This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft File: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft (raw, json) Hash identifier: 5Dc7JlT0qAp/04czFsV8jkcqnlLnWfqdR8BrIZgWvN0= Subject key identifier: 73:5B:31:89:39:96:6F:DB:CC:92:39:55:E5:94:D5:B7:E3:56:91:24 Authority key identifier: D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99 Certificate issuer: /CN=d908722a7555dd1621dd6a62209fa8da52942999 Certificate serial: 019AF1D21D6096016FD9206B4D83B8F334AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft Manifest number: 15EB Signing time: Sat 06 Dec 2025 04:01:10 +0000 Manifest this update: Sat 06 Dec 2025 04:01:10 +0000 Manifest next update: Sun 07 Dec 2025 04:01:10 +0000 Files and hashes: 1: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl (hash: FG/Vf8xpdQky4tarDilt1+XNO2b06GrQOjgnnArfG/c=) 2: Y5hh8AgGKAUf_2S15Xwk_892p60.roa (hash: baZuJeVmztFazA/spLlePhpdINyXpI1DJgHdXLAL5/E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:1d:60:96:01:6f:d9:20:6b:4d:83:b8:f3:34:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d908722a7555dd1621dd6a62209fa8da52942999 Validity Not Before: Dec 6 04:01:10 2025 GMT Not After : Dec 7 04:01:10 2025 GMT Subject: CN=735b318939966fdbcc923955e594d5b7e3569124 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8b:bb:7b:0d:22:32:9c:2b:21:4c:b6:7f:8c: d6:5d:18:28:61:58:02:00:59:4e:42:99:c6:fb:45: 28:93:be:74:b6:86:80:c7:f7:2e:6f:95:da:85:c2: 7e:9f:fb:30:ca:85:f0:47:1c:d5:5c:80:03:9b:e4: 76:fd:e9:28:34:a3:e1:4e:3c:90:d2:57:17:7f:6c: 51:6f:ed:da:69:6a:80:2f:62:3a:bc:97:ae:2c:40: e6:d4:cf:24:ce:33:58:51:1a:2c:5d:7b:ef:97:79: d2:1b:7b:54:8b:94:34:f9:d5:b9:3c:32:26:de:9b: f6:f3:f4:b1:48:9f:08:aa:44:fd:3c:ef:c8:9b:91: f1:58:8d:f5:24:5f:ed:fc:b8:99:5a:70:da:87:20: 7d:a6:0a:84:fc:04:c4:54:2f:fa:70:0a:69:08:95: 84:b1:94:9d:13:8f:e4:86:7d:f8:85:20:b1:7d:8f: 45:2d:f6:24:d9:af:82:3b:32:34:d4:8a:58:5b:cd: 9e:5a:e0:23:13:b3:74:d5:28:fa:92:cd:11:0b:d8: d6:03:34:da:42:0f:bb:bd:fc:5b:08:01:30:b0:da: 6c:35:45:c4:35:2e:cd:8e:14:f5:a6:8b:cd:05:00: fb:43:e6:2c:8c:b4:33:25:7b:84:c2:8e:d5:b0:1f: f4:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:5B:31:89:39:96:6F:DB:CC:92:39:55:E5:94:D5:B7:E3:56:91:24 X509v3 Authority Key Identifier: keyid:D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:3c:c2:ef:2f:5b:82:65:d4:75:a8:64:9f:74:cf:d6:2c:70: 8f:49:97:5c:99:70:2d:c9:cd:b6:23:60:8f:6d:6a:fb:e6:0f: 