This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft File: 2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft (raw, json) Hash identifier: cjx+TdrTwSDNNIg4Y1v9pN8yF3vxmoxJlWJDCQ3QwFE= Subject key identifier: 03:93:43:D2:B4:2D:DF:F6:B0:E5:24:3B:3B:ED:A9:2F:B6:5D:CD:A0 Authority key identifier: D8:11:DD:22:F7:EA:F2:72:BC:4B:F3:EB:B1:52:D3:64:BB:4D:97:53 Certificate issuer: /CN=d811dd22f7eaf272bc4bf3ebb152d364bb4d9753 Certificate serial: 019AF208DF6B854117BE5901CDD448857FA4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2BHdIvfq8nK8S_PrsVLTZLtNl1M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft Manifest number: 056B Signing time: Sat 06 Dec 2025 05:00:58 +0000 Manifest this update: Sat 06 Dec 2025 05:00:58 +0000 Manifest next update: Sun 07 Dec 2025 05:00:58 +0000 Files and hashes: 1: 2BHdIvfq8nK8S_PrsVLTZLtNl1M.crl (hash: fPGilH0hK0QapvFes48jW0FufOIyKR5yZAvAOzfWqrQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft rsync://rpki.ripe.net/repository/DEFAULT/2BHdIvfq8nK8S_PrsVLTZLtNl1M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:df:6b:85:41:17:be:59:01:cd:d4:48:85:7f:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d811dd22f7eaf272bc4bf3ebb152d364bb4d9753 Validity Not Before: Dec 6 05:00:58 2025 GMT Not After : Dec 7 05:00:58 2025 GMT Subject: CN=039343d2b42ddff6b0e5243b3beda92fb65dcda0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:25:7b:71:1b:39:89:68:e9:29:14:17:98:21: 45:7d:98:59:f5:55:67:4f:d4:a2:95:92:21:51:d5: ee:96:a8:64:e9:eb:2c:0e:4f:63:ac:fb:e7:79:3a: 28:e3:c0:b9:78:40:54:0f:64:c5:18:a8:bb:b4:11: 74:06:ad:f5:e1:1e:33:2c:72:71:95:f3:0e:df:50: b2:70:8e:6d:9c:df:cc:81:4b:c6:f0:3f:1c:79:56: f7:c8:ad:e0:73:eb:01:0d:d8:de:2c:18:55:fb:a4: 98:57:d2:c4:33:01:b3:56:af:e5:36:96:f4:a8:39: c6:38:62:c2:78:e2:e3:e5:a2:f5:32:13:c4:8d:ae: 27:19:f8:cf:2b:85:da:86:18:92:39:bc:0c:aa:08: e6:d8:a5:4c:6c:f5:85:f9:a5:98:a7:96:94:60:22: 98:2a:0f:41:b6:57:a8:53:e7:af:ce:0c:43:13:63: 9e:8d:ab:59:96:85:93:72:45:ae:65:db:68:e1:1d: 75:3f:db:ad:a5:f7:c8:3e:e5:a1:21:cd:c6:3c:ad: ef:53:fe:24:12:7b:14:fc:ba:46:8f:8b:32:58:35: 68:1f:97:05:c8:0a:4a:91:01:68:ce:c0:e7:57:8b: a7:28:4b:6b:e6:78:e9:5b:b3:6c:a1:65:e1:8f:f9: df:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:93:43:D2:B4:2D:DF:F6:B0:E5:24:3B:3B:ED:A9:2F:B6:5D:CD:A0 X509v3 Authority Key Identifier: keyid:D8:11:DD:22:F7:EA:F2:72:BC:4B:F3:EB:B1:52:D3:64:BB:4D:97:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2BHdIvfq8nK8S_PrsVLTZLtNl1M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:b0:3c:31:16:5f:36:b0:6e:32:28:b1:78:38:aa:29:89:36: 