This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft File: 2dHiILYBtn_jDLt7fBvyL74i-08.mft (raw, json) Hash identifier: gryvYk9+kOf9oEPsomC1ybfGa4OxG65ZZbM9ZYdO3TU= Subject key identifier: 74:68:3B:E5:0B:E6:31:5D:64:7C:4D:86:ED:64:47:76:E8:B8:14:88 Authority key identifier: D9:D1:E2:20:B6:01:B6:7F:E3:0C:BB:7B:7C:1B:F2:2F:BE:22:FB:4F Certificate issuer: /CN=d9d1e220b601b67fe30cbb7b7c1bf22fbe22fb4f Certificate serial: 019AF12DA1B3ED547A3DC9A91E8B41FA82C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2dHiILYBtn_jDLt7fBvyL74i-08.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft Manifest number: 0BEE Signing time: Sat 06 Dec 2025 01:01:30 +0000 Manifest this update: Sat 06 Dec 2025 01:01:30 +0000 Manifest next update: Sun 07 Dec 2025 01:01:30 +0000 Files and hashes: 1: 2dHiILYBtn_jDLt7fBvyL74i-08.crl (hash: s06tg42Wsuuc1woyCpHeCPktt3NGTmBGi9KnI5HxDww=) 2: jIeL0Ff1YswP2z65Y_1AGOy9fmw.roa (hash: OwVjmKWjz0aDaa4mX/kuMdsef7BkmTlqjQTaGRRWwQ8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.crl rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft rsync://rpki.ripe.net/repository/DEFAULT/2dHiILYBtn_jDLt7fBvyL74i-08.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:a1:b3:ed:54:7a:3d:c9:a9:1e:8b:41:fa:82:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9d1e220b601b67fe30cbb7b7c1bf22fbe22fb4f Validity Not Before: Dec 6 01:01:30 2025 GMT Not After : Dec 7 01:01:30 2025 GMT Subject: CN=74683be50be6315d647c4d86ed644776e8b81488 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:79:c7:86:c5:15:1a:84:5c:01:19:37:5b:0d: de:ea:dd:8d:f7:61:ed:e1:33:49:8c:a6:78:33:ab: 7e:52:dc:ea:d6:b2:f8:83:e5:64:8a:b1:f0:57:e4: f8:db:cb:87:5c:b4:19:59:c1:ac:57:50:c4:b6:19: e4:89:4c:da:63:6d:4e:68:c6:a8:3b:e5:40:6f:34: bd:8a:22:4a:97:ac:c7:f3:4a:13:08:2d:91:71:79: 9b:95:d1:bf:66:2b:5d:87:89:ee:bb:fb:e3:60:38: 5a:e4:eb:de:52:8b:07:77:08:0b:4c:a1:f7:6c:19: c8:70:54:54:b9:1f:c9:56:e4:0d:32:c5:e5:f8:a0: 64:9e:c4:1a:df:5e:e7:49:f3:30:d2:14:f6:79:58: 57:8b:c3:30:13:81:07:84:95:c0:d7:20:1d:f0:8e: 59:c0:4c:4d:b8:13:ea:96:3e:05:b2:c0:01:ce:0f: 5b:9c:f1:77:49:a9:15:64:4d:2b:ef:2b:5a:4e:25: c4:1e:86:8f:5a:06:09:9f:a8:84:f3:97:e8:de:3c: 31:73:c6:7e:2a:40:2b:88:c0:aa:4d:e7:b5:61:9e: ee:54:f3:d0:88:05:3e:70:4b:19:bc:9b:27:9e:0a: 54:fe:b4:aa:2a:4b:9c:e8:b8:0c:28:02:6e:bb:ad: 0c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:68:3B:E5:0B:E6:31:5D:64:7C:4D:86:ED:64:47:76:E8:B8:14:88 X509v3 Authority Key Identifier: keyid:D9:D1:E2:20:B6:01:B6:7F:E3:0C:BB:7B:7C:1B:F2:2F:BE:22:FB:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2dHiILYBtn_jDLt7fBvyL74i-08.