This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft File: 2RTaVuGpNGSdoClkrBLro0xcuE8.mft (raw, json) Hash identifier: kcQoXdWRW7YIbI6iuFoV5qNIq2pDcV9M2CrdbvvgiQc= Subject key identifier: E6:3C:84:9D:A6:39:14:0A:5F:FB:C4:0E:E6:CB:CC:9C:9C:67:BF:E6 Authority key identifier: D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F Certificate issuer: /CN=d914da56e1a934649da02964ac12eba34c5cb84f Certificate serial: 019AF0F5F2B1F4C0D64A5D22FCBAF5F1DBAE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft Manifest number: 04BD Signing time: Sat 06 Dec 2025 00:00:41 +0000 Manifest this update: Sat 06 Dec 2025 00:00:41 +0000 Manifest next update: Sun 07 Dec 2025 00:00:41 +0000 Files and hashes: 1: 2RTaVuGpNGSdoClkrBLro0xcuE8.crl (hash: 1ZulQAc3aXIhXb0HCKYJNJgmninNM+Il9UxBg7vSPUU=) 2: As7V6ZE1xBs1gl2SXAEbNIUHC00.roa (hash: kQVt6PxymkEnwafOS16jS1OEQiU/aYHOchiiJ14/rGk=) 3: PIhsP1al3YizxN861NowDoYoHI0.roa (hash: R9+qOpDwEb0Q5efJFh94SK/9P5J9FFbPDMd4Z1g9adY=) 4: RVfWb6AeQUrXaw0eh9r6r19sjZE.roa (hash: v4r/LVDf839QcMU4tAbsB+argaU/EH+WPkLUSna1SOM=) 5: h2By371OCvj77wNVdyQcqgznsSg.roa (hash: soUA/0DY5+xPnyfK/0AF2K5yBnM6iGB14VNuRKlaQjI=) 6: yP_dwUj9wkpGZraCJm3_QUlcxSc.roa (hash: PpcRyK/zlLSo8ZccoU5Ov6j3mDsKb8kB7dCU9P4KBZQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:f5:f2:b1:f4:c0:d6:4a:5d:22:fc:ba:f5:f1:db:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d914da56e1a934649da02964ac12eba34c5cb84f Validity Not Before: Dec 6 00:00:41 2025 GMT Not After : Dec 7 00:00:41 2025 GMT Subject: CN=e63c849da639140a5ffbc40ee6cbcc9c9c67bfe6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:87:44:63:9e:19:dd:f3:b8:54:a3:a9:19:f6: ae:56:9e:f6:74:54:7e:97:b8:b2:6b:2a:f1:b5:2e: df:71:8e:bb:f1:a2:e1:08:43:87:eb:af:fb:9b:08: a1:93:16:4c:fa:b6:09:39:13:12:4c:97:c5:33:37: 09:a1:88:65:30:66:9b:1b:00:7e:93:ab:24:a0:ec: e8:28:68:c6:a0:68:43:03:1c:93:4a:1e:3b:df:65: de:3e:90:c7:f4:33:94:ed:a7:5e:44:41:b1:b5:74: f8:65:97:aa:59:08:b1:f5:05:69:bb:a3:10:93:0f: 6a:ef:73:da:bc:8b:6f:64:c0:f3:25:43:2f:b7:28: 65:65:05:f4:57:6e:01:33:42:5e:9e:96:1a:a6:66: bf:6b:5f:1e:45:ef:77:44:cb:2d:85:22:fe:1b:cb: 37:db:ec:dc:47:63:b3:c7:64:be:10:ea:45:d4:a9: 76:e4:3b:83:14:72:b4:4b:99:f3:e3:cd:34:1e:1d: 88:26:00:35:70:f1:a0:b0:6f:9f:9d:ee:12:b7:d8: aa:02:77:99:d8:c6:59:dc:b9:da:08:d3:2f:46:49: 55:ea:ae:d7:17:4d:07:0b:14:55:a5:ba:63:9d:b0: 3e:46:b8:71:7f:7a:4e:9c:e9:71:ce:e7:a7:ba:88: 0a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:3C:84:9D:A6:39:14:0A:5F:FB:C4:0E:E6:CB:CC:9C:9C:67:BF:E6 X509v3 Authority Key