This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft File: 2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft (raw, json) Hash identifier: cXkPOjT+TIRG79atc9Xk/bPopBdWCZCYsOi0vF5n794= Subject key identifier: 26:68:86:1F:26:7E:6C:FF:F9:97:65:71:96:97:92:D7:7C:B3:68:21 Authority key identifier: D8:82:A1:97:34:0D:35:84:E6:AC:17:C1:FB:2A:99:00:AE:4F:60:3C Certificate issuer: /CN=d882a197340d3584e6ac17c1fb2a9900ae4f603c Certificate serial: 019AF5410C4B3DC5CAD12C7CD684014DD958 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2IKhlzQNNYTmrBfB-yqZAK5PYDw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft Manifest number: 04B4 Signing time: Sat 06 Dec 2025 20:01:12 +0000 Manifest this update: Sat 06 Dec 2025 20:01:12 +0000 Manifest next update: Sun 07 Dec 2025 20:01:12 +0000 Files and hashes: 1: 2IKhlzQNNYTmrBfB-yqZAK5PYDw.crl (hash: 397n+K1xUjM5PpoRYScP27e1C/6UXjRxQ2u4cxQTFAY=) 2: RFpSEEfmfhQM7TNBHUvPYNYCE48.roa (hash: iHrN3ygMDkDOsg7Lw4ctlZrjgMs+0h97Al7X6knMEEI=) 3: UkLoRo0mP_K3Dh8gkYYP1OxkE_I.roa (hash: Q3D4Rh06gP+xE8oXAtIwLH3P2XhdWnZQyb1Lpy85O7s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.crl rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft rsync://rpki.ripe.net/repository/DEFAULT/2IKhlzQNNYTmrBfB-yqZAK5PYDw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 20:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:41:0c:4b:3d:c5:ca:d1:2c:7c:d6:84:01:4d:d9:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d882a197340d3584e6ac17c1fb2a9900ae4f603c Validity Not Before: Dec 6 20:01:12 2025 GMT Not After : Dec 7 20:01:12 2025 GMT Subject: CN=2668861f267e6cfff9976571969792d77cb36821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:83:40:71:65:78:9d:88:00:8b:ba:cb:9c:45: 6c:d0:4c:89:b3:1d:37:95:07:26:22:b9:db:a1:3c: 1a:9e:ec:3b:43:00:8e:8b:94:48:b5:55:40:7f:7a: cc:2f:ee:68:22:b9:88:5b:94:01:9a:d7:c4:c7:ae: d9:9c:fc:3f:71:85:33:c8:ce:12:65:28:b1:de:a4: 35:23:b2:2a:15:12:a6:f1:9b:42:0b:62:82:cb:77: be:b0:f9:2d:7d:92:ae:31:03:d3:f8:0a:b9:64:00: 95:47:ae:42:b0:fd:3d:0a:c6:14:61:a3:57:14:50: 4c:5c:9e:15:8f:02:ef:5c:0d:6a:16:da:09:f2:01: 4d:88:66:ea:b3:a4:d5:68:44:2d:ab:02:67:40:34: c3:5a:b8:9b:1b:30:00:01:37:b3:2d:52:12:69:b3: 6c:4a:32:d5:2e:6b:b3:97:da:a7:72:70:ff:b9:31: 8f:9e:d2:60:0c:d4:82:32:90:0c:88:54:5f:cf:a8: ed:96:6b:e3:03:9f:4a:fa:2c:82:72:c0:82:19:35: 82:8d:8e:1b:d2:b1:c0:64:a4:4c:a8:0b:31:5e:12: 72:cc:b8:7b:a6:a7:4c:03:e5:2c:50:ab:71:8d:c1: e4:cc:54:84:57:8e:95:b7:a9:a6:f0:10:e5:89:7e: 7c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:68:86:1F:26:7E:6C:FF:F9:97:65:71:96:97:92:D7:7C:B3:68:21 X509v3 Authority Key Identifier: keyid:D8:82:A1:97:34:0D:35:84:E6:AC:17:C1:FB:2A:99:00:AE:4F:60:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2IKhlzQNNYTmrBfB-yqZAK5PYDw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:7e:a8:70:b2:e2:c2:0a:bc:89:bf:cb:6b:3d:a3:05:d0:ea: aa:73:90:fe:83:8e:67:04:90:06:19:b2:53:93:6a:7c:8f:85: 66:f8:9c:b0:c4:d2:85:12:ae:07:30:6d:0f:35:36:d5:86:6e: 20:89:ba:9b:c5:6e:49:38:86:05:f6:66:68:26:b4:d5:7e:4d: ae:11:f0:33:bb:f3:47:7e:df:95:d7:39:86:5d:83:64:9c:55: 6a:ac:e1:ff:d4:d3:f4:de:1a:83:c1:81:79:0b:ae:13:d5:d9: d7:ea:f0:12:1a:39:b2:97:5a:65:04:89:7f:91:57:05:f1:b9: a3:c1:28:a9:c7:17:ba:e4:b8:fc:c7:dc:f9:39:d9:e6:19:23: 89:07:4d:33:41:cc:0b:2d:c4:ae:e2:c1:29:f0:3b:c6:b7:ef: b1:7d:93:66:50:1a:b3:0c:87:21:11:ec:a1:4b:81:9c:07:f6: 11:30:58:e3:45:27:c8:c8:53:75:de:89:7f:5f:1c:63:6c:cb: 9a:eb:af:a2:4b:03:81:29:1b:b0:37:d2:7f:fd:df:72:23:a6: 10:05:65:4e:e9:00:63:09:63:ff:98:f2:a3:34:48:d6:16:e6: fc:07:2a:3e:2c:da:1b:63:73:1f:45:2b:78:4d:f1:0d:ce:1d: ab:7c:84:b0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1QQxLPcXK0Sx81oQBTdlYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4ODJhMTk3MzQwZDM1ODRlNmFjMTdjMWZiMmE5OTAwYWU0 ZjYwM2MwHhcNMjUxMjA2MjAwMTEyWhcNMjUxMjA3MjAwMTEyWjAzMTEwLwYDVQQD EygyNjY4ODYxZjI2N2U2Y2ZmZjk5NzY1NzE5Njk3OTJkNzdjYjM2ODIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArYNAcWV4nYgAi7rLnEVs0EyJsx03 lQcmIrnboTwanuw7QwCOi5RItVVAf3rML+5oIrmIW5QBmtfEx67ZnPw/cYUzyM4S ZSix3qQ1I7IqFRKm8ZtCC2KCy3e+sPktfZKuMQPT+Aq5ZACVR65CsP09CsYUYaNX FFBMXJ4VjwLvXA1qFtoJ8gFNiGbqs6TVaEQtqwJnQDTDWribGzAAATezLVISabNs SjLVLmuzl9qncnD/uTGPntJgDNSCMpAMiFRfz6jtlmvjA59K+iyCcsCCGTWCjY4b 0rHAZKRMqAsxXhJyzLh7pqdMA+UsUKtxjcHkzFSEV46Vt6mm8BDliX585QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCZohh8mfmz/+ZdlcZaXktd8s2ghMB8GA1UdIwQY MBaAFNiCoZc0DTWE5qwXwfsqmQCuT2A8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMklLaGx6UU5OWVRtckJmQi15cVpBSzVQWUR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS84NDFjNDMtMDI2OS00Mjg5LThmYTUt YjA1YWU1Y2EyZDVlLzEvMklLaGx6UU5OWVRtckJmQi15cVpBSzVQWUR3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS84NDFjNDMtMDI2OS00Mjg5LThmYTUtYjA1YWU1Y2EyZDVl LzEvMklLaGx6UU5OWVRtckJmQi15cVpBSzVQWUR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZn6ocLLi wgq8ib/Laz2jBdDqqnOQ/oOOZwSQBhmyU5NqfI+FZvicsMTShRKuBzBtDzU21YZu IIm6m8VuSTiGBfZmaCa01X5NrhHwM7vzR37fldc5hl2DZJxVaqzh/9TT9N4ag8GB eQuuE9XZ1+rwEho5spdaZQSJf5FXBfG5o8EoqccXuuS4/Mfc+TnZ5hkjiQdNM0HM Cy3EruLBKfA7xrfvsX2TZlAaswyHIRHsoUuBnAf2ETBY40UnyMhTdd6Jf18cY2zL muuvoksDgSkbsDfSf/3fciOmEAVlTukAYwlj/5jyozRI1hbm/AcqPizaG2NzH0Ur eE3xDc4dq3yEsA== -----END CERTIFICATE-----Generated at Sun Dec 7 03:07:20 2025 by rpki-client