This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft File: 2pxnKeHomJmE3YAtGpDonOL-Nzw.mft (raw, json) Hash identifier: yHuupcSi+T7+7gYnsNYADQmbhVxFl1Iv7RCENv0+NlU= Subject key identifier: 5A:E3:D9:BA:98:30:4A:29:0C:D6:58:1A:5E:66:69:44:38:29:D8:E4 Authority key identifier: DA:9C:67:29:E1:E8:98:99:84:DD:80:2D:1A:90:E8:9C:E2:FE:37:3C Certificate issuer: /CN=da9c6729e1e8989984dd802d1a90e89ce2fe373c Certificate serial: 019AF051AE3A0B2EA7ACC6D9440E6E9F3030 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pxnKeHomJmE3YAtGpDonOL-Nzw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft Manifest number: 1760 Signing time: Fri 05 Dec 2025 21:01:16 +0000 Manifest this update: Fri 05 Dec 2025 21:01:16 +0000 Manifest next update: Sat 06 Dec 2025 21:01:16 +0000 Files and hashes: 1: 24_mmtOlkG05yQ7mb26MLLzNTPk.roa (hash: NN9FJFjMrEoXgY4DCGNqxgbjsbFf0mQojMZSGAkFQFg=) 2: 2pxnKeHomJmE3YAtGpDonOL-Nzw.crl (hash: PNFFErEsQQkGS3wQ++di9Ih5ctbfuaHs+nWIHh7zIjg=) 3: bhkCmw6Utz1WDIi1a3ZQnDXW25w.roa (hash: vuvSrc/xAi8bu4mOjDMbPo9yb6kp8ev2fK1dkeS76Yo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.crl rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft rsync://rpki.ripe.net/repository/DEFAULT/2pxnKeHomJmE3YAtGpDonOL-Nzw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:51:ae:3a:0b:2e:a7:ac:c6:d9:44:0e:6e:9f:30:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da9c6729e1e8989984dd802d1a90e89ce2fe373c Validity Not Before: Dec 5 21:01:16 2025 GMT Not After : Dec 6 21:01:16 2025 GMT Subject: CN=5ae3d9ba98304a290cd6581a5e6669443829d8e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8a:a6:15:70:6e:3a:0c:cf:cc:09:07:33:48: 3a:a8:0e:db:80:22:9f:99:c6:04:46:f1:7a:cd:89: fa:91:19:c9:27:fd:e9:0d:a7:1a:42:0d:f2:a2:88: ec:28:85:47:c4:52:cc:a2:ca:56:e6:71:8d:a1:2f: f2:40:56:1e:b0:87:7f:a3:b6:39:49:c5:41:47:1f: e8:c7:d2:3d:29:c2:f5:98:b5:6f:9c:6d:bd:b0:f0: 34:ba:b6:50:32:63:0c:be:d8:32:7c:be:e8:e3:da: 23:de:67:04:bb:41:b7:02:e5:0a:de:5c:43:68:be: 74:d7:2b:8f:ed:1c:47:3e:a0:e8:4d:6d:ee:07:72: c2:80:6f:aa:c4:d6:87:f8:a4:af:b7:84:7b:8c:2a: 54:ba:59:53:ba:fe:6a:64:56:ba:a1:4c:e7:37:2a: 30:69:c6:4c:c9:c9:13:8a:63:7d:56:21:e0:1d:e0: 4e:21:a9:4d:ca:4d:79:6a:8c:69:12:c6:73:80:0d: 9a:91:28:b1:9e:b2:ae:b9:88:79:01:2c:d9:0a:80: dd:6d:1b:12:aa:a0:33:2e:4d:ae:79:cf:3c:6a:bd: 97:9e:83:98:2c:f3:03:6c:14:30:4e:f4:3d:20:b1: 13:7f:11:f2:b4:cc:f8:ba:a3:58:f2:fd:fe:e5:7f: 3d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:E3:D9:BA:98:30:4A:29:0C:D6:58:1A:5E:66:69:44:38:29:D8:E4 X509v3 Authority Key Identifier: keyid:DA:9C:67:29:E1:E8:98:99:84:DD:80:2D:1A:90:E8:9C:E2:FE:37:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pxnKeHomJmE3YAtGpDonOL-Nzw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:4b:d3:bb:ad:0d:46:cf:ce:1d:91:93:67:e8:97:e8:cf:f6: cc:0e:c1:35:53:8f:d1:d8:22:a8:eb:61:1c:c4:cb:c8:87:22: c9:f4:a1:2b:01:46:fc:a5:06:e9:5b:22:04:06:38:be:d7:e9: 28:b8:e0:db:20:3e:3b:73:31:7a:c9:cb:ab:70:30:0c:45:cc: 63:9b:32:66:5d:6b:e6:27:96:fa:74:83:55:c6:8e:ce:dc:7b: aa:31:8a:bf:1a:12:73:79:de:f4:a9:b9:43:07:86:cb:a7:6e: 42:80:fc:30:ab:d8:28:95:ed:16:c9:a1:4e:9d:98:f5:8e:6a: ea:87:85:e7:3e:92:45:fc:30:cf:82:bb:81:ff:03:23:e0:cb: 53:f6:33:3a:76:e3:67:d3:75:9a:bb:50:a6:39:19:de:c3:b4: 7a:d0:20:7c:7d:bf:87:76:a2:25:4c:df:81:f3:c1:12:af:66: b5:92:4e:77:86:a1:56:6f:38:72:11:0c:dc:23:64:89:37:97: 19:91:d6:04:2f:8e:d2:aa:39:8e:d9:a1:3b:cc:b8:94:d2:2a: 68:7f:df:25:b0:b6:c4:1f:00:3e:12:db:4a:ed:34:4e:3a:61: 17:17:4c:d3:0a:40:28:1f:94:99:3d:60:df:52:db:08:59:af: 95:8c:77:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwUa46Cy6nrMbZRA5unzAwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhOWM2NzI5ZTFlODk4OTk4NGRkODAyZDFhOTBlODljZTJm ZTM3M2MwHhcNMjUxMjA1MjEwMTE2WhcNMjUxMjA2MjEwMTE2WjAzMTEwLwYDVQQD Eyg1YWUzZDliYTk4MzA0YTI5MGNkNjU4MWE1ZTY2Njk0NDM4MjlkOGU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1IqmFXBuOgzPzAkHM0g6qA7bgCKf mcYERvF6zYn6kRnJJ/3pDacaQg3yoojsKIVHxFLMospW5nGNoS/yQFYesId/o7Y5 ScVBRx/ox9I9KcL1mLVvnG29sPA0urZQMmMMvtgyfL7o49oj3mcEu0G3AuUK3lxD aL501yuP7RxHPqDoTW3uB3LCgG+qxNaH+KSvt4R7jCpUullTuv5qZFa6oUznNyow acZMyckTimN9ViHgHeBOIalNyk15aoxpEsZzgA2akSixnrKuuYh5ASzZCoDdbRsS qqAzLk2uec88ar2XnoOYLPMDbBQwTvQ9ILETfxHytMz4uqNY8v3+5X89nwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFrj2bqYMEopDNZYGl5maUQ4KdjkMB8GA1UdIwQY MBaAFNqcZynh6JiZhN2ALRqQ6Jzi/jc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnB4bktlSG9tSm1FM1lBdEdwRG9uT0wtTnp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC83NTVjNTUtYzRmNS00Y2I3LTg3MWQt NjljNjhlMmVmMjdkLzEvMnB4bktlSG9tSm1FM1lBdEdwRG9uT0wtTnp3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC83NTVjNTUtYzRmNS00Y2I3LTg3MWQtNjljNjhlMmVmMjdk LzEvMnB4bktlSG9tSm1FM1lBdEdwRG9uT0wtTnp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUkvTu60N Rs/OHZGTZ+iX6M/2zA7BNVOP0dgiqOthHMTLyIciyfShKwFG/KUG6VsiBAY4vtfp KLjg2yA+O3MxesnLq3AwDEXMY5syZl1r5ieW+nSDVcaOztx7qjGKvxoSc3ne9Km5 QweGy6duQoD8MKvYKJXtFsmhTp2Y9Y5q6oeF5z6SRfwwz4K7gf8DI+DLU/YzOnbj Z9N1mrtQpjkZ3sO0etAgfH2/h3aiJUzfgfPBEq9mtZJOd4ahVm84chEM3CNkiTeX GZHWBC+O0qo5jtmhO8y4lNIqaH/fJbC2xB8APhLbSu00TjphFxdM0wpAKB+UmT1g 31LbCFmvlYx3qQ== -----END CERTIFICATE-----Generated at Sat Dec 6 05:57:19 2025 by rpki-client