This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/526f3e-8924-48bd-a772-b51953037993/1/R2Bl1x8emPmnynjmFOz19G1aZDw.mft File: R2Bl1x8emPmnynjmFOz19G1aZDw.mft (raw, json) Hash identifier: rGoeSwALfObQy6zGNVBqho1elj0+ErJL4kP1TarYgoI= Subject key identifier: 23:C0:85:DC:BF:4E:25:6D:5B:73:5E:96:14:2E:3D:EA:5B:BE:82:B9 Authority key identifier: 47:60:65:D7:1F:1E:98:F9:A7:CA:78:E6:14:EC:F5:F4:6D:5A:64:3C Certificate issuer: /CN=476065d71f1e98f9a7ca78e614ecf5f46d5a643c Certificate serial: 019AF31CB4B829A59C936B12B8A9C6C5D1EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R2Bl1x8emPmnynjmFOz19G1aZDw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/526f3e-8924-48bd-a772-b51953037993/1/R2Bl1x8emPmnynjmFOz19G1aZDw.mft Manifest number: 0200 Signing time: Sat 06 Dec 2025 10:02:16 +0000 Manifest this update: Sat 06 Dec 2025 10:02:16 +0000 Manifest next update: Sun 07 Dec 2025 10:02:16 +0000 Files and hashes: 1: R2Bl1x8emPmnynjmFOz19G1aZDw.crl (hash: zCyXR94R6xG+ydb+bLeOCdunhuuMKvCMvEJ5LkqYsmE=) 2: lASkSWhNSFerShHIOly6CM5etwY.roa (hash: eTZvYlddER+/7D2hoV0jNRxfkb0vM+l4ayTlpERiEYI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/526f3e-8924-48bd-a772-b51953037993/1/R2Bl1x8emPmnynjmFOz19G1aZDw.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/526f3e-8924-48bd-a772-b51953037993/1/R2Bl1x8emPmnynjmFOz19G1aZDw.mft rsync://rpki.ripe.net/repository/DEFAULT/R2Bl1x8emPmnynjmFOz19G1aZDw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:02:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:b4:b8:29:a5:9c:93:6b:12:b8:a9:c6:c5:d1:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=476065d71f1e98f9a7ca78e614ecf5f46d5a643c Validity Not Before: Dec 6 10:02:16 2025 GMT Not After : Dec 7 10:02:16 2025 GMT Subject: CN=23c085dcbf4e256d5b735e96142e3dea5bbe82b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5e:79:72:88:72:01:48:65:75:f0:a1:01:80: 3c:cb:00:4f:ba:f7:e9:9a:89:19:32:47:58:44:81: e0:5a:be:49:80:b7:ec:33:f9:4f:00:80:4e:3f:ca: 3f:ec:d4:40:1b:6e:a3:6c:49:52:b9:7d:9e:ca:91: 7e:0f:41:9a:1f:e5:b5:7f:50:99:72:df:3a:03:b7: d5:99:08:a4:d6:b8:22:b1:20:24:1c:9d:0e:bd:c4: 76:02:44:cb:af:29:80:38:83:1d:44:9c:ee:e4:13: 37:ba:e9:3d:60:c9:db:b9:be:88:93:95:49:a1:1f: b3:35:1f:05:6a:d5:1e:9e:c6:bb:68:72:2c:f1:f3: 46:e0:7c:b3:94:19:73:2b:f1:86:d5:a1:b9:a6:b9: 17:ac:c9:10:9c:d0:34:63:87:d5:91:73:86:a4:54: ec:62:fe:51:34:16:aa:ff:58:28:b5:bf:a2:a2:df: cb:87:2e:3d:bd:fd:9c:4e:94:3d:a1:cb:e7:e0:8e: 97:a5:fa:bb:bc:55:db:4c:c4:da:06:f0:34:72:0f: fa:ca:ce:35:68:58:f0:07:e2:7c:94:5d:b9:44:47: 85:52:04:b3:13:86:1b:92:b9:71:15:55:cc:e4:c3: be:6b:71:e3:58:20:95:2f:f3:75:1b:9e:6e:4e:ae: 97:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:C0:85:DC:BF:4E:25:6D:5B:73:5E:96:14:2E:3D:EA:5B:BE:82:B9 X509v3 Authority Key Identifier: keyid:47:60:65:D7:1F:1E:98:F9:A7:CA:78:E6:14:EC:F5:F4:6D:5A:64:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R2Bl1x8emPmnynjmFOz19G1aZDw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/526f3e-8924-48bd-a772-b51953037993/1/R2Bl1x8emPmnynjmFOz19G1aZDw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/526f3e-8924-48bd-a772-b51953037993/1/R2Bl1x8emPmnynjmFOz19G1aZDw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:14:a3:76:23:c4:1c:7b:1e:56:a1:63:9b:60:5b:14:95:cd: 5d:5d:0b:8e:c8:ab:c0:de:d5:d4:20:c7:30:d0:d2:e5:72:14: 2e:e8:06:6c:9f:8d:f1:26:d3:f6:45:3e:66:c9:4e:63:88:67: 08:81:26:1e:b0:68:12:ef:82:54:eb:1d:ad:d3:6e:07:7b:c8: 79:38:c0:9b:91:d2:25:2b:fc:79:50:e4:95:a7:bf:59:50:27: 37:1a:78:58:8d:9d:c6:74:76:4a:ae:a9:7f:43:0c:3e:c5:1a: 8b:4c:5d:bd:4c:5c:be:7b:1c:27:29:41:7b:df:75:7e:16:05: 54:7f:86:92:7f:b7:9e:5b:95:0f:66:97:3c:98:65:a4:2b:e9: 68:ef:8e:5e:be:a9:b9:e0:b5:bf:99:31:58:5a:cd:90:1c:b1: e7:f3:a7:0a:f7:d0:8f:51:6e:51:0b:38:31:a7:42:c4:61:de: 64:11:43:31:a1:26:37:ae:a4:2f:f5:32:57:7d:05:0a:bc:48: 6f:4e:60:3c:55:83:36:38:6b:d0:dd:cb:c1:f0:c1:61:3c:0c: 1b:fa:fc:8b:d2:a2:da:14:1f:3e:d1:38:88:a5:3e:35:dc:57: 67:c1:5d:24:ac:69:7a:dc:be:1a:be:65:6f:79:a1:41:92:e6: bb:91:7e:83 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHLS4KaWck2sSuKnGxdHsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3NjA2NWQ3MWYxZTk4ZjlhN2NhNzhlNjE0ZWNmNWY0NmQ1 YTY0M2MwHhcNMjUxMjA2MTAwMjE2WhcNMjUxMjA3MTAwMjE2WjAzMTEwLwYDVQQD EygyM2MwODVkY2JmNGUyNTZkNWI3MzVlOTYxNDJlM2RlYTViYmU4MmI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqV55cohyAUhldfChAYA8ywBPuvfp mokZMkdYRIHgWr5JgLfsM/lPAIBOP8o/7NRAG26jbElSuX2eypF+D0GaH+W1f1CZ ct86A7fVmQik1rgisSAkHJ0OvcR2AkTLrymAOIMdRJzu5BM3uuk9YMnbub6Ik5VJ oR+zNR8FatUensa7aHIs8fNG4HyzlBlzK/GG1aG5prkXrMkQnNA0Y4fVkXOGpFTs Yv5RNBaq/1gotb+iot/Lhy49vf2cTpQ9ocvn4I6Xpfq7vFXbTMTaBvA0cg/6ys41 aFjwB+J8lF25REeFUgSzE4YbkrlxFVXM5MO+a3HjWCCVL/N1G55uTq6XnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCPAhdy/TiVtW3NelhQuPepbvoK5MB8GA1UdIwQY MBaAFEdgZdcfHpj5p8p45hTs9fRtWmQ8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUjJCbDF4OGVtUG1ueW5qbUZPejE5RzFhWkR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS81MjZmM2UtODkyNC00OGJkLWE3NzIt YjUxOTUzMDM3OTkzLzEvUjJCbDF4OGVtUG1ueW5qbUZPejE5RzFhWkR3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS81MjZmM2UtODkyNC00OGJkLWE3NzItYjUxOTUzMDM3OTkz LzEvUjJCbDF4OGVtUG1ueW5qbUZPejE5RzFhWkR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJRSjdiPE HHseVqFjm2BbFJXNXV0LjsirwN7V1CDHMNDS5XIULugGbJ+N8SbT9kU+ZslOY4hn CIEmHrBoEu+CVOsdrdNuB3vIeTjAm5HSJSv8eVDklae/WVAnNxp4WI2dxnR2Sq6p f0MMPsUai0xdvUxcvnscJylBe991fhYFVH+Gkn+3nluVD2aXPJhlpCvpaO+OXr6p ueC1v5kxWFrNkByx5/OnCvfQj1FuUQs4MadCxGHeZBFDMaEmN66kL/UyV30FCrxI b05gPFWDNjhr0N3LwfDBYTwMG/r8i9Ki2hQfPtE4iKU+NdxXZ8FdJKxpety+Gr5l b3mhQZLmu5F+gw== -----END CERTIFICATE-----Generated at Sat Dec 6 19:12:04 2025 by rpki-client