This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.mft File: 2V_Z-7sug4agu3amyEH8aKfD65g.mft (raw, json) Hash identifier: NemFAcfkK4qlXw2NZKdL/72VuyETpS3j5T6d98EBrNA= Subject key identifier: F8:FF:4B:E5:B0:EE:62:C3:72:35:92:0A:52:35:37:53:65:52:CB:DE Authority key identifier: D9:5F:D9:FB:BB:2E:83:86:A0:BB:76:A6:C8:41:FC:68:A7:C3:EB:98 Certificate issuer: /CN=d95fd9fbbb2e8386a0bb76a6c841fc68a7c3eb98 Certificate serial: 019AF240149D5423D7CD6D511552F5C64B64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2V_Z-7sug4agu3amyEH8aKfD65g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.mft Manifest number: 03B3 Signing time: Sat 06 Dec 2025 06:01:17 +0000 Manifest this update: Sat 06 Dec 2025 06:01:17 +0000 Manifest next update: Sun 07 Dec 2025 06:01:17 +0000 Files and hashes: 1: 2V_Z-7sug4agu3amyEH8aKfD65g.crl (hash: r5069TJfoiGjE0FPf8+3C7MR3GfPrUf5BzEBpSECTf4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.mft rsync://rpki.ripe.net/repository/DEFAULT/2V_Z-7sug4agu3amyEH8aKfD65g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:40:14:9d:54:23:d7:cd:6d:51:15:52:f5:c6:4b:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d95fd9fbbb2e8386a0bb76a6c841fc68a7c3eb98 Validity Not Before: Dec 6 06:01:17 2025 GMT Not After : Dec 7 06:01:17 2025 GMT Subject: CN=f8ff4be5b0ee62c37235920a523537536552cbde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:75:8c:8b:34:a2:84:21:90:66:c0:1f:71:47: bc:90:9f:31:01:b8:34:4b:5e:24:3f:77:0a:89:fc: 3b:bf:28:a5:d0:a5:60:e3:cf:d2:f7:ab:91:2f:92: ab:c6:87:61:54:67:d1:43:0d:bc:e8:0a:35:7d:19: 86:c8:e8:69:f4:4e:ff:8c:87:8b:46:8f:a4:02:e1: 29:ef:25:b7:6b:8d:72:1b:5c:d0:2c:33:3e:9e:0d: 79:da:96:a5:d6:a4:d7:41:a1:99:d7:37:a2:02:ef: 04:0f:e9:b8:2c:e6:03:9a:f1:0f:db:9f:4d:40:1d: 0d:60:b8:08:3f:f1:25:01:cb:1b:ab:57:51:64:86: 67:c6:04:d1:3e:0c:c5:cf:90:7f:5e:f1:1e:38:65: 1a:3b:34:08:a5:12:34:cf:76:63:a6:41:f4:66:a1: 82:5e:d6:9d:59:10:47:f5:19:79:e0:92:8a:14:2e: b1:bd:6d:43:4e:2e:68:ef:af:be:bb:47:88:27:16: 35:f9:90:88:81:d9:d7:ad:4f:6b:42:f8:50:3c:0e: 00:4b:0b:37:50:fe:23:24:9f:76:3d:0a:cd:6e:c1: 48:a9:32:1e:5a:5f:cb:44:8d:3a:7a:08:84:29:7b: 5e:8b:c3:0d:c6:ca:60:09:28:57:fe:dd:37:d4:d4: 8c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:FF:4B:E5:B0:EE:62:C3:72:35:92:0A:52:35:37:53:65:52:CB:DE X509v3 Authority Key Identifier: keyid:D9:5F:D9:FB:BB:2E:83:86:A0:BB:76:A6:C8:41:FC:68:A7:C3:EB:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2V_Z-7sug4agu3amyEH8aKfD65g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:f6:81:3f:c2:7f:b7:53:41:18:32:c3:6f:fe:d6:b0:0d:ab: 