This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft File: 2RTaVuGpNGSdoClkrBLro0xcuE8.mft (raw, json) Hash identifier: WoFn4vGaSxW9jFrshREBGzBxbHQMzpscpXLqzkHFrWM= Subject key identifier: 17:E1:86:37:74:D3:FE:76:01:A1:55:1A:DA:3E:C8:97:EA:88:32:D1 Authority key identifier: D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F Certificate issuer: /CN=d914da56e1a934649da02964ac12eba34c5cb84f Certificate serial: 019B2B8AF473B203BA3981BAEA83497B3ED6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft Manifest number: 04DC Signing time: Wed 17 Dec 2025 09:01:25 +0000 Manifest this update: Wed 17 Dec 2025 09:01:25 +0000 Manifest next update: Thu 18 Dec 2025 09:01:25 +0000 Files and hashes: 1: 2RTaVuGpNGSdoClkrBLro0xcuE8.crl (hash: vB0YW+iQRLOhCTBaZ1SQUOpKSlKXRasNYN2UXEVhSyM=) 2: As7V6ZE1xBs1gl2SXAEbNIUHC00.roa (hash: kQVt6PxymkEnwafOS16jS1OEQiU/aYHOchiiJ14/rGk=) 3: PIhsP1al3YizxN861NowDoYoHI0.roa (hash: R9+qOpDwEb0Q5efJFh94SK/9P5J9FFbPDMd4Z1g9adY=) 4: TgC9SfoTorK7vBYwI8VYhLdYsAI.roa (hash: cX6b1ElbfxY+vtUnnUoBWdanxCq7AgtL2UTTxProihY=) 5: r6xJZWjtrwNhQith6PiqNcETkoY.roa (hash: 5M8HMFCPR3icG0A/hOYTkDnAzNiqaffro245jnASAHc=) 6: yP_dwUj9wkpGZraCJm3_QUlcxSc.roa (hash: PpcRyK/zlLSo8ZccoU5Ov6j3mDsKb8kB7dCU9P4KBZQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 09:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:8a:f4:73:b2:03:ba:39:81:ba:ea:83:49:7b:3e:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d914da56e1a934649da02964ac12eba34c5cb84f Validity Not Before: Dec 17 09:01:25 2025 GMT Not After : Dec 18 09:01:25 2025 GMT Subject: CN=17e1863774d3fe7601a1551ada3ec897ea8832d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:bb:c8:71:3b:3f:b3:62:c1:51:ed:57:3d:7f: e1:c7:56:17:23:15:21:da:d2:19:f4:50:b2:34:e9: 84:e1:ad:a2:31:d0:8b:e0:b6:da:a1:22:88:ec:ae: 10:23:35:7d:89:14:72:c7:c7:1b:5d:b1:ac:ad:f7: a4:a9:fe:2b:d6:40:ff:88:fc:c3:12:43:ea:26:f9: f7:e3:eb:6b:4e:7e:18:32:f9:4b:bd:b6:6f:b4:fb: 4a:7f:e0:dc:8c:a6:73:23:17:67:c2:a2:3b:07:fb: 68:21:b8:88:c9:29:a2:97:e0:4e:be:e4:17:b1:d5: 5f:97:6b:00:31:d7:9b:db:38:51:82:a3:6d:bb:82: 2e:fb:6f:55:c1:8d:09:09:38:f6:24:a3:ef:e3:58: fa:ce:4c:2f:69:d5:b2:0f:6b:1b:1e:83:2f:15:9d: 40:95:32:95:a8:9c:9b:e0:50:32:85:ea:56:e8:dd: 9c:1a:b2:ad:b7:dd:53:b6:62:a0:09:cd:fa:b5:7c: 71:fe:60:31:61:47:de:6d:a3:6f:1b:1b:35:05:ce: 77:c5:af:01:41:34:16:f2:d4:70:37:c4:b2:29:af: 02:cc:56:56:2a:8c:62:45:2c:fc:b0:ea:9a:68:e3: 12:65:5b:c7:03:ee:e3:5a:af:a4:77:c3:24:62:8f: 1b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:E1:86:37:74:D3:FE:76:01:A1:55:1A:DA:3E:C8:97:EA:88:32:D1 