75:3f:9e:23:bd:a2:dc:94:9a:48:6c:9d:e8:83:60:99:ab:00: 15:e7:81:db:36:79:f3:f6:71:12:3f:2a:79:3d:f0:3d:c0:85: 5d:75:65:6f:e8:22:28:58:98:a9:44:fb:28:1f:89:50:f9:0c: 0e:bf:fc:5d:97:89:96:e5:ed:db:47:3e:4d:06:e0:2e:43:a7: f5:04:da:be:b1:31:11:44:3a:13:7e:62:05:9a:ce:a3:89:88: 2a:78:73:57:48:ab:56:63:b1:44:7a:f0:a6:0e:47:26:16:1b: 18:25:1b:9f:b2:e2:da:95:6c:60:85:0e:dc:fa:6a:bf:cc:1d: cf:f6:5a:9e:cb:27:76:1b:68:ad:f9:45:8e:e4:d0:24:9a:fe: e8:71:5e:c0:a3:37:2a:c6:9e:69:ea:4b:e7:58:37:5f:8b:d0: 6d:35:08:84:ea:94:ce:30:ab:e1:b9:3b:5a:ce:f4:63:65:94: ca:b0:1b:de:43:ec:11:e4:bd:8e:08:3b:bd:19:b8:fc:eb:e7: fa:6c:bb:40:a8:57:fb:cc:49:26:7a:26:7a:c9:cd:4d:83:6e: f0:53:5f:d7:c2:3e:8d:d6:9c:66:28:88:f3:c0:02:9b:e7:24: 95:1c:2c:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCN9rhUEXvlkBzdRIhX+kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4MTFkZDIyZjdlYWYyNzJiYzRiZjNlYmIxNTJkMzY0YmI0 ZDk3NTMwHhcNMjUxMjA2MDUwMDU4WhcNMjUxMjA3MDUwMDU4WjAzMTEwLwYDVQQD EygwMzkzNDNkMmI0MmRkZmY2YjBlNTI0M2IzYmVkYTkyZmI2NWRjZGEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArSV7cRs5iWjpKRQXmCFFfZhZ9VVn T9SilZIhUdXulqhk6essDk9jrPvneToo48C5eEBUD2TFGKi7tBF0Bq314R4zLHJx lfMO31CycI5tnN/MgUvG8D8ceVb3yK3gc+sBDdjeLBhV+6SYV9LEMwGzVq/lNpb0 qDnGOGLCeOLj5aL1MhPEja4nGfjPK4XahhiSObwMqgjm2KVMbPWF+aWYp5aUYCKY Kg9BtleoU+evzgxDE2OejatZloWTckWuZdto4R11P9utpffIPuWhIc3GPK3vU/4k EnsU/LpGj4syWDVoH5cFyApKkQFozsDnV4unKEtr5njpW7NsoWXhj/nfuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAOTQ9K0Ld/2sOUkOzvtqS+2Xc2gMB8GA1UdIwQY MBaAFNgR3SL36vJyvEvz67FS02S7TZdTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkJIZEl2ZnE4bks4U19QcnNWTFRaTHRObDFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC80NzYyYzYtNWVhZi00ZTdjLWE4MjQt ZjcwYWRmMWRjMGZlLzEvMkJIZEl2ZnE4bks4U19QcnNWTFRaTHRObDFNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC80NzYyYzYtNWVhZi00ZTdjLWE4MjQtZjcwYWRmMWRjMGZl LzEvMkJIZEl2ZnE4bks4U19QcnNWTFRaTHRObDFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA7A8MRZf NrBuMiixeDiqKYk2dT+eI72i3JSaSGyd6INgmasAFeeB2zZ58/ZxEj8qeT3wPcCF XXVlb+giKFiYqUT7KB+JUPkMDr/8XZeJluXt20c+TQbgLkOn9QTavrExEUQ6E35i BZrOo4mIKnhzV0irVmOxRHrwpg5HJhYbGCUbn7Li2pVsYIUO3Ppqv8wdz/Zanssn dhtorflFjuTQJJr+6HFewKM3KsaeaepL51g3X4vQbTUIhOqUzjCr4bk7Ws70Y2WU yrAb3kPsEeS9jgg7vRm4/Ovn+my7QKhX+8xJJnomesnNTYNu8FNf18I+jdacZiiI 88ACm+cklRwsoQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:10:56 2025 by rpki-client