This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/4c8208-ba30-4716-a6c8-84f3524626bd/1/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.mft File: DlbJ5Y2Wrx5BMNciQiEZKywTKlw.mft (raw, json) Hash identifier: KsT+iqBIkwA3JmPGG079yNSBXfyQvOZsFZ9iNYhuV2c= Subject key identifier: 95:51:03:3B:2E:06:25:B6:D3:39:C2:43:80:D7:7E:33:E6:C0:06:B3 Authority key identifier: 0E:56:C9:E5:8D:96:AF:1E:41:30:D7:22:42:21:19:2B:2C:13:2A:5C Certificate issuer: /CN=0e56c9e58d96af1e4130d7224221192b2c132a5c Certificate serial: 019AF12E56B10EA673DE5E62C848701B962F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/4c8208-ba30-4716-a6c8-84f3524626bd/1/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.mft Manifest number: 16F2 Signing time: Sat 06 Dec 2025 01:02:17 +0000 Manifest this update: Sat 06 Dec 2025 01:02:17 +0000 Manifest next update: Sun 07 Dec 2025 01:02:17 +0000 Files and hashes: 1: DlbJ5Y2Wrx5BMNciQiEZKywTKlw.crl (hash: B6JEbOJ5/ufQft1ISnQIDbylvkoY4rW2rjIjWhRF7yk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/4c8208-ba30-4716-a6c8-84f3524626bd/1/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/4c8208-ba30-4716-a6c8-84f3524626bd/1/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.mft rsync://rpki.ripe.net/repository/DEFAULT/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:56:b1:0e:a6:73:de:5e:62:c8:48:70:1b:96:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e56c9e58d96af1e4130d7224221192b2c132a5c Validity Not Before: Dec 6 01:02:17 2025 GMT Not After : Dec 7 01:02:17 2025 GMT Subject: CN=9551033b2e0625b6d339c24380d77e33e6c006b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:19:3a:c2:cf:42:ee:6d:01:5a:7a:a7:2d:c5: e3:8f:d6:7c:07:b7:1e:04:b0:5b:2c:74:ac:98:51: 9c:43:db:15:bd:f2:38:38:24:33:29:5d:8d:78:7e: 72:c8:bd:4d:17:31:04:63:8e:41:fb:61:2e:9a:ee: dc:23:1d:fd:1a:f4:6c:ac:1c:b0:2b:74:6b:09:3a: b1:c0:4c:5c:d0:48:38:af:37:b2:18:77:cc:c4:a8: 80:1c:0d:70:5e:d7:8d:33:67:b3:8e:62:00:50:48: ea:4c:ba:f9:6c:9c:62:f9:57:ab:4b:9f:82:9a:36: 3d:39:94:b8:92:7a:0c:3b:98:8f:cd:ad:36:13:87: cb:a3:a5:b0:d0:3f:0a:8a:2e:ec:21:7e:43:a7:0b: 7c:08:ad:2a:16:8e:ba:53:0f:4f:a4:27:2f:8d:2c: 94:7f:66:d3:f8:cd:80:17:95:92:5a:81:c3:c6:ac: 01:e9:c3:bf:69:04:f1:5b:07:66:5b:0d:49:95:79: 8b:9d:c0:10:1e:8c:5b:d8:8d:b0:2e:90:86:68:33: 0f:9d:5b:e5:0c:2a:46:01:52:7f:89:1c:05:18:03: 5b:36:4c:cb:8e:2e:5d:8c:57:7a:53:3e:0e:fe:61: ab:90:90:b8:64:ac:dc:82:51:38:6a:9d:fa:5b:a9: 39:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:51:03:3B:2E:06:25:B6:D3:39:C2:43:80:D7:7E:33:E6:C0:06:B3 X509v3 Authority Key Identifier: keyid:0E:56:C9:E5:8D:96:AF:1E:41:30:D7:22:42:21:19:2B:2C:13:2A:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4c8208-ba30-4716-a6c8-84f3524626bd/1/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4c8208-ba30-4716-a6c8-84f3524626bd/1/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:fb:f6:09:60:4f:55:da:05:32:86:7c:fc:1c:ff:9f:81:9b: 0d:ee:03:e2:5b:ad:b1:fd:a8:e8:fc:d8:da:a0:1c:d4:81:b9: be:9e:02:cf:7f:af:78:87:9f:f8:8d:ee:61:cf:56:20:49:5b: 91:cd:07:b1:ee:99:c2:a9:9c:10:a2:db:18:d4:76:e4:a1:5a: 0c:64:e5:09:ce:08:42:92:c9:3e:8c:69:0a:2b:c7:50:58:d9: 51:db:64:c8:20:80:e1:ab:75:a9:f3:7c:c3:d8:22:2d:93:1f: ce:5e:cc:4f:21:ed:bd:d6:79:93:16:9e:d9:a6:3c:48:c2:8f: 20:9b:2d:51:98:f4:91:f3:d5:cd:3d:f1:fe:94:7c:37:27:0d: 41:d0:45:a4:1e:3d:61:07:d8:d7:e3:00:45:05:11:40:ba:a9: ff:95:52:18:08:c6:aa:86:c6:2e:3b:04:f5:ec:62:9a:d8:a9: cf:2b:32:73:db:8c:03:ac:22:0c:76:78:b7:8a:83:eb:d1:56: a9:bf:e6:31:c3:f1:32:23:48:1b:9b:1e:76:e1:74:e0:47:48: ac:03:cc:a2:33:d9:d6:dd:de:84:d9:84:e8:9c:18:0b:45:34: d9:5e:7a:3d:7f:18:42:58:80:77:bd:2e:c2:84:1d:d6:c4:71: 24:27:5b:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLlaxDqZz3l5iyEhwG5YvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlNTZjOWU1OGQ5NmFmMWU0MTMwZDcyMjQyMjExOTJiMmMx MzJhNWMwHhcNMjUxMjA2MDEwMjE3WhcNMjUxMjA3MDEwMjE3WjAzMTEwLwYDVQQD Eyg5NTUxMDMzYjJlMDYyNWI2ZDMzOWMyNDM4MGQ3N2UzM2U2YzAwNmIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuxk6ws9C7m0BWnqnLcXjj9Z8B7ce BLBbLHSsmFGcQ9sVvfI4OCQzKV2NeH5yyL1NFzEEY45B+2Eumu7cIx39GvRsrByw K3RrCTqxwExc0Eg4rzeyGHfMxKiAHA1wXteNM2ezjmIAUEjqTLr5bJxi+VerS5+C mjY9OZS4knoMO5iPza02E4fLo6Ww0D8Kii7sIX5Dpwt8CK0qFo66Uw9PpCcvjSyU f2bT+M2AF5WSWoHDxqwB6cO/aQTxWwdmWw1JlXmLncAQHoxb2I2wLpCGaDMPnVvl DCpGAVJ/iRwFGANbNkzLji5djFd6Uz4O/mGrkJC4ZKzcglE4ap36W6k5VwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJVRAzsuBiW20znCQ4DXfjPmwAazMB8GA1UdIwQY MBaAFA5WyeWNlq8eQTDXIkIhGSssEypcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGxiSjVZMldyeDVCTU5jaVFpRVpLeXdUS2x3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC80YzgyMDgtYmEzMC00NzE2LWE2Yzgt ODRmMzUyNDYyNmJkLzEvRGxiSjVZMldyeDVCTU5jaVFpRVpLeXdUS2x3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC80YzgyMDgtYmEzMC00NzE2LWE2YzgtODRmMzUyNDYyNmJk LzEvRGxiSjVZMldyeDVCTU5jaVFpRVpLeXdUS2x3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR/v2CWBP VdoFMoZ8/Bz/n4GbDe4D4lutsf2o6PzY2qAc1IG5vp4Cz3+veIef+I3uYc9WIElb kc0Hse6ZwqmcEKLbGNR25KFaDGTlCc4IQpLJPoxpCivHUFjZUdtkyCCA4at1qfN8 w9giLZMfzl7MTyHtvdZ5kxae2aY8SMKPIJstUZj0kfPVzT3x/pR8NycNQdBFpB49 YQfY1+MARQURQLqp/5VSGAjGqobGLjsE9eximtipzysyc9uMA6wiDHZ4t4qD69FW qb/mMcPxMiNIG5seduF04EdIrAPMojPZ1t3ehNmE6JwYC0U02V56PX8YQliAd70u woQd1sRxJCdbwg== -----END CERTIFICATE-----Generated at Sat Dec 6 08:24:32 2025 by rpki-client