This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft File: p2i77FqeEb-9rthKqNOqzaKYifk.mft (raw, json) Hash identifier: ia33jnAD2UbGaXArZ3wOOMxeEDmdcX9M2aDvE+GLmgc= Subject key identifier: 39:43:40:5C:D6:04:15:1D:DF:B6:6C:D2:D1:48:47:B8:39:13:E0:DC Authority key identifier: A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9 Certificate issuer: /CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9 Certificate serial: 019AF5AF13641B133498B1389DF90748B2D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 22:01:22 +0000 Manifest this update: Sat 06 Dec 2025 22:01:22 +0000 Manifest next update: Sun 07 Dec 2025 22:01:22 +0000 Files and hashes: 1: OgYJc9A280CynujJhuzMa0BI-4Q.roa (hash: MiNQpI1WP7M4DChXTEl99hg+v/DrVYZq8o6Yc8vjTOw=) 2: p2i77FqeEb-9rthKqNOqzaKYifk.crl (hash: 8HLNbA8LHYCoGbYnqiaA2g37hXHflZB8TnhiJDMH6QU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:af:13:64:1b:13:34:98:b1:38:9d:f9:07:48:b2:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9 Validity Not Before: Dec 6 22:01:22 2025 GMT Not After : Dec 7 22:01:22 2025 GMT Subject: CN=3943405cd604151ddfb66cd2d14847b83913e0dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:45:0a:64:f8:b7:d9:ae:55:84:80:99:db:34: fa:bc:6b:ad:2c:b5:af:35:4e:e4:9e:a3:f6:11:93: 56:fa:8f:c9:42:bf:7e:12:2f:36:17:63:ca:f3:63: c1:8a:49:ac:c4:42:76:1d:0d:b3:d2:f1:dc:3a:c2: de:e2:64:bd:2b:2f:12:a7:9c:89:5a:dd:9a:8d:6b: 4f:bb:f5:3c:50:b4:77:2d:8a:72:c4:13:a8:2e:1a: b7:b9:aa:8e:97:11:49:4f:5d:fb:d3:59:cc:1f:af: 7c:04:25:a8:11:71:05:93:ed:b8:6b:6c:31:d2:1f: d3:fc:c5:4f:1b:54:f4:ae:b3:cd:fe:48:3b:5b:b3: 28:d0:04:18:ef:c1:d4:e7:57:ab:ab:4a:85:f0:32: 49:36:55:35:48:db:6c:76:25:ba:10:2a:12:cb:81: db:3a:48:a5:61:12:b7:8f:a2:59:5b:f3:f8:f4:57: f2:ca:ef:78:35:15:01:48:ef:cd:c8:7e:57:d1:ea: 67:73:6b:06:02:71:3f:df:23:d8:31:bc:4e:9e:01: e9:7e:3d:42:c8:b5:bb:8d:2d:2b:06:24:66:37:5d: 14:75:6f:02:ce:13:aa:12:ad:05:32:8f:b5:03:b5: c9:8e:a9:9c:95:cb:7f:71:57:72:77:57:be:65:4a: 05:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:43:40:5C:D6:04:15:1D:DF:B6:6C:D2:D1:48:47:B8:39:13:E0:DC X509v3 Authority Key Identifier: keyid:A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:bc:c8:d1:d7:b6:48:c7:75:67:8b:5b:df:a6:44:61:ac:28: d4:80:d0:d7:a3:ca:76:1a:99:66:3a:78:3e:ec:c0:0f:d1:3c: 7e:5e:03:67:ce:6c:d5:91:9d:d2:a2:13:71:e4:55:6c:59:31: 