This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/814115-0993-4a1f-ae10-ee25d2c5b410/1/2Y_6BFs1sW3JlBnj4Obhbm7bR-k.mft File: 2Y_6BFs1sW3JlBnj4Obhbm7bR-k.mft (raw, json) Hash identifier: Cs5FuieRylRe7WU3DTkk9Sx0BllkJl2bHfZyduAktV4= Subject key identifier: F6:99:1F:4E:D3:E8:8D:E6:A5:5D:2F:CB:C5:2A:71:DE:8C:8B:E4:B2 Authority key identifier: D9:8F:FA:04:5B:35:B1:6D:C9:94:19:E3:E0:E6:E1:6E:6E:DB:47:E9 Certificate issuer: /CN=d98ffa045b35b16dc99419e3e0e6e16e6edb47e9 Certificate serial: 019AF209B0689B8334FFD8361D57ED08772A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Y_6BFs1sW3JlBnj4Obhbm7bR-k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/814115-0993-4a1f-ae10-ee25d2c5b410/1/2Y_6BFs1sW3JlBnj4Obhbm7bR-k.mft Manifest number: 1483 Signing time: Sat 06 Dec 2025 05:01:52 +0000 Manifest this update: Sat 06 Dec 2025 05:01:52 +0000 Manifest next update: Sun 07 Dec 2025 05:01:52 +0000 Files and hashes: 1: 2Y_6BFs1sW3JlBnj4Obhbm7bR-k.crl (hash: e+3Z1D8ubwOxt0/rkzWaWaEv93BmWEXS3+SmYVqk8q8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/814115-0993-4a1f-ae10-ee25d2c5b410/1/2Y_6BFs1sW3JlBnj4Obhbm7bR-k.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/814115-0993-4a1f-ae10-ee25d2c5b410/1/2Y_6BFs1sW3JlBnj4Obhbm7bR-k.mft rsync://rpki.ripe.net/repository/DEFAULT/2Y_6BFs1sW3JlBnj4Obhbm7bR-k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:b0:68:9b:83:34:ff:d8:36:1d:57:ed:08:77:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d98ffa045b35b16dc99419e3e0e6e16e6edb47e9 Validity Not Before: Dec 6 05:01:52 2025 GMT Not After : Dec 7 05:01:52 2025 GMT Subject: CN=f6991f4ed3e88de6a55d2fcbc52a71de8c8be4b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:98:db:98:bb:c5:76:2f:20:57:76:be:d9:61: 8b:c7:94:e6:7d:c1:ce:ae:81:60:36:98:9b:81:00: e2:cf:75:28:34:5c:de:57:52:fa:0f:79:92:a5:f2: ad:af:f5:58:75:24:86:5b:be:4a:b3:78:50:b3:cc: 1a:d3:ca:e8:cd:89:80:9a:d0:03:6d:ba:5b:20:9d: 67:fa:13:bc:5f:28:ab:90:95:0d:bc:ef:06:89:6b: dd:41:9b:b4:a3:16:84:8a:ef:45:e4:09:85:c7:1a: d7:b0:c2:66:f9:14:82:28:fb:bc:47:0a:02:17:9f: aa:cd:32:fc:16:4f:cf:d6:fb:17:d2:0b:d7:a3:61: a7:ea:b2:6e:65:cf:92:2a:0d:07:31:52:89:31:56: 64:75:fe:54:98:bb:f2:21:d2:21:92:90:7c:43:2d: a4:41:9c:7a:1c:87:09:c1:3b:e9:c8:ef:79:93:e8: 4a:73:7a:ee:09:35:73:b5:1c:99:76:47:38:ef:e9: 8c:03:19:34:82:73:7c:e9:7c:51:f8:0f:c6:c7:04: 6e:2c:1e:27:08:a7:fd:34:dd:68:2d:42:aa:1b:11: 93:61:52:97:6d:0f:62:bd:f9:95:fb:72:f6:0c:48: a7:21:4f:15:43:83:a9:6d:40:12:d5:e7:c0:29:7c: 22:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:99:1F:4E:D3:E8:8D:E6:A5:5D:2F:CB:C5:2A:71:DE:8C:8B:E4:B2 X509v3 Authority Key Identifier: