This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft File: K2ePFPiyKI1JVXym-xvfR5OSfc4.mft (raw, json) Hash identifier: shT4zCj5dW0tRVHj7TC0wizmE5fSNOADAcxJRzPxVg8= Subject key identifier: 13:2A:0B:C3:32:E4:5C:E8:70:B0:F7:7A:1D:E3:6C:52:90:BA:83:3B Authority key identifier: 2B:67:8F:14:F8:B2:28:8D:49:55:7C:A6:FB:1B:DF:47:93:92:7D:CE Certificate issuer: /CN=2b678f14f8b2288d49557ca6fb1bdf4793927dce Certificate serial: 019AF2766ACE10C1DC542D6FA90B6B07F91F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft Manifest number: 0F2E Signing time: Sat 06 Dec 2025 07:00:38 +0000 Manifest this update: Sat 06 Dec 2025 07:00:38 +0000 Manifest next update: Sun 07 Dec 2025 07:00:38 +0000 Files and hashes: 1: F4GHMtEvNm46dM5TWDxthbQ6BA4.roa (hash: KVVBBRsYRigOW/uzk41RjMrk4PM1I4rBXcib4AOOQeA=) 2: K2ePFPiyKI1JVXym-xvfR5OSfc4.crl (hash: Cj0W8KPfi2SrW1fDXOCrm1FkQFVCwPBYSNgIStN190w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:6a:ce:10:c1:dc:54:2d:6f:a9:0b:6b:07:f9:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2b678f14f8b2288d49557ca6fb1bdf4793927dce Validity Not Before: Dec 6 07:00:38 2025 GMT Not After : Dec 7 07:00:38 2025 GMT Subject: CN=132a0bc332e45ce870b0f77a1de36c5290ba833b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b6:3c:3b:e8:2e:40:0c:6e:c2:be:f4:27:4c: c9:58:01:3b:98:c6:e7:30:bc:cc:0f:37:4f:c7:5f: b6:4f:f6:2c:7a:97:7d:ee:bc:4d:ff:8b:81:dd:d0: 6b:39:2d:77:a6:9f:7f:65:32:f2:5f:0b:25:16:66: 55:68:df:61:ad:0c:8f:aa:11:2d:92:9c:41:f4:c2: db:f7:e1:48:4c:78:ca:91:f5:08:90:53:08:93:72: c7:8f:83:38:65:07:db:34:22:08:13:a7:fc:bd:d9: 67:56:5e:f4:1a:6d:90:28:a1:1e:32:d8:1a:b9:ac: 79:a1:cf:c0:41:8f:a3:c0:ad:81:18:9d:57:2e:ef: a1:7f:78:e7:de:15:de:4e:f8:07:40:b8:15:83:7c: 58:2f:e8:26:9b:0d:28:3d:a8:bb:3d:c4:6b:ea:28: 7f:5c:dd:d5:6c:ca:00:7f:c7:39:fb:ab:be:85:7d: 83:53:8e:74:36:fd:db:ab:04:6f:26:41:c3:ab:e2: 52:ad:d4:a2:83:bb:6e:24:c3:bc:b6:8b:15:e3:78: 12:dc:8e:4c:e5:f7:9b:25:0b:87:cc:b6:cb:e7:7a: 80:2a:0b:65:87:3a:82:1d:22:64:2a:46:1f:fd:ec: 2a:06:ab:26:e1:58:34:34:27:ca:b9:41:ad:05:3b: 22:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:2A:0B:C3:32:E4:5C:E8:70:B0:F7:7A:1D:E3:6C:52:90:BA:83:3B X509v3 Authority Key Identifier: keyid:2B:67:8F:14:F8:B2:28:8D:49:55:7C:A6:FB:1B:DF:47:93:92:7D:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:dd:9c:bf:83:e5:9b:ad:59:43:a9:19:36:c1:9d:b4:b9:84: 