2f:0a:41:7c:a0:a1:d9:da:97:94:25:95:d9:0f:e5:01:cb:ad: 1a:43:8b:dc:f7:ae:4c:4a:ce:52:b0:b4:13:a3:2c:db:dc:37: 6b:23:e0:f0:89:7d:ea:da:0f:0f:8d:e2:fa:d9:dd:fd:55:74: c2:ad:e0:21:ff:78:81:68:9d:be:b6:e5:b5:00:7c:28:7f:bf: 59:df:ca:58:2c:99:c1:19:af:53:24:a7:5f:2e:16:98:22:bc: b3:92:ba:30:98:ea:6a:28:9f:a6:56:ba:59:4c:14:e4:23:e9: e8:03:a0:37:03:c6:a7:4d:cb:34:c5:2e:e3:44:64:0a:58:42: 62:15:18:b8:9b:c1:48:17:a8:35:60:ce:61:30:d6:5f:01:8a: f5:7c:55:b3:4a:7e:92:f3:e6:52:34:7d:c9:2a:37:16:26:f3: b3:80:e5:0b:ad:d6:82:e5:70:2a:12:2f:4b:de:7d:e7:cb:fa: ff:2a:38:4c:29:44:21:3a:37:a6:20:ff:66:4f:9b:c5:43:54: 2a:a4:74:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1rxNkGxM0mLE4nfkHSLLQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3NjhiYmVjNWE5ZTExYmZiZGFlZDg0YWE4ZDNhYWNkYTI5 ODg5ZjkwHhcNMjUxMjA2MjIwMTIyWhcNMjUxMjA3MjIwMTIyWjAzMTEwLwYDVQQD EygzOTQzNDA1Y2Q2MDQxNTFkZGZiNjZjZDJkMTQ4NDdiODM5MTNlMGRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtkUKZPi32a5VhICZ2zT6vGutLLWv NU7knqP2EZNW+o/JQr9+Ei82F2PK82PBikmsxEJ2HQ2z0vHcOsLe4mS9Ky8Sp5yJ Wt2ajWtPu/U8ULR3LYpyxBOoLhq3uaqOlxFJT13701nMH698BCWoEXEFk+24a2wx 0h/T/MVPG1T0rrPN/kg7W7Mo0AQY78HU51erq0qF8DJJNlU1SNtsdiW6ECoSy4Hb OkilYRK3j6JZW/P49Ffyyu94NRUBSO/NyH5X0epnc2sGAnE/3yPYMbxOngHpfj1C yLW7jS0rBiRmN10UdW8CzhOqEq0FMo+1A7XJjqmclct/cVdyd1e+ZUoF+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDlDQFzWBBUd37Zs0tFIR7g5E+DcMB8GA1UdIwQY MBaAFKdou+xanhG/va7YSqjTqs2imIn5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcDJpNzdGcWVFYi05cnRoS3FOT3F6YUtZaWZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9lYWMxZjQtYWNlMS00Y2UxLWExODEt Y2ZjYWJiMTlmOTg5LzEvcDJpNzdGcWVFYi05cnRoS3FOT3F6YUtZaWZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy9lYWMxZjQtYWNlMS00Y2UxLWExODEtY2ZjYWJiMTlmOTg5 LzEvcDJpNzdGcWVFYi05cnRoS3FOT3F6YUtZaWZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD7zI0de2 SMd1Z4tb36ZEYawo1IDQ16PKdhqZZjp4PuzAD9E8fl4DZ85s1ZGd0qITceRVbFkx LwpBfKCh2dqXlCWV2Q/lAcutGkOL3PeuTErOUrC0E6Ms29w3ayPg8Il96toPD43i +tnd/VV0wq3gIf94gWidvrbltQB8KH+/Wd/KWCyZwRmvUySnXy4WmCK8s5K6MJjq aiifpla6WUwU5CPp6AOgNwPGp03LNMUu40RkClhCYhUYuJvBSBeoNWDOYTDWXwGK 9XxVs0p+kvPmUjR9ySo3Fibzs4DlC63WguVwKhIvS95958v6/yo4TClEITo3piD/ Zk+bxUNUKqR0Iw== -----END CERTIFICATE-----Generated at Sat Dec 6 23:57:06 2025 by rpki-client