This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft File: 2KVuLWOsXam-012gHL-tIl8EvrA.mft (raw, json) Hash identifier: TD1pK1YGsVeJAnnGmV+UJVlYLZkUwFYGixFHILN3zaM= Subject key identifier: 50:D7:C2:DB:35:E8:27:4A:37:0E:31:5B:B0:BF:4A:8A:96:DA:5C:54 Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0 Certificate issuer: /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0 Certificate serial: 019AF5AF082BD90CADB2C454EAEC4935618D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft Manifest number: 1766 Signing time: Sat 06 Dec 2025 22:01:20 +0000 Manifest this update: Sat 06 Dec 2025 22:01:20 +0000 Manifest next update: Sun 07 Dec 2025 22:01:20 +0000 Files and hashes: 1: 2KVuLWOsXam-012gHL-tIl8EvrA.crl (hash: 7apzcA4ghQILHo/dg6EEApaTnywWpC48/mTAdqPZdsE=) 2: RCebozhiTcCblvotMpWCdCJ1ob8.roa (hash: ZFZoBEoVJHz2x12TIIxXed5WibUd/7/bBstI8X2ocJo=) 3: nQS504JwOxjiWHwncxw2UXqZAyw.roa (hash: 3N4RSXWIhF3ipth4gfwK0f71CjoGPMdi4/hqfhot2X4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:af:08:2b:d9:0c:ad:b2:c4:54:ea:ec:49:35:61:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0 Validity Not Before: Dec 6 22:01:20 2025 GMT Not After : Dec 7 22:01:20 2025 GMT Subject: CN=50d7c2db35e8274a370e315bb0bf4a8a96da5c54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:89:d1:12:47:9c:e9:ad:d6:53:af:9d:a2:74: 82:ad:b7:cd:6e:81:df:d4:f4:26:66:3d:7e:c6:01: 05:66:4c:09:76:e7:c4:ac:8f:18:f1:83:56:11:8e: 63:8a:b9:0c:7b:9f:7c:b2:74:d4:dc:cd:25:b3:a3: 21:c6:f3:03:ae:02:cf:c8:30:0e:7f:83:99:84:0e: ce:a3:1b:27:34:f7:01:f2:f9:b0:02:2d:a3:22:b9: c1:c2:c3:9e:43:a5:4c:16:5a:a5:a1:2d:d2:d6:54: 9f:89:31:3c:27:52:46:c5:db:53:dd:d6:8f:b7:51: 8a:b0:d5:a2:3a:dd:20:11:21:47:5c:bb:a6:d7:a5: 93:db:43:2e:9a:92:c5:5c:15:4a:6d:ed:b6:cd:61: 7b:94:7e:e6:3a:35:ba:10:3c:12:fc:a8:3a:98:b2: 92:59:7c:f2:5b:8c:7e:ee:f5:a4:b0:00:18:db:e5: d5:b1:ec:26:d2:48:92:e2:00:83:12:cf:86:7c:03: bf:b6:ca:3d:a3:27:6a:57:92:5c:aa:1c:39:5e:ea: e6:55:66:10:97:e6:16:26:0c:6c:2d:45:d6:20:9e: 2f:30:19:1f:2e:aa:c9:bd:0f:4f:35:ef:1f:09:7a: 2a:36:9b:9d:26:f0:82:65:20:72:4d:37:40:79:d1: ab:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:D7:C2:DB:35:E8:27:4A:37:0E:31:5B:B0:BF:4A:8A:96:DA:5C:54 X509v3 Authority Key Identifier: keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:79:59:d0:78:c2:c7:95:cd:0b:95:f8:0f:a6:c0:b3:f9:f4: 80:0d:1c:53:89:28:7c:b0:a0:b8:a3:d3:43:7d:8e:4a:c1:cd: 