This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft File: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft (raw, json) Hash identifier: 0kV653ewJ3bbg7JY26PrJJRjawv6gMULLUCQJDldumM= Subject key identifier: 6D:5A:BB:F3:9F:08:57:00:CA:C8:D3:95:F4:9C:2D:64:0B:F7:BE:2D Authority key identifier: DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59 Certificate issuer: /CN=da73a39a0e045ddfaef502f1fd91c6cc16509459 Certificate serial: 019AF2771DBA758B418AA8FADA224D9AF180 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft Manifest number: 0EF1 Signing time: Sat 06 Dec 2025 07:01:23 +0000 Manifest this update: Sat 06 Dec 2025 07:01:23 +0000 Manifest next update: Sun 07 Dec 2025 07:01:23 +0000 Files and hashes: 1: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl (hash: V1e+TuxThwYsCsTtE3PgnI6bbTwFGTfmcqI3Om4VI4A=) 2: nEst59VNXuZ4VJfEimqfkDoIWMw.roa (hash: MVYyTOwc+4oCrDyXY6sI17JYzQycO6fjKklmhjG1KnA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:77:1d:ba:75:8b:41:8a:a8:fa:da:22:4d:9a:f1:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da73a39a0e045ddfaef502f1fd91c6cc16509459 Validity Not Before: Dec 6 07:01:23 2025 GMT Not After : Dec 7 07:01:23 2025 GMT Subject: CN=6d5abbf39f085700cac8d395f49c2d640bf7be2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:61:0b:44:87:e2:0c:92:3a:ac:94:07:cc:23: f0:e1:e3:82:6d:85:9a:63:12:d7:44:b7:0e:9a:79: 90:d9:ce:a0:29:29:19:f8:1b:10:66:2d:22:56:c5: 1a:71:f0:c3:61:b4:a6:b9:6d:b0:c5:1f:d4:0f:ca: 84:e1:13:dc:11:15:1a:8b:02:69:59:03:ba:17:ef: d5:f6:65:f6:8a:9a:e6:17:28:20:4e:d2:02:b6:12: 62:ed:52:ec:b9:5e:19:56:cd:0e:1a:17:a2:f6:e4: ab:cd:65:30:ea:94:d7:2c:10:1b:15:05:2f:a8:45: 51:b0:74:08:d7:2c:c3:f4:3e:52:56:9f:67:06:d8: 0d:e1:d8:e8:02:81:e1:82:ba:1f:0a:b6:20:77:58: 2d:6b:bd:f1:70:58:dd:72:b1:5c:aa:08:fc:61:c0: 70:41:a1:0f:05:80:c8:e8:4b:fd:ae:59:91:11:13: f0:29:e6:9b:f5:e2:64:59:ab:9c:7c:45:1c:43:9a: 7b:56:7b:16:a6:d5:d1:6d:b9:af:25:e7:1a:11:0e: 15:e1:21:22:d1:ea:a9:ad:db:df:73:10:b4:83:66: bd:30:18:e4:d8:52:47:1c:da:fe:dd:71:f4:6d:93: 7a:9f:6f:d8:e6:5d:92:f5:87:50:06:f5:09:3a:42: 40:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:5A:BB:F3:9F:08:57:00:CA:C8:D3:95:F4:9C:2D:64:0B:F7:BE:2D X509v3 Authority Key Identifier: keyid:DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:6a:d4:d0:31:26:80:a9:90:58:bc:02:93:ea:32:59:7d:ee: c7:36:e6:09:3b:e1:fb:20:9c:3b:2e:8d:62:6b:bb:fe:08:b5: 0c:0a:61:98:12:30:f5:c4:9b:68:b9:1e:2f:b0:2e:3f:44:93: 83:51:20:55:a7:49:15:50:71:00:8c:ef:d5:bd:ef:24:f1:a4: 6f:ed:0f:98:48:0c:73:6d:03:74:f9:fe:94:ca:e9:f1:51:11: 89:d3:f0:66:4e:44:75:f5:23:62:7b:b5:6d:b5:2b:c5:1a:34: f2:c6:15:85:b6:75:32:fe:8f:aa:42:b1:d1:67:b5:0b:b9:27: 3b:48:1f:cd:da:9a:fb:a2:02:b0:39:d6:e5:e5:41:55:5d:a2: d3:c2:4b:de:75:5e:70:95:55:89:8f:ac:b1:fe:4b:32:d9:f8: 4a:08:9d:04:fe:cc:75:f2:51:0a:3e:4f:58:60:3f:98:9b:aa: 34:92:72:ce:62:0c:49:d8:36:d6:4e:48:ad:2a:0d:ac:6e:bd: c4:21:f2:9d:a9:bd:58:25:15:0a:e7:a5:c4:c9:90:c7:38:01: 32:be:31:14:c0:f4:99:3b:31:3d:38:7e:4c:b0:38:de:c9:d2: 96:c2:17:ef:a7:3a:fd:65:6b:56:b7:35:6e:a0:66:2a:c5:61: 8e:2d:99:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydx26dYtBiqj62iJNmvGAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhNzNhMzlhMGUwNDVkZGZhZWY1MDJmMWZkOTFjNmNjMTY1 MDk0NTkwHhcNMjUxMjA2MDcwMTIzWhcNMjUxMjA3MDcwMTIzWjAzMTEwLwYDVQQD Eyg2ZDVhYmJmMzlmMDg1NzAwY2FjOGQzOTVmNDljMmQ2NDBiZjdiZTJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWELRIfiDJI6rJQHzCPw4eOCbYWa YxLXRLcOmnmQ2c6gKSkZ+BsQZi0iVsUacfDDYbSmuW2wxR/UD8qE4RPcERUaiwJp WQO6F+/V9mX2iprmFyggTtICthJi7VLsuV4ZVs0OGhei9uSrzWUw6pTXLBAbFQUv qEVRsHQI1yzD9D5SVp9nBtgN4djoAoHhgrofCrYgd1gta73xcFjdcrFcqgj8YcBw QaEPBYDI6Ev9rlmRERPwKeab9eJkWaucfEUcQ5p7VnsWptXRbbmvJecaEQ4V4SEi 0eqprdvfcxC0g2a9MBjk2FJHHNr+3XH0bZN6n2/Y5l2S9YdQBvUJOkJApQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG1au/OfCFcAysjTlfScLWQL974tMB8GA1UdIwQY MBaAFNpzo5oOBF3frvUC8f2RxswWUJRZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMm5Pam1nNEVYZC11OVFMeF9aSEd6QlpRbEZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi8xNzM3ZmMtYjIyMS00ZmYwLWJmYTct NWQ2NzRjYWRkZDZmLzEvMm5Pam1nNEVYZC11OVFMeF9aSEd6QlpRbEZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi8xNzM3ZmMtYjIyMS00ZmYwLWJmYTctNWQ2NzRjYWRkZDZm LzEvMm5Pam1nNEVYZC11OVFMeF9aSEd6QlpRbEZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcWrU0DEm gKmQWLwCk+oyWX3uxzbmCTvh+yCcOy6NYmu7/gi1DAphmBIw9cSbaLkeL7AuP0ST g1EgVadJFVBxAIzv1b3vJPGkb+0PmEgMc20DdPn+lMrp8VERidPwZk5EdfUjYnu1 bbUrxRo08sYVhbZ1Mv6PqkKx0We1C7knO0gfzdqa+6ICsDnW5eVBVV2i08JL3nVe cJVViY+ssf5LMtn4SgidBP7MdfJRCj5PWGA/mJuqNJJyzmIMSdg21k5IrSoNrG69 xCHynam9WCUVCuelxMmQxzgBMr4xFMD0mTsxPTh+TLA43snSlsIX76c6/WVrVrc1 bqBmKsVhji2Zxw== -----END CERTIFICATE-----Generated at Sat Dec 6 11:00:23 2025 by rpki-client