42:68:d7:14:bd:55:68:79:8d:47:c8:8c:73:be:15:8f:c5:ec: 1b:51:af:fa:ee:c7:e4:18:b5:3a:12:44:4b:43:84:fa:f7:c2: b5:6d:12:dc:bb:a6:16:b3:66:09:d9:29:24:63:b9:32:41:6e: b6:d9:72:0b:22:3c:60:96:78:e3:9c:d0:61:f3:01:55:94:6d: 47:37:b2:e7:dc:47:57:5c:be:55:ec:3e:f4:07:23:57:92:34: 1c:75:1a:e0:a0:95:ee:8f:83:29:3a:e8:e0:c9:23:2f:2d:cb: 80:b1:18:4c:d1:d5:9f:d5:a0:5e:0d:e9:14:c9:7f:25:6b:2c: 90:67:22:45:3d:3c:01:f6:08:6d:a7:ba:21:0f:c8:c5:8f:10: a2:6b:78:25:67:da:b8:5a:bb:37:b2:0a:db:37:33:53:bb:0d: f5:e9:91:f5:37:fd:30:44:48:ff:c3:8c:a4:76:d0:39:0b:04: 0a:0a:50:84:b9:5e:27:2e:03:95:52:29:a5:cd:f9:14:b6:f4: e8:df:1e:f3:ce:c3:93:87:0b:81:9f:70:6a:84:62:48:60:1e: cd:d3:89:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0h1glgFv2SBrTYO48zSuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5MDg3MjJhNzU1NWRkMTYyMWRkNmE2MjIwOWZhOGRhNTI5 NDI5OTkwHhcNMjUxMjA2MDQwMTEwWhcNMjUxMjA3MDQwMTEwWjAzMTEwLwYDVQQD Eyg3MzViMzE4OTM5OTY2ZmRiY2M5MjM5NTVlNTk0ZDViN2UzNTY5MTI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwou7ew0iMpwrIUy2f4zWXRgoYVgC AFlOQpnG+0Uok750toaAx/cub5XahcJ+n/swyoXwRxzVXIADm+R2/ekoNKPhTjyQ 0lcXf2xRb+3aaWqAL2I6vJeuLEDm1M8kzjNYURosXXvvl3nSG3tUi5Q0+dW5PDIm 3pv28/SxSJ8IqkT9PO/Im5HxWI31JF/t/LiZWnDahyB9pgqE/ATEVC/6cAppCJWE sZSdE4/khn34hSCxfY9FLfYk2a+COzI01IpYW82eWuAjE7N01Sj6ks0RC9jWAzTa Qg+7vfxbCAEwsNpsNUXENS7NjhT1povNBQD7Q+YsjLQzJXuEwo7VsB/07QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHNbMYk5lm/bzJI5VeWU1bfjVpEkMB8GA1UdIwQY MBaAFNkIcip1Vd0WId1qYiCfqNpSlCmZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlFoeUtuVlYzUlloM1dwaUlKLW8ybEtVS1prLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8wODY2YjAtZmU2Yi00NjZmLWJiODYt MmQ5ZmNhNjYyZTUyLzEvMlFoeUtuVlYzUlloM1dwaUlKLW8ybEtVS1prLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yi8wODY2YjAtZmU2Yi00NjZmLWJiODYtMmQ5ZmNhNjYyZTUy LzEvMlFoeUtuVlYzUlloM1dwaUlKLW8ybEtVS1prLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHDzC7y9b gmXUdahkn3TP1ixwj0mXXJlwLcnNtiNgj21q++YPQmjXFL1VaHmNR8iMc74Vj8Xs G1Gv+u7H5Bi1OhJES0OE+vfCtW0S3LumFrNmCdkpJGO5MkFuttlyCyI8YJZ445zQ YfMBVZRtRzey59xHV1y+Vew+9AcjV5I0HHUa4KCV7o+DKTro4MkjLy3LgLEYTNHV n9WgXg3pFMl/JWsskGciRT08AfYIbae6IQ/IxY8Qomt4JWfauFq7N7IK2zczU7sN 9emR9Tf9MERI/8OMpHbQOQsECgpQhLleJy4DlVIppc35FLb06N8e887Dk4cLgZ9w aoRiSGAezdOJ2w== -----END CERTIFICATE-----Generated at Sat Dec 6 11:31:55 2025 by rpki-client