This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.mft File: 2NYGQYZJDYzqI0f_ejqCSS0feXc.mft (raw, json) Hash identifier: nSZufpRQPBwnCB83x8A+l45zIhq32oa/gqB+f/ICJSs= Subject key identifier: 9E:E1:44:0F:E1:84:AD:54:9A:56:66:75:69:05:A1:09:07:2F:F8:BC Authority key identifier: D8:D6:06:41:86:49:0D:8C:EA:23:47:FF:7A:3A:82:49:2D:1F:79:77 Certificate issuer: /CN=d8d6064186490d8cea2347ff7a3a82492d1f7977 Certificate serial: 019AF1D27EA48978D1C5CC68D65616E231B6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2NYGQYZJDYzqI0f_ejqCSS0feXc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 04:01:35 +0000 Manifest this update: Sat 06 Dec 2025 04:01:35 +0000 Manifest next update: Sun 07 Dec 2025 04:01:35 +0000 Files and hashes: 1: 2NYGQYZJDYzqI0f_ejqCSS0feXc.crl (hash: ABi7cAYKJsxIv8XsyDEUrTrfTuUS4/BCTDgadYZ9DXQ=) 2: fRvh8sX1Hi5S8M4nM9SL76qC4pw.roa (hash: BU70IeuzZkqToqE9mDUdKtq0A+ixKO/u5mFIegNEZGk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.crl rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.mft rsync://rpki.ripe.net/repository/DEFAULT/2NYGQYZJDYzqI0f_ejqCSS0feXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:7e:a4:89:78:d1:c5:cc:68:d6:56:16:e2:31:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8d6064186490d8cea2347ff7a3a82492d1f7977 Validity Not Before: Dec 6 04:01:35 2025 GMT Not After : Dec 7 04:01:35 2025 GMT Subject: CN=9ee1440fe184ad549a5666756905a109072ff8bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:7f:97:71:fb:28:8c:5f:73:36:c2:c5:6a:34: b5:08:e9:40:2a:d8:1e:e0:5e:40:7f:13:b7:3b:20: ef:b5:62:89:75:2e:49:d9:9e:85:e8:85:0a:4a:81: 25:0e:2f:0e:92:fa:ae:eb:19:57:4f:58:f9:2b:53: 31:8d:f8:af:d9:e0:8e:90:30:29:12:84:6e:bb:47: e8:c1:16:18:9f:c2:6b:32:ef:7e:83:1f:79:22:06: 68:44:98:3c:ec:bc:73:7d:99:ec:d9:10:e0:9c:6c: 85:72:14:77:19:f8:bd:fd:da:18:14:96:d4:a7:31: 5e:76:0b:0c:99:fb:ff:a6:1b:f3:b4:e5:eb:c3:f7: 03:45:c7:1f:1b:1e:c0:59:86:50:5a:ee:8a:ef:af: 0a:53:f3:6d:dc:34:2f:df:d8:86:96:46:fd:47:98: 8e:84:2c:eb:5e:4f:38:ff:1e:61:44:ba:fe:22:e8: 82:85:c5:dc:cd:8a:24:9c:67:bd:ef:61:53:b1:08: f9:52:bd:7c:de:bb:3e:70:cf:dd:45:ee:da:af:09: f8:71:ca:4e:8a:2a:8d:6a:e1:cb:ff:74:77:20:c3: ef:46:ca:76:ee:44:b8:93:b8:ba:3c:30:f3:44:7f: ec:e0:a8:e0:a7:f6:ac:69:fe:5a:df:7c:77:b5:c2: d0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:E1:44:0F:E1:84:AD:54:9A:56:66:75:69:05:A1:09:07:2F:F8:BC X509v3 Authority Key Identifier: