This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft File: 2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft (raw, json) Hash identifier: LkRx4utrMS//X/CBhTUajMC1ArM4Uyw3zWi7ZlXK4K8= Subject key identifier: C0:55:EC:AB:0C:B5:32:DC:6E:13:B1:82:BC:07:2D:F1:38:F8:2E:03 Authority key identifier: D9:9A:47:CD:C8:9F:46:34:2F:90:B0:DA:3C:30:D9:EC:5F:D6:32:38 Certificate issuer: /CN=d99a47cdc89f46342f90b0da3c30d9ec5fd63238 Certificate serial: 019AF19B4D6EE64B9438AC247427D65526A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft Manifest number: 0816 Signing time: Sat 06 Dec 2025 03:01:18 +0000 Manifest this update: Sat 06 Dec 2025 03:01:18 +0000 Manifest next update: Sun 07 Dec 2025 03:01:18 +0000 Files and hashes: 1: 20Dw3EtRjT0VsUf9XJsc0R3Ci-Y.roa (hash: eYk/5sRuyCDN9GA+BHkMTQtHbaoi0rArz9DpKNEObWk=) 2: 2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl (hash: cABOJbRhR81WcKssZdkJJ35A69AylAnOM+RZc0h87Do=) 3: 4syStsiJ4_nkcJBvU4Ns9Pjm0oQ.roa (hash: 2p6GX7iVYhsRkTJt8jEU86F9xE4rex2UzZbhNm8D8D0=) 4: N_GpQaNWWGxkbuDZ3ulfH-r64tk.roa (hash: IM2SiURjMxHWXsFqFI4woiJ2ADSr+qZUIrRaSOqm3m0=) 5: oHg8th2m-6lkqpucCywGnTPw2Y8.roa (hash: fBPsGM2/mDx5oeAlhLVhusnxHUP4XIwFmPZfB6dTzC0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:4d:6e:e6:4b:94:38:ac:24:74:27:d6:55:26:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d99a47cdc89f46342f90b0da3c30d9ec5fd63238 Validity Not Before: Dec 6 03:01:18 2025 GMT Not After : Dec 7 03:01:18 2025 GMT Subject: CN=c055ecab0cb532dc6e13b182bc072df138f82e03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3c:85:99:2a:05:e7:f3:7b:8a:fa:b7:55:cf: 52:96:cb:54:81:d5:ac:02:f1:a3:d7:7b:e9:68:cf: d8:96:9a:62:80:31:6e:f6:04:e0:d3:64:12:68:89: 1a:f6:cb:09:a6:cc:d7:7c:cf:00:27:ad:5a:de:58: b8:db:60:7f:f0:09:21:36:35:04:6b:ef:12:8d:af: 42:a5:cf:db:65:9d:1a:3f:39:62:17:c3:6e:38:ee: 8d:a6:63:8b:c2:44:78:27:8f:39:0a:1d:65:d6:ee: 02:71:a6:43:29:33:ea:02:2a:0d:4c:19:ce:a6:3d: 39:04:2e:d1:bb:c7:fa:45:4e:b5:d2:cc:8b:57:79: ea:80:52:51:e0:8f:ab:1f:72:fd:a5:72:79:6a:2c: bd:fc:93:de:4b:9a:d7:d1:51:f4:9a:d4:11:59:74: 08:b8:e3:a4:f0:9f:3a:ff:da:f2:b8:cb:06:a1:20: 6d:d1:6c:c3:c7:ba:d9:3d:9b:1c:69:4c:1e:61:04: 9b:5d:3a:e6:29:d5:65:48:7c:c7:0e:17:ad:d1:61: f9:34:96:cf:05:5f:06:2f:b0:10:16:73:b9:ea:1b: b5:e2:2f:ec:2e:99:b3:5a:ef:fd:09:eb:6b:00:62: ec:51:b3:dd:a3:66:e0:ed:76:30:da:b7:ea:3d:34: b2:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:55:EC:AB:0C:B5:32:DC:6E:13:B1:82:BC:07:2D:F1:38:F8:2E:03 X509v3 Authority Key Identifier: