This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.mft File: 2D73FCmY5OZWYFPixjpwgIxuojc.mft (raw, json) Hash identifier: vznfe3qoNBzEFT7vDunaHbSbmKr++3VEihlccue265s= Subject key identifier: F1:3B:4E:30:00:50:36:2C:F8:9E:AC:A1:A9:0C:97:FF:42:0B:75:69 Authority key identifier: D8:3E:F7:14:29:98:E4:E6:56:60:53:E2:C6:3A:70:80:8C:6E:A2:37 Certificate issuer: /CN=d83ef7142998e4e6566053e2c63a70808c6ea237 Certificate serial: 019AF42DD2FB12BE74D49046AE974E7E4EAE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2D73FCmY5OZWYFPixjpwgIxuojc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.mft Manifest number: 02E2 Signing time: Sat 06 Dec 2025 15:00:34 +0000 Manifest this update: Sat 06 Dec 2025 15:00:34 +0000 Manifest next update: Sun 07 Dec 2025 15:00:34 +0000 Files and hashes: 1: 2D73FCmY5OZWYFPixjpwgIxuojc.crl (hash: rqWNhx+6ZZREEOXFTkdWpOqh9r8bd0VXHaA+7BpEefg=) 2: EWAO3dXqj4k_Zc24k1Bzcpcwlew.roa (hash: fG2UBrX6DjIKV9kptyQGomVTDY864OWJshOwmuCJfno=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.mft rsync://rpki.ripe.net/repository/DEFAULT/2D73FCmY5OZWYFPixjpwgIxuojc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:2d:d2:fb:12:be:74:d4:90:46:ae:97:4e:7e:4e:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d83ef7142998e4e6566053e2c63a70808c6ea237 Validity Not Before: Dec 6 15:00:34 2025 GMT Not After : Dec 7 15:00:34 2025 GMT Subject: CN=f13b4e300050362cf89eaca1a90c97ff420b7569 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5f:9c:40:bb:5a:0f:fa:2a:2e:d8:43:c1:7d: 26:da:63:1e:d5:15:c9:8a:bf:3e:6a:95:36:33:95: ec:56:30:43:10:80:09:01:77:d8:e4:9d:7f:b6:6b: 66:81:39:6f:cb:65:53:29:f4:5b:d0:91:7d:0f:06: 48:e8:ab:a4:f5:fa:53:5e:1a:2c:0d:a1:da:5b:f2: f4:f2:0d:a4:10:c8:47:94:d9:ce:eb:c4:04:7a:29: 55:9d:c6:55:09:e6:83:56:c7:e5:93:56:c0:32:70: d0:f1:93:37:b9:28:e3:73:be:91:9f:ba:16:24:e5: 80:1d:d9:bd:4b:84:c2:ff:19:be:97:7d:67:d0:89: 85:d6:0b:2a:73:9a:dd:61:77:e5:42:ac:67:bf:6a: 48:87:82:a0:87:75:6b:45:5b:f0:dc:f4:67:9c:01: 77:a5:9e:37:9b:e7:09:7f:7b:37:82:8f:09:3d:2a: 1e:71:8d:03:5f:f9:10:a1:5d:bb:c3:20:37:47:fc: ae:df:db:27:9f:96:eb:c5:21:f9:c7:1a:03:a7:55: 7b:01:d0:64:03:09:a3:e2:ce:27:7c:10:b4:5e:7b: cb:42:db:18:f7:d7:55:37:23:28:02:1a:8a:79:92: 6f:ec:f8:39:12:f1:93:62:ac:d1:0c:58:2c:e8:bd: b4:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:3B:4E:30:00:50:36:2C:F8:9E:AC:A1:A9:0C:97:FF:42:0B:75:69 X509v3 Authority Key Identifier: