This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft File: 2jQhazvZIbbGYYeoyGpKS7DuUj8.mft (raw, json) Hash identifier: F60ve9Xt3QEYgQ82JA8hAHk/rya9gO6/O4VtkkSwdl0= Subject key identifier: 52:87:AA:86:8E:C7:C5:54:D0:DC:0C:D2:11:10:13:A8:5A:FD:28:68 Authority key identifier: DA:34:21:6B:3B:D9:21:B6:C6:61:87:A8:C8:6A:4A:4B:B0:EE:52:3F Certificate issuer: /CN=da34216b3bd921b6c66187a8c86a4a4bb0ee523f Certificate serial: 019AF19AE1332CCF1C7FC51EF9BB9F0342DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2jQhazvZIbbGYYeoyGpKS7DuUj8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft Manifest number: 1468 Signing time: Sat 06 Dec 2025 03:00:50 +0000 Manifest this update: Sat 06 Dec 2025 03:00:50 +0000 Manifest next update: Sun 07 Dec 2025 03:00:50 +0000 Files and hashes: 1: 2jQhazvZIbbGYYeoyGpKS7DuUj8.crl (hash: jjaEuS5yjpspkOO0U3q2MU+RXJvJuNxQEYVkmm8qSpU=) 2: y-rAx3x5ggb3kBBIMyQl2KhriYw.roa (hash: j/sr0gEHuELryIqb8wmwmOpvCJwyct02mKuP2NU5Abs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.crl rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft rsync://rpki.ripe.net/repository/DEFAULT/2jQhazvZIbbGYYeoyGpKS7DuUj8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:e1:33:2c:cf:1c:7f:c5:1e:f9:bb:9f:03:42:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da34216b3bd921b6c66187a8c86a4a4bb0ee523f Validity Not Before: Dec 6 03:00:50 2025 GMT Not After : Dec 7 03:00:50 2025 GMT Subject: CN=5287aa868ec7c554d0dc0cd2111013a85afd2868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:44:f6:2c:46:63:12:48:b0:3a:d4:55:da:4d: 53:6b:5c:59:ef:8f:e5:16:83:6f:fd:f5:fa:d8:72: 38:7c:d9:b7:78:e2:a0:a9:dd:a6:a0:e7:62:6e:0a: 63:99:b8:38:2e:27:fa:bb:66:fe:45:f0:e1:57:39: a7:b8:4c:03:7e:fe:87:ff:a7:4d:8a:62:a0:95:f8: 5e:fc:28:55:84:c9:ac:fe:3c:22:a5:26:89:56:ce: ff:a3:35:e9:40:a2:7b:be:25:39:3b:c4:0b:b9:d3: 52:29:77:3d:d5:2d:2f:66:57:f8:77:43:a7:82:58: a6:7a:c9:88:cb:49:ef:61:13:89:f4:31:09:4b:bf: 16:c0:e9:99:89:12:b2:e8:31:11:74:05:4b:36:da: 82:2d:d5:a7:37:fa:66:9d:d6:ad:6d:94:57:8d:48: a6:7b:2b:b4:a2:4d:21:e0:3f:f9:c5:d8:37:3b:c1: 90:b6:51:14:d0:d9:0d:0d:a8:62:c8:4d:03:58:77: e5:ab:ae:fe:3a:51:6d:1c:e7:67:7b:fb:09:c3:d1: eb:e0:61:81:ce:91:7f:03:58:db:b9:13:6a:40:76: 49:16:54:80:32:a0:84:ec:25:af:97:eb:14:f3:bc: 73:bb:81:3a:75:47:a4:91:5a:cf:51:de:0d:8c:80: f4:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:87:AA:86:8E:C7:C5:54:D0:DC:0C:D2:11:10:13:A8:5A:FD:28:68 X509v3 Authority Key Identifier: keyid:DA:34:21:6B:3B:D9:21:B6:C6:61:87:A8:C8:6A:4A:4B:B0:EE:52:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2jQhazvZIbbGYYeoyGpKS7DuUj8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:6e:8a:0a:7c:f5:cd:08:e8:1e:d4:04:b8:ae:5e:7f:70:7d: 2e:35:86:e6:6e:a2:5e:de:0c:de:00:7e:81:6d:12:d2:eb:84: 0b:e0:a4:3f:3f:b4:c4:a5:bb:1e:81:78:09:b9:08:7d:51:df: bc:7b:d4:57:40:4d:45:b3:3c:3f:cd:1d:83:4d:8b:a2:bb:25: 74:f4:86:39:3a:ae:73:62:8e:95:08:7d:86:a9:e8:4f:12:09: 2f:9d:8d:aa:24:8f:52:e2:7a:0e:b5:66:00:f6:44:ec:96:37: 4a:95:71:f3:88:6d:43:90:b8:71:78:4c:ab:44:09:ab:ea:b4: d1:ad:ad:73:ad:ec:51:00:40:dc:45:07:19:43:d8:90:23:c4: 03:d8:15:6d:6e:18:ea:21:7c:11:3a:22:4b:9f:f3:27:0e:c1: 31:10:b4:a4:7c:80:86:3e:52:58:be:e5:a2:fd:82:3a:91:1e: fa:f5:db:0a:ff:92:ba:80:1f:93:1d:b6:f8:3c:c7:1c:3c:e6: 7e:51:ae:f7:2d:43:35:84:21:20:97:52:50:c8:28:66:19:8a: b1:d5:d2:61:83:4f:77:77:82:df:04:90:5c:e0:2e:44:ca:ad: 4f:c8:f1:fa:c0:93:8c:13:d2:fa:4e:21:37:a9:3e:3c:f7:e5: 16:bf:68:08 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmuEzLM8cf8Ue+bufA0LcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhMzQyMTZiM2JkOTIxYjZjNjYxODdhOGM4NmE0YTRiYjBl ZTUyM2YwHhcNMjUxMjA2MDMwMDUwWhcNMjUxMjA3MDMwMDUwWjAzMTEwLwYDVQQD Eyg1Mjg3YWE4NjhlYzdjNTU0ZDBkYzBjZDIxMTEwMTNhODVhZmQyODY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAokT2LEZjEkiwOtRV2k1Ta1xZ74/l FoNv/fX62HI4fNm3eOKgqd2moOdibgpjmbg4Lif6u2b+RfDhVzmnuEwDfv6H/6dN imKglfhe/ChVhMms/jwipSaJVs7/ozXpQKJ7viU5O8QLudNSKXc91S0vZlf4d0On glimesmIy0nvYROJ9DEJS78WwOmZiRKy6DERdAVLNtqCLdWnN/pmndatbZRXjUim eyu0ok0h4D/5xdg3O8GQtlEU0NkNDahiyE0DWHflq67+OlFtHOdne/sJw9Hr4GGB zpF/A1jbuRNqQHZJFlSAMqCE7CWvl+sU87xzu4E6dUekkVrPUd4NjID0+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFKHqoaOx8VU0NwM0hEQE6ha/ShoMB8GA1UdIwQY MBaAFNo0IWs72SG2xmGHqMhqSkuw7lI/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmpRaGF6dlpJYmJHWVllb3lHcEtTN0R1VWo4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC83MWVlN2MtM2MwNC00YTljLTlkZjct MGJmNTkwNWIzNWVmLzEvMmpRaGF6dlpJYmJHWVllb3lHcEtTN0R1VWo4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC83MWVlN2MtM2MwNC00YTljLTlkZjctMGJmNTkwNWIzNWVm LzEvMmpRaGF6dlpJYmJHWVllb3lHcEtTN0R1VWo4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANG6KCnz1 zQjoHtQEuK5ef3B9LjWG5m6iXt4M3gB+gW0S0uuEC+CkPz+0xKW7HoF4CbkIfVHf vHvUV0BNRbM8P80dg02LorsldPSGOTquc2KOlQh9hqnoTxIJL52NqiSPUuJ6DrVm APZE7JY3SpVx84htQ5C4cXhMq0QJq+q00a2tc63sUQBA3EUHGUPYkCPEA9gVbW4Y 6iF8EToiS5/zJw7BMRC0pHyAhj5SWL7lov2COpEe+vXbCv+SuoAfkx22+DzHHDzm flGu9y1DNYQhIJdSUMgoZhmKsdXSYYNPd3eC3wSQXOAuRMqtT8jx+sCTjBPS+k4h N6k+PPflFr9oCA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:20:09 2025 by rpki-client