This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft File: 2EPxqgSY2E95UyPB_2uuOvQCBtE.mft (raw, json) Hash identifier: +Wgj3GwsjMLnvmbbJ+wcJzZgxburXY/bJzvHTJFNJU8= Subject key identifier: 12:73:02:25:BE:0A:7C:D5:C8:39:2D:BF:1A:C7:E3:E2:D8:6B:CE:98 Authority key identifier: D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1 Certificate issuer: /CN=d843f1aa0498d84f795323c1ff6bae3af40206d1 Certificate serial: 019AF19B4173538C5F8EF6949FF3783E4EC6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 03:01:15 +0000 Manifest this update: Sat 06 Dec 2025 03:01:15 +0000 Manifest next update: Sun 07 Dec 2025 03:01:15 +0000 Files and hashes: 1: 2EPxqgSY2E95UyPB_2uuOvQCBtE.crl (hash: uQ6iP0/T9juJuTqpO6ZTsn+XXs7EnRiPMX76iQX2e20=) 2: Lr1Je63vs8PyvkKI1_N9un3D4qE.roa (hash: hbRmpQBdQ4b6GdZPWppZ6a4wJHdosMiH1PY+13rdPiE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:41:73:53:8c:5f:8e:f6:94:9f:f3:78:3e:4e:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d843f1aa0498d84f795323c1ff6bae3af40206d1 Validity Not Before: Dec 6 03:01:15 2025 GMT Not After : Dec 7 03:01:15 2025 GMT Subject: CN=12730225be0a7cd5c8392dbf1ac7e3e2d86bce98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:cf:47:96:f6:82:2e:87:9a:b6:2c:7e:97:09: cf:df:9e:2a:fa:97:ca:cc:42:89:00:f3:7c:ff:6b: 9e:dd:27:cc:71:e6:70:34:fe:94:45:ba:03:03:37: af:92:92:06:1b:0a:51:85:82:15:c7:81:c1:6c:4c: 68:5e:b1:20:23:11:6b:ae:0e:a7:3e:af:09:ba:a7: 39:8e:4d:7b:b0:79:df:6d:b1:0c:ff:52:74:69:f9: db:9d:d8:73:05:cb:24:bb:7b:6d:58:2d:5a:de:f4: 3d:7b:22:1a:b9:a1:af:07:07:f2:b2:a9:a2:b8:a7: 8b:02:13:28:ff:cf:54:92:c9:1f:bf:f1:0c:06:c3: f4:b1:55:6a:85:b6:81:ee:24:af:0e:71:81:a9:5d: 4a:bf:10:2e:ee:10:83:4a:9c:58:26:80:75:3f:b0: a0:df:8b:73:47:72:35:6b:00:db:3d:ef:5e:d6:d1: 98:ea:c0:09:f5:79:a4:5e:fc:e9:03:cf:a7:15:6d: 90:b9:66:26:c8:da:58:40:a3:77:25:81:13:0f:de: c9:5d:ba:fb:a3:42:13:eb:63:2d:d9:3f:7d:43:e3: 41:cc:8c:ba:fb:84:ca:fa:df:b5:f5:e1:5a:ef:fc: 62:76:72:92:1b:74:b3:df:34:32:ab:44:e5:c0:bc: c7:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:73:02:25:BE:0A:7C:D5:C8:39:2D:BF:1A:C7:E3:E2:D8:6B:CE:98 X509v3 Authority Key Identifier: keyid:D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:9e:d7:0a:cb:2a:d9:b8:38:66:51:f7:30:3c:a0:38:c2:19: 03:c0:8f:10:bf:d5:6e:08:9a:96:e5:23:cc:09:1c:94:a7:6d: 