6f:78:b5:35:aa:d8:b2:74:fb:99:d9:5b:a8:d5:2d:39:3a:ca: 7c:c6:37:ac:65:f1:a1:45:df:63:35:e3:02:b0:7d:4d:29:39: 21:28:14:69:c1:2d:dc:32:1d:b4:eb:ce:91:81:62:7d:cc:29: e6:33:2b:00:37:82:dd:01:77:ef:ed:f4:5d:4b:c7:f9:5b:ed: 9c:b1:a3:f2:38:07:ba:46:e1:62:24:fa:fe:64:7d:93:ee:b0: fb:6c:64:03:97:e7:3b:ad:36:ee:bc:f0:02:f6:63:33:39:1f: ab:11:53:c3:14:9d:d1:32:ce:10:97:63:ca:81:0f:20:ff:0b: d5:fd:32:67:d7:de:80:13:76:9e:d8:2b:b6:44:2a:59:f3:4a: c1:55:38:f7:ea:a2:01:7a:e9:29:47:a8:05:d2:d1:e8:b6:58: 51:9d:1c:42:c5:aa:60:9b:0f:59:7d:60:da:45:2a:cc:d7:a6: 03:a7:47:a2:4e:05:64:dc:c5:fe:29:52:fc:54:3e:de:0b:c4: 19:20:3a:40:27:cb:08:8b:c7:bc:ca:a2:7f:80:35:7e:f6:bf: 60:c3:57:7a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1rwgr2QytssRU6uxJNWGNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4YTU2ZTJkNjNhYzVkYTliZWQzNWRhMDFjYmZhZDIyNWYw NGJlYjAwHhcNMjUxMjA2MjIwMTIwWhcNMjUxMjA3MjIwMTIwWjAzMTEwLwYDVQQD Eyg1MGQ3YzJkYjM1ZTgyNzRhMzcwZTMxNWJiMGJmNGE4YTk2ZGE1YzU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8InREkec6a3WU6+donSCrbfNboHf 1PQmZj1+xgEFZkwJdufErI8Y8YNWEY5jirkMe598snTU3M0ls6MhxvMDrgLPyDAO f4OZhA7OoxsnNPcB8vmwAi2jIrnBwsOeQ6VMFlqloS3S1lSfiTE8J1JGxdtT3daP t1GKsNWiOt0gESFHXLum16WT20MumpLFXBVKbe22zWF7lH7mOjW6EDwS/Kg6mLKS WXzyW4x+7vWksAAY2+XVsewm0kiS4gCDEs+GfAO/tso9oydqV5Jcqhw5XurmVWYQ l+YWJgxsLUXWIJ4vMBkfLqrJvQ9PNe8fCXoqNpudJvCCZSByTTdAedGrowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFDXwts16CdKNw4xW7C/SoqW2lxUMB8GA1UdIwQY MBaAFNilbi1jrF2pvtNdoBy/rSJfBL6wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMktWdUxXT3NYYW0tMDEyZ0hMLXRJbDhFdnJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC83NDE3N2MtNWUzYi00ODM2LTg4Njct ZThkNDdiYmEyNWJmLzEvMktWdUxXT3NYYW0tMDEyZ0hMLXRJbDhFdnJBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC83NDE3N2MtNWUzYi00ODM2LTg4NjctZThkNDdiYmEyNWJm LzEvMktWdUxXT3NYYW0tMDEyZ0hMLXRJbDhFdnJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbHlZ0HjC x5XNC5X4D6bAs/n0gA0cU4kofLCguKPTQ32OSsHNb3i1NarYsnT7mdlbqNUtOTrK fMY3rGXxoUXfYzXjArB9TSk5ISgUacEt3DIdtOvOkYFifcwp5jMrADeC3QF37+30 XUvH+VvtnLGj8jgHukbhYiT6/mR9k+6w+2xkA5fnO6027rzwAvZjMzkfqxFTwxSd 0TLOEJdjyoEPIP8L1f0yZ9fegBN2ntgrtkQqWfNKwVU49+qiAXrpKUeoBdLR6LZY UZ0cQsWqYJsPWX1g2kUqzNemA6dHok4FZNzF/ilS/FQ+3gvEGSA6QCfLCIvHvMqi f4A1fva/YMNXeg== -----END CERTIFICATE-----Generated at Sun Dec 7 00:38:47 2025 by rpki-client