This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft File: 2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft (raw, json) Hash identifier: hf5aO7gK6p5/fIupaM+n6MW9PApTq2nHUZRwPFrKXm4= Subject key identifier: A5:20:9C:DB:E3:3A:71:B4:16:3E:28:3F:80:D4:D1:70:EF:40:89:3D Authority key identifier: DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4 Certificate issuer: /CN=da70c441fb892b8c9816534885069fcd3300c9a4 Certificate serial: 019B30437812884913BB48F11E6237782C68 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft Manifest number: 0EC5 Signing time: Thu 18 Dec 2025 07:01:26 +0000 Manifest this update: Thu 18 Dec 2025 07:01:26 +0000 Manifest next update: Fri 19 Dec 2025 07:01:26 +0000 Files and hashes: 1: 2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl (hash: MraemKNwKeGI4r69HyIvYA5aP/AB5PYzxC2DbFrodNA=) 2: KtlV2YYAuDvLLDrwvVONKNyr5wE.roa (hash: X0ZKW+Jh+LXjVGRNpAiX4HmMGVTvfeCbPgs0XOICV8s=) 3: SRivJZ3NfmTceYbb0X0qedoYDkw.roa (hash: +54ZwqGRotzytN67kFR0epWImuzogdtQhuQ9BjiZR4M=) 4: VEU2Xx_W7oXurM3BP9vIKZCMG4o.roa (hash: o9K/DHxqI5B4HDKoeQx+W7Rwvv3Sj+2t3qcauvi8Xig=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:30:43:78:12:88:49:13:bb:48:f1:1e:62:37:78:2c:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da70c441fb892b8c9816534885069fcd3300c9a4 Validity Not Before: Dec 18 07:01:26 2025 GMT Not After : Dec 19 07:01:26 2025 GMT Subject: CN=a5209cdbe33a71b4163e283f80d4d170ef40893d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:48:9c:70:34:49:41:2a:3a:74:30:77:b7:c6: 14:23:a4:41:71:86:c0:ae:c0:32:d1:81:06:6b:84: 8e:28:cb:20:85:34:35:5f:9e:16:80:a8:ec:76:3e: 6a:ee:12:97:c0:d1:11:c4:db:80:2c:5a:31:61:6d: 3d:47:2d:e0:e5:4f:3a:38:8c:62:cb:f5:5b:c8:a2: af:83:84:d7:1d:f1:6c:9b:9d:bc:a9:21:d3:82:19: a4:14:31:75:af:2f:be:08:66:0d:6d:7e:84:cd:f6: 71:b4:ec:a8:d3:10:04:41:cf:82:48:92:26:fd:97: fd:3a:43:d4:66:9c:33:7a:2f:6d:4f:20:47:cf:ea: 70:f4:92:18:f4:10:ba:a3:24:51:27:af:19:48:2d: 8d:ce:58:ad:11:eb:a8:14:08:f0:e2:d4:ea:a4:ee: 14:0e:e2:30:77:df:cf:8f:6d:42:01:8d:64:a8:88: 07:64:51:47:ae:88:0b:bf:14:22:63:f1:82:ac:c7: 71:9d:ef:ba:ac:32:f6:2f:ca:46:e3:72:05:d0:2a: 0c:35:28:23:c8:ee:73:43:ac:bc:72:86:c4:37:2e: dc:c8:b8:93:d9:5b:5d:3a:d5:18:3e:d6:24:e5:e9: 2c:35:ff:2f:34:74:2b:41:bb:a6:ca:90:5a:0d:9a: ae:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:20:9C:DB:E3:3A:71:B4:16:3E:28:3F:80:D4:D1:70:EF:40:89:3D X509v3 Authority Key Identifier: keyid:DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:d9:f1:b9:24:10:42:58:e0:ad:cb:b6:b8:11:9b:93:b9:f7: ae:68:c4:66:78:df:d9:62:7e:c7:a6:b9:6b:d5:c0:4e:96:33: a6:74:ed:e8:31:d4:cd:4f:7d:0f:84:d2:89:65:f8:da:0d:65: 78:57:aa:75:50:ca:1b:84:c0:7f:40:cc:b4:5e:ea:30:8c:5f: b4:19:a8:73:01:50:1a:7c:3a:f2:d4:c8:be:c0:e3:8d:4f:ac: 3c:2d:ca:cf:93:b3:ac:69:a3:e7:3e:f9:17:8e:13:72:57:63: d1:dc:f2:08:3d:45:c3:66:2b:04:b8:d5:bd:62:7c:fb:8f:84: 82:fd:f1:38:99:0a:cf:00:db:9e:83:ca:64:7a:d4:d7:16:86: 9a:92:5c:b2:98:c4:69:8b:22:97:18:30:d3:19:a5:ad:bb:23: 6e:69:76:e2:f4:6d:67:cd:ba:39:2c:e4:f9:f3:02:77:ae:68: e5:c0:b9:75:76:d8:46:2b:03:94:7f:db:59:25:0b:fc:6e:ae: 0c:01:2c:a9:01:f7:48:a6:15:8c:ea:f3:c4:52:34:b8:12:5d: 50:a8:28:85:4d:68:57:82:09:28:c1:19:8b:8c:ce:86:a8:bf: c8:04:38:8e:e6:51:42:b2:19:ef:48:0e:36:af:6f:5c:38:1b: dc:e4:a1:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZswQ3gSiEkTu0jxHmI3eCxoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhNzBjNDQxZmI4OTJiOGM5ODE2NTM0ODg1MDY5ZmNkMzMw MGM5YTQwHhcNMjUxMjE4MDcwMTI2WhcNMjUxMjE5MDcwMTI2WjAzMTEwLwYDVQQD EyhhNTIwOWNkYmUzM2E3MWI0MTYzZTI4M2Y4MGQ0ZDE3MGVmNDA4OTNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2UiccDRJQSo6dDB3t8YUI6RBcYbA rsAy0YEGa4SOKMsghTQ1X54WgKjsdj5q7hKXwNERxNuALFoxYW09Ry3g5U86OIxi y/VbyKKvg4TXHfFsm528qSHTghmkFDF1ry++CGYNbX6EzfZxtOyo0xAEQc+CSJIm /Zf9OkPUZpwzei9tTyBHz+pw9JIY9BC6oyRRJ68ZSC2NzlitEeuoFAjw4tTqpO4U DuIwd9/Pj21CAY1kqIgHZFFHrogLvxQiY/GCrMdxne+6rDL2L8pG43IF0CoMNSgj yO5zQ6y8cobENy7cyLiT2VtdOtUYPtYk5eksNf8vNHQrQbumypBaDZquaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKUgnNvjOnG0Fj4oP4DU0XDvQIk9MB8GA1UdIwQY MBaAFNpwxEH7iSuMmBZTSIUGn80zAMmkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMm5ERVFmdUpLNHlZRmxOSWhRYWZ6VE1BeWFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9lNTNkZTUtMWI1Zi00NDY3LWE2OGMt MTVmYzBiNjhmODQ0LzEvMm5ERVFmdUpLNHlZRmxOSWhRYWZ6VE1BeWFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS9lNTNkZTUtMWI1Zi00NDY3LWE2OGMtMTVmYzBiNjhmODQ0 LzEvMm5ERVFmdUpLNHlZRmxOSWhRYWZ6VE1BeWFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVtnxuSQQ Qljgrcu2uBGbk7n3rmjEZnjf2WJ+x6a5a9XATpYzpnTt6DHUzU99D4TSiWX42g1l eFeqdVDKG4TAf0DMtF7qMIxftBmocwFQGnw68tTIvsDjjU+sPC3Kz5OzrGmj5z75 F44Tcldj0dzyCD1Fw2YrBLjVvWJ8+4+Egv3xOJkKzwDbnoPKZHrU1xaGmpJcspjE aYsilxgw0xmlrbsjbml24vRtZ826OSzk+fMCd65o5cC5dXbYRisDlH/bWSUL/G6u DAEsqQH3SKYVjOrzxFI0uBJdUKgohU1oV4IJKMEZi4zOhqi/yAQ4juZRQrIZ70gO Nq9vXDgb3OShjA== -----END CERTIFICATE-----Generated at Thu Dec 18 09:55:29 2025 by rpki-client