X509v3 Authority Key Identifier: keyid:D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:2a:77:f4:20:2e:ee:da:ca:8f:0b:6d:bb:bd:1b:17:d7:82: f2:c0:fe:7f:5b:16:50:44:6f:4a:74:d9:69:8d:2d:74:e1:11: 54:00:ad:b2:8c:a4:16:7f:f6:fe:e0:a2:d0:30:f0:d7:02:c3: 45:d6:b0:cf:1a:0f:c4:04:d5:b3:f9:61:02:25:34:2e:2a:f9: 61:ce:72:49:2d:74:7f:52:81:f7:59:d5:07:3c:b3:f8:37:03: 66:a7:b3:77:e4:89:35:ab:f6:8e:9c:56:b1:1a:9f:c3:2d:01: 3b:26:ae:8f:a2:ce:04:ba:05:d4:c9:35:31:44:8d:65:76:21: fd:86:e0:d9:b8:bc:05:82:a8:7c:02:24:a1:fd:eb:d3:5f:05: 91:20:2c:8c:7b:6b:ee:7c:b4:6f:31:93:47:22:3e:9c:e3:1d: b6:3d:9d:da:47:fd:9e:5d:45:f4:b3:92:56:63:03:e4:3d:e2: a7:55:3a:d6:8a:d8:3f:10:18:43:f3:c2:0f:f2:14:c6:9e:5f: dd:d7:5f:8d:e5:9a:75:c1:92:f5:0c:1e:e5:60:aa:92:7d:dc: ed:13:ed:cc:ac:79:ce:6d:c4:8d:74:83:59:cf:fd:a5:84:6c: 03:2d:89:56:c7:3c:82:4d:42:f7:0e:b1:74:0c:5b:f2:07:06: 70:30:c0:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsrivRzsgO6OYG66oNJez7WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5MTRkYTU2ZTFhOTM0NjQ5ZGEwMjk2NGFjMTJlYmEzNGM1 Y2I4NGYwHhcNMjUxMjE3MDkwMTI1WhcNMjUxMjE4MDkwMTI1WjAzMTEwLwYDVQQD EygxN2UxODYzNzc0ZDNmZTc2MDFhMTU1MWFkYTNlYzg5N2VhODgzMmQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsLvIcTs/s2LBUe1XPX/hx1YXIxUh 2tIZ9FCyNOmE4a2iMdCL4LbaoSKI7K4QIzV9iRRyx8cbXbGsrfekqf4r1kD/iPzD EkPqJvn34+trTn4YMvlLvbZvtPtKf+DcjKZzIxdnwqI7B/toIbiIySmil+BOvuQX sdVfl2sAMdeb2zhRgqNtu4Iu+29VwY0JCTj2JKPv41j6zkwvadWyD2sbHoMvFZ1A lTKVqJyb4FAyhepW6N2cGrKtt91TtmKgCc36tXxx/mAxYUfebaNvGxs1Bc53xa8B QTQW8tRwN8SyKa8CzFZWKoxiRSz8sOqaaOMSZVvHA+7jWq+kd8MkYo8bVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBfhhjd00/52AaFVGto+yJfqiDLRMB8GA1UdIwQY MBaAFNkU2lbhqTRknaApZKwS66NMXLhPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlJUYVZ1R3BOR1Nkb0Nsa3JCTHJvMHhjdUU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS83YTExYjUtYTQwNS00MWNiLTgxY2It ZjZiY2NmMWU1MzFmLzEvMlJUYVZ1R3BOR1Nkb0Nsa3JCTHJvMHhjdUU4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS83YTExYjUtYTQwNS00MWNiLTgxY2ItZjZiY2NmMWU1MzFm LzEvMlJUYVZ1R3BOR1Nkb0Nsa3JCTHJvMHhjdUU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgCp39CAu 7trKjwttu70bF9eC8sD+f1sWUERvSnTZaY0tdOERVACtsoykFn/2/uCi0DDw1wLD RdawzxoPxATVs/lhAiU0Lir5Yc5ySS10f1KB91nVBzyz+DcDZqezd+SJNav2jpxW sRqfwy0BOyauj6LOBLoF1Mk1MUSNZXYh/Ybg2bi8BYKofAIkof3r018FkSAsjHtr 7ny0bzGTRyI+nOMdtj2d2kf9nl1F9LOSVmMD5D3ip1U61orYPxAYQ/PCD/IUxp5f 3ddfjeWadcGS9Qwe5WCqkn3c7RPtzKx5zm3EjXSDWc/9pYRsAy2JVsc8gk1C9w6x dAxb8gcGcDDAzg== -----END CERTIFICATE-----Generated at Wed Dec 17 17:53:20 2025 by rpki-client