This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft File: 2FAiKC40aZ_lSLdShRmiWlDZEzo.mft (raw, json) Hash identifier: xoy1VuTSiZBKtWtViBGxdtit2hD09pbcF22H1Wj93f4= Subject key identifier: EC:4B:DE:F1:F1:CB:F3:A3:98:C7:FE:49:6C:6C:2C:DC:DF:63:B8:8F Authority key identifier: D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A Certificate issuer: /CN=d85022282e34699fe548b7528519a25a50d9133a Certificate serial: 019AF23FA13F7D5E43A1C3216EC0FB438EE2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft Manifest number: 1690 Signing time: Sat 06 Dec 2025 06:00:47 +0000 Manifest this update: Sat 06 Dec 2025 06:00:47 +0000 Manifest next update: Sun 07 Dec 2025 06:00:47 +0000 Files and hashes: 1: 2FAiKC40aZ_lSLdShRmiWlDZEzo.crl (hash: Eq7hUjo++nk+BDUVXSlJ+nfcWHbHVpkaTuDGtmDEg6k=) 2: 6R0wvkFPscZQ2uww-ZvwnaXh--0.roa (hash: wyiJ7rZP6x6kzeIfld1VjsLp4nIqzGhNhuxTGdTq1Ek=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:a1:3f:7d:5e:43:a1:c3:21:6e:c0:fb:43:8e:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d85022282e34699fe548b7528519a25a50d9133a Validity Not Before: Dec 6 06:00:47 2025 GMT Not After : Dec 7 06:00:47 2025 GMT Subject: CN=ec4bdef1f1cbf3a398c7fe496c6c2cdcdf63b88f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:4e:f3:26:7c:98:d7:c5:22:99:dd:f8:88:2d: 69:06:c0:af:96:68:d2:0f:1a:71:bd:34:31:f1:3d: a4:9d:e1:fc:49:42:3e:aa:93:12:7a:5a:00:52:33: aa:d1:78:75:8b:e5:3d:35:30:6e:91:8f:7e:48:b7: 65:40:b1:92:07:51:b8:34:71:e7:1e:80:3f:3c:91: 3a:b4:2d:03:87:92:b7:f0:d9:cb:8b:45:a3:51:af: 06:64:5e:fa:f0:33:43:74:fa:0b:a8:c4:ba:69:ba: e0:31:d8:87:b1:ef:59:ff:cd:fa:5a:85:ff:36:6d: 6e:c6:32:00:b9:a4:11:ed:ae:0a:74:b6:1d:66:95: 12:f6:e1:c8:84:a9:01:d9:94:64:6b:76:1f:fa:49: a8:62:77:c7:37:7d:aa:b0:cf:c7:33:82:73:35:5a: 6d:be:be:9c:01:92:27:b9:87:4d:b2:ca:40:ff:3d: fc:1f:28:4b:c7:67:77:2a:6a:0d:30:e5:10:46:8d: e6:fd:e0:e8:7e:e0:d7:d1:72:45:c1:42:66:62:2c: 0f:47:f1:45:a5:f5:37:8a:56:83:f3:a4:43:63:db: ac:48:9f:88:0f:eb:64:55:8f:0f:02:9f:24:c6:41: 02:5a:37:e3:66:bd:6d:a1:7b:09:65:45:72:c5:f5: d8:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:4B:DE:F1:F1:CB:F3:A3:98:C7:FE:49:6C:6C:2C:DC:DF:63:B8:8F X509v3 Authority Key Identifier: keyid:D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:7f:3f:60:77:09:f9:a7:7d:96:3d:4b:9e:76:9a:af:cd:61: 33:1f:a2:93:4a:2f:22:ac:6d:90:ba:9e:6c:58:b2:cc:cc:dd: ac:26:1b:be:86:13:cd:1e:06:85:15:4a:08:bb:de:01:b2:9d: 57:d7:76:5f:37:fa:95:28:aa:f8:5f:32:b9:9e:8c:44:15:f5: c0:fe:3c:75:a0:3e:ed:ef:4c:cf:95:51:14:31:c7:1d:3b:27: 4e:94:3b:15:33:6e:84:00:c6:09:2c:0b:d4:ac:70:4c:c0:cf: 3a:69:74:a6:47:f7:d1:42:9e:ad:a5:d9:6e:f2:10:ef:df:07: 59:5c:39:cd:3c:d0:b0:5b:e7:4a:30:4d:3d:8b:e6:84:1d:4a: e4:56:4b:b7:2e:7e:3d:58:31:2f:08:f2:d0:4b:bc:ff:9e:ae: a7:44:b5:22:89:19:0f:19:df:96:23:6b:2e:29:2f:ee:64:55: 90:dd:d6:4b:e9:9f:79:8a:4a:f4:3e:99:ea:e8:7f:b2:91:91: ae:93:3b:cb:9e:b2:44:fb:db:3c:2d:e2:33:c2:25:36:6e:b2: f8:8e:98:f6:be:22:69:9f:b0:7e:30:93:01:44:62:52:70:52: 1e:ab:2f:b4:4c:24:ce:b3:cc:a4:f7:68:a0:a1:ef:45:e6:2b: ef:a9:f4:ee -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP6E/fV5DocMhbsD7Q47iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4NTAyMjI4MmUzNDY5OWZlNTQ4Yjc1Mjg1MTlhMjVhNTBk OTEzM2EwHhcNMjUxMjA2MDYwMDQ3WhcNMjUxMjA3MDYwMDQ3WjAzMTEwLwYDVQQD EyhlYzRiZGVmMWYxY2JmM2EzOThjN2ZlNDk2YzZjMmNkY2RmNjNiODhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAok7zJnyY18Uimd34iC1pBsCvlmjS DxpxvTQx8T2kneH8SUI+qpMSeloAUjOq0Xh1i+U9NTBukY9+SLdlQLGSB1G4NHHn HoA/PJE6tC0Dh5K38NnLi0WjUa8GZF768DNDdPoLqMS6abrgMdiHse9Z/836WoX/ Nm1uxjIAuaQR7a4KdLYdZpUS9uHIhKkB2ZRka3Yf+kmoYnfHN32qsM/HM4JzNVpt vr6cAZInuYdNsspA/z38HyhLx2d3KmoNMOUQRo3m/eDofuDX0XJFwUJmYiwPR/FF pfU3ilaD86RDY9usSJ+ID+tkVY8PAp8kxkECWjfjZr1toXsJZUVyxfXYtQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOxL3vHxy/OjmMf+SWxsLNzfY7iPMB8GA1UdIwQY MBaAFNhQIiguNGmf5Ui3UoUZolpQ2RM6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkZBaUtDNDBhWl9sU0xkU2hSbWlXbERaRXpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy85NzU4ZWItNDEwOC00MDg3LWE4MTgt NTBlYTY3MzI3Y2QxLzEvMkZBaUtDNDBhWl9sU0xkU2hSbWlXbERaRXpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy85NzU4ZWItNDEwOC00MDg3LWE4MTgtNTBlYTY3MzI3Y2Qx LzEvMkZBaUtDNDBhWl9sU0xkU2hSbWlXbERaRXpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArn8/YHcJ +ad9lj1Lnnaar81hMx+ik0ovIqxtkLqebFiyzMzdrCYbvoYTzR4GhRVKCLveAbKd V9d2Xzf6lSiq+F8yuZ6MRBX1wP48daA+7e9Mz5VRFDHHHTsnTpQ7FTNuhADGCSwL 1KxwTMDPOml0pkf30UKeraXZbvIQ798HWVw5zTzQsFvnSjBNPYvmhB1K5FZLty5+ PVgxLwjy0Eu8/56up0S1IokZDxnfliNrLikv7mRVkN3WS+mfeYpK9D6Z6uh/spGR rpM7y56yRPvbPC3iM8IlNm6y+I6Y9r4iaZ+wfjCTAURiUnBSHqsvtEwkzrPMpPdo oKHvReYr76n07g== -----END CERTIFICATE-----Generated at Sat Dec 6 10:13:36 2025 by rpki-client