This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.mft File: 2Rh8msEPIFFSsSjs3CFXyQJJFqQ.mft (raw, json) Hash identifier: 9xFnkacwIzms4NrS/JRBX9lGvjH4GqXecGq+nn5Msvc= Subject key identifier: 06:69:FA:C9:C3:06:E6:91:DF:E4:54:0B:E5:70:97:E3:86:3B:0A:C7 Authority key identifier: D9:18:7C:9A:C1:0F:20:51:52:B1:28:EC:DC:21:57:C9:02:49:16:A4 Certificate issuer: /CN=d9187c9ac10f205152b128ecdc2157c9024916a4 Certificate serial: 019AF31CDB26F5F48DC74AD2515C645EAA1E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 10:02:25 +0000 Manifest this update: Sat 06 Dec 2025 10:02:25 +0000 Manifest next update: Sun 07 Dec 2025 10:02:25 +0000 Files and hashes: 1: 2Rh8msEPIFFSsSjs3CFXyQJJFqQ.crl (hash: 2qDCJs+SA98OTK9P+dqY4GRTR/xf8SVWId6Phyz517E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.mft rsync://rpki.ripe.net/repository/DEFAULT/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:db:26:f5:f4:8d:c7:4a:d2:51:5c:64:5e:aa:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9187c9ac10f205152b128ecdc2157c9024916a4 Validity Not Before: Dec 6 10:02:25 2025 GMT Not After : Dec 7 10:02:25 2025 GMT Subject: CN=0669fac9c306e691dfe4540be57097e3863b0ac7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:14:8e:dc:6a:9c:17:a1:ea:13:ed:7f:95:da: 4c:b0:10:21:e0:ac:29:a7:b4:5b:28:1e:1d:70:1f: b1:e5:53:53:af:bc:fb:40:2f:ac:94:5e:04:df:fa: aa:98:81:07:c5:fc:59:87:6b:75:12:3b:c9:bb:9a: a4:7b:9c:b7:5c:9c:5d:e7:9d:4c:e5:30:43:6a:1b: c5:5c:27:96:63:1e:f3:fd:c6:82:a6:38:a8:e6:ab: ff:b4:f2:a2:49:af:51:da:c0:e2:44:1f:ba:81:30: ee:ee:f7:5a:31:b4:6f:ba:b1:0d:f2:58:20:ca:76: c3:72:b6:5f:1c:52:8a:05:2d:b3:d7:bb:a6:16:03: 53:e8:88:c4:89:0b:e1:dc:0b:e6:34:3f:0f:40:f7: 8c:c7:fe:51:6a:10:ea:a0:8a:d0:3e:36:fc:b9:70: f6:c0:76:ce:2a:2d:48:94:3a:0c:1a:92:e2:db:c7: f9:c5:78:a3:f0:db:aa:58:86:ac:89:db:ca:59:00: 55:e3:4e:db:0f:8d:25:65:fa:e8:8c:13:f6:9a:a1: 22:76:dd:12:36:98:a8:60:8b:93:bf:cd:41:74:7e: 1f:97:af:25:ba:ae:65:0e:22:52:b6:85:77:5f:0d: b2:49:fe:81:90:b9:b4:bd:0d:4d:55:03:b7:18:41: 9d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:69:FA:C9:C3:06:E6:91:DF:E4:54:0B:E5:70:97:E3:86:3B:0A:C7 X509v3 Authority Key Identifier: keyid:D9:18:7C:9A:C1:0F:20:51:52:B1:28:EC:DC:21:57:C9:02:49:16:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:22:5d:00:28:04:c7:f9:9f:bf:75:99:f4:ab:e8:86:e3:09: d7:2c:0f:de:2c:86:d9:f7:fc:a9:02:d2:b9:91:e8:31:2f:5a: 