This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft File: DA96BN1ySaXRS33gVCpBlzgABsw.mft (raw, json) Hash identifier: IRQb0QkGHTiouVNg889h0d8Dv8l4XWv+RjPuKkOpw0g= Subject key identifier: 62:86:91:D5:E6:BB:50:BC:51:77:BF:5E:08:DA:13:4A:83:F0:BA:63 Authority key identifier: 0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC Certificate issuer: /CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc Certificate serial: 019B3833303EDABEFDA6345C84CAFABC4889 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft Manifest number: 1329 Signing time: Fri 19 Dec 2025 20:00:37 +0000 Manifest this update: Fri 19 Dec 2025 20:00:37 +0000 Manifest next update: Sat 20 Dec 2025 20:00:37 +0000 Files and hashes: 1: DA96BN1ySaXRS33gVCpBlzgABsw.crl (hash: q+v2JyLAhtoBtKB6ne5KihxyULn4b2i4CDW4dDJXDUc=) 2: DnlnaiUOn3bGRjdw-Yb1fkUsNto.roa (hash: E1ibhwBfmIcFn7h/JxzOSZ/iplWkTSQE9ZGFZ1Ek2Kg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:38:33:30:3e:da:be:fd:a6:34:5c:84:ca:fa:bc:48:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc Validity Not Before: Dec 19 20:00:37 2025 GMT Not After : Dec 20 20:00:37 2025 GMT Subject: CN=628691d5e6bb50bc5177bf5e08da134a83f0ba63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2a:43:51:0d:28:96:b8:12:78:80:ea:0c:5c: 5c:55:35:f1:ee:01:f7:93:fa:b2:5c:7d:7b:9f:53: d5:17:53:fb:cf:90:47:c9:94:a1:36:c0:8c:63:b7: 62:c6:b1:44:45:9c:d9:dd:13:95:11:48:72:2c:8a: 2d:f9:38:ff:02:cb:64:a4:d1:d0:8f:af:32:30:d9: 17:7e:a3:2b:7f:e9:b6:43:f7:5f:35:83:93:07:cd: 34:ae:b0:1b:a7:2f:01:fe:bf:ba:c0:0b:d3:ba:68: 2a:c7:f2:61:40:35:c7:33:b3:11:e5:73:0f:38:41: 53:43:ec:a5:63:5a:95:12:44:c9:59:81:e8:ae:27: 48:3d:89:4a:dc:fb:33:bc:57:e6:a5:1c:02:79:7c: 67:69:f3:45:74:2b:d2:2c:bb:92:09:97:67:83:29: be:28:3c:39:95:25:2e:08:a8:43:91:ee:74:90:e8: 7a:ab:26:9e:0e:75:b0:11:5a:b4:10:7b:ed:8d:e4: ce:94:80:73:9b:2d:46:56:84:18:ce:3a:e3:53:ca: 6c:87:7e:8b:24:fa:24:7e:88:1b:35:95:6d:d1:d1: bb:c1:3e:92:bb:1c:b4:8f:40:1b:e1:41:c7:4f:8e: 75:5c:85:f7:48:af:0b:10:22:33:a2:c4:5b:ea:c5: fa:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:86:91:D5:E6:BB:50:BC:51:77:BF:5E:08:DA:13:4A:83:F0:BA:63 X509v3 Authority Key Identifier: keyid:0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:fb:fc:7b:93:83:eb:7d:a8:aa:eb:a4:e8:1d:fd:80:e1:96: 9c:21:75:64:7f:d8:4b:e8:52:38:e1:81:9a:90:f3:e3:f5:6e: dd:a1:d8:d8:d1:9d:ee:20:63:c9:a4:31:f2:30:d5:33:19:a1: 03:f9:1d:90:8c:6b:51:e0:15:c0:0b:3a:b5:cd:b9:26:e8:b5: de:c4:d9:a0:6d:ae:7c:e9:05:f0:61:d2:2b:02:31:db:8a:4c: 8a:0b:c1:7c:e7:4e:20:96:f5:b4:05:45:a4:a6:e6:39:a4:89: f3:fd:f4:73:47:c8:86:d1:d1:a0:3f:c8:b0:fe:ec:d1:bc:6c: 64:83:c4:51:55:97:5e:80:47:1c:4f:5c:f5:bb:2e:cd:6c:27: 69:54:48:b9:02:bb:9a:f6:61:4a:af:8a:d2:0d:56:62:19:3e: 4b:8a:29:b8:db:6c:14:03:9b:0d:20:52:8b:f0:36:3b:e8:c1: 94:de:26:41:7e:d1:95:5d:87:37:fa:81:aa:51:36:6e:b3:41: 29:a9:27:cf:d4:68:15:3e:fa:04:62:36:93:82:13:3d:cd:02: 86:f3:8a:15:9f:2e:40:c0:79:13:9d:40:c3:4e:99:41:71:0d: fa:2f:1e:3c:b3:24:54:11:5d:a6:51:48:25:4e:00:3e:86:9e: 82:6c:b2:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs4MzA+2r79pjRchMr6vEiJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjMGY3YTA0ZGQ3MjQ5YTVkMTRiN2RlMDU0MmE0MTk3Mzgw MDA2Y2MwHhcNMjUxMjE5MjAwMDM3WhcNMjUxMjIwMjAwMDM3WjAzMTEwLwYDVQQD Eyg2Mjg2OTFkNWU2YmI1MGJjNTE3N2JmNWUwOGRhMTM0YTgzZjBiYTYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxipDUQ0olrgSeIDqDFxcVTXx7gH3 k/qyXH17n1PVF1P7z5BHyZShNsCMY7dixrFERZzZ3ROVEUhyLIot+Tj/AstkpNHQ j68yMNkXfqMrf+m2Q/dfNYOTB800rrAbpy8B/r+6wAvTumgqx/JhQDXHM7MR5XMP OEFTQ+ylY1qVEkTJWYHoridIPYlK3PszvFfmpRwCeXxnafNFdCvSLLuSCZdngym+ KDw5lSUuCKhDke50kOh6qyaeDnWwEVq0EHvtjeTOlIBzmy1GVoQYzjrjU8psh36L JPokfogbNZVt0dG7wT6Suxy0j0Ab4UHHT451XIX3SK8LECIzosRb6sX6ewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGKGkdXmu1C8UXe/XgjaE0qD8LpjMB8GA1UdIwQY MBaAFAwPegTdckml0Ut94FQqQZc4AAbMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvREE5NkJOMXlTYVhSUzMzZ1ZDcEJsemdBQnN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8xMWRiMTQtZTg0NS00ZTRmLWE2OTIt YTNjYmVmZmY3Nzc3LzEvREE5NkJOMXlTYVhSUzMzZ1ZDcEJsemdBQnN3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC8xMWRiMTQtZTg0NS00ZTRmLWE2OTItYTNjYmVmZmY3Nzc3 LzEvREE5NkJOMXlTYVhSUzMzZ1ZDcEJsemdBQnN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfPv8e5OD 632oquuk6B39gOGWnCF1ZH/YS+hSOOGBmpDz4/Vu3aHY2NGd7iBjyaQx8jDVMxmh A/kdkIxrUeAVwAs6tc25Jui13sTZoG2ufOkF8GHSKwIx24pMigvBfOdOIJb1tAVF pKbmOaSJ8/30c0fIhtHRoD/IsP7s0bxsZIPEUVWXXoBHHE9c9bsuzWwnaVRIuQK7 mvZhSq+K0g1WYhk+S4opuNtsFAObDSBSi/A2O+jBlN4mQX7RlV2HN/qBqlE2brNB Kaknz9RoFT76BGI2k4ITPc0ChvOKFZ8uQMB5E51Aw06ZQXEN+i8ePLMkVBFdplFI JU4APoaegmyylg== -----END CERTIFICATE-----Generated at Fri Dec 19 23:29:21 2025 by rpki-client