This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft File: dbh4BinZITNXwHDBwBBgU0dIg8E.mft (raw, json) Hash identifier: fWqlC+WKZ+I9H/m8IgqVjE2yolC74mmm/AUecaU/kho= Subject key identifier: 46:D8:0A:01:7B:28:26:33:9D:FA:5D:B5:F0:51:5F:F9:89:C0:97:8C Authority key identifier: 75:B8:78:06:29:D9:21:33:57:C0:70:C1:C0:10:60:53:47:48:83:C1 Certificate issuer: /CN=75b8780629d9213357c070c1c0106053474883c1 Certificate serial: 019AF31B884A1E6B31112931A621ADE8473F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dbh4BinZITNXwHDBwBBgU0dIg8E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft Manifest number: 0D86 Signing time: Sat 06 Dec 2025 10:00:58 +0000 Manifest this update: Sat 06 Dec 2025 10:00:58 +0000 Manifest next update: Sun 07 Dec 2025 10:00:58 +0000 Files and hashes: 1: dbh4BinZITNXwHDBwBBgU0dIg8E.crl (hash: 3qqy62QgXavu6Vc9+F4TDNoRDkSaYMR3UPMZVIAN10E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft rsync://rpki.ripe.net/repository/DEFAULT/dbh4BinZITNXwHDBwBBgU0dIg8E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:88:4a:1e:6b:31:11:29:31:a6:21:ad:e8:47:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75b8780629d9213357c070c1c0106053474883c1 Validity Not Before: Dec 6 10:00:58 2025 GMT Not After : Dec 7 10:00:58 2025 GMT Subject: CN=46d80a017b2826339dfa5db5f0515ff989c0978c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:fe:f1:0f:71:11:91:09:8c:f4:11:52:42:8d: ae:e1:bf:c5:ec:70:83:33:e1:d2:00:12:9f:f5:ef: 22:de:cf:08:03:83:72:d4:10:9f:b5:77:b1:9f:ab: cd:41:f7:ae:64:bb:a7:0b:32:b4:59:43:b3:f5:e7: 08:bb:f9:50:4f:6a:f7:76:80:8c:6d:32:2b:cb:c0: 6f:08:0e:9a:0d:91:19:71:94:7e:3b:b9:25:82:ea: 23:ea:13:b4:f6:da:de:42:81:7b:9e:ee:dd:a5:d6: 15:9f:3e:d4:2c:0c:64:8e:f7:c0:91:fa:54:7d:74: 5d:d3:6f:23:7c:ce:fd:32:aa:f0:c7:07:01:76:63: 4e:aa:a7:ea:94:25:7e:29:16:b1:bc:96:ff:32:5d: 2d:aa:8d:1f:69:2e:76:27:80:c0:4c:70:eb:13:19: 7d:5a:dc:21:7b:a7:44:95:b4:bc:1d:19:d2:3a:27: 01:e1:88:59:4e:a6:d7:c0:f7:cf:83:40:85:63:cf: 9a:ba:9f:df:29:3a:bd:4d:80:2f:78:d7:ca:ea:9c: 8d:c4:53:c6:a6:bc:6a:33:c5:37:5d:a8:57:48:f9: 78:bc:3c:99:69:a9:f5:7b:b0:8b:af:dc:cc:8e:8e: 8f:42:e7:30:ed:dd:73:c8:53:fd:63:01:8f:3a:37: a1:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:D8:0A:01:7B:28:26:33:9D:FA:5D:B5:F0:51:5F:F9:89:C0:97:8C X509v3 Authority Key Identifier: keyid:75:B8:78:06:29:D9:21:33:57:C0:70:C1:C0:10:60:53:47:48:83:C1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dbh4BinZITNXwHDBwBBgU0dIg8E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:75:33:0f:d1:cd:9f:b3:90:52:d0:7a:a3:d8:6b:29:fc:c7: 