This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.mft File: 2My6s6LYEMX6KdzanVAgJhbvueg.mft (raw, json) Hash identifier: mo+NVR3wLo1KWxKkxVyh0Ap03txEHslJYR01DLqKDKg= Subject key identifier: 77:00:9D:8E:DD:8C:5A:7F:6E:3A:61:B0:8E:1A:23:F9:81:E5:3F:D7 Authority key identifier: D8:CC:BA:B3:A2:D8:10:C5:FA:29:DC:DA:9D:50:20:26:16:EF:B9:E8 Certificate issuer: /CN=d8ccbab3a2d810c5fa29dcda9d50202616efb9e8 Certificate serial: 019AF27733F446AF6CEB44BD93508004EDE8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2My6s6LYEMX6KdzanVAgJhbvueg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.mft Manifest number: 01CC Signing time: Sat 06 Dec 2025 07:01:29 +0000 Manifest this update: Sat 06 Dec 2025 07:01:29 +0000 Manifest next update: Sun 07 Dec 2025 07:01:29 +0000 Files and hashes: 1: 2My6s6LYEMX6KdzanVAgJhbvueg.crl (hash: YiyOfES8MyvSP5KYQAdd+pUxmnu+ks0cfd79YTlq1sY=) 2: KOSoig2OcfAUHpP5S4cPuKe0-qQ.roa (hash: h7WOd3FoOyE3z3s6Su64D7SfxJalvzda0YokBEiVb1w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.mft rsync://rpki.ripe.net/repository/DEFAULT/2My6s6LYEMX6KdzanVAgJhbvueg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:77:33:f4:46:af:6c:eb:44:bd:93:50:80:04:ed:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8ccbab3a2d810c5fa29dcda9d50202616efb9e8 Validity Not Before: Dec 6 07:01:29 2025 GMT Not After : Dec 7 07:01:29 2025 GMT Subject: CN=77009d8edd8c5a7f6e3a61b08e1a23f981e53fd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8b:8a:da:4a:a5:43:a6:b4:46:14:c2:54:ca: 1d:7c:d4:18:9a:2e:16:a1:f6:2f:65:99:5d:25:10: 9d:37:d4:21:47:e9:2e:ee:4e:7c:9c:71:39:f6:2b: 67:5f:32:9b:7b:ef:59:72:62:85:8a:5c:57:9f:bc: f0:65:ad:0d:ec:fd:03:09:98:a0:9e:56:e8:e3:69: 49:f9:fc:90:63:b2:60:51:bc:e8:16:22:29:20:cf: ee:90:d1:6d:6d:83:fb:f1:3f:85:e7:15:83:da:9f: 26:d1:45:df:70:f3:49:01:cc:1c:b3:29:6a:55:98: 9d:36:87:b9:1b:13:75:90:3c:e9:58:07:2b:b7:96: 1a:a9:8c:b3:ca:be:eb:31:eb:a5:93:c3:4c:92:a8: 50:ca:df:31:30:9f:78:27:bb:cc:4e:fd:c9:c2:04: d0:55:e2:43:f8:e5:9e:11:e9:9e:de:ed:98:8f:19: 36:6d:27:74:27:93:d2:b1:a5:d4:4e:b7:b2:a0:ff: 22:4f:0b:6e:5f:16:c1:85:2e:0a:df:f1:33:72:3b: b6:12:5b:0a:81:f4:67:65:22:5b:a8:fc:9a:63:60: 5c:42:89:bf:6b:8e:dc:d9:ca:3d:87:44:00:3b:c6: fd:57:78:ed:90:b3:ee:49:ad:f7:f6:7b:50:80:37: c9:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:00:9D:8E:DD:8C:5A:7F:6E:3A:61:B0:8E:1A:23:F9:81:E5:3F:D7 X509v3 Authority Key Identifier: keyid:D8:CC:BA:B3:A2:D8:10:C5:FA:29:DC:DA:9D:50:20:26:16:EF:B9:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2My6s6LYEMX6KdzanVAgJhbvueg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:fc:36:f3:9e:76:bf:a6:2a:0e:20:76:25:61:37:1f:f7:b7: b1:ce:89:bc:ec:50:ee:d4:17:73:67:db:65:9b:1b:7b:74:e5: 1d:21:4d:d5:e6:b8:bd:16:a3:92:d4:3c:7e:d6:d9:96:3a:86: e6:9a:fd:e1:1c:5e:70:3a:59:90:c7:3a:ab:df:4b:bd:d2:5f: 52:91:f5:7b:47:38:29:6f:9d:96:94:ed:e0:5f:2e:8b:a9:f3: 46:d6:2f:7d:a2:34:d9:42:ec:70:c6:48:7e:eb:dd:cb:98:65: c8:7c:bb:91:a7:8a:ec:e5:70:8b:8a:ac:6b:e9:d7:a5:da:71: d2:61:fb:a2:49:d7:95:44:59:e0:30:d4:ce:ef:c8:05:24:bb: 7c:b4:c0:3d:29:ad:ef:31:3a:f2:d2:7a:a5:8c:4f:ee:10:be: 2b:7d:51:f8:e4:f8:d6:0d:9b:55:fa:03:f8:23:b8:a5:80:95: 9c:04:83:0c:66:2d:56:94:bf:aa:db:3e:4d:ab:fa:75:76:4b: cb:64:c6:11:da:18:04:0f:6f:ab:30:67:9c:bb:4f:6b:dc:41: 81:c3:81:34:dd:9b:29:10:31:15:0f:dd:5f:65:cc:89:38:ca: ee:a8:ef:1f:c8:82:8e:36:d9:2e:bc:d1:42:36:a3:5d:c8:e6: da:db:ad:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydzP0Rq9s60S9k1CABO3oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4Y2NiYWIzYTJkODEwYzVmYTI5ZGNkYTlkNTAyMDI2MTZl ZmI5ZTgwHhcNMjUxMjA2MDcwMTI5WhcNMjUxMjA3MDcwMTI5WjAzMTEwLwYDVQQD Eyg3NzAwOWQ4ZWRkOGM1YTdmNmUzYTYxYjA4ZTFhMjNmOTgxZTUzZmQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtYuK2kqlQ6a0RhTCVModfNQYmi4W ofYvZZldJRCdN9QhR+ku7k58nHE59itnXzKbe+9ZcmKFilxXn7zwZa0N7P0DCZig nlbo42lJ+fyQY7JgUbzoFiIpIM/ukNFtbYP78T+F5xWD2p8m0UXfcPNJAcwcsylq VZidNoe5GxN1kDzpWAcrt5YaqYyzyr7rMeulk8NMkqhQyt8xMJ94J7vMTv3JwgTQ VeJD+OWeEeme3u2Yjxk2bSd0J5PSsaXUTreyoP8iTwtuXxbBhS4K3/Ezcju2ElsK gfRnZSJbqPyaY2BcQom/a47c2co9h0QAO8b9V3jtkLPuSa339ntQgDfJOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHcAnY7djFp/bjphsI4aI/mB5T/XMB8GA1UdIwQY MBaAFNjMurOi2BDF+inc2p1QICYW77noMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMk15NnM2TFlFTVg2S2R6YW5WQWdKaGJ2dWVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi80NmZhMDItNjU4Ny00YzYyLTk3M2Ut YjEyNTAxZjM0ZmYwLzEvMk15NnM2TFlFTVg2S2R6YW5WQWdKaGJ2dWVnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi80NmZhMDItNjU4Ny00YzYyLTk3M2UtYjEyNTAxZjM0ZmYw LzEvMk15NnM2TFlFTVg2S2R6YW5WQWdKaGJ2dWVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ/w28552 v6YqDiB2JWE3H/e3sc6JvOxQ7tQXc2fbZZsbe3TlHSFN1ea4vRajktQ8ftbZljqG 5pr94RxecDpZkMc6q99LvdJfUpH1e0c4KW+dlpTt4F8ui6nzRtYvfaI02ULscMZI fuvdy5hlyHy7kaeK7OVwi4qsa+nXpdpx0mH7oknXlURZ4DDUzu/IBSS7fLTAPSmt 7zE68tJ6pYxP7hC+K31R+OT41g2bVfoD+CO4pYCVnASDDGYtVpS/qts+Tav6dXZL y2TGEdoYBA9vqzBnnLtPa9xBgcOBNN2bKRAxFQ/dX2XMiTjK7qjvH8iCjjbZLrzR QjajXcjm2tutFA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:08:20 2025 by rpki-client