keyid:D9:9A:47:CD:C8:9F:46:34:2F:90:B0:DA:3C:30:D9:EC:5F:D6:32:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:2b:f9:34:82:cf:c1:9e:6d:6e:fa:09:02:7d:a4:82:a7:28: c9:3a:4c:77:3f:6b:1a:7e:d2:84:39:a7:94:70:51:b2:b1:20: d4:ea:7d:73:c0:60:e8:bd:62:ae:be:84:05:74:c0:9a:3c:31: 1d:67:ac:47:b1:97:b4:79:f6:8b:1c:ff:17:3d:9f:e4:fb:00: 0b:a0:ef:3d:83:a7:c0:47:6f:d0:16:9e:cb:6e:95:a5:fa:69: 11:a2:38:e9:f5:e2:04:71:7c:49:18:ca:36:35:ac:67:c9:4d: 5f:65:6c:9e:85:f0:b2:0b:f8:4e:44:99:de:ca:ce:71:6f:a5: f3:fe:0a:11:4d:66:64:e8:0e:07:f9:f9:1a:04:b1:9e:b0:17: 66:99:58:67:01:b8:10:2e:18:2e:ef:22:7f:f9:f8:49:b2:eb: 2d:7b:46:2f:4c:a4:00:e9:46:cb:58:51:ae:4e:72:b5:93:ed: 0d:81:43:e6:c5:a2:25:e2:9f:50:e1:70:92:75:c3:ac:83:11: 6a:21:79:cb:9b:9c:8d:ac:f8:e0:ca:e6:ac:9d:34:d4:6e:b2: eb:61:37:ff:d2:e0:5e:b9:14:75:be:3b:04:20:b2:0f:2f:ca: 53:eb:ca:7e:3a:b0:47:e1:36:15:3d:8c:f7:84:a0:f8:de:7d: 95:9d:1c:05 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm01u5kuUOKwkdCfWVSahMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5OWE0N2NkYzg5ZjQ2MzQyZjkwYjBkYTNjMzBkOWVjNWZk NjMyMzgwHhcNMjUxMjA2MDMwMTE4WhcNMjUxMjA3MDMwMTE4WjAzMTEwLwYDVQQD EyhjMDU1ZWNhYjBjYjUzMmRjNmUxM2IxODJiYzA3MmRmMTM4ZjgyZTAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwDyFmSoF5/N7ivq3Vc9SlstUgdWs AvGj13vpaM/YlppigDFu9gTg02QSaIka9ssJpszXfM8AJ61a3li422B/8AkhNjUE a+8Sja9Cpc/bZZ0aPzliF8NuOO6NpmOLwkR4J485Ch1l1u4CcaZDKTPqAioNTBnO pj05BC7Ru8f6RU610syLV3nqgFJR4I+rH3L9pXJ5aiy9/JPeS5rX0VH0mtQRWXQI uOOk8J86/9ryuMsGoSBt0WzDx7rZPZscaUweYQSbXTrmKdVlSHzHDhet0WH5NJbP BV8GL7AQFnO56hu14i/sLpmzWu/9CetrAGLsUbPdo2bg7XYw2rfqPTSylwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMBV7KsMtTLcbhOxgrwHLfE4+C4DMB8GA1UdIwQY MBaAFNmaR83In0Y0L5Cw2jww2exf1jI4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlpwSHpjaWZSalF2a0xEYVBERFo3Rl9XTWpnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9kMzBlZWYtNDk1ZS00M2JkLTkxOWMt YTJhMGUyZGI0OWQwLzEvMlpwSHpjaWZSalF2a0xEYVBERFo3Rl9XTWpnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC9kMzBlZWYtNDk1ZS00M2JkLTkxOWMtYTJhMGUyZGI0OWQw LzEvMlpwSHpjaWZSalF2a0xEYVBERFo3Rl9XTWpnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWyv5NILP wZ5tbvoJAn2kgqcoyTpMdz9rGn7ShDmnlHBRsrEg1Op9c8Bg6L1irr6EBXTAmjwx HWesR7GXtHn2ixz/Fz2f5PsAC6DvPYOnwEdv0Baey26VpfppEaI46fXiBHF8SRjK NjWsZ8lNX2VsnoXwsgv4TkSZ3srOcW+l8/4KEU1mZOgOB/n5GgSxnrAXZplYZwG4 EC4YLu8if/n4SbLrLXtGL0ykAOlGy1hRrk5ytZPtDYFD5sWiJeKfUOFwknXDrIMR aiF5y5ucjaz44MrmrJ001G6y62E3/9LgXrkUdb47BCCyDy/KU+vKfjqwR+E2FT2M 94Sg+N59lZ0cBQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:43:52 2025 by rpki-client