30:0e:6d:60:87:20:64:0b:38:45:3f:13:27:6f:3f:a9:f3:43: 1c:3c:fb:10:0a:a2:78:1e:3c:ec:8d:38:6f:bd:e1:ce:34:1c: 61:ae:53:47:d2:4c:d0:f9:9f:f7:18:e8:ca:37:ec:7f:d0:90: ca:2f:0c:47:91:85:78:79:4b:5d:94:59:11:21:d2:a3:8c:e4: 14:79:b1:ba:18:97:1c:19:b1:58:f4:e5:70:9c:fd:c5:e6:4d: 6f:17:9b:77:a1:dd:9c:64:37:ed:94:0c:76:13:dc:5f:7f:53: ed:e4:39:bf:37:a1:c5:04:65:f2:ab:5c:5c:1c:97:1d:2a:83: 07:a2:72:d6:8a:25:db:f1:38:4c:92:aa:62:e3:bc:68:c4:33: 5d:71:c2:da:18:bb:f9:11:23:fc:b2:cb:fd:aa:fe:45:67:4d: 64:7e:1b:a9:d6:94:55:b6:0e:ef:12:25:f9:96:bd:7f:d2:ec: d4:85:95:cb:20:16:b6:f0:39:ae:aa:a3:29:32:29:8d:5a:61: d5:95:8b:ca:90:74:bf:be:7f:9f:b3:36:87:35:5d:15:d7:03: 03:66:7b:6a:9a:64:57:35:69:de:b6:47:43:64:69:c3:75:0c: ba:c2:64:15 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryQBSdVCPXzW1RFVL1xktkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5NWZkOWZiYmIyZTgzODZhMGJiNzZhNmM4NDFmYzY4YTdj M2ViOTgwHhcNMjUxMjA2MDYwMTE3WhcNMjUxMjA3MDYwMTE3WjAzMTEwLwYDVQQD EyhmOGZmNGJlNWIwZWU2MmMzNzIzNTkyMGE1MjM1Mzc1MzY1NTJjYmRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqXWMizSihCGQZsAfcUe8kJ8xAbg0 S14kP3cKifw7vyil0KVg48/S96uRL5KrxodhVGfRQw286Ao1fRmGyOhp9E7/jIeL Ro+kAuEp7yW3a41yG1zQLDM+ng152pal1qTXQaGZ1zeiAu8ED+m4LOYDmvEP259N QB0NYLgIP/ElAcsbq1dRZIZnxgTRPgzFz5B/XvEeOGUaOzQIpRI0z3ZjpkH0ZqGC XtadWRBH9Rl54JKKFC6xvW1DTi5o76++u0eIJxY1+ZCIgdnXrU9rQvhQPA4ASws3 UP4jJJ92PQrNbsFIqTIeWl/LRI06egiEKXtei8MNxspgCShX/t031NSMhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPj/S+Ww7mLDcjWSClI1N1NlUsveMB8GA1UdIwQY MBaAFNlf2fu7LoOGoLt2pshB/Ginw+uYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlZfWi03c3VnNGFndTNhbXlFSDhhS2ZENjVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9kMzIyMGMtNGQ2Ni00ZDRjLTkzNTgt MzIwZGYyZWIwZmQyLzEvMlZfWi03c3VnNGFndTNhbXlFSDhhS2ZENjVnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi9kMzIyMGMtNGQ2Ni00ZDRjLTkzNTgtMzIwZGYyZWIwZmQy LzEvMlZfWi03c3VnNGFndTNhbXlFSDhhS2ZENjVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO/aBP8J/ t1NBGDLDb/7WsA2rMA5tYIcgZAs4RT8TJ28/qfNDHDz7EAqieB487I04b73hzjQc Ya5TR9JM0Pmf9xjoyjfsf9CQyi8MR5GFeHlLXZRZESHSo4zkFHmxuhiXHBmxWPTl cJz9xeZNbxebd6HdnGQ37ZQMdhPcX39T7eQ5vzehxQRl8qtcXByXHSqDB6Jy1ool 2/E4TJKqYuO8aMQzXXHC2hi7+REj/LLL/ar+RWdNZH4bqdaUVbYO7xIl+Za9f9Ls 1IWVyyAWtvA5rqqjKTIpjVph1ZWLypB0v75/n7M2hzVdFdcDA2Z7appkVzVp3rZH Q2Rpw3UMusJkFQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:21:19 2025 by rpki-client