This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft File: 2IUFXXA5jPDHLM6sXlga1A8gPvw.mft (raw, json) Hash identifier: //+FH3gMDeEkcDxm4F9+dvEJJkx9AbvdC6zsBBDOSO0= Subject key identifier: A6:26:22:D5:D7:46:62:BA:9A:BB:32:C1:C3:F6:53:E4:EA:DB:07:D5 Authority key identifier: D8:85:05:5D:70:39:8C:F0:C7:2C:CE:AC:5E:58:1A:D4:0F:20:3E:FC Certificate issuer: /CN=d885055d70398cf0c72cceac5e581ad40f203efc Certificate serial: 019AF5E60E65ADB57890006CB3EEF5778C38 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft Manifest number: 0F2D Signing time: Sat 06 Dec 2025 23:01:26 +0000 Manifest this update: Sat 06 Dec 2025 23:01:26 +0000 Manifest next update: Sun 07 Dec 2025 23:01:26 +0000 Files and hashes: 1: 2IUFXXA5jPDHLM6sXlga1A8gPvw.crl (hash: I5nkZ8Kdmjd8n9ERX780tUJQboSiqOZrR2aNeszVoEw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:e6:0e:65:ad:b5:78:90:00:6c:b3:ee:f5:77:8c:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d885055d70398cf0c72cceac5e581ad40f203efc Validity Not Before: Dec 6 23:01:26 2025 GMT Not After : Dec 7 23:01:26 2025 GMT Subject: CN=a62622d5d74662ba9abb32c1c3f653e4eadb07d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:59:18:8e:46:b4:04:96:eb:6b:36:e3:90:6e: 25:d9:41:c3:a2:2a:f0:ca:bc:a9:17:1c:ee:b2:82: 7b:96:ad:76:8a:bc:29:57:79:46:83:15:00:83:c3: 4d:dd:1d:eb:00:1e:09:50:9b:e5:8f:86:2e:3d:87: 76:3d:05:5e:e8:e2:be:3e:f1:77:b3:c0:16:04:70: 7c:17:d0:37:7c:1a:87:1d:bf:d8:76:be:4f:94:0e: 5d:97:40:84:d4:1e:e4:54:50:4a:e7:20:16:71:72: bc:eb:34:1e:fa:2a:9c:dc:55:f5:6a:1c:35:62:b1: 63:be:7b:ff:f4:9c:bf:ed:a0:9c:6a:08:39:63:ee: d1:c1:9f:ef:9f:40:9d:7f:16:e8:cb:29:d9:f8:7c: 47:ad:89:e2:7f:af:95:db:f0:01:3a:64:64:72:5b: 48:43:30:40:6e:99:17:0e:52:32:29:7e:ff:36:b6: 25:e2:73:ed:d7:3f:d2:f0:37:71:61:c5:36:f1:0b: 85:30:d5:ca:99:e7:72:e7:51:cb:03:f1:22:17:95: a4:f9:c4:6c:2f:59:ab:a4:d7:a7:52:e8:92:2c:6a: 10:44:ea:e8:b0:ea:8f:69:df:a8:ed:c4:47:2f:8d: 5a:e7:40:b3:a7:96:9c:1e:9e:7a:51:a6:89:3c:80: e4:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:26:22:D5:D7:46:62:BA:9A:BB:32:C1:C3:F6:53:E4:EA:DB:07:D5 X509v3 Authority Key Identifier: keyid:D8:85:05:5D:70:39:8C:F0:C7:2C:CE:AC:5E:58:1A:D4:0F:20:3E:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:28:bf:39:2f:9a:ec:13:77:58:73:a4:85:2d:ee:24:e9:ce: 29:a4:19:ef:a8:f9:86:ca:ac:99:70:3f:fd:b9:0e:28:ce:1e: bd:e5:3c:35:02:a0:fc:6d:ed:73:a3:52:ab:cc:98:c2:86:ea: 35:58:54:8d:38:67:19:63:48:7b:cc:49:4c:73:31:18:18:ab: 8d:cb:75:2f:f0:e4:9e:ef:d2:b1:37:5c:05:55:26:8f:3b:e0: 9d:08:35:c8:56:20:72:78:9a:dc:28:00:89:d6:cc:60:30:4a: 3c:09:ea:0f:ad:84:d0:cf:5f:b9:3a:32:32:10:e9:e4:88:dc: 0c:38:fb:49:c0:a0:3b:b6:a5:65:eb:59:07:35:ab:98:e0:f1: 0b:bb:fa:79:78:eb:12:05:96:f2:eb:8e:0e:9c:a3:6c:28:31: 0b:8f:72:7a:97:b1:2c:97:8f:ea:5a:b4:00:86:8b:51:f4:5c: 52:76:f7:e2:b1:a8:e1:45:ca:60:8d:92:7b:db:a7:a1:7f:62: 38:bb:62:0d:34:e4:d3:01:a0:8b:9b:c0:10:11:39:dc:c8:3f: 25:fc:c6:6f:98:8e:ad:c5:9a:cc:30:7b:21:0b:7e:35:c9:af: 46:54:25:2e:fc:57:64:9e:14:f3:cc:fa:cb:9e:73:ff:e6:d8: eb:b6:2d:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr15g5lrbV4kABss+71d4w4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4ODUwNTVkNzAzOThjZjBjNzJjY2VhYzVlNTgxYWQ0MGYy MDNlZmMwHhcNMjUxMjA2MjMwMTI2WhcNMjUxMjA3MjMwMTI2WjAzMTEwLwYDVQQD EyhhNjI2MjJkNWQ3NDY2MmJhOWFiYjMyYzFjM2Y2NTNlNGVhZGIwN2Q1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4lkYjka0BJbrazbjkG4l2UHDoirw yrypFxzusoJ7lq12irwpV3lGgxUAg8NN3R3rAB4JUJvlj4YuPYd2PQVe6OK+PvF3 s8AWBHB8F9A3fBqHHb/Ydr5PlA5dl0CE1B7kVFBK5yAWcXK86zQe+iqc3FX1ahw1 YrFjvnv/9Jy/7aCcagg5Y+7RwZ/vn0CdfxboyynZ+HxHrYnif6+V2/ABOmRkcltI QzBAbpkXDlIyKX7/NrYl4nPt1z/S8DdxYcU28QuFMNXKmedy51HLA/EiF5Wk+cRs L1mrpNenUuiSLGoQROrosOqPad+o7cRHL41a50Czp5acHp56UaaJPIDkuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKYmItXXRmK6mrsywcP2U+Tq2wfVMB8GA1UdIwQY MBaAFNiFBV1wOYzwxyzOrF5YGtQPID78MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMklVRlhYQTVqUERITE02c1hsZ2ExQThnUHZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi84MmFmMjgtYjYzNC00NjNhLWI2YmUt MWNhM2M2N2YxNTA2LzEvMklVRlhYQTVqUERITE02c1hsZ2ExQThnUHZ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi84MmFmMjgtYjYzNC00NjNhLWI2YmUtMWNhM2M2N2YxNTA2 LzEvMklVRlhYQTVqUERITE02c1hsZ2ExQThnUHZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWii/OS+a 7BN3WHOkhS3uJOnOKaQZ76j5hsqsmXA//bkOKM4eveU8NQKg/G3tc6NSq8yYwobq NVhUjThnGWNIe8xJTHMxGBirjct1L/Dknu/SsTdcBVUmjzvgnQg1yFYgcnia3CgA idbMYDBKPAnqD62E0M9fuToyMhDp5IjcDDj7ScCgO7alZetZBzWrmODxC7v6eXjr EgWW8uuODpyjbCgxC49yepexLJeP6lq0AIaLUfRcUnb34rGo4UXKYI2Se9unoX9i OLtiDTTk0wGgi5vAEBE53Mg/JfzGb5iOrcWazDB7IQt+NcmvRlQlLvxXZJ4U88z6 y55z/+bY67YtgA== -----END CERTIFICATE-----Generated at Sun Dec 7 02:59:14 2025 by rpki-client