Identifier: keyid:D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:f3:5e:c1:77:ed:ec:bc:34:f0:98:f1:d8:3e:4b:e6:6b:bc: 01:0f:6f:04:2b:6c:2d:9a:be:aa:b8:7a:38:8a:97:7c:f7:54: ea:6f:70:3a:31:d2:5d:0b:a1:ca:b0:d7:6d:17:5a:bb:71:03: 83:a9:28:82:36:06:a3:aa:2a:80:61:84:05:3e:45:40:47:f5: c6:bb:e5:97:9c:51:c7:00:b4:b7:2d:c9:0f:3a:5e:eb:38:c0: 09:20:31:82:1e:cc:77:08:46:ad:9b:7f:3f:75:a5:8f:44:c1: b9:dd:35:1d:07:60:65:fb:75:f8:f0:9b:d7:11:71:92:3b:6a: 57:d3:b2:9a:f8:0e:44:18:de:95:46:51:e2:86:f1:cb:d2:de: 3f:a8:64:a2:d8:05:e3:88:ff:53:a1:c5:e2:61:49:0f:46:d3: 5b:db:c7:3d:73:e3:18:90:05:56:9f:23:95:ff:b0:fc:1f:7b: 5b:cb:ad:73:34:a2:1f:d7:1d:4b:28:70:6b:66:11:db:5f:13: d1:6a:77:d1:20:54:20:e0:0b:51:e5:03:38:cc:16:85:34:91: bc:c8:3e:d2:ef:06:bc:31:83:a1:36:fb:db:2d:07:47:90:5e: f4:74:58:20:e5:d6:e0:b5:c2:80:a4:a0:e8:1f:0f:9d:4a:d7: 59:c9:a5:03 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrw9fKx9MDWSl0i/Lr18duuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5MTRkYTU2ZTFhOTM0NjQ5ZGEwMjk2NGFjMTJlYmEzNGM1 Y2I4NGYwHhcNMjUxMjA2MDAwMDQxWhcNMjUxMjA3MDAwMDQxWjAzMTEwLwYDVQQD EyhlNjNjODQ5ZGE2MzkxNDBhNWZmYmM0MGVlNmNiY2M5YzljNjdiZmU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1IdEY54Z3fO4VKOpGfauVp72dFR+ l7iyayrxtS7fcY678aLhCEOH66/7mwihkxZM+rYJORMSTJfFMzcJoYhlMGabGwB+ k6skoOzoKGjGoGhDAxyTSh4732XePpDH9DOU7adeREGxtXT4ZZeqWQix9QVpu6MQ kw9q73PavItvZMDzJUMvtyhlZQX0V24BM0JenpYapma/a18eRe93RMsthSL+G8s3 2+zcR2Ozx2S+EOpF1Kl25DuDFHK0S5nz4800Hh2IJgA1cPGgsG+fne4St9iqAneZ 2MZZ3LnaCNMvRklV6q7XF00HCxRVpbpjnbA+Rrhxf3pOnOlxzuenuogKUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOY8hJ2mORQKX/vEDubLzJycZ7/mMB8GA1UdIwQY MBaAFNkU2lbhqTRknaApZKwS66NMXLhPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlJUYVZ1R3BOR1Nkb0Nsa3JCTHJvMHhjdUU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS83YTExYjUtYTQwNS00MWNiLTgxY2It ZjZiY2NmMWU1MzFmLzEvMlJUYVZ1R3BOR1Nkb0Nsa3JCTHJvMHhjdUU4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS83YTExYjUtYTQwNS00MWNiLTgxY2ItZjZiY2NmMWU1MzFm LzEvMlJUYVZ1R3BOR1Nkb0Nsa3JCTHJvMHhjdUU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARPNewXft 7Lw08Jjx2D5L5mu8AQ9vBCtsLZq+qrh6OIqXfPdU6m9wOjHSXQuhyrDXbRdau3ED g6kogjYGo6oqgGGEBT5FQEf1xrvll5xRxwC0ty3JDzpe6zjACSAxgh7MdwhGrZt/ P3Wlj0TBud01HQdgZft1+PCb1xFxkjtqV9OymvgORBjelUZR4obxy9LeP6hkotgF 44j/U6HF4mFJD0bTW9vHPXPjGJAFVp8jlf+w/B97W8utczSiH9cdSyhwa2YR218T 0Wp30SBUIOALUeUDOMwWhTSRvMg+0u8GvDGDoTb72y0HR5Be9HRYIOXW4LXCgKSg 6B8PnUrXWcmlAw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:10:46 2025 by rpki-client