59:ca:2e:39:0e:c6:96:d1:76:db:b3:73:9e:74:fb:2c:6b:d5: 4e:43:28:ab:a9:76:37:6d:9d:85:1b:38:64:c7:a3:e6:7b:3e: 7d:28:b4:20:cc:4b:72:56:13:74:f3:f8:3c:a7:e4:f5:a1:03: 10:44:b7:b1:5c:01:48:21:21:2d:ef:36:60:5f:07:75:16:e6: 16:c1:3e:fb:07:1d:c5:3e:1c:7f:f6:e1:1f:4c:78:60:0a:14: 0b:10:53:28:87:c0:59:90:50:ee:bf:49:9b:4c:99:1e:ec:b1: 3b:ff:8e:ac:15:a3:f3:41:d5:e6:ee:74:45:23:c2:5f:dd:80: a6:bb:e7:68:33:a8:f4:11:4f:d6:b2:5a:f0:00:96:95:d8:ef: 2b:ca:ff:28:7c:eb:1a:e9:47:e4:69:7e:d0:18:c1:c3:30:cd: 00:bc:b8:04:90:92:08:7d:56:15:87:d9:21:2d:23:b6:36:7a: 41:5f:b3:b0:12:4a:6e:14:20:46:bf:bb:0d:75:19:92:ca:02: 5c:4a:e6:ed:aa:ea:1d:f1:6c:68:57:9a:0f:b5:15:1a:0f:c9: 7d:d5:71:3a:f8:13:b8:6f:e2:80:1d:9b:00:fb:0e:0d:19:c6: 04:96:0d:ef -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG4hKHmsxESkxpiGt6Ec/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1Yjg3ODA2MjlkOTIxMzM1N2MwNzBjMWMwMTA2MDUzNDc0 ODgzYzEwHhcNMjUxMjA2MTAwMDU4WhcNMjUxMjA3MTAwMDU4WjAzMTEwLwYDVQQD Eyg0NmQ4MGEwMTdiMjgyNjMzOWRmYTVkYjVmMDUxNWZmOTg5YzA5NzhjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjf7xD3ERkQmM9BFSQo2u4b/F7HCD M+HSABKf9e8i3s8IA4Ny1BCftXexn6vNQfeuZLunCzK0WUOz9ecIu/lQT2r3doCM bTIry8BvCA6aDZEZcZR+O7klguoj6hO09treQoF7nu7dpdYVnz7ULAxkjvfAkfpU fXRd028jfM79MqrwxwcBdmNOqqfqlCV+KRaxvJb/Ml0tqo0faS52J4DATHDrExl9 Wtwhe6dElbS8HRnSOicB4YhZTqbXwPfPg0CFY8+aup/fKTq9TYAveNfK6pyNxFPG prxqM8U3XahXSPl4vDyZaan1e7CLr9zMjo6PQucw7d1zyFP9YwGPOjehFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEbYCgF7KCYznfpdtfBRX/mJwJeMMB8GA1UdIwQY MBaAFHW4eAYp2SEzV8BwwcAQYFNHSIPBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZGJoNEJpblpJVE5Yd0hEQndCQmdVMGRJZzhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS85NmZiOWQtZmY5Zi00ZDVkLWI2YzEt ZDkxMGI3NzIxZDIwLzEvZGJoNEJpblpJVE5Yd0hEQndCQmdVMGRJZzhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS85NmZiOWQtZmY5Zi00ZDVkLWI2YzEtZDkxMGI3NzIxZDIw LzEvZGJoNEJpblpJVE5Yd0hEQndCQmdVMGRJZzhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjXUzD9HN n7OQUtB6o9hrKfzHWcouOQ7GltF227NznnT7LGvVTkMoq6l2N22dhRs4ZMej5ns+ fSi0IMxLclYTdPP4PKfk9aEDEES3sVwBSCEhLe82YF8HdRbmFsE++wcdxT4cf/bh H0x4YAoUCxBTKIfAWZBQ7r9Jm0yZHuyxO/+OrBWj80HV5u50RSPCX92AprvnaDOo 9BFP1rJa8ACWldjvK8r/KHzrGulH5Gl+0BjBwzDNALy4BJCSCH1WFYfZIS0jtjZ6 QV+zsBJKbhQgRr+7DXUZksoCXErm7arqHfFsaFeaD7UVGg/JfdVxOvgTuG/igB2b APsODRnGBJYN7w== -----END CERTIFICATE-----Generated at Sat Dec 6 13:52:36 2025 by rpki-client