This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft File: K2ePFPiyKI1JVXym-xvfR5OSfc4.mft (raw, json) Hash identifier: cb4mTvRPlzSHQBDiBYVE7rN0Wmt9gZjYZOcRLZrVvX4= Subject key identifier: A5:84:36:6D:78:4A:26:B3:CC:B5:EF:45:DF:07:FA:76:A8:50:2C:DF Authority key identifier: 2B:67:8F:14:F8:B2:28:8D:49:55:7C:A6:FB:1B:DF:47:93:92:7D:CE Certificate issuer: /CN=2b678f14f8b2288d49557ca6fb1bdf4793927dce Certificate serial: 019B2E5462D60187723D079080093FAE3438 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft Manifest number: 0F4D Signing time: Wed 17 Dec 2025 22:00:40 +0000 Manifest this update: Wed 17 Dec 2025 22:00:40 +0000 Manifest next update: Thu 18 Dec 2025 22:00:40 +0000 Files and hashes: 1: F4GHMtEvNm46dM5TWDxthbQ6BA4.roa (hash: KVVBBRsYRigOW/uzk41RjMrk4PM1I4rBXcib4AOOQeA=) 2: K2ePFPiyKI1JVXym-xvfR5OSfc4.crl (hash: XZbSyPjpZlJUqw1Mfo9BJkC49YgyEr3fZJ+zHmh6MXM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 22:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:54:62:d6:01:87:72:3d:07:90:80:09:3f:ae:34:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2b678f14f8b2288d49557ca6fb1bdf4793927dce Validity Not Before: Dec 17 22:00:40 2025 GMT Not After : Dec 18 22:00:40 2025 GMT Subject: CN=a584366d784a26b3ccb5ef45df07fa76a8502cdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0a:0f:d1:f9:9b:61:7f:e9:f0:d5:55:81:f9: e8:9d:43:61:39:ef:c0:42:54:46:3c:19:0b:84:38: 83:99:c7:aa:b0:3f:b5:63:44:91:97:c0:41:ff:05: 83:55:f1:35:7b:10:e8:5c:a2:7c:9f:e5:4f:a1:79: 07:62:76:b4:7b:51:0f:cf:25:fb:28:c6:88:5c:4a: 42:9c:80:9d:19:e9:7e:3b:ec:d5:cd:f3:6d:7b:e7: f1:79:ef:7e:46:d0:f0:80:27:1c:7b:a2:2a:8c:e2: 0a:33:37:51:75:29:e1:15:18:e0:9e:8f:fd:b8:a6: 6d:d8:4b:28:99:f4:0b:83:6f:80:16:f6:14:4c:53: 40:82:33:23:01:57:df:8a:04:5f:17:18:76:a6:e1: 3e:75:74:b3:a3:8d:ea:13:83:82:01:9d:b7:4d:53: 9e:9d:d1:e2:34:16:6d:7d:6f:87:80:51:65:c4:86: f3:e9:33:66:d1:9e:0d:14:f8:19:92:dd:63:16:ab: 51:42:2d:b9:b3:21:5f:d0:00:3e:f0:90:dd:d4:22: e0:7a:da:9f:01:7b:d5:56:93:a7:68:3e:85:1b:4b: 29:d0:30:87:cb:49:cd:47:1f:9b:fe:43:49:71:aa: 18:79:78:b1:8b:1f:6c:9e:4d:03:ab:31:0a:65:0c: e9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:84:36:6D:78:4A:26:B3:CC:B5:EF:45:DF:07:FA:76:A8:50:2C:DF X509v3 Authority Key Identifier: keyid:2B:67:8F:14:F8:B2:28:8D:49:55:7C:A6:FB:1B:DF:47:93:92:7D:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:f8:9f:62:88:7f:57:91:2f:24:38:4e:46:8e:eb:7f:da:06: 