This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft File: 9a2pAdQIv39blDWSHkgAqPgtvas.mft (raw, json) Hash identifier: AE4bclm56ooTTRQGPRsWZnj5hXbNG+T9Arbj5j07FBM= Subject key identifier: 56:22:2C:8D:39:D4:F0:07:7A:DE:3E:FA:7F:9D:47:18:35:E8:89:1D Authority key identifier: F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB Certificate issuer: /CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab Certificate serial: 019AF50BCA92CB216B797DBC5EAB4A5E0DE8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 19:03:01 +0000 Manifest this update: Sat 06 Dec 2025 19:03:01 +0000 Manifest next update: Sun 07 Dec 2025 19:03:01 +0000 Files and hashes: 1: 9a2pAdQIv39blDWSHkgAqPgtvas.crl (hash: Yx+ZKTqfRaG3NIshMcg7Bth6PRbYlup7EJCR07ULwaM=) 2: ExJyPjo5EWZQUpwxSS0T7A3Tclg.roa (hash: n7Rzh1zK0MckYzOS9a8lwv/AGXV+Jr0CvxhzGO4UHW8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0b:ca:92:cb:21:6b:79:7d:bc:5e:ab:4a:5e:0d:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab Validity Not Before: Dec 6 19:03:01 2025 GMT Not After : Dec 7 19:03:01 2025 GMT Subject: CN=56222c8d39d4f0077ade3efa7f9d471835e8891d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:eb:16:68:c1:dc:0e:56:9e:0c:27:67:19:82: e0:1b:02:13:bb:cc:c5:5a:44:02:a9:9d:e8:06:22: 7f:10:8f:32:74:de:a4:b9:a0:d2:37:da:b4:fa:4d: d0:2d:a9:20:ae:3e:2d:9a:e6:db:a6:06:a2:51:37: 65:a3:7f:74:a7:4a:e8:4f:c4:85:04:63:e2:1b:f4: ab:55:6f:4a:ec:42:86:37:d9:be:f3:61:84:4a:0b: e1:03:6d:98:50:6f:00:8b:5a:61:bc:61:e5:b9:6a: fa:9a:a8:90:05:c3:65:ce:e5:9c:e5:a3:ad:4f:c7: 3a:6b:d1:06:24:f2:62:df:44:b9:01:49:b7:1a:f1: 59:67:25:a7:07:d3:59:c6:e5:f3:f9:4e:8f:2e:ae: d1:54:ac:9c:32:f6:16:63:ba:71:55:b2:b4:a7:c1: 34:b1:40:aa:e2:ca:e9:9b:38:53:3d:10:83:8b:a1: 8c:91:bf:b2:90:c2:de:b3:23:e3:21:36:99:60:64: a0:da:7e:0e:5e:02:fc:af:19:b3:15:c9:a8:b4:a9: 83:aa:06:12:60:a6:33:eb:6f:0f:04:40:0c:16:26: 9d:dd:6c:5d:77:ce:2c:8f:00:32:c8:3f:9d:2d:f1: 7e:8a:18:bb:b1:78:3b:33:7c:d4:93:63:f6:32:8b: 0a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:22:2C:8D:39:D4:F0:07:7A:DE:3E:FA:7F:9D:47:18:35:E8:89:1D X509v3 Authority Key Identifier: keyid:F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:57:e2:ec:12:c4:08:c1:ce:09:16:28:ca:ba:a6:77:7f:e0: 3f:5a:c5:b1:16:04:9c:15:a2:50:5c:ac:ca:3a:28:26:59:c2: 2f:14:d4:e4:a3:59:9a:f6:45:4b:a3:90:fb:ef:d2:65:5a:ab: c1:61:7e:36:ae:db:b9:2d:22:86:62:8a:11:f0:d7:9b:c3:fb: 4b:f2:59:f8:7d:9b:1f:d5:32:41:00:d9:c1:28:4d:44:36:6d: f3:b6:6a:4c:01:7a:c3:4e:85:64:ab:e2:4d:e5:2d:fc:1d:c0: b7:97:74:ad:a6:da:e5:0c:62:62:d7:e4:12:06:ce:86:1a:4d: 70:e2:9c:28:97:15:5d:19:e7:0d:23:da:46:f1:a0:9d:56:df: b1:44:68:df:90:50:57:ca:d0:28:b0:e4:bd:8f:6d:01:47:36: f5:ea:af:73:f7:e8:5c:9f:21:5f:58:cc:d5:17:32:d0:11:90: b1:41:cb:a7:d3:f1:7f:19:22:ec:a1:ad:73:f1:c8:22:f6:df: a5:6e:be:6e:97:00:12:51:aa:a1:0b:59:c4:a0:81:c3:e6:b8: 0c:14:8c:71:59:74:b2:6c:56:e5:b6:9e:15:3d:c4:40:41:1d: 4b:d2:2d:d1:d6:eb:cd:a1:16:86:5b:48:5e:60:20:34:c4:78: 69:67:86:30 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1C8qSyyFreX28XqtKXg3oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY1YWRhOTAxZDQwOGJmN2Y1Yjk0MzU5MjFlNDgwMGE4Zjgy ZGJkYWIwHhcNMjUxMjA2MTkwMzAxWhcNMjUxMjA3MTkwMzAxWjAzMTEwLwYDVQQD Eyg1NjIyMmM4ZDM5ZDRmMDA3N2FkZTNlZmE3ZjlkNDcxODM1ZTg4OTFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3+sWaMHcDlaeDCdnGYLgGwITu8zF WkQCqZ3oBiJ/EI8ydN6kuaDSN9q0+k3QLakgrj4tmubbpgaiUTdlo390p0roT8SF BGPiG/SrVW9K7EKGN9m+82GESgvhA22YUG8Ai1phvGHluWr6mqiQBcNlzuWc5aOt T8c6a9EGJPJi30S5AUm3GvFZZyWnB9NZxuXz+U6PLq7RVKycMvYWY7pxVbK0p8E0 sUCq4srpmzhTPRCDi6GMkb+ykMLesyPjITaZYGSg2n4OXgL8rxmzFcmotKmDqgYS YKYz628PBEAMFiad3Wxdd84sjwAyyD+dLfF+ihi7sXg7M3zUk2P2MosKEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFYiLI051PAHet4++n+dRxg16IkdMB8GA1UdIwQY MBaAFPWtqQHUCL9/W5Q1kh5IAKj4Lb2rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOWEycEFkUUl2MzlibERXU0hrZ0FxUGd0dmFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS9hZmE2ZDYtNTBmOS00MWQ0LWI3Y2Yt YTMzNjQ5ZTNlMmM1LzEvOWEycEFkUUl2MzlibERXU0hrZ0FxUGd0dmFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZS9hZmE2ZDYtNTBmOS00MWQ0LWI3Y2YtYTMzNjQ5ZTNlMmM1 LzEvOWEycEFkUUl2MzlibERXU0hrZ0FxUGd0dmFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG1fi7BLE CMHOCRYoyrqmd3/gP1rFsRYEnBWiUFysyjooJlnCLxTU5KNZmvZFS6OQ++/SZVqr wWF+Nq7buS0ihmKKEfDXm8P7S/JZ+H2bH9UyQQDZwShNRDZt87ZqTAF6w06FZKvi TeUt/B3At5d0raba5QxiYtfkEgbOhhpNcOKcKJcVXRnnDSPaRvGgnVbfsURo35BQ V8rQKLDkvY9tAUc29eqvc/foXJ8hX1jM1Rcy0BGQsUHLp9Pxfxki7KGtc/HIIvbf pW6+bpcAElGqoQtZxKCBw+a4DBSMcVl0smxW5baeFT3EQEEdS9It0dbrzaEWhltI XmAgNMR4aWeGMA== -----END CERTIFICATE-----Generated at Sat Dec 6 22:16:49 2025 by rpki-client