This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft File: DLvQEU2XGWdQ1IxeElbtBVpeniw.mft (raw, json) Hash identifier: E7S+oY7KOFAiWRfS/j3vutSW0jzvdImQm6T3DbOF8lQ= Subject key identifier: E8:E6:3E:7C:08:ED:AC:D0:99:1E:C9:C4:94:A8:B8:BB:05:03:11:3A Authority key identifier: 0C:BB:D0:11:4D:97:19:67:50:D4:8C:5E:12:56:ED:05:5A:5E:9E:2C Certificate issuer: /CN=0cbbd0114d97196750d48c5e1256ed055a5e9e2c Certificate serial: 019AF352CC8E63E11F3F6972DE31C5F14F8A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DLvQEU2XGWdQ1IxeElbtBVpeniw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft Manifest number: 0BBA Signing time: Sat 06 Dec 2025 11:01:21 +0000 Manifest this update: Sat 06 Dec 2025 11:01:21 +0000 Manifest next update: Sun 07 Dec 2025 11:01:21 +0000 Files and hashes: 1: C1pdtFvgr0xoHUm63plkKuj-C_Y.roa (hash: b/y/wC9aBMLG4uCve6DdHlmgdXRsPrspZQT4HGYlIp0=) 2: DLvQEU2XGWdQ1IxeElbtBVpeniw.crl (hash: TIErbmF7A0ijVSjpqCpUHaY3uNos8d2So3bpGJ4ricI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.crl rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft rsync://rpki.ripe.net/repository/DEFAULT/DLvQEU2XGWdQ1IxeElbtBVpeniw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:cc:8e:63:e1:1f:3f:69:72:de:31:c5:f1:4f:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0cbbd0114d97196750d48c5e1256ed055a5e9e2c Validity Not Before: Dec 6 11:01:21 2025 GMT Not After : Dec 7 11:01:21 2025 GMT Subject: CN=e8e63e7c08edacd0991ec9c494a8b8bb0503113a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:36:27:f0:c2:81:38:b7:c3:bb:5f:a8:b2:83: ca:3c:f0:c3:31:39:bc:8f:d7:81:0b:6d:f4:c9:19: 46:7e:f6:a4:0e:57:66:dc:cf:3a:e1:a4:f7:7f:59: 54:76:04:cd:79:89:1d:cc:0c:d9:fe:8f:c1:26:7d: 02:60:9b:02:60:e7:75:f0:76:82:fa:d5:c1:6b:88: fe:f8:ba:44:b4:ce:22:2c:9f:0f:95:a9:28:58:8f: 68:06:f4:a1:5c:7c:af:63:a2:44:8a:05:cb:13:e6: 82:5d:f9:8a:49:a0:9c:95:b1:c0:48:28:4d:84:17: 2b:6e:b9:e3:ab:1c:56:a5:88:38:71:6d:f4:de:4d: 01:aa:a6:b8:61:be:42:33:a3:07:e6:13:2e:b4:b0: 7b:dc:0b:64:bf:85:e6:98:89:c5:95:40:ba:6b:13: ff:3a:89:d3:eb:ad:5c:9a:80:2c:77:db:22:e9:3a: 4f:84:7d:70:61:d8:79:98:1c:07:eb:01:ed:6c:97: 04:24:6b:8f:3f:1f:b0:13:ef:f1:68:6e:5b:c7:71: 13:4e:68:33:b2:f1:55:12:62:2c:d4:af:48:07:c7: c9:59:42:21:42:86:ec:0b:60:63:ff:9b:0b:8c:3d: 00:52:00:a1:bc:c2:8f:89:12:a4:74:c9:7f:31:02: 60:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:E6:3E:7C:08:ED:AC:D0:99:1E:C9:C4:94:A8:B8:BB:05:03:11:3A X509v3 Authority Key Identifier: keyid:0C:BB:D0:11:4D:97:19:67:50:D4:8C:5E:12:56:ED:05:5A:5E:9E:2C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DLvQEU2XGWdQ1IxeElbtBVpeniw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:66:38:c3:75:42:f9:5a:fe:55:d9:71:63:dc:81:ca:d6:b9: 24:7d:4f:24:26:62:44:a2:f6:6b:5a:f2:8c:20:d7:73:ef:e2: 4a:e9:9c:59:3d:ae:5b:08:83:31:f6:50:01:03:43:9a:bd:8c: 19:8f:3f:4a:7e:b1:e1:a8:0f:5e:58:e0:05:d6:40:ef:a7:11: ed:9f:03:5a:03:6b:c3:f2:e6:54:d8:f2:1e:ba:74:29:f4:23: bb:7d:d1:50:96:09:a8:4a:3f:70:a7:fa:67:5b:e4:b4:52:78: c4:03:ef:6f:fc:c3:cb:dd:4a:27:46:ab:83:2b:c4:fb:bc:fc: ec:a8:75:15:11:f3:ec:2e:9b:71:b4:d1:48:00:2c:41:86:f8: 14:29:54:cc:e5:fc:03:36:7a:eb:7d:f9:85:a1:a7:ec:8c:25: f8:54:e7:28:1c:1f:0c:7b:02:f8:64:95:92:11:18:72:0d:06: 9e:6c:01:11:1a:4d:00:be:3f:1d:73:35:c3:62:9b:12:06:96: 24:dd:a7:6a:81:b8:8f:74:8b:f1:fb:31:63:fe:0c:33:ab:b6: 4f:b6:00:eb:3a:92:bb:e2:62:54:93:a1:40:23:f7:f7:c9:1b: a0:a7:ee:51:9a:26:41:2a:a9:92:c4:bc:7c:a3:c6:ca:a7:63: 86:51:76:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUsyOY+EfP2ly3jHF8U+KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjYmJkMDExNGQ5NzE5Njc1MGQ0OGM1ZTEyNTZlZDA1NWE1 ZTllMmMwHhcNMjUxMjA2MTEwMTIxWhcNMjUxMjA3MTEwMTIxWjAzMTEwLwYDVQQD EyhlOGU2M2U3YzA4ZWRhY2QwOTkxZWM5YzQ5NGE4YjhiYjA1MDMxMTNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqzYn8MKBOLfDu1+osoPKPPDDMTm8 j9eBC230yRlGfvakDldm3M864aT3f1lUdgTNeYkdzAzZ/o/BJn0CYJsCYOd18HaC +tXBa4j++LpEtM4iLJ8PlakoWI9oBvShXHyvY6JEigXLE+aCXfmKSaCclbHASChN hBcrbrnjqxxWpYg4cW303k0Bqqa4Yb5CM6MH5hMutLB73Atkv4XmmInFlUC6axP/ OonT661cmoAsd9si6TpPhH1wYdh5mBwH6wHtbJcEJGuPPx+wE+/xaG5bx3ETTmgz svFVEmIs1K9IB8fJWUIhQobsC2Bj/5sLjD0AUgChvMKPiRKkdMl/MQJgwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOjmPnwI7azQmR7JxJSouLsFAxE6MB8GA1UdIwQY MBaAFAy70BFNlxlnUNSMXhJW7QVaXp4sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvREx2UUVVMlhHV2RRMUl4ZUVsYnRCVnBlbml3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC8yYTFiNGUtZDc1NC00NDNjLWEzNjAt YWZiNTY2Y2RmYWM2LzEvREx2UUVVMlhHV2RRMUl4ZUVsYnRCVnBlbml3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC8yYTFiNGUtZDc1NC00NDNjLWEzNjAtYWZiNTY2Y2RmYWM2 LzEvREx2UUVVMlhHV2RRMUl4ZUVsYnRCVnBlbml3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPGY4w3VC +Vr+VdlxY9yByta5JH1PJCZiRKL2a1ryjCDXc+/iSumcWT2uWwiDMfZQAQNDmr2M GY8/Sn6x4agPXljgBdZA76cR7Z8DWgNrw/LmVNjyHrp0KfQju33RUJYJqEo/cKf6 Z1vktFJ4xAPvb/zDy91KJ0argyvE+7z87Kh1FRHz7C6bcbTRSAAsQYb4FClUzOX8 AzZ66335haGn7Iwl+FTnKBwfDHsC+GSVkhEYcg0GnmwBERpNAL4/HXM1w2KbEgaW JN2naoG4j3SL8fsxY/4MM6u2T7YA6zqSu+JiVJOhQCP398kboKfuUZomQSqpksS8 fKPGyqdjhlF2yA== -----END CERTIFICATE-----Generated at Sat Dec 6 18:38:41 2025 by rpki-client