keyid:D8:3E:F7:14:29:98:E4:E6:56:60:53:E2:C6:3A:70:80:8C:6E:A2:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2D73FCmY5OZWYFPixjpwgIxuojc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:bd:d6:46:fe:f5:00:9d:53:4a:72:52:cc:3e:76:9b:91:b8: 4b:d7:1e:6f:d7:51:ce:22:f7:c3:79:f9:3e:64:db:eb:ab:1c: fc:1f:8a:30:b9:14:9f:ec:e7:8f:2b:06:b2:b6:1e:9d:f3:f0: 02:f1:dc:10:8d:e0:fe:bf:b5:4d:64:d8:76:a6:88:bc:bb:57: a1:d6:17:e9:31:f0:d6:22:b0:9a:fb:67:b3:e8:a5:f6:87:44: 4d:e5:8a:d7:22:98:4d:46:89:32:2f:42:bf:f3:05:4f:bd:8c: 92:f4:be:8c:44:22:8a:4e:00:9d:ec:ec:fa:68:f3:31:73:6d: 17:83:f2:4c:d2:91:97:73:a3:41:d6:bc:8b:59:cb:42:50:1e: 2b:99:9d:56:91:4e:ea:ba:40:d4:69:36:ea:13:5f:02:c8:a6: cc:86:f6:80:f0:02:23:41:ea:8c:e4:09:d8:d8:2d:0e:c7:45: d7:76:0e:ad:0b:b3:0d:2b:93:fb:f2:f5:c1:3a:f1:af:05:08: 86:bc:45:36:e8:a8:80:37:29:68:13:99:8d:d5:ae:dd:a0:50: a4:c4:20:81:28:76:aa:5a:58:6c:ca:ba:0e:3b:df:49:52:fa: fe:2f:96:78:db:b8:6e:2b:53:c7:a6:1d:7e:20:ae:91:e3:73: db:e3:dd:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0LdL7Er501JBGrpdOfk6uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4M2VmNzE0Mjk5OGU0ZTY1NjYwNTNlMmM2M2E3MDgwOGM2 ZWEyMzcwHhcNMjUxMjA2MTUwMDM0WhcNMjUxMjA3MTUwMDM0WjAzMTEwLwYDVQQD EyhmMTNiNGUzMDAwNTAzNjJjZjg5ZWFjYTFhOTBjOTdmZjQyMGI3NTY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt1+cQLtaD/oqLthDwX0m2mMe1RXJ ir8+apU2M5XsVjBDEIAJAXfY5J1/tmtmgTlvy2VTKfRb0JF9DwZI6Kuk9fpTXhos DaHaW/L08g2kEMhHlNnO68QEeilVncZVCeaDVsflk1bAMnDQ8ZM3uSjjc76Rn7oW JOWAHdm9S4TC/xm+l31n0ImF1gsqc5rdYXflQqxnv2pIh4Kgh3VrRVvw3PRnnAF3 pZ43m+cJf3s3go8JPSoecY0DX/kQoV27wyA3R/yu39snn5brxSH5xxoDp1V7AdBk Awmj4s4nfBC0XnvLQtsY99dVNyMoAhqKeZJv7Pg5EvGTYqzRDFgs6L20qwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPE7TjAAUDYs+J6soakMl/9CC3VpMB8GA1UdIwQY MBaAFNg+9xQpmOTmVmBT4sY6cICMbqI3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkQ3M0ZDbVk1T1pXWUZQaXhqcHdnSXh1b2pjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy83ZmNiMzUtNDQwOC00MjE4LTk4NjIt N2Y3NWExYjEwZWMzLzEvMkQ3M0ZDbVk1T1pXWUZQaXhqcHdnSXh1b2pjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy83ZmNiMzUtNDQwOC00MjE4LTk4NjItN2Y3NWExYjEwZWMz LzEvMkQ3M0ZDbVk1T1pXWUZQaXhqcHdnSXh1b2pjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKb3WRv71 AJ1TSnJSzD52m5G4S9ceb9dRziL3w3n5PmTb66sc/B+KMLkUn+znjysGsrYenfPw AvHcEI3g/r+1TWTYdqaIvLtXodYX6THw1iKwmvtns+il9odETeWK1yKYTUaJMi9C v/MFT72MkvS+jEQiik4Anezs+mjzMXNtF4PyTNKRl3OjQda8i1nLQlAeK5mdVpFO 6rpA1Gk26hNfAsimzIb2gPACI0HqjOQJ2NgtDsdF13YOrQuzDSuT+/L1wTrxrwUI hrxFNuiogDcpaBOZjdWu3aBQpMQggSh2qlpYbMq6DjvfSVL6/i+WeNu4bitTx6Yd fiCukeNz2+Pdqg== -----END CERTIFICATE-----Generated at Sat Dec 6 19:40:46 2025 by rpki-client