This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft File: 2iHQJGSziv86MckIeNYnI7nHQqY.mft (raw, json) Hash identifier: 9Y+u7mXDrkC+pd3hVr+LtRPKZPhSwKtaWoaTojonYkg= Subject key identifier: 43:7A:6D:05:BD:4F:D3:DC:D5:B4:6D:0B:E1:6A:9B:2F:0F:FF:A1:6B Authority key identifier: DA:21:D0:24:64:B3:8A:FF:3A:31:C9:08:78:D6:27:23:B9:C7:42:A6 Certificate issuer: /CN=da21d02464b38aff3a31c90878d62723b9c742a6 Certificate serial: 019AF509F5FD10D52E1BB5BE382FABF54167 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft Manifest number: 0160 Signing time: Sat 06 Dec 2025 19:01:01 +0000 Manifest this update: Sat 06 Dec 2025 19:01:01 +0000 Manifest next update: Sun 07 Dec 2025 19:01:01 +0000 Files and hashes: 1: 0JT7tPGuP5h5ZUvLvPxi-tJv5wk.roa (hash: BbMNBUCTeRLtRw1Vi3eOuHY/lINHO4oBENygtqlAkSk=) 2: 2iHQJGSziv86MckIeNYnI7nHQqY.crl (hash: iUx4t2uT0FQSEhiJt4EeCTJZVv/16TL3EoGIAX6qhYQ=) 3: vqXNaSZgp3ssNrNy6651RrVFS3Y.roa (hash: giLaYS/A+9rxwvGKkolgztkk8t+vnflpFT/hVk3pswQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft rsync://rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:09:f5:fd:10:d5:2e:1b:b5:be:38:2f:ab:f5:41:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da21d02464b38aff3a31c90878d62723b9c742a6 Validity Not Before: Dec 6 19:01:01 2025 GMT Not After : Dec 7 19:01:01 2025 GMT Subject: CN=437a6d05bd4fd3dcd5b46d0be16a9b2f0fffa16b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b5:31:1b:2b:f4:96:e8:b2:f4:74:e8:c5:69: 50:43:97:74:65:a9:b0:49:ec:66:51:dc:17:30:b4: 6d:32:2c:1f:3e:98:f8:42:3a:94:f0:dd:92:cd:4b: 0f:2d:6a:e4:0b:c6:8c:90:35:de:5f:d6:68:ab:ef: 77:a8:79:cc:c5:82:1a:f1:3c:16:33:e4:10:84:ed: c3:af:1b:54:9c:b6:ea:07:18:61:42:aa:9b:70:c2: 64:3e:01:c1:0e:63:4b:d3:9e:aa:b5:03:63:3d:4a: 65:7b:d0:f2:7e:f7:38:91:e4:83:25:40:fd:1f:68: fa:66:ef:72:99:cf:6b:66:7d:3d:c9:ec:7f:38:ba: e1:8b:4b:d7:da:74:ef:18:6b:1d:ea:d2:6d:47:db: 37:eb:83:c8:a3:ef:f8:70:87:84:8f:7d:be:05:3b: 26:c1:ce:f4:f8:4c:67:8d:4f:f7:0b:3d:a9:d0:b2: d8:e2:62:42:85:1d:32:51:6b:60:79:13:58:db:0c: 9f:e6:b2:42:bd:9e:b2:02:db:6e:df:ae:34:63:e4: 27:13:28:d8:b6:e7:65:7e:1a:1c:8c:92:ef:c3:26: 50:cc:65:35:cf:ef:d3:18:db:b7:13:07:20:98:67: e4:94:03:93:8f:29:2a:d2:e7:51:e4:1c:cc:8b:51: 85:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:7A:6D:05:BD:4F:D3:DC:D5:B4:6D:0B:E1:6A:9B:2F:0F:FF:A1:6B X509v3 Authority Key Identifier: keyid:DA:21:D0:24:64:B3:8A:FF:3A:31:C9:08:78:D6:27:23:B9:C7:42:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:49:a4:6a:09:07:43:0e:d2:f4:cf:09:2e:c4:82:23:2b:13: 