoJ+7FI8 FUJM5cbe8IvsdvGqDIi2eDJdOOTQU2AQsn1naLCGejhedMIfYUtIjKYSkAcFL8bH oiRujRT1TQp+nNM3cEJh0gVWK7limMlcGFKC+853wguSGOuQQOBBPkDUbwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFGNGrM6C7BzsBr2uyi9pmorKFavMB8GA1UdIwQY MBaAFA2zwxZNPYwmRM8psyNnYaVx7li6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGJQREZrMDlqQ1pFenltekkyZGhwWEh1V0xvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi82Y2QzNjYtMzU1Ny00MmIyLTg4NWIt M2Q0NjQzOWFhNDFjLzEvRGJQREZrMDlqQ1pFenltekkyZGhwWEh1V0xvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi82Y2QzNjYtMzU1Ny00MmIyLTg4NWItM2Q0NjQzOWFhNDFj LzEvRGJQREZrMDlqQ1pFenltekkyZGhwWEh1V0xvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApPCwNjzE +NwomC/Z/l4ZHmfyHEK340+RRScEfX6UFzz4ecYbafmlCTjomdogN/lJu4ZYJ2vX pP1xqr1IV6z/S4D9UJ8WWD/U5PT8e5Qrc/3hsZpkmUvlKYl/NZsdwVK2rye+WZ5x Rta3Lsi0hhdCYP33jhx3ogMBYUkoizEVJfJBZSSpD92b91qB8EZDvxF0vlCpuWp1 9W9PTusDVW5cGrYPRojBYiRzI/j8Vczz7QeY28ngTJPsGpqhk5gRQE8sklifEpMZ 6YXy5g7RJxKmXzzmvfX7pBW1K+Es5pxINk6iI69ap/O849u3BA3iquftvlfwB7z5 p5AulQMBwjgC9A== -----END CERTIFICATE-----Generated at Thu Dec 18 14:20:11 2025 by rpki-client