keyid:D9:8F:FA:04:5B:35:B1:6D:C9:94:19:E3:E0:E6:E1:6E:6E:DB:47:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Y_6BFs1sW3JlBnj4Obhbm7bR-k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/814115-0993-4a1f-ae10-ee25d2c5b410/1/2Y_6BFs1sW3JlBnj4Obhbm7bR-k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/814115-0993-4a1f-ae10-ee25d2c5b410/1/2Y_6BFs1sW3JlBnj4Obhbm7bR-k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:9d:38:2d:16:21:c2:9a:04:11:00:0c:f1:0d:9a:30:5c:1d: d6:09:94:8b:db:43:8d:3f:7f:9e:98:a4:e8:e0:37:8e:29:72: 73:5d:d4:ec:ba:8b:5a:d8:a5:98:f9:60:02:51:30:72:fd:d6: 28:c2:39:17:37:04:a4:fa:2f:02:88:74:01:4d:fe:69:26:4f: c3:9d:bd:5a:2f:da:e9:ec:17:be:a0:82:f8:19:e1:a6:ed:d9: 11:56:6a:71:b3:b2:e4:d1:2c:79:2a:a8:47:bd:3c:b1:5f:11: ad:64:60:69:31:58:36:aa:9e:82:b5:2c:42:61:e3:18:d0:23: 03:23:d5:c6:4c:55:15:16:0f:9d:2d:18:b8:cd:f9:ae:a9:25: 04:a6:b8:23:4d:23:fb:42:9c:09:cf:01:0a:26:e0:19:0a:6f: d4:37:a0:f5:a3:b1:38:69:9e:db:93:d6:55:c6:17:1c:60:05: e0:61:d3:14:e6:9c:53:e7:07:6c:a3:cd:2e:3f:76:a1:aa:8f: 1f:5b:55:13:aa:0e:fb:b1:a0:6f:4b:63:f5:4d:f0:78:62:70: 20:1d:62:83:5b:e4:b4:dc:ac:5a:21:4f:d6:cb:a6:55:72:d8: 7a:fa:53:3f:ce:df:17:e0:35:84:14:31:76:c0:27:a7:0f:21: c9:63:b5:89 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCbBom4M0/9g2HVftCHcqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5OGZmYTA0NWIzNWIxNmRjOTk0MTllM2UwZTZlMTZlNmVk YjQ3ZTkwHhcNMjUxMjA2MDUwMTUyWhcNMjUxMjA3MDUwMTUyWjAzMTEwLwYDVQQD EyhmNjk5MWY0ZWQzZTg4ZGU2YTU1ZDJmY2JjNTJhNzFkZThjOGJlNGIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzJjbmLvFdi8gV3a+2WGLx5TmfcHO roFgNpibgQDiz3UoNFzeV1L6D3mSpfKtr/VYdSSGW75Ks3hQs8wa08rozYmAmtAD bbpbIJ1n+hO8XyirkJUNvO8GiWvdQZu0oxaEiu9F5AmFxxrXsMJm+RSCKPu8RwoC F5+qzTL8Fk/P1vsX0gvXo2Gn6rJuZc+SKg0HMVKJMVZkdf5UmLvyIdIhkpB8Qy2k QZx6HIcJwTvpyO95k+hKc3ruCTVztRyZdkc47+mMAxk0gnN86XxR+A/GxwRuLB4n CKf9NN1oLUKqGxGTYVKXbQ9ivfmV+3L2DEinIU8VQ4OpbUAS1efAKXwi7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPaZH07T6I3mpV0vy8Uqcd6Mi+SyMB8GA1UdIwQY MBaAFNmP+gRbNbFtyZQZ4+Dm4W5u20fpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMllfNkJGczFzVzNKbEJuajRPYmhibTdiUi1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC84MTQxMTUtMDk5My00YTFmLWFlMTAt ZWUyNWQyYzViNDEwLzEvMllfNkJGczFzVzNKbEJuajRPYmhibTdiUi1rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC84MTQxMTUtMDk5My00YTFmLWFlMTAtZWUyNWQyYzViNDEw LzEvMllfNkJGczFzVzNKbEJuajRPYmhibTdiUi1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh504LRYh wpoEEQAM8Q2aMFwd1gmUi9tDjT9/npik6OA3jilyc13U7LqLWtilmPlgAlEwcv3W KMI5FzcEpPovAoh0AU3+aSZPw529Wi/a6ewXvqCC+Bnhpu3ZEVZqcbOy5NEseSqo R708sV8RrWRgaTFYNqqegrUsQmHjGNAjAyPVxkxVFRYPnS0YuM35rqklBKa4I00j +0KcCc8BCibgGQpv1Deg9aOxOGme25PWVcYXHGAF4GHTFOacU+cHbKPNLj92oaqP H1tVE6oO+7Ggb0tj9U3weGJwIB1ig1vktNysWiFP1sumVXLYevpTP87fF+A1hBQx dsAnpw8hyWO1iQ== -----END CERTIFICATE-----Generated at Sat Dec 6 14:25:45 2025 by rpki-client