10:f9:98:b4:c0:94:00:78:f8:ae:45:fa:84:20:e1:4b:fc:de: 7a:9e:85:9e:6d:f0:ad:08:51:41:4d:5b:c2:bf:e0:a5:fa:e0: 72:e1:db:67:02:e8:85:a0:c9:fe:15:72:08:cd:bb:c6:ee:68: 3c:ac:ed:d2:f1:8f:fd:7a:75:1e:b4:bf:f8:a1:58:52:55:86: d1:0a:7a:6a:4f:94:4a:5a:84:d2:5a:cf:7b:50:84:3e:f1:17: e0:67:50:0f:99:cc:e2:88:3b:4c:df:56:de:6e:67:ec:5d:ad: c7:f7:7b:45:2f:c9:4e:f5:33:0c:88:66:ea:f7:13:dc:78:78: ee:f9:8a:ca:8f:ab:cf:19:ad:7a:18:a1:28:ed:d5:46:34:c0: dc:a3:b1:ab:5d:b4:b4:e5:4b:0b:e5:0a:a6:c3:b4:6d:6c:b7: 95:c1:ba:a9:92:30:db:c7:4c:6c:0b:20:0d:25:ee:b7:f6:2a: 13:a0:97:c4:b7:6b:7b:28:93:d7:5e:05:be:84:d1:62:2e:18: 38:3b:22:45:a3:75:72:42:de:83:e0:b1:c0:d4:73:4e:94:ca: d6:24:ec:84:89:00:ca:03:19:c9:6e:43:0b:2c:b7:e6:80:e9: b1:63:fb:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsuVGLWAYdyPQeQgAk/rjQ4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiNjc4ZjE0ZjhiMjI4OGQ0OTU1N2NhNmZiMWJkZjQ3OTM5 MjdkY2UwHhcNMjUxMjE3MjIwMDQwWhcNMjUxMjE4MjIwMDQwWjAzMTEwLwYDVQQD EyhhNTg0MzY2ZDc4NGEyNmIzY2NiNWVmNDVkZjA3ZmE3NmE4NTAyY2RmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgoP0fmbYX/p8NVVgfnonUNhOe/A QlRGPBkLhDiDmceqsD+1Y0SRl8BB/wWDVfE1exDoXKJ8n+VPoXkHYna0e1EPzyX7 KMaIXEpCnICdGel+O+zVzfNte+fxee9+RtDwgCcce6IqjOIKMzdRdSnhFRjgno/9 uKZt2EsomfQLg2+AFvYUTFNAgjMjAVffigRfFxh2puE+dXSzo43qE4OCAZ23TVOe ndHiNBZtfW+HgFFlxIbz6TNm0Z4NFPgZkt1jFqtRQi25syFf0AA+8JDd1CLgetqf AXvVVpOnaD6FG0sp0DCHy0nNRx+b/kNJcaoYeXixix9snk0DqzEKZQzprQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKWENm14SiazzLXvRd8H+naoUCzfMB8GA1UdIwQY MBaAFCtnjxT4siiNSVV8pvsb30eTkn3OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSzJlUEZQaXlLSTFKVlh5bS14dmZSNU9TZmM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9iYmE5ZWQtZGEyMS00OTE5LWE4MzEt ZjFjYzg3M2MyZTI3LzEvSzJlUEZQaXlLSTFKVlh5bS14dmZSNU9TZmM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy9iYmE5ZWQtZGEyMS00OTE5LWE4MzEtZjFjYzg3M2MyZTI3 LzEvSzJlUEZQaXlLSTFKVlh5bS14dmZSNU9TZmM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU/ifYoh/ V5EvJDhORo7rf9oGEPmYtMCUAHj4rkX6hCDhS/zeep6Fnm3wrQhRQU1bwr/gpfrg cuHbZwLohaDJ/hVyCM27xu5oPKzt0vGP/Xp1HrS/+KFYUlWG0Qp6ak+USlqE0lrP e1CEPvEX4GdQD5nM4og7TN9W3m5n7F2tx/d7RS/JTvUzDIhm6vcT3Hh47vmKyo+r zxmtehihKO3VRjTA3KOxq120tOVLC+UKpsO0bWy3lcG6qZIw28dMbAsgDSXut/Yq E6CXxLdreyiT114FvoTRYi4YODsiRaN1ckLeg+CxwNRzTpTK1iTshIkAygMZyW5D Cyy35oDpsWP7uQ== -----END CERTIFICATE-----Generated at Thu Dec 18 07:37:52 2025 by rpki-client