keyid:D8:D6:06:41:86:49:0D:8C:EA:23:47:FF:7A:3A:82:49:2D:1F:79:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2NYGQYZJDYzqI0f_ejqCSS0feXc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:23:ac:22:28:b2:a5:79:24:9e:bc:3b:0f:77:0a:92:43:c4: 42:a9:b1:6a:19:d3:75:f5:90:c8:f5:dc:b1:b3:a6:2d:f5:87: 41:0b:00:59:b9:81:c1:19:fa:93:77:fa:67:db:5f:8c:ef:2f: 3c:eb:01:22:f2:ec:b6:32:ca:c4:89:4c:bf:62:78:e9:0b:11: ab:3e:64:ce:ba:74:99:d8:04:93:b4:a4:92:de:b4:5f:41:cd: 76:b8:1f:76:cb:18:cd:63:73:a2:b4:97:18:a4:17:84:a7:fb: 82:c3:ea:ab:bd:7f:88:e5:49:b0:65:2d:8a:68:5a:d0:c7:47: 60:ab:55:78:5f:47:a1:46:2c:84:69:d5:c9:ed:06:ac:09:a4: b1:de:96:f4:90:e0:34:46:7a:6c:c3:49:8c:3e:07:aa:d7:26: 76:73:9f:f3:0e:e1:94:4b:77:70:b0:8d:bc:d5:e2:9c:98:49: 10:86:88:1d:d9:86:94:f4:b8:f8:ec:c9:46:ac:73:a8:45:d1: c2:04:95:54:b5:ca:54:21:17:8d:78:13:f2:43:10:20:9e:7a: 98:cd:ae:67:03:92:db:86:ae:6a:97:a4:5c:b8:89:a0:25:5d: 80:db:c0:fe:14:2c:16:b3:d5:4a:cd:74:5b:2b:b8:aa:1c:9b: 68:d0:99:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0n6kiXjRxcxo1lYW4jG2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4ZDYwNjQxODY0OTBkOGNlYTIzNDdmZjdhM2E4MjQ5MmQx Zjc5NzcwHhcNMjUxMjA2MDQwMTM1WhcNMjUxMjA3MDQwMTM1WjAzMTEwLwYDVQQD Eyg5ZWUxNDQwZmUxODRhZDU0OWE1NjY2NzU2OTA1YTEwOTA3MmZmOGJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6n+XcfsojF9zNsLFajS1COlAKtge 4F5AfxO3OyDvtWKJdS5J2Z6F6IUKSoElDi8Okvqu6xlXT1j5K1Mxjfiv2eCOkDAp EoRuu0fowRYYn8JrMu9+gx95IgZoRJg87LxzfZns2RDgnGyFchR3Gfi9/doYFJbU pzFedgsMmfv/phvztOXrw/cDRccfGx7AWYZQWu6K768KU/Nt3DQv39iGlkb9R5iO hCzrXk84/x5hRLr+IuiChcXczYoknGe972FTsQj5Ur183rs+cM/dRe7arwn4ccpO iiqNauHL/3R3IMPvRsp27kS4k7i6PDDzRH/s4Kjgp/asaf5a33x3tcLQSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ7hRA/hhK1UmlZmdWkFoQkHL/i8MB8GA1UdIwQY MBaAFNjWBkGGSQ2M6iNH/3o6gkktH3l3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMk5ZR1FZWkpEWXpxSTBmX2VqcUNTUzBmZVhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC83YWJkZWYtOTFhYi00NmZiLTgyZTIt NTYwODVjOWU1MjJlLzEvMk5ZR1FZWkpEWXpxSTBmX2VqcUNTUzBmZVhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC83YWJkZWYtOTFhYi00NmZiLTgyZTItNTYwODVjOWU1MjJl LzEvMk5ZR1FZWkpEWXpxSTBmX2VqcUNTUzBmZVhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbiOsIiiy pXkknrw7D3cKkkPEQqmxahnTdfWQyPXcsbOmLfWHQQsAWbmBwRn6k3f6Z9tfjO8v POsBIvLstjLKxIlMv2J46QsRqz5kzrp0mdgEk7Skkt60X0HNdrgfdssYzWNzorSX GKQXhKf7gsPqq71/iOVJsGUtimha0MdHYKtVeF9HoUYshGnVye0GrAmksd6W9JDg NEZ6bMNJjD4HqtcmdnOf8w7hlEt3cLCNvNXinJhJEIaIHdmGlPS4+OzJRqxzqEXR wgSVVLXKVCEXjXgT8kMQIJ56mM2uZwOS24auapekXLiJoCVdgNvA/hQsFrPVSs10 Wyu4qhybaNCZFA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:59:18 2025 by rpki-client