94:23:58:e1:f3:e3:bc:f2:06:c5:0f:00:ad:26:86:f8:6c:d4: ff:ed:30:3c:2e:bd:57:d8:0a:97:eb:43:c3:e2:7c:5c:27:8a: bc:24:ec:68:18:08:aa:4b:75:df:ff:80:f5:d5:23:a4:84:0e: 2e:9f:09:c5:18:ce:1c:64:58:79:a3:75:ab:f9:00:74:9f:b5: d2:56:97:cd:5d:a0:0c:7d:bc:a2:85:65:09:cb:77:64:ad:f0: d3:69:38:62:fc:cd:68:05:07:66:be:c5:39:53:6a:5f:74:0e: 48:da:b1:60:27:07:e6:fc:db:14:19:76:b1:8a:12:db:86:d2: e6:be:a8:f8:59:25:75:9b:32:ef:9d:de:ed:c0:05:9c:79:e1: 9f:a0:1b:ea:52:20:8b:3c:1e:7b:33:17:f0:5e:fa:9e:3e:c5: 63:18:15:fd:e3:77:4e:d1:5d:ce:d5:49:39:80:8c:78:a1:86: 3b:9a:88:2d:1d:01:04:15:d5:db:ff:b8:fb:c6:ac:91:39:3c: a4:a7:4d:15:ff:84:96:7f:22:8c:cf:05:21:ba:df:85:25:10: 61:ed:00:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHNsm9fSNx0rSUVxkXqoeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5MTg3YzlhYzEwZjIwNTE1MmIxMjhlY2RjMjE1N2M5MDI0 OTE2YTQwHhcNMjUxMjA2MTAwMjI1WhcNMjUxMjA3MTAwMjI1WjAzMTEwLwYDVQQD EygwNjY5ZmFjOWMzMDZlNjkxZGZlNDU0MGJlNTcwOTdlMzg2M2IwYWM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArBSO3GqcF6HqE+1/ldpMsBAh4Kwp p7RbKB4dcB+x5VNTr7z7QC+slF4E3/qqmIEHxfxZh2t1EjvJu5qke5y3XJxd551M 5TBDahvFXCeWYx7z/caCpjio5qv/tPKiSa9R2sDiRB+6gTDu7vdaMbRvurEN8lgg ynbDcrZfHFKKBS2z17umFgNT6IjEiQvh3AvmND8PQPeMx/5RahDqoIrQPjb8uXD2 wHbOKi1IlDoMGpLi28f5xXij8NuqWIasidvKWQBV407bD40lZfrojBP2mqEidt0S NpioYIuTv81BdH4fl68luq5lDiJStoV3Xw2ySf6BkLm0vQ1NVQO3GEGdFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAZp+snDBuaR3+RUC+Vwl+OGOwrHMB8GA1UdIwQY MBaAFNkYfJrBDyBRUrEo7NwhV8kCSRakMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlJoOG1zRVBJRkZTc1NqczNDRlh5UUpKRnFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy80YWQ0NTQtMDA0OC00MTFhLWIxZWEt MjRiMzA2MDZlMjE5LzEvMlJoOG1zRVBJRkZTc1NqczNDRlh5UUpKRnFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy80YWQ0NTQtMDA0OC00MTFhLWIxZWEtMjRiMzA2MDZlMjE5 LzEvMlJoOG1zRVBJRkZTc1NqczNDRlh5UUpKRnFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbyJdACgE x/mfv3WZ9KvohuMJ1ywP3iyG2ff8qQLSuZHoMS9alCNY4fPjvPIGxQ8ArSaG+GzU /+0wPC69V9gKl+tDw+J8XCeKvCTsaBgIqkt13/+A9dUjpIQOLp8JxRjOHGRYeaN1 q/kAdJ+10laXzV2gDH28ooVlCct3ZK3w02k4YvzNaAUHZr7FOVNqX3QOSNqxYCcH 5vzbFBl2sYoS24bS5r6o+FkldZsy753e7cAFnHnhn6Ab6lIgizweezMX8F76nj7F YxgV/eN3TtFdztVJOYCMeKGGO5qILR0BBBXV2/+4+8askTk8pKdNFf+Eln8ijM8F IbrfhSUQYe0AaQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:56:44 2025 by rpki-client