07:35:d8:e9:8b:8e:23:f2:d2:e7:9b:41:81:22:06:7e:3f:d8: 18:76:57:68:f4:5f:d9:ab:00:cb:fc:ab:97:97:75:eb:18:e1: be:6c:24:62:26:1d:0e:f1:58:5e:31:73:67:00:90:3d:c3:5d: e6:7e:6a:48:b3:19:90:03:6d:0e:ab:04:ed:04:10:4c:4c:ba: f8:a7:a5:86:ee:89:b2:29:db:a7:62:1f:3d:82:0f:6a:9e:76: d7:fe:01:f6:70:18:c0:51:e5:d9:77:ab:a9:68:e1:fe:bb:e1: 32:a1:cd:4b:09:c3:67:2d:86:3d:04:7f:f4:ec:a5:ea:e3:11: 44:fd:1b:3b:1b:b2:80:eb:30:13:db:ad:38:3d:2e:f3:f3:fe: da:f2:35:cf:ae:2a:c1:e4:b5:19:35:72:3a:dc:f4:c6:46:21: 7f:ef:4e:7f:00:c7:cd:57:20:a3:94:87:27:15:37:c0:99:1f: 2b:6c:47:03:28:36:11:92:bd:47:b5:14:75:82:8d:97:3d:7f: 37:46:44:c5:1c:20:6c:ba:ee:37:8b:f4:e7:26:94:36:c6:c1: b5:6a:f3:c5:c9:cc:b4:1c:ca:b7:5a:66:cc:ba:67:99:da:4b: d0:c6:d0:08 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CfX9ENUuG7W+OC+r9UFnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhMjFkMDI0NjRiMzhhZmYzYTMxYzkwODc4ZDYyNzIzYjlj NzQyYTYwHhcNMjUxMjA2MTkwMTAxWhcNMjUxMjA3MTkwMTAxWjAzMTEwLwYDVQQD Eyg0MzdhNmQwNWJkNGZkM2RjZDViNDZkMGJlMTZhOWIyZjBmZmZhMTZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyrUxGyv0luiy9HToxWlQQ5d0Zamw SexmUdwXMLRtMiwfPpj4QjqU8N2SzUsPLWrkC8aMkDXeX9Zoq+93qHnMxYIa8TwW M+QQhO3DrxtUnLbqBxhhQqqbcMJkPgHBDmNL056qtQNjPUple9Dyfvc4keSDJUD9 H2j6Zu9ymc9rZn09yex/OLrhi0vX2nTvGGsd6tJtR9s364PIo+/4cIeEj32+BTsm wc70+ExnjU/3Cz2p0LLY4mJChR0yUWtgeRNY2wyf5rJCvZ6yAttu3640Y+QnEyjY tudlfhocjJLvwyZQzGU1z+/TGNu3EwcgmGfklAOTjykq0udR5BzMi1GFcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEN6bQW9T9Pc1bRtC+Fqmy8P/6FrMB8GA1UdIwQY MBaAFNoh0CRks4r/OjHJCHjWJyO5x0KmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmlIUUpHU3ppdjg2TWNrSWVOWW5JN25IUXFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy84ZTYxZjQtMWE0MS00Y2NhLWI4NWMt NzZmNTJiMWRkNzE4LzEvMmlIUUpHU3ppdjg2TWNrSWVOWW5JN25IUXFZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy84ZTYxZjQtMWE0MS00Y2NhLWI4NWMtNzZmNTJiMWRkNzE4 LzEvMmlIUUpHU3ppdjg2TWNrSWVOWW5JN25IUXFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM0mkagkH Qw7S9M8JLsSCIysTBzXY6YuOI/LS55tBgSIGfj/YGHZXaPRf2asAy/yrl5d16xjh vmwkYiYdDvFYXjFzZwCQPcNd5n5qSLMZkANtDqsE7QQQTEy6+Kelhu6Jsinbp2If PYIPap521/4B9nAYwFHl2XerqWjh/rvhMqHNSwnDZy2GPQR/9Oyl6uMRRP0bOxuy gOswE9utOD0u8/P+2vI1z64qweS1GTVyOtz0xkYhf+9OfwDHzVcgo5SHJxU3wJkf K2xHAyg2EZK9R7UUdYKNlz1/N0ZExRwgbLruN4v05yaUNsbBtWrzxcnMtBzKt1pm zLpnmdpL0MbQCA== -----END CERTIFICATE-----Generated at Sun Dec 7 02:24:58 2025 by rpki-client