6f:f4:83:a7:d9:27:37:41:6c:70:c7:33:1e:06:25:9d:61:d1: aa:cd:76:49:03:97:39:66:9c:a4:3a:56:ea:a6:78:29:33:e1: 07:d1:cb:7f:02:e4:2a:67:4e:da:f1:f7:de:7a:9e:1b:81:c7: 32:5b:9c:50:f8:7f:0b:19:33:86:1e:7f:90:94:cf:55:7d:43: b3:6a:0c:83:eb:c0:57:2d:da:3e:32:ba:96:7d:a7:b9:5e:58: bd:99:4d:d7:23:6a:a4:b8:23:a0:ea:68:94:9e:fe:1f:de:b9: 35:9f:de:cc:15:2b:a0:8b:47:bc:04:27:a8:07:c9:72:12:95: e4:ac:a2:1c:67:3b:d8:9c:4a:66:37:f1:ea:69:da:f6:e5:2c: 10:00:44:75:92:03:69:15:b3:60:d0:2a:c4:08:f1:74:ba:3b: fb:28:3d:68:d1:ba:c0:10:d1:55:a8:5f:40:75:3f:e1:f4:39: 6c:47:01:46:97:b7:5d:e9:4d:38:8c:d8:28:9e:e3:e3:36:98: 80:2f:8e:ba:44:1c:f9:80:21:da:57:76:9c:05:a4:53:39:dc: cd:bd:91:2d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm0FzU4xfjvaUn/N4Pk7GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4NDNmMWFhMDQ5OGQ4NGY3OTUzMjNjMWZmNmJhZTNhZjQw MjA2ZDEwHhcNMjUxMjA2MDMwMTE1WhcNMjUxMjA3MDMwMTE1WjAzMTEwLwYDVQQD EygxMjczMDIyNWJlMGE3Y2Q1YzgzOTJkYmYxYWM3ZTNlMmQ4NmJjZTk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAps9HlvaCLoeatix+lwnP354q+pfK zEKJAPN8/2ue3SfMceZwNP6URboDAzevkpIGGwpRhYIVx4HBbExoXrEgIxFrrg6n Pq8Juqc5jk17sHnfbbEM/1J0afnbndhzBcsku3ttWC1a3vQ9eyIauaGvBwfysqmi uKeLAhMo/89Ukskfv/EMBsP0sVVqhbaB7iSvDnGBqV1KvxAu7hCDSpxYJoB1P7Cg 34tzR3I1awDbPe9e1tGY6sAJ9XmkXvzpA8+nFW2QuWYmyNpYQKN3JYETD97JXbr7 o0IT62Mt2T99Q+NBzIy6+4TK+t+19eFa7/xidnKSG3Sz3zQyq0TlwLzHEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBJzAiW+CnzVyDktvxrH4+LYa86YMB8GA1UdIwQY MBaAFNhD8aoEmNhPeVMjwf9rrjr0AgbRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkVQeHFnU1kyRTk1VXlQQl8ydXVPdlFDQnRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9kYTRkZDktNTk0ZC00NTZjLTlmNzEt NzZhMTk0NTU0YjA1LzEvMkVQeHFnU1kyRTk1VXlQQl8ydXVPdlFDQnRFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC9kYTRkZDktNTk0ZC00NTZjLTlmNzEtNzZhMTk0NTU0YjA1 LzEvMkVQeHFnU1kyRTk1VXlQQl8ydXVPdlFDQnRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkZ7XCssq 2bg4ZlH3MDygOMIZA8CPEL/VbgialuUjzAkclKdtb/SDp9knN0FscMczHgYlnWHR qs12SQOXOWacpDpW6qZ4KTPhB9HLfwLkKmdO2vH33nqeG4HHMlucUPh/Cxkzhh5/ kJTPVX1Ds2oMg+vAVy3aPjK6ln2nuV5YvZlN1yNqpLgjoOpolJ7+H965NZ/ezBUr oItHvAQnqAfJchKV5KyiHGc72JxKZjfx6mna9uUsEABEdZIDaRWzYNAqxAjxdLo7 +yg9aNG6wBDRVahfQHU/4fQ5bEcBRpe3XelNOIzYKJ7j4zaYgC+OukQc+YAh2ld2 nAWkUznczb2RLQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:14:03 2025 by rpki-client