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:01:6e:2a:b2:97:61:ad:f2:b5:23:d0:15:45:bb:6f:40:98: 5d:74:6f:bf:07:68:96:1e:53:17:5f:b1:63:8f:9e:93:ea:f0: 15:2d:7c:c9:e2:e5:a3:20:b8:d3:1d:28:3d:c4:77:d5:60:a2: 67:8f:3b:3c:68:c9:f1:48:ef:4f:11:4d:f6:d8:96:c7:1b:39: 38:7e:b2:6a:07:32:e8:ba:77:6b:e1:db:8c:81:2e:6a:9a:75: dd:f6:62:61:35:45:95:dd:72:a9:09:86:ef:0a:12:d3:62:98: a9:39:be:ab:4b:ff:54:44:86:a0:e9:f9:17:e4:73:ac:67:3b: 71:6b:4d:33:55:8c:8e:3c:5a:81:65:76:fa:47:47:08:b9:7f: 27:3a:78:60:3c:f4:1f:e8:ed:7a:89:09:cb:5e:b4:3b:81:c9: 6d:3f:bf:4c:b4:c2:21:66:a7:9f:96:28:59:aa:0d:a6:e7:2e: e1:53:5e:c5:9e:01:2b:f4:e7:e8:37:a0:be:5d:c0:7a:b0:13: d1:72:db:78:5d:6f:ac:a7:2f:41:ad:7a:c0:ea:ea:d3:a5:bc: 1f:07:af:d6:0d:6d:9a:00:40:72:31:e0:40:7a:d0:cb:4e:2a: ec:6f:33:13:2e:2a:85:5e:7b:64:de:1e:de:4d:73:66:fa:00: c4:5d:d2:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLaGz7VR6PcmpHotB+oLFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5ZDFlMjIwYjYwMWI2N2ZlMzBjYmI3YjdjMWJmMjJmYmUy MmZiNGYwHhcNMjUxMjA2MDEwMTMwWhcNMjUxMjA3MDEwMTMwWjAzMTEwLwYDVQQD Eyg3NDY4M2JlNTBiZTYzMTVkNjQ3YzRkODZlZDY0NDc3NmU4YjgxNDg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqnnHhsUVGoRcARk3Ww3e6t2N92Ht 4TNJjKZ4M6t+Utzq1rL4g+VkirHwV+T428uHXLQZWcGsV1DEthnkiUzaY21OaMao O+VAbzS9iiJKl6zH80oTCC2RcXmbldG/Zitdh4nuu/vjYDha5OveUosHdwgLTKH3 bBnIcFRUuR/JVuQNMsXl+KBknsQa317nSfMw0hT2eVhXi8MwE4EHhJXA1yAd8I5Z wExNuBPqlj4FssABzg9bnPF3SakVZE0r7ytaTiXEHoaPWgYJn6iE85fo3jwxc8Z+ KkAriMCqTee1YZ7uVPPQiAU+cEsZvJsnngpU/rSqKkuc6LgMKAJuu60MzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHRoO+UL5jFdZHxNhu1kR3bouBSIMB8GA1UdIwQY MBaAFNnR4iC2AbZ/4wy7e3wb8i++IvtPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmRIaUlMWUJ0bl9qREx0N2ZCdnlMNzRpLTA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC82NDExOWYtOTY4NC00Mjg0LWIyMzIt YWYyN2Q3Y2ExYmY2LzEvMmRIaUlMWUJ0bl9qREx0N2ZCdnlMNzRpLTA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC82NDExOWYtOTY4NC00Mjg0LWIyMzItYWYyN2Q3Y2ExYmY2 LzEvMmRIaUlMWUJ0bl9qREx0N2ZCdnlMNzRpLTA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWAFuKrKX Ya3ytSPQFUW7b0CYXXRvvwdolh5TF1+xY4+ek+rwFS18yeLloyC40x0oPcR31WCi Z487PGjJ8UjvTxFN9tiWxxs5OH6yagcy6Lp3a+HbjIEuapp13fZiYTVFld1yqQmG 7woS02KYqTm+q0v/VESGoOn5F+RzrGc7cWtNM1WMjjxagWV2+kdHCLl/Jzp4YDz0 H+jteokJy160O4HJbT+/TLTCIWann5YoWaoNpucu4VNexZ4BK/Tn6Degvl3AerAT 0XLbeF1vrKcvQa16wOrq06W8Hwev1g1tmgBAcjHgQHrQy04q7G8zEy4qhV57ZN4e 3k1zZvoAxF3S1Q== -----END CERTIFICATE-----Generated at Sat Dec 6 07:46:46 2025 by rpki-client