This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft File: 0-2n3wX226CeOefUvex7rg7_urA.mft (raw, json) Hash identifier: FgfZHdH2JBERh2hTE3HgasaJKolji5FP7S39+Sly7/E= Subject key identifier: 4A:67:3D:8E:75:C8:81:47:19:C9:FC:DB:7B:24:2A:8F:57:E7:57:FD Authority key identifier: D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0 Certificate issuer: /CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0 Certificate serial: 019AF3F783B946C6B7F399A226D3151B5F5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft Manifest number: 046B Signing time: Sat 06 Dec 2025 14:01:15 +0000 Manifest this update: Sat 06 Dec 2025 14:01:15 +0000 Manifest next update: Sun 07 Dec 2025 14:01:15 +0000 Files and hashes: 1: 0-2n3wX226CeOefUvex7rg7_urA.crl (hash: fDKIU31ltRiFzs+Vwr17+thY6JW/MxkBFyTWTtgkO8U=) 2: mFUkKUV2j8Fct1DGbVQJTzcA0ig.roa (hash: bNr/zF64vk+SVTrKPbIdCfqu6Sowa5lS9V4LG/Ns2g0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:f7:83:b9:46:c6:b7:f3:99:a2:26:d3:15:1b:5f:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0 Validity Not Before: Dec 6 14:01:15 2025 GMT Not After : Dec 7 14:01:15 2025 GMT Subject: CN=4a673d8e75c8814719c9fcdb7b242a8f57e757fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:6b:91:89:90:21:be:73:28:91:b9:00:e9:56: 47:da:90:cb:1a:fd:e9:53:9e:cf:b9:6e:1e:88:a1: 5a:07:ca:0c:0c:5d:ea:a3:74:87:69:7d:13:e6:78: 50:77:86:36:ab:1e:02:e3:e8:0e:ec:23:9e:88:a5: 8b:52:89:31:ad:72:02:55:e9:17:5a:a4:55:97:54: 1f:24:10:65:08:a0:06:f4:d5:80:9d:a8:9e:2e:eb: be:23:f2:4f:02:dd:f0:84:32:24:57:25:94:d0:3d: 2f:51:a5:fb:2f:d5:77:c6:54:64:c4:5e:ff:fd:09: 47:cd:32:42:d4:96:a4:2b:f9:34:e5:98:c7:9d:95: 2f:81:08:16:99:f8:9f:bc:a9:e2:d8:e0:d7:42:19: 35:43:0b:1e:c6:57:75:72:4f:a7:47:94:99:d9:f8: 49:1e:a0:59:04:74:d0:e6:53:e7:a0:61:ac:45:b3: 85:35:0a:58:0f:15:61:19:4c:4b:23:7f:d8:83:f0: 9f:7e:69:e3:1d:e4:a2:b8:03:bf:a9:2b:59:81:ad: 30:3a:50:23:7e:97:af:ad:7c:06:45:e9:b2:28:c8: da:13:2a:00:35:01:20:1e:7b:80:42:8f:1c:60:3c: 2a:f1:49:0d:5a:ea:c7:1e:76:ba:08:2b:24:65:c8: 96:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:67:3D:8E:75:C8:81:47:19:C9:FC:DB:7B:24:2A:8F:57:E7:57:FD X509v3 Authority Key Identifier: keyid:D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:5c:c7:8f:5c:f6:4e:58:07:4b:2a:9d:51:8f:c9:85:bf:86: af:1d:c8:8d:57:05:ea:3b:35:0f:75:2d:9d:70:d7:97:e6:b0: a7:67:4d:4f:3d:57:82:33:64:a2:95:06:ef:16:25:94:c9:5d: 67:33:e3:64:a0:77:da:22:ac:d8:21:be:1d:b4:d8:6e:22:1b: 0d:b1:21:7f:ce:39:95:a2:aa:6e:56:eb:1b:23:a6:4b:2e:c5: b2:d6:c6:34:28:ed:84:5c:24:d6:13:c4:71:21:08:76:dd:27: 04:b7:b4:1c:9e:fb:87:d1:25:dd:d8:72:c0:c3:a1:1d:23:e6: 35:35:bd:d7:53:d2:31:2f:1f:da:d5:51:81:57:6d:86:50:e6: 12:3e:03:61:84:5f:f7:52:74:4f:bc:0c:02:76:79:47:38:0e: 47:b5:04:74:2d:51:1b:20:b2:ec:7a:b8:1d:96:ad:8e:c1:27: 14:5c:e1:5b:e1:ff:7a:84:21:c0:08:f8:37:55:ec:5f:68:d0: ac:08:5c:22:d0:bb:4e:3b:63:87:f7:13:48:64:72:bc:56:8a: 05:78:9a:46:3e:3a:cf:96:a2:8c:37:70:6c:fb:20:5e:f5:e5: 02:76:c2:52:90:91:c6:95:ac:5b:dd:1f:b3:c5:0e:c9:9c:42: 5e:67:d6:50 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrz94O5Rsa385miJtMVG19aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzZWRhN2RmMDVmNmRiYTA5ZTM5ZTdkNGJkZWM3YmFlMGVm ZmJhYjAwHhcNMjUxMjA2MTQwMTE1WhcNMjUxMjA3MTQwMTE1WjAzMTEwLwYDVQQD Eyg0YTY3M2Q4ZTc1Yzg4MTQ3MTljOWZjZGI3YjI0MmE4ZjU3ZTc1N2ZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoWuRiZAhvnMokbkA6VZH2pDLGv3p U57PuW4eiKFaB8oMDF3qo3SHaX0T5nhQd4Y2qx4C4+gO7COeiKWLUokxrXICVekX WqRVl1QfJBBlCKAG9NWAnaieLuu+I/JPAt3whDIkVyWU0D0vUaX7L9V3xlRkxF7/ /QlHzTJC1JakK/k05ZjHnZUvgQgWmfifvKni2ODXQhk1Qwsexld1ck+nR5SZ2fhJ HqBZBHTQ5lPnoGGsRbOFNQpYDxVhGUxLI3/Yg/CffmnjHeSiuAO/qStZga0wOlAj fpevrXwGRemyKMjaEyoANQEgHnuAQo8cYDwq8UkNWurHHna6CCskZciWAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEpnPY51yIFHGcn823skKo9X51f9MB8GA1UdIwQY MBaAFNPtp98F9tugnjnn1L3se64O/7qwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMC0ybjN3WDIyNkNlT2VmVXZleDdyZzdfdXJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9kYzY0ZjQtY2ZiYS00ZWZkLWI0ZWQt Njc2YmVkYjE3NDczLzEvMC0ybjN3WDIyNkNlT2VmVXZleDdyZzdfdXJBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC9kYzY0ZjQtY2ZiYS00ZWZkLWI0ZWQtNjc2YmVkYjE3NDcz LzEvMC0ybjN3WDIyNkNlT2VmVXZleDdyZzdfdXJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUVzHj1z2 TlgHSyqdUY/Jhb+Grx3IjVcF6js1D3UtnXDXl+awp2dNTz1XgjNkopUG7xYllMld ZzPjZKB32iKs2CG+HbTYbiIbDbEhf845laKqblbrGyOmSy7FstbGNCjthFwk1hPE cSEIdt0nBLe0HJ77h9El3dhywMOhHSPmNTW911PSMS8f2tVRgVdthlDmEj4DYYRf 91J0T7wMAnZ5RzgOR7UEdC1RGyCy7Hq4HZatjsEnFFzhW+H/eoQhwAj4N1XsX2jQ rAhcItC7Tjtjh/cTSGRyvFaKBXiaRj46z5aijDdwbPsgXvXlAnbCUpCRxpWsW90f s8UOyZxCXmfWUA== -----END CERTIFICATE-----Generated at Sat Dec 6 19:05:45 2025 by rpki-client