This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft File: 2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft (raw, json) Hash identifier: XSEOx/GGpkvoZ0BVcZRf9AbHSKbgIMgnV+E/ruvv1jk= Subject key identifier: FC:9E:E8:3C:F9:9A:AF:1E:31:BA:CA:08:F8:E8:00:62:A0:D9:2A:12 Authority key identifier: D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88 Certificate issuer: /CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888 Certificate serial: 019AF276D42FA3CEE36692BF5C1DAD371F3D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft Manifest number: 0E83 Signing time: Sat 06 Dec 2025 07:01:04 +0000 Manifest this update: Sat 06 Dec 2025 07:01:04 +0000 Manifest next update: Sun 07 Dec 2025 07:01:04 +0000 Files and hashes: 1: 2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl (hash: /Kg+fQkHpiSdHJMjbYbPoRrlNh4pE1uz2mCQzES4NGs=) 2: GhbIbk50hv6g93dh7hGhzK6K_74.roa (hash: nXi3Gj76e6GTyqlSijwexlGEZ4aKaxuj/QihrtfAHS8=) 3: R5r0xeVYQuyhFWywaHju63NvX88.roa (hash: gil6oFrijLp6JqgDOMjfduAOivvAur9Q9eunuVq1Ysg=) 4: TofwY-R4zO7hCFwhNRcFqFccDIA.roa (hash: CO89XYgmv4EUpm6JNaIOn/T7FUsKcLGJGFWRoloHQXo=) 5: kEveC8WkpMXtAhCjQYal_7N8cqU.roa (hash: 36t2IiG5a0ru6GNWxSIKI2twOH4WabuzXbDN7PDUMCw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:d4:2f:a3:ce:e3:66:92:bf:5c:1d:ad:37:1f:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888 Validity Not Before: Dec 6 07:01:04 2025 GMT Not After : Dec 7 07:01:04 2025 GMT Subject: CN=fc9ee83cf99aaf1e31baca08f8e80062a0d92a12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ae:3f:b0:ff:46:ee:57:6e:a0:97:42:23:30: fc:2f:ab:f6:5c:bc:48:1a:4d:f5:65:0e:28:01:06: 7f:57:e1:05:a6:63:99:3d:72:98:3c:58:10:fa:ce: e3:c6:d7:63:7b:93:00:c8:44:92:0f:a1:b3:24:ca: 5a:af:54:55:4d:d8:7e:c9:93:68:bc:e3:f5:e5:c3: ab:98:1b:94:25:87:33:f9:b9:12:fc:29:06:e1:3e: 0e:35:e6:ab:14:71:32:ff:74:2e:f2:99:d0:df:bc: e6:a6:d1:88:41:59:42:d3:ff:5a:7f:97:a9:5a:e1: 31:dd:1b:02:9d:f7:61:e7:5f:fb:18:88:7a:ff:94: ec:84:a8:aa:88:e0:e5:a0:12:b3:0d:00:de:cf:cd: 8c:96:1b:44:0f:15:a9:bd:bb:f9:59:96:c1:2f:93: 06:16:6b:65:a2:90:c6:45:79:1d:d1:64:73:ae:04: 0d:68:a2:9c:38:72:85:33:f6:59:01:a7:f9:53:82: b1:13:ec:27:2d:2b:e6:85:7c:30:12:b8:e2:d2:e0: 93:3e:a7:ae:7f:9a:e4:8c:dd:51:27:5d:16:20:e9: d8:71:df:b5:76:6c:63:79:b2:ad:3b:7e:b2:68:80: d8:bd:02:73:79:80:02:e7:d9:d9:ff:e5:9f:dd:ba: 02:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:9E:E8:3C:F9:9A:AF:1E:31:BA:CA:08:F8:E8:00:62:A0:D9:2A:12 X509v3 Authority Key Identifier: