This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft File: 2wU2Dphzgl911nHa8WJKUumFOQw.mft (raw, json) Hash identifier: BqBSgBB9lZGH31bCzwSHmSQHPaggkuVNHs17VSWDHo8= Subject key identifier: 58:FF:9D:AA:AB:7F:44:F3:AB:62:E3:18:6E:EC:11:89:58:38:02:49 Authority key identifier: DB:05:36:0E:98:73:82:5F:75:D6:71:DA:F1:62:4A:52:E9:85:39:0C Certificate issuer: /CN=db05360e9873825f75d671daf1624a52e985390c Certificate serial: 019AF49BA28B92C2FFE0DC3EB352636D8909 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft Manifest number: 01EB Signing time: Sat 06 Dec 2025 17:00:31 +0000 Manifest this update: Sat 06 Dec 2025 17:00:31 +0000 Manifest next update: Sun 07 Dec 2025 17:00:31 +0000 Files and hashes: 1: 2wU2Dphzgl911nHa8WJKUumFOQw.crl (hash: AGX1f0C2n8pW6cbChSIe6CYKn4S0Zh4nroHH7t+btn4=) 2: dT_BFnqui1qPfatUh1gogWMYRho.roa (hash: Znmqpd0eQxFE3KRHa1gq7DMVat4pWLiZVr8QQEm1djI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft rsync://rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:9b:a2:8b:92:c2:ff:e0:dc:3e:b3:52:63:6d:89:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db05360e9873825f75d671daf1624a52e985390c Validity Not Before: Dec 6 17:00:31 2025 GMT Not After : Dec 7 17:00:31 2025 GMT Subject: CN=58ff9daaab7f44f3ab62e3186eec118958380249 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c5:71:c1:e6:d2:ce:1a:24:63:06:92:3f:f9: 4f:88:30:2e:c9:97:50:81:93:0d:27:1c:76:00:8d: dd:bc:7a:81:d4:a7:93:2f:7a:6d:04:9d:e3:7a:dc: 1c:99:4e:02:00:d1:31:c7:fa:aa:b0:87:0c:69:e9: 7c:ca:a1:c6:ff:52:c2:cc:1f:c6:d0:cd:89:cc:11: 2e:15:21:8f:9e:fe:73:d5:67:44:c1:9e:37:2b:ff: 51:e8:56:e8:df:6c:96:91:73:4f:60:76:47:07:be: c5:b0:73:e5:e6:12:84:d8:48:4c:b2:29:b9:d9:85: 5e:89:a8:f3:71:f5:a4:f4:e0:84:e3:dd:ec:b6:93: 1c:23:3c:13:98:81:c7:b1:9b:04:14:64:42:d2:8f: b6:36:0a:df:b8:69:d7:39:da:94:cf:57:f5:3b:35: 3f:57:c1:3a:88:2a:ee:e9:5f:a4:3d:e3:78:99:57: 17:0c:fe:72:be:c8:56:22:6d:07:85:ae:38:c9:53: 02:4e:8c:19:30:4a:96:ae:77:c9:22:44:5b:81:42: 21:e0:7d:07:08:f8:14:97:e2:c9:73:4b:02:b4:ac: 3e:63:87:b7:e7:58:a2:df:ac:8c:23:41:5a:db:5e: c5:40:d5:aa:bf:6a:29:9e:52:7d:c5:7c:15:d7:17: 67:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:FF:9D:AA:AB:7F:44:F3:AB:62:E3:18:6E:EC:11:89:58:38:02:49 X509v3 Authority Key Identifier: keyid:DB:05:36:0E:98:73:82:5F:75:D6:71:DA:F1:62:4A:52:E9:85:39:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:51:cb:72:ce:01:bd:5f:b2:8b:c9:7a:5d:d3:d4:7b:a2:72: d1:2b:d8:c6:a7:3e:b9:1b:3f:f1:6e:f3:7b:67:24:c8:2a:dd: 0e:c7:6d:1c:5b:6d:82:63:35:49:eb:c1:37:42:92:0f:5d:f7: 2d:8e:83:03:a5:0f:88:5b:c2:9b:8d:56:67:47:75:52:70:14: a1:55:58:54:0e:39:51:e4:1d:7f:73:27:6a:57:55:94:04:0e: 51:b9:e8:e8:a3:b0:d4:49:38:0c:5f:68:1e:d1:6c:f3:33:cd: 0e:df:29:b3:e7:53:62:15:23:e6:d3:09:22:ca:47:df:cd:96: 3b:8a:2c:5a:15:c6:8d:b1:5a:ce:44:28:c2:56:de:04:d7:05: 85:81:15:12:f0:28:43:af:22:a8:a2:bd:9d:be:12:4c:4b:83: 90:20:55:99:fa:7b:12:4e:4b:d8:c7:ab:fb:7c:0c:d4:8f:44: f2:40:1a:03:11:6c:e8:78:a6:15:7c:9f:35:fb:c0:24:bc:06: 4f:74:91:15:2a:00:89:37:73:09:06:06:8d:7d:4f:d0:06:d9: ce:cd:26:df:49:46:74:ed:1a:14:c9:67:81:1d:4f:36:a9:0f: 4e:f8:cb:9a:91:3b:aa:1e:90:05:e3:5c:b3:32:7f:b1:13:8e: 14:f1:23:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0m6KLksL/4Nw+s1JjbYkJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiMDUzNjBlOTg3MzgyNWY3NWQ2NzFkYWYxNjI0YTUyZTk4 NTM5MGMwHhcNMjUxMjA2MTcwMDMxWhcNMjUxMjA3MTcwMDMxWjAzMTEwLwYDVQQD Eyg1OGZmOWRhYWFiN2Y0NGYzYWI2MmUzMTg2ZWVjMTE4OTU4MzgwMjQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn8VxwebSzhokYwaSP/lPiDAuyZdQ gZMNJxx2AI3dvHqB1KeTL3ptBJ3jetwcmU4CANExx/qqsIcMael8yqHG/1LCzB/G 0M2JzBEuFSGPnv5z1WdEwZ43K/9R6Fbo32yWkXNPYHZHB77FsHPl5hKE2EhMsim5 2YVeiajzcfWk9OCE493stpMcIzwTmIHHsZsEFGRC0o+2NgrfuGnXOdqUz1f1OzU/ V8E6iCru6V+kPeN4mVcXDP5yvshWIm0Hha44yVMCTowZMEqWrnfJIkRbgUIh4H0H CPgUl+LJc0sCtKw+Y4e351ii36yMI0Fa217FQNWqv2opnlJ9xXwV1xdnQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFj/naqrf0Tzq2LjGG7sEYlYOAJJMB8GA1UdIwQY MBaAFNsFNg6Yc4JfddZx2vFiSlLphTkMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMndVMkRwaHpnbDkxMW5IYThXSktVdW1GT1F3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS84ZmMxZTItNDFkNy00ZjM1LWExM2Ut ZDYyZDIyNGUzY2FmLzEvMndVMkRwaHpnbDkxMW5IYThXSktVdW1GT1F3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS84ZmMxZTItNDFkNy00ZjM1LWExM2UtZDYyZDIyNGUzY2Fm LzEvMndVMkRwaHpnbDkxMW5IYThXSktVdW1GT1F3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPVHLcs4B vV+yi8l6XdPUe6Jy0SvYxqc+uRs/8W7ze2ckyCrdDsdtHFttgmM1SevBN0KSD133 LY6DA6UPiFvCm41WZ0d1UnAUoVVYVA45UeQdf3MnaldVlAQOUbno6KOw1Ek4DF9o HtFs8zPNDt8ps+dTYhUj5tMJIspH382WO4osWhXGjbFazkQowlbeBNcFhYEVEvAo Q68iqKK9nb4STEuDkCBVmfp7Ek5L2Mer+3wM1I9E8kAaAxFs6HimFXyfNfvAJLwG T3SRFSoAiTdzCQYGjX1P0AbZzs0m30lGdO0aFMlngR1PNqkPTvjLmpE7qh6QBeNc szJ/sROOFPEjiw== -----END CERTIFICATE-----Generated at Sun Dec 7 02:27:32 2025 by rpki-client