24:0a:2f:61:4a:28:23:43:ac:93:c0:1e:c0:3f:fd:2a:fa:1f: a8:0a:8e:1a:27:a1:f6:73:c4:cb:f4:1d:f2:ca:c8:b7:d2:08: 04:be:40:eb:58:af:24:05:3c:84:a2:dc:2d:5f:65:7e:a2:f3: c8:79:77:71:88:10:88:29:37:5f:31:3a:51:b4:81:8c:eb:ef: 48:07:fa:b8:9c:b5:f5:5d:40:4e:2f:03:30:8c:7f:9b:5b:2f: 77:d9:5a:d6:76:75:03:8f:ba:c8:6d:cd:6b:1f:4f:ba:09:9c: c0:03:dd:4a:1f:77:d1:2c:4b:c1:7b:d1:9b:ce:b5:2e:d2:0e: 61:8a:b2:bd:27:0b:cd:15:f1:36:2f:30:e3:e6:36:80:02:ea: 9d:da:2c:99:03:a5:0f:f6:ae:b8:2e:67:61:8d:1d:df:9e:c6: 98:8a:66:d2:75:38:ff:39:ba:ef:dc:4a:b3:71:3d:70:c7:fd: b2:b4:7d:b3:e2:46:30:d9:83:6d:30:58:39:3d:42:0f:81:41: b6:7b:32:b5:26:89:91:ae:b1:48:98:01:f8:01:04:a6:a1:48: aa:84:3b:83:71:14:01:57:92:55:ff:3c:82:e3:2e:06:d0:bb: ba:c4:59:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydmrOEMHcVC1vqQtrB/kfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiNjc4ZjE0ZjhiMjI4OGQ0OTU1N2NhNmZiMWJkZjQ3OTM5 MjdkY2UwHhcNMjUxMjA2MDcwMDM4WhcNMjUxMjA3MDcwMDM4WjAzMTEwLwYDVQQD EygxMzJhMGJjMzMyZTQ1Y2U4NzBiMGY3N2ExZGUzNmM1MjkwYmE4MzNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqrY8O+guQAxuwr70J0zJWAE7mMbn MLzMDzdPx1+2T/Ysepd97rxN/4uB3dBrOS13pp9/ZTLyXwslFmZVaN9hrQyPqhEt kpxB9MLb9+FITHjKkfUIkFMIk3LHj4M4ZQfbNCIIE6f8vdlnVl70Gm2QKKEeMtga uax5oc/AQY+jwK2BGJ1XLu+hf3jn3hXeTvgHQLgVg3xYL+gmmw0oPai7PcRr6ih/ XN3VbMoAf8c5+6u+hX2DU450Nv3bqwRvJkHDq+JSrdSig7tuJMO8tosV43gS3I5M 5febJQuHzLbL53qAKgtlhzqCHSJkKkYf/ewqBqsm4Vg0NCfKuUGtBTsiRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBMqC8My5FzocLD3eh3jbFKQuoM7MB8GA1UdIwQY MBaAFCtnjxT4siiNSVV8pvsb30eTkn3OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSzJlUEZQaXlLSTFKVlh5bS14dmZSNU9TZmM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9iYmE5ZWQtZGEyMS00OTE5LWE4MzEt ZjFjYzg3M2MyZTI3LzEvSzJlUEZQaXlLSTFKVlh5bS14dmZSNU9TZmM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy9iYmE5ZWQtZGEyMS00OTE5LWE4MzEtZjFjYzg3M2MyZTI3 LzEvSzJlUEZQaXlLSTFKVlh5bS14dmZSNU9TZmM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk92cv4Pl m61ZQ6kZNsGdtLmEJAovYUooI0Osk8AewD/9KvofqAqOGieh9nPEy/Qd8srIt9II BL5A61ivJAU8hKLcLV9lfqLzyHl3cYgQiCk3XzE6UbSBjOvvSAf6uJy19V1ATi8D MIx/m1svd9la1nZ1A4+6yG3Nax9PugmcwAPdSh930SxLwXvRm861LtIOYYqyvScL zRXxNi8w4+Y2gALqndosmQOlD/auuC5nYY0d357GmIpm0nU4/zm679xKs3E9cMf9 srR9s+JGMNmDbTBYOT1CD4FBtnsytSaJka6xSJgB+AEEpqFIqoQ7g3EUAVeSVf88 guMuBtC7usRZ7Q== -----END CERTIFICATE-----Generated at Sat Dec 6 08:20:49 2025 by rpki-client