keyid:D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:bb:6c:81:77:cc:0b:dc:3e:27:21:4c:41:c2:f1:bf:a7:eb: 45:68:8d:a6:02:8f:9e:e8:1c:01:55:c3:4d:09:bb:5c:06:0e: fd:09:68:ba:ee:49:67:58:4e:2f:d1:a4:5f:db:b0:d4:66:cd: 88:a3:29:dd:06:fd:98:07:f9:8c:8c:85:60:2b:cf:a1:57:a4: 77:5b:bc:66:42:44:6a:52:44:5c:3e:a2:3e:83:93:16:d6:bc: d6:01:a3:ea:ca:92:3a:da:29:d1:8e:cf:c9:b6:65:87:18:38: a9:3b:1a:18:f9:9a:a3:6b:65:34:e4:62:9d:3a:38:ef:ae:08: 74:f0:65:81:ee:82:1a:fa:f9:0e:1e:29:71:7b:27:c5:aa:01: 31:ff:27:87:17:e5:3f:3e:4c:7f:dc:fe:21:f6:ce:ee:43:ec: a7:1c:06:ce:a3:89:d4:e3:df:d2:98:19:9b:ed:f4:b9:7f:e1: 60:3c:0e:42:4f:8c:bd:51:18:3b:69:8b:ab:95:28:00:36:07: e4:83:1c:cd:2e:13:05:e4:97:50:56:fd:2e:2f:2f:a8:4b:a7: d0:02:22:af:13:81:10:3a:d7:4c:2a:4b:38:35:5e:51:a4:bb: 82:f1:d5:4d:ec:ba:eb:31:92:90:c2:03:a6:e0:32:e3:64:b9: 16:f3:ab:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydtQvo87jZpK/XB2tNx89MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5YWQxOGY0YzM2MDY3MjIwZjRkODMzY2JjNzhhMTBmOTRl YjA4ODgwHhcNMjUxMjA2MDcwMTA0WhcNMjUxMjA3MDcwMTA0WjAzMTEwLwYDVQQD EyhmYzllZTgzY2Y5OWFhZjFlMzFiYWNhMDhmOGU4MDA2MmEwZDkyYTEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx64/sP9G7lduoJdCIzD8L6v2XLxI Gk31ZQ4oAQZ/V+EFpmOZPXKYPFgQ+s7jxtdje5MAyESSD6GzJMpar1RVTdh+yZNo vOP15cOrmBuUJYcz+bkS/CkG4T4ONearFHEy/3Qu8pnQ37zmptGIQVlC0/9af5ep WuEx3RsCnfdh51/7GIh6/5TshKiqiODloBKzDQDez82MlhtEDxWpvbv5WZbBL5MG FmtlopDGRXkd0WRzrgQNaKKcOHKFM/ZZAaf5U4KxE+wnLSvmhXwwErji0uCTPqeu f5rkjN1RJ10WIOnYcd+1dmxjebKtO36yaIDYvQJzeYAC59nZ/+Wf3boCDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPye6Dz5mq8eMbrKCPjoAGKg2SoSMB8GA1UdIwQY MBaAFNmtGPTDYGciD02DPLx4oQ+U6wiIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmEwWTlNTmdaeUlQVFlNOHZIaWhENVRyQ0lnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC9kMzUxYmYtNzFjZS00ODU3LTllNTAt YzI2NDczODVlNzI3LzEvMmEwWTlNTmdaeUlQVFlNOHZIaWhENVRyQ0lnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OC9kMzUxYmYtNzFjZS00ODU3LTllNTAtYzI2NDczODVlNzI3 LzEvMmEwWTlNTmdaeUlQVFlNOHZIaWhENVRyQ0lnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArLtsgXfM C9w+JyFMQcLxv6frRWiNpgKPnugcAVXDTQm7XAYO/Qlouu5JZ1hOL9GkX9uw1GbN iKMp3Qb9mAf5jIyFYCvPoVekd1u8ZkJEalJEXD6iPoOTFta81gGj6sqSOtop0Y7P ybZlhxg4qTsaGPmao2tlNORinTo4764IdPBlge6CGvr5Dh4pcXsnxaoBMf8nhxfl Pz5Mf9z+IfbO7kPspxwGzqOJ1OPf0pgZm+30uX/hYDwOQk+MvVEYO2mLq5UoADYH 5IMczS4TBeSXUFb9Li8vqEun0AIirxOBEDrXTCpLODVeUaS7gvHVTey66zGSkMID puAy42S5FvOrwQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:42:27 2025 by rpki-client