This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/aabb5f-72f2-4928-92a9-2ff9d42ee213/1/d2Pkf8hQrMj_2gbj2iOkpETC1vw.mft File: d2Pkf8hQrMj_2gbj2iOkpETC1vw.mft (raw, json) Hash identifier: Gfad5oEjPZ/rJxG8mpCdWL3N9A0E+GqOlITFYLUJMSM= Subject key identifier: 95:1F:D8:0A:49:30:87:C1:45:AF:3F:DA:3A:D7:BF:27:5F:5B:2E:16 Authority key identifier: 77:63:E4:7F:C8:50:AC:C8:FF:DA:06:E3:DA:23:A4:A4:44:C2:D6:FC Certificate issuer: /CN=7763e47fc850acc8ffda06e3da23a4a444c2d6fc Certificate serial: 019AF31D536520DE53040DA831A24984D80B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d2Pkf8hQrMj_2gbj2iOkpETC1vw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/aabb5f-72f2-4928-92a9-2ff9d42ee213/1/d2Pkf8hQrMj_2gbj2iOkpETC1vw.mft Manifest number: 098B Signing time: Sat 06 Dec 2025 10:02:56 +0000 Manifest this update: Sat 06 Dec 2025 10:02:56 +0000 Manifest next update: Sun 07 Dec 2025 10:02:56 +0000 Files and hashes: 1: d2Pkf8hQrMj_2gbj2iOkpETC1vw.crl (hash: e80qui1dDlaVfTpshpt0LKrMlotRPW8uVjBqmlLnEhk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/aabb5f-72f2-4928-92a9-2ff9d42ee213/1/d2Pkf8hQrMj_2gbj2iOkpETC1vw.crl rsync://rpki.ripe.net/repository/DEFAULT/30/aabb5f-72f2-4928-92a9-2ff9d42ee213/1/d2Pkf8hQrMj_2gbj2iOkpETC1vw.mft rsync://rpki.ripe.net/repository/DEFAULT/d2Pkf8hQrMj_2gbj2iOkpETC1vw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1d:53:65:20:de:53:04:0d:a8:31:a2:49:84:d8:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7763e47fc850acc8ffda06e3da23a4a444c2d6fc Validity Not Before: Dec 6 10:02:56 2025 GMT Not After : Dec 7 10:02:56 2025 GMT Subject: CN=951fd80a493087c145af3fda3ad7bf275f5b2e16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:b1:2f:ea:ba:9b:66:7c:39:94:bd:77:62:c9: 7f:47:3c:6c:84:62:b9:01:f8:40:94:5a:ce:08:95: 75:3d:f8:8e:6b:5a:b5:ff:ca:0d:56:e0:7e:e4:3f: 99:3a:49:db:50:f1:e5:01:a5:a9:e4:46:10:87:44: 6f:47:c7:9f:55:fe:23:ab:3b:fa:5f:a0:b8:01:63: 90:e2:82:7b:84:64:9c:a6:e1:96:ca:27:43:20:1e: 29:dc:99:b7:a3:f2:71:f8:86:7d:6b:44:50:36:76: fd:e8:45:8d:79:0e:d5:29:de:99:fd:1f:72:87:3e: 8a:71:8d:9e:2b:31:ec:d7:48:05:08:5f:29:13:d8: e7:45:5b:be:4d:d7:c7:89:21:ed:75:2d:e0:55:67: 4f:87:d9:b4:e9:c1:a3:af:89:cf:9b:f8:13:98:82: 6d:5d:a5:e6:5f:c2:18:3b:80:f3:8c:88:29:4b:9f: 98:e9:11:85:a8:fa:2f:1e:f4:01:c7:2c:a4:25:bc: 8a:d2:6a:d5:85:6e:1c:79:91:97:cb:ec:ed:92:fa: dc:8f:7b:30:56:64:a4:b0:13:74:43:16:31:6a:ab: 38:ad:65:7d:6a:3c:e8:b8:fa:43:1d:a8:59:36:0e: 3c:ee:9c:d8:4e:1a:8d:ea:a3:1f:df:cb:75:d8:6c: 0b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:1F:D8:0A:49:30:87:C1:45:AF:3F:DA:3A:D7:BF:27:5F:5B:2E:16 X509v3 Authority Key Identifier: