This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.mft File: DC-bLoowUI05GSr9WzTuVvd1l54.mft (raw, json) Hash identifier: 2oL5x/2yfg3KvwvHa0IAosL0V2yLuiuGdPKBiukC/qk= Subject key identifier: 5A:9A:0A:11:77:D4:C3:23:33:94:05:CA:B8:8E:30:5D:2F:54:C6:6B Authority key identifier: 0C:2F:9B:2E:8A:30:50:8D:39:19:2A:FD:5B:34:EE:56:F7:75:97:9E Certificate issuer: /CN=0c2f9b2e8a30508d39192afd5b34ee56f775979e Certificate serial: 019B1B04D2A23EC05A4767AA66D5A7BD706B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DC-bLoowUI05GSr9WzTuVvd1l54.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.mft Manifest number: 0F52 Signing time: Sun 14 Dec 2025 04:00:59 +0000 Manifest this update: Sun 14 Dec 2025 04:00:59 +0000 Manifest next update: Mon 15 Dec 2025 04:00:59 +0000 Files and hashes: 1: DC-bLoowUI05GSr9WzTuVvd1l54.crl (hash: fw/0v8T0H7U47TBFE+xe7sMXgdem/9wcejG+wro4zao=) 2: NWAGhC2XbatfDitWodooC7bbFFI.roa (hash: FWUOW7wQ0G0TGl1V+k/KtSrSZ/FDNVfXj5gqfrNEtSc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.crl rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.mft rsync://rpki.ripe.net/repository/DEFAULT/DC-bLoowUI05GSr9WzTuVvd1l54.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1b:04:d2:a2:3e:c0:5a:47:67:aa:66:d5:a7:bd:70:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0c2f9b2e8a30508d39192afd5b34ee56f775979e Validity Not Before: Dec 14 04:00:59 2025 GMT Not After : Dec 15 04:00:59 2025 GMT Subject: CN=5a9a0a1177d4c323339405cab88e305d2f54c66b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2b:29:ba:1d:d4:e6:6c:32:ec:0a:df:98:b1: fe:3b:be:2c:fe:5f:b2:74:fb:6f:cb:dc:4b:6e:b3: 3a:ff:40:95:e7:26:b3:95:f2:00:65:7c:9a:cb:10: 8e:18:cc:d0:8e:4a:a3:c9:fa:bd:19:bd:f3:da:5f: 11:a7:06:49:9f:af:f0:85:95:0d:37:7e:16:46:8a: fe:e5:68:7c:c3:32:6e:2e:b9:4a:0a:38:f5:90:c3: a9:9f:9f:49:e5:25:54:34:13:d4:e4:af:78:a9:fa: 36:9d:8e:7b:36:52:df:ea:37:83:fe:17:c6:53:d6: cf:fd:6d:c9:2b:c4:08:17:23:44:39:26:62:0a:11: 84:38:03:e0:55:83:86:04:f0:a9:d8:91:c7:5f:64: d0:8b:42:cf:13:5d:12:f7:b4:7f:03:09:c2:b7:b2: 62:59:70:b1:c9:2d:c8:39:93:46:ae:43:86:6f:70: 26:12:4f:e5:59:0d:9f:4b:7e:70:80:6b:3c:b7:34: 57:02:1a:b6:69:a9:c2:ec:20:cc:cf:0e:38:7d:fb: dd:c1:db:2d:6e:96:88:10:cc:39:12:f0:4d:12:13: 4a:70:3d:c5:f9:27:6b:e1:f5:bf:b0:7d:93:59:58: ff:d0:f2:e7:9e:31:cc:ab:65:f1:9a:ae:0f:1f:bb: 44:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:9A:0A:11:77:D4:C3:23:33:94:05:CA:B8:8E:30:5D:2F:54:C6:6B X509v3 Authority Key Identifier: keyid:0C:2F:9B:2E:8A:30:50:8D:39:19:2A:FD:5B:34:EE:56:F7:75:97:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DC-bLoowUI05GSr9WzTuVvd1l54.