This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft File: M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft (raw, json) Hash identifier: y6uH7ozqkP2ssH6OyMny5DyfukM75+l3Ym9oySHWv+I= Subject key identifier: D6:46:0C:A3:2D:E2:16:2A:27:FC:FF:17:2A:B2:B5:3A:5D:AA:3E:79 Authority key identifier: 33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99 Certificate issuer: /CN=3363d72cdd93ab02fe3f788d621d715d9efd7699 Certificate serial: 019AF31D505F376755EB8C15B22BD6D94F0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft Manifest number: 1347 Signing time: Sat 06 Dec 2025 10:02:55 +0000 Manifest this update: Sat 06 Dec 2025 10:02:55 +0000 Manifest next update: Sun 07 Dec 2025 10:02:55 +0000 Files and hashes: 1: M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl (hash: Xcp9aL7XxcM/QjAVp3MJ9cQpV8FMB9T6UF1XouKEUJs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1d:50:5f:37:67:55:eb:8c:15:b2:2b:d6:d9:4f:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3363d72cdd93ab02fe3f788d621d715d9efd7699 Validity Not Before: Dec 6 10:02:55 2025 GMT Not After : Dec 7 10:02:55 2025 GMT Subject: CN=d6460ca32de2162a27fcff172ab2b53a5daa3e79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f6:9f:c7:73:5d:bf:28:59:51:c3:98:54:f7: 42:94:1b:3f:27:aa:d6:6c:b3:93:6b:1f:c4:48:25: ab:4a:45:c6:02:c4:2d:0c:ad:86:65:4d:a5:23:a1: 44:d7:7d:16:41:5d:b4:bf:ea:2c:51:95:08:ee:59: 88:85:9f:99:70:3c:1e:aa:ac:97:ba:c3:94:21:1d: 9c:dd:dc:b1:30:52:ea:97:27:93:c7:31:bc:5d:00: 90:f9:76:6a:d8:e4:67:37:e2:00:85:58:23:cb:18: bb:de:c4:9e:f8:40:a0:49:d3:8a:6c:93:3d:77:1e: a2:43:f6:68:fa:15:aa:f4:cc:56:ec:18:da:c0:1d: a1:15:10:24:b5:a6:55:d7:b4:1d:14:54:fd:2a:80: 26:be:34:ef:d5:82:0e:39:d9:da:b3:68:bc:94:0e: cb:d5:85:38:f8:9d:23:88:55:cd:6a:ff:29:9f:f5: eb:f7:14:c6:a0:4b:83:6b:7e:7c:a4:81:fd:9f:bd: 97:cf:da:5b:14:b3:a2:15:fc:b2:4a:e8:ec:6d:ac: d5:6b:ba:47:02:3d:98:58:cc:2d:93:c6:dd:a8:64: a3:26:0e:e2:e3:46:80:b1:34:60:84:0f:d6:59:5b: bf:a6:94:3b:32:75:77:4b:55:ee:eb:2b:12:51:b4: 77:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:46:0C:A3:2D:E2:16:2A:27:FC:FF:17:2A:B2:B5:3A:5D:AA:3E:79 X509v3 Authority Key Identifier: keyid:33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:fa:d3:6e:6b:fc:f1:1c:50:48:f0:d8:69:cf:45:0b:67:af: 06:99:2c:6e:82:a1:35:da:27:af:b4:08:41:81:64:8a:19:20: 58:b5:2b:85:54:f9:42:6c:11:d3:a2:e4:ad:87:6d:28:5f:a0: 73:61:37:17:24:23:4f:3a:f7:ad:ef:33:68:41:04:20:d1:c7: 82:ba:d9:ca:47:b1:23:2b:c3:06:25:46:7d:44:51:bf:99:5c: 95:37:45:83:0c:7b:27:3a:ee:13:f9:c7:78:4a:cb:a4:41:2c: ef:2a:76:28:85:28:41:f0:ee:a5:bc:75:d7:42:36:20:2f:bd: 9f:e2:65:64:1f:db:cb:55:40:a0:39:9e:86:88:fe:fe:48:5f: cc:fa:31:77:97:0a:1c:b2:8c:18:ea:10:ce:ea:59:b8:e7:e5: 2e:93:70:94:ac:59:83:31:30:3c:5d:17:c6:bd:c2:37:28:54: a7:87:5c:52:98:08:0a:35:0b:00:2f:21:12:a3:37:f4:ef:c0: 4d:1b:09:d3:2a:27:4d:e2:f1:48:7e:16:81:92:ff:59:d4:ce: 46:2f:b0:75:a8:9e:b1:97:82:ea:f6:d0:19:ff:06:8e:55:55: 03:8f:4b:a4:2a:d9:1f:7f:aa:a1:59:60:37:a1:63:63:4a:37: 42:89:3a:8f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHVBfN2dV64wVsivW2U8LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzNjNkNzJjZGQ5M2FiMDJmZTNmNzg4ZDYyMWQ3MTVkOWVm ZDc2OTkwHhcNMjUxMjA2MTAwMjU1WhcNMjUxMjA3MTAwMjU1WjAzMTEwLwYDVQQD EyhkNjQ2MGNhMzJkZTIxNjJhMjdmY2ZmMTcyYWIyYjUzYTVkYWEzZTc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoPafx3NdvyhZUcOYVPdClBs/J6rW bLOTax/ESCWrSkXGAsQtDK2GZU2lI6FE130WQV20v+osUZUI7lmIhZ+ZcDweqqyX usOUIR2c3dyxMFLqlyeTxzG8XQCQ+XZq2ORnN+IAhVgjyxi73sSe+ECgSdOKbJM9 dx6iQ/Zo+hWq9MxW7BjawB2hFRAktaZV17QdFFT9KoAmvjTv1YIOOdnas2i8lA7L 1YU4+J0jiFXNav8pn/Xr9xTGoEuDa358pIH9n72Xz9pbFLOiFfyySujsbazVa7pH Aj2YWMwtk8bdqGSjJg7i40aAsTRghA/WWVu/ppQ7MnV3S1Xu6ysSUbR33QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNZGDKMt4hYqJ/z/FyqytTpdqj55MB8GA1UdIwQY MBaAFDNj1yzdk6sC/j94jWIdcV2e/XaZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTTJQWExOMlRxd0wtUDNpTlloMXhYWjc5ZHBrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS9jOWMwZDgtNzAxMy00NmMzLTljMjgt NDM0ZjllMGQ3NTBjLzEvTTJQWExOMlRxd0wtUDNpTlloMXhYWjc5ZHBrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS9jOWMwZDgtNzAxMy00NmMzLTljMjgtNDM0ZjllMGQ3NTBj LzEvTTJQWExOMlRxd0wtUDNpTlloMXhYWjc5ZHBrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHPrTbmv8 8RxQSPDYac9FC2evBpksboKhNdonr7QIQYFkihkgWLUrhVT5QmwR06LkrYdtKF+g c2E3FyQjTzr3re8zaEEEINHHgrrZykexIyvDBiVGfURRv5lclTdFgwx7JzruE/nH eErLpEEs7yp2KIUoQfDupbx110I2IC+9n+JlZB/by1VAoDmehoj+/khfzPoxd5cK HLKMGOoQzupZuOflLpNwlKxZgzEwPF0Xxr3CNyhUp4dcUpgICjULAC8hEqM39O/A TRsJ0yonTeLxSH4WgZL/WdTORi+wdaiesZeC6vbQGf8GjlVVA49LpCrZH3+qoVlg N6FjY0o3Qok6jw== -----END CERTIFICATE-----Generated at Sat Dec 6 14:22:01 2025 by rpki-client