keyid:77:63:E4:7F:C8:50:AC:C8:FF:DA:06:E3:DA:23:A4:A4:44:C2:D6:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2Pkf8hQrMj_2gbj2iOkpETC1vw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/aabb5f-72f2-4928-92a9-2ff9d42ee213/1/d2Pkf8hQrMj_2gbj2iOkpETC1vw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/aabb5f-72f2-4928-92a9-2ff9d42ee213/1/d2Pkf8hQrMj_2gbj2iOkpETC1vw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:6c:95:44:00:10:dc:13:75:e2:6a:f3:79:2f:e9:d7:7a:c6: 72:19:5a:dc:42:12:6e:6c:ab:a9:38:c6:83:57:bc:ab:81:f7: 44:36:3a:08:18:fa:c5:6d:4e:4e:5c:50:0a:15:cb:82:42:d8: bd:97:d5:d5:20:b4:d0:7b:9c:96:6c:9f:a8:9b:d2:1f:db:7a: 5d:94:3d:9c:cd:b7:86:b6:e0:2b:94:da:2d:e4:9e:17:13:3d: 9d:7d:d3:e2:c1:32:64:f6:68:ed:de:14:fd:61:2b:d9:bf:45: 8c:da:2e:06:e3:44:cb:e2:f9:ca:d2:98:8c:92:e9:a8:2c:e5: 15:f8:e7:06:a3:4e:ea:39:15:9a:8b:93:40:3c:3a:bc:12:38: 5e:51:f8:23:57:a1:a8:cb:d5:8d:f6:64:f1:16:e5:94:ec:08: 2e:6e:b3:ef:ca:86:c1:46:cb:a3:67:42:0f:e4:a7:17:45:82: 8d:35:32:c8:43:45:2f:7b:68:ef:6d:b0:9a:31:3b:50:7a:83: 90:03:db:ee:ba:42:03:6c:1a:6e:d5:b5:06:d2:58:d8:93:6f: 3c:57:71:6c:8e:65:18:1c:1f:52:49:c5:1d:12:46:58:19:6a: 83:e1:f1:fd:3a:6d:d7:3a:02:77:c3:9f:e6:26:75:c7:a4:d7: 82:3c:66:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHVNlIN5TBA2oMaJJhNgLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3NjNlNDdmYzg1MGFjYzhmZmRhMDZlM2RhMjNhNGE0NDRj MmQ2ZmMwHhcNMjUxMjA2MTAwMjU2WhcNMjUxMjA3MTAwMjU2WjAzMTEwLwYDVQQD Eyg5NTFmZDgwYTQ5MzA4N2MxNDVhZjNmZGEzYWQ3YmYyNzVmNWIyZTE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3bEv6rqbZnw5lL13Ysl/RzxshGK5 AfhAlFrOCJV1PfiOa1q1/8oNVuB+5D+ZOknbUPHlAaWp5EYQh0RvR8efVf4jqzv6 X6C4AWOQ4oJ7hGScpuGWyidDIB4p3Jm3o/Jx+IZ9a0RQNnb96EWNeQ7VKd6Z/R9y hz6KcY2eKzHs10gFCF8pE9jnRVu+TdfHiSHtdS3gVWdPh9m06cGjr4nPm/gTmIJt XaXmX8IYO4DzjIgpS5+Y6RGFqPovHvQBxyykJbyK0mrVhW4ceZGXy+ztkvrcj3sw VmSksBN0QxYxaqs4rWV9ajzouPpDHahZNg487pzYThqN6qMf38t12GwLhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJUf2ApJMIfBRa8/2jrXvydfWy4WMB8GA1UdIwQY MBaAFHdj5H/IUKzI/9oG49ojpKREwtb8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZDJQa2Y4aFFyTWpfMmdiajJpT2twRVRDMXZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9hYWJiNWYtNzJmMi00OTI4LTkyYTkt MmZmOWQ0MmVlMjEzLzEvZDJQa2Y4aFFyTWpfMmdiajJpT2twRVRDMXZ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC9hYWJiNWYtNzJmMi00OTI4LTkyYTktMmZmOWQ0MmVlMjEz LzEvZDJQa2Y4aFFyTWpfMmdiajJpT2twRVRDMXZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHWyVRAAQ 3BN14mrzeS/p13rGchla3EISbmyrqTjGg1e8q4H3RDY6CBj6xW1OTlxQChXLgkLY vZfV1SC00HuclmyfqJvSH9t6XZQ9nM23hrbgK5TaLeSeFxM9nX3T4sEyZPZo7d4U /WEr2b9FjNouBuNEy+L5ytKYjJLpqCzlFfjnBqNO6jkVmouTQDw6vBI4XlH4I1eh qMvVjfZk8RbllOwILm6z78qGwUbLo2dCD+SnF0WCjTUyyENFL3to722wmjE7UHqD kAPb7rpCA2wabtW1BtJY2JNvPFdxbI5lGBwfUknFHRJGWBlqg+Hx/Tpt1zoCd8Of 5iZ1x6TXgjxm9w== -----END CERTIFICATE-----Generated at Sat Dec 6 12:09:48 2025 by rpki-client