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:79:0d:82:67:ef:5c:eb:a7:b5:d3:6f:f3:4e:a8:48:98:7c: ad:a0:a7:82:f7:d8:02:23:9a:ee:1a:e8:fb:b7:91:91:52:5e: 3a:b1:20:a6:c1:db:d1:43:31:db:2f:d1:d9:c2:37:10:69:7f: d1:06:58:85:1d:78:cb:fb:68:a3:32:b9:3d:0f:58:0b:66:77: c3:ec:42:9b:f5:1f:5d:d4:95:a7:7b:84:93:87:28:49:34:45: 96:b3:a8:d3:85:9e:dd:fb:e4:91:c1:6f:db:b3:6c:4e:5a:88: 04:49:16:6e:78:7f:8a:41:ee:f9:0a:50:e7:94:5d:e2:4c:23: 08:3a:56:47:7b:41:f5:c0:a5:f4:5c:c7:9a:36:46:b9:d0:11: 02:0d:48:ef:22:b2:9d:f5:8d:ee:66:ce:03:e4:bd:71:6e:2a: 0d:17:a7:10:23:b9:13:86:aa:56:69:6a:0b:bc:58:b7:92:47: c3:60:11:2d:f5:b1:f1:16:28:02:a5:6d:45:d8:6b:8d:f9:8a: 73:89:c1:fb:39:e1:df:6d:09:dc:30:17:f9:77:af:5e:d0:c9: 5a:47:12:59:2a:78:70:9e:0b:fd:79:18:12:1c:8f:dd:53:87: e2:36:a6:60:09:80:c7:7c:a1:7b:3a:f6:d6:fe:28:e3:f2:37: 22:2f:5f:e7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsbBNKiPsBaR2eqZtWnvXBrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjMmY5YjJlOGEzMDUwOGQzOTE5MmFmZDViMzRlZTU2Zjc3 NTk3OWUwHhcNMjUxMjE0MDQwMDU5WhcNMjUxMjE1MDQwMDU5WjAzMTEwLwYDVQQD Eyg1YTlhMGExMTc3ZDRjMzIzMzM5NDA1Y2FiODhlMzA1ZDJmNTRjNjZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCspuh3U5mwy7ArfmLH+O74s/l+y dPtvy9xLbrM6/0CV5yazlfIAZXyayxCOGMzQjkqjyfq9Gb3z2l8RpwZJn6/whZUN N34WRor+5Wh8wzJuLrlKCjj1kMOpn59J5SVUNBPU5K94qfo2nY57NlLf6jeD/hfG U9bP/W3JK8QIFyNEOSZiChGEOAPgVYOGBPCp2JHHX2TQi0LPE10S97R/AwnCt7Ji WXCxyS3IOZNGrkOGb3AmEk/lWQ2fS35wgGs8tzRXAhq2aanC7CDMzw44ffvdwdst bpaIEMw5EvBNEhNKcD3F+Sdr4fW/sH2TWVj/0PLnnjHMq2Xxmq4PH7tE2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFqaChF31MMjM5QFyriOMF0vVMZrMB8GA1UdIwQY MBaAFAwvmy6KMFCNORkq/Vs07lb3dZeeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvREMtYkxvb3dVSTA1R1NyOVd6VHVWdmQxbDU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8zNmNiODItMDM5OS00MzZjLWI5NTIt OWVkYTU3YzIzZWRmLzEvREMtYkxvb3dVSTA1R1NyOVd6VHVWdmQxbDU0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi8zNmNiODItMDM5OS00MzZjLWI5NTItOWVkYTU3YzIzZWRm LzEvREMtYkxvb3dVSTA1R1NyOVd6VHVWdmQxbDU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmHkNgmfv XOuntdNv806oSJh8raCngvfYAiOa7hro+7eRkVJeOrEgpsHb0UMx2y/R2cI3EGl/ 0QZYhR14y/toozK5PQ9YC2Z3w+xCm/UfXdSVp3uEk4coSTRFlrOo04We3fvkkcFv 27NsTlqIBEkWbnh/ikHu+QpQ55Rd4kwjCDpWR3tB9cCl9FzHmjZGudARAg1I7yKy nfWN7mbOA+S9cW4qDRenECO5E4aqVmlqC7xYt5JHw2ARLfWx8RYoAqVtRdhrjfmK c4nB+znh320J3DAX+XevXtDJWkcSWSp4cJ4L/XkYEhyP3VOH4jamYAmAx3yhezr2 1v4o4/I3Ii9f5w== -----END CERTIFICATE-----Generated at Sun Dec 14 08:26:40 2025 by rpki-client