This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft File: rKbwaDzHS63SOoFAw4XxyBziTfc.mft (raw, json) Hash identifier: m2S8wuwYPVn/yBV+3m7L5ixU3edggqLoQnHjcCZKMKk= Subject key identifier: 80:2F:E6:9E:88:1C:BC:35:75:31:F2:44:15:76:67:C8:0B:7E:97:58 Authority key identifier: AC:A6:F0:68:3C:C7:4B:AD:D2:3A:81:40:C3:85:F1:C8:1C:E2:4D:F7 Certificate issuer: /CN=aca6f0683cc74badd23a8140c385f1c81ce24df7 Certificate serial: 019AF3892AB6DC7DB2846FB2CEE946DAB326 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft Manifest number: 0E0B Signing time: Sat 06 Dec 2025 12:00:44 +0000 Manifest this update: Sat 06 Dec 2025 12:00:44 +0000 Manifest next update: Sun 07 Dec 2025 12:00:44 +0000 Files and hashes: 1: 0vFnPnyD0rk0NBq-vHcuUjmsih4.roa (hash: 8C+9WOepMdgxD+Xcj7Wjy9LCISmYrp2hucRDb6Vj6WM=) 2: rKbwaDzHS63SOoFAw4XxyBziTfc.crl (hash: cjEytr0uR6sAp+wqmzKBLo7EEFsSGHSQuo1Ergx1ZrY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.crl rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:2a:b6:dc:7d:b2:84:6f:b2:ce:e9:46:da:b3:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aca6f0683cc74badd23a8140c385f1c81ce24df7 Validity Not Before: Dec 6 12:00:44 2025 GMT Not After : Dec 7 12:00:44 2025 GMT Subject: CN=802fe69e881cbc357531f244157667c80b7e9758 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:96:89:80:75:ea:ef:12:83:20:4a:74:0c:b5: 9a:92:e6:01:b4:4b:61:d3:a8:af:4c:08:05:ca:48: a1:9e:de:1e:42:64:91:81:d1:67:67:ae:f8:33:4a: e1:58:13:3b:35:9b:2a:34:71:fa:08:c4:6f:73:ed: 71:7d:5d:a0:a6:3e:a3:43:a3:51:7f:6a:8a:08:48: 25:2c:e0:cc:15:86:31:04:94:3f:7f:32:11:5c:fe: 51:1b:f9:80:79:52:e2:7b:ec:7e:5b:a4:eb:b9:8c: 1e:fd:28:3b:aa:3a:c8:be:9b:b6:e3:8b:43:cf:e6: f0:23:6a:8a:64:78:28:9e:0d:9c:a0:a0:bd:82:12: a8:b7:5a:3e:94:ad:6e:70:4c:7b:75:59:99:33:9d: 37:7e:cb:16:4c:ea:c7:db:d4:af:0d:50:cb:58:f8: a5:b2:a3:7d:bf:64:88:22:03:f9:96:d3:a1:e0:1c: a9:0d:be:da:46:95:2c:ab:86:23:3d:ed:73:65:6a: 14:42:c4:bc:9e:4b:6a:cb:7e:1d:df:68:d3:3c:ad: 7e:5c:52:ed:d4:27:de:1e:d5:aa:b8:ad:c9:ea:b1: 82:d3:4b:40:dd:ba:c2:0e:db:6f:41:63:fb:c3:31: d8:71:1b:7f:6f:01:65:90:1a:26:bb:5b:6b:1d:3f: 19:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:2F:E6:9E:88:1C:BC:35:75:31:F2:44:15:76:67:C8:0B:7E:97:58 X509v3 Authority Key Identifier: keyid:AC:A6:F0:68:3C:C7:4B:AD:D2:3A:81:40:C3:85:F1:C8:1C:E2:4D:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:cd:59:c6:3f:54:4c:cd:e4:48:96:c1:f4:6d:a6:dc:47:4f: da:4c:7b:a0:9c:11:63:ef:eb:3f:74:ea:4c:b3:ab:51:05:ff: fd:04:2f:8e:7b:4a:23:5d:0e:85:e4:bf:fc:b1:b0:3a:f7:91: bf:e2:cd:a4:58:ea:ae:b5:ce:54:24:63:aa:3f:41:26:7f:1f: f7:2e:c3:9a:30:fb:42:1c:e6:0a:51:09:e9:62:29:31:55:f6: 05:ea:6b:85:a5:23:06:ea:f9:d7:37:c3:32:14:de:c1:21:b8: a0:45:7e:34:ac:83:26:f1:a7:ae:ac:2f:5a:77:50:74:65:d4: cc:3f:2d:3e:50:99:ae:6a:a7:17:28:f8:82:82:f8:0a:bc:29: ca:7a:b4:d9:95:8e:2e:87:d4:a0:1b:4c:c9:18:12:b4:8f:1c: a6:49:7e:09:12:b6:45:7e:2f:48:2a:3d:ba:bb:c7:c8:58:01: cc:e4:f2:7a:63:7e:38:a3:1e:23:3d:0e:cf:ed:34:9a:3d:3a: cd:be:c7:fd:09:68:88:75:bc:a7:c3:bd:c3:df:9a:c2:51:7f: 97:ac:59:f9:37:8a:bc:d7:02:c8:bb:be:40:cd:63:86:f6:0d: ec:81:f7:2d:10:50:3e:1a:b8:9b:4c:84:d7:60:34:24:a6:04: bf:d6:fe:88 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziSq23H2yhG+yzulG2rMmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjYTZmMDY4M2NjNzRiYWRkMjNhODE0MGMzODVmMWM4MWNl MjRkZjcwHhcNMjUxMjA2MTIwMDQ0WhcNMjUxMjA3MTIwMDQ0WjAzMTEwLwYDVQQD Eyg4MDJmZTY5ZTg4MWNiYzM1NzUzMWYyNDQxNTc2NjdjODBiN2U5NzU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwJaJgHXq7xKDIEp0DLWakuYBtEth 06ivTAgFykihnt4eQmSRgdFnZ674M0rhWBM7NZsqNHH6CMRvc+1xfV2gpj6jQ6NR f2qKCEglLODMFYYxBJQ/fzIRXP5RG/mAeVLie+x+W6TruYwe/Sg7qjrIvpu244tD z+bwI2qKZHgong2coKC9ghKot1o+lK1ucEx7dVmZM503fssWTOrH29SvDVDLWPil sqN9v2SIIgP5ltOh4BypDb7aRpUsq4YjPe1zZWoUQsS8nktqy34d32jTPK1+XFLt 1CfeHtWquK3J6rGC00tA3brCDttvQWP7wzHYcRt/bwFlkBomu1trHT8ZDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIAv5p6IHLw1dTHyRBV2Z8gLfpdYMB8GA1UdIwQY MBaAFKym8Gg8x0ut0jqBQMOF8cgc4k33MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcktid2FEekhTNjNTT29GQXc0WHh5QnppVGZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8yZDQ4MTgtZjE4Mi00YjQ2LTllOGMt MDgyNzk2MWMwNWUwLzEvcktid2FEekhTNjNTT29GQXc0WHh5QnppVGZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS8yZDQ4MTgtZjE4Mi00YjQ2LTllOGMtMDgyNzk2MWMwNWUw LzEvcktid2FEekhTNjNTT29GQXc0WHh5QnppVGZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK81Zxj9U TM3kSJbB9G2m3EdP2kx7oJwRY+/rP3TqTLOrUQX//QQvjntKI10OheS//LGwOveR v+LNpFjqrrXOVCRjqj9BJn8f9y7DmjD7QhzmClEJ6WIpMVX2BeprhaUjBur51zfD MhTewSG4oEV+NKyDJvGnrqwvWndQdGXUzD8tPlCZrmqnFyj4goL4Crwpynq02ZWO LofUoBtMyRgStI8cpkl+CRK2RX4vSCo9urvHyFgBzOTyemN+OKMeIz0Oz+00mj06 zb7H/QloiHW8p8O9w9+awlF/l6xZ+TeKvNcCyLu+QM1jhvYN7IH3LRBQPhq4m0yE 12A0JKYEv9b+iA== -----END CERTIFICATE-----Generated at Sat Dec 6 20:18:20 2025 by rpki-client