This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft File: 2HGZiqFAq3wf8kDqsMkjWRPJboo.mft (raw, json) Hash identifier: pdIr7H08Y6XhBDLP6BSpEvH6aD/h60sFDZpkJ3bPboc= Subject key identifier: 0F:3B:F2:B7:5C:CA:25:7B:6D:EA:36:BA:E0:21:5B:27:9A:A7:61:5D Authority key identifier: D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A Certificate issuer: /CN=d871998aa140ab7c1ff240eab0c9235913c96e8a Certificate serial: 019AF31D4885B7D77C806A31D6E4CB2CBB31 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft Manifest number: 146F Signing time: Sat 06 Dec 2025 10:02:53 +0000 Manifest this update: Sat 06 Dec 2025 10:02:53 +0000 Manifest next update: Sun 07 Dec 2025 10:02:53 +0000 Files and hashes: 1: 2HGZiqFAq3wf8kDqsMkjWRPJboo.crl (hash: p9haeNqhZsZvZIUZOr/xNKY8Ax2F7D4/+W2zoazx4NE=) 2: ogQz1j5jLQsKEpzhS2JSyEZnZ6I.roa (hash: B7xqxcI+bkCsaT71C5rhEWIjLfcjAKzC1lxv7kehuvo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1d:48:85:b7:d7:7c:80:6a:31:d6:e4:cb:2c:bb:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d871998aa140ab7c1ff240eab0c9235913c96e8a Validity Not Before: Dec 6 10:02:53 2025 GMT Not After : Dec 7 10:02:53 2025 GMT Subject: CN=0f3bf2b75cca257b6dea36bae0215b279aa7615d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:cc:68:e2:ca:6d:78:fc:fa:a0:28:16:a1:e4: c4:f7:83:c5:da:71:b7:a5:d3:3a:69:ab:cc:81:49: 75:3a:71:9e:86:ea:cc:61:df:bd:2e:05:39:f0:4b: d9:68:19:bc:bd:6b:2f:48:ae:a6:12:46:d9:70:0d: 91:4f:5b:9d:ca:d1:c7:7e:46:5f:00:f0:4f:e3:30: c4:00:b4:c7:71:48:c7:dc:53:83:5a:03:bd:33:d6: 09:a7:d7:a5:cd:ed:ef:8e:dc:d1:bf:5a:07:c0:d1: aa:8a:26:ef:96:f6:48:77:62:ce:26:d0:07:8c:8c: 80:e1:fc:a6:05:32:ff:f9:b5:71:f8:e6:33:c7:15: ac:bd:6e:16:22:46:80:04:3b:57:d3:0d:1b:12:9e: 5b:30:76:3a:5d:93:60:8c:d3:44:6b:2b:d2:28:c2: b6:65:55:3c:7b:78:aa:db:60:d6:ff:02:9d:16:0a: 0e:00:bf:2d:ad:9f:6f:6f:76:68:f5:b9:05:bd:4a: cc:9e:35:5e:37:61:66:6b:e1:fb:ee:a5:b3:09:2f: 40:13:18:04:bf:94:1e:45:5d:96:57:ff:10:cd:02: c2:e6:ef:10:14:e7:51:7f:74:7c:f7:59:25:6d:92: a2:04:da:c5:f4:6f:d1:c3:ec:ba:e3:19:8f:2e:5a: e6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:3B:F2:B7:5C:CA:25:7B:6D:EA:36:BA:E0:21:5B:27:9A:A7:61:5D X509v3 Authority Key Identifier: keyid:D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:30:3b:17:c5:b6:c8:83:eb:62:13:8c:79:80:30:17:ba:93: fe:14:fb:4e:f1:0a:c4:73:c3:88:f0:a6:53:e5:c4:8d:f6:74: f5:95:d6:26:98:48:06:75:fe:c6:e8:ba:67:e5:25:a5:39:01: 06:35:d7:75:42:da:03:2b:4d:10:3c:c8:51:25:e6:76:d9:62: 25:89:54:3f:b0:f4:ca:06:ea:5c:ce:67:18:09:41:74:a9:0b: 9b:b3:5c:42:54:6c:57:7f:c8:73:96:7b:dc:6e:d3:07:54:3f: 45:c2:87:80:0c:1c:0f:ba:39:30:99:73:c2:68:b1:a9:b2:64: b0:12:71:a0:36:65:c8:52:34:a4:ef:6d:37:31:8b:3f:15:fb: c0:4a:12:87:5d:c0:7d:f9:38:5f:e9:91:d8:67:41:2f:78:6f: e8:2b:d9:90:12:10:01:74:b7:55:13:28:81:3e:a0:0e:ff:09: e2:c0:78:86:40:e7:96:6f:ab:89:b0:aa:04:f3:80:f4:d9:96: 50:93:74:72:8b:e3:6a:23:fd:89:c9:a0:8b:b2:f3:ba:de:d2: dd:4b:9d:16:8a:8a:8d:6a:99:64:30:34:4e:0d:b9:0a:e4:35: 15:35:e9:6b:7d:8c:74:06:09:a0:7d:df:9a:aa:50:20:0a:a4: a4:23:7c:dd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHUiFt9d8gGox1uTLLLsxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4NzE5OThhYTE0MGFiN2MxZmYyNDBlYWIwYzkyMzU5MTNj OTZlOGEwHhcNMjUxMjA2MTAwMjUzWhcNMjUxMjA3MTAwMjUzWjAzMTEwLwYDVQQD EygwZjNiZjJiNzVjY2EyNTdiNmRlYTM2YmFlMDIxNWIyNzlhYTc2MTVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlcxo4sptePz6oCgWoeTE94PF2nG3 pdM6aavMgUl1OnGehurMYd+9LgU58EvZaBm8vWsvSK6mEkbZcA2RT1udytHHfkZf APBP4zDEALTHcUjH3FODWgO9M9YJp9elze3vjtzRv1oHwNGqiibvlvZId2LOJtAH jIyA4fymBTL/+bVx+OYzxxWsvW4WIkaABDtX0w0bEp5bMHY6XZNgjNNEayvSKMK2 ZVU8e3iq22DW/wKdFgoOAL8trZ9vb3Zo9bkFvUrMnjVeN2Fma+H77qWzCS9AExgE v5QeRV2WV/8QzQLC5u8QFOdRf3R891klbZKiBNrF9G/Rw+y64xmPLlrmOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA878rdcyiV7beo2uuAhWyeap2FdMB8GA1UdIwQY MBaAFNhxmYqhQKt8H/JA6rDJI1kTyW6KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkhHWmlxRkFxM3dmOGtEcXNNa2pXUlBKYm9vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi8zM2FhMjQtMzVlYS00YWRjLThjMDUt NWEzNGU1MmIwYjEwLzEvMkhHWmlxRkFxM3dmOGtEcXNNa2pXUlBKYm9vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi8zM2FhMjQtMzVlYS00YWRjLThjMDUtNWEzNGU1MmIwYjEw LzEvMkhHWmlxRkFxM3dmOGtEcXNNa2pXUlBKYm9vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAazA7F8W2 yIPrYhOMeYAwF7qT/hT7TvEKxHPDiPCmU+XEjfZ09ZXWJphIBnX+xui6Z+UlpTkB BjXXdULaAytNEDzIUSXmdtliJYlUP7D0ygbqXM5nGAlBdKkLm7NcQlRsV3/Ic5Z7 3G7TB1Q/RcKHgAwcD7o5MJlzwmixqbJksBJxoDZlyFI0pO9tNzGLPxX7wEoSh13A ffk4X+mR2GdBL3hv6CvZkBIQAXS3VRMogT6gDv8J4sB4hkDnlm+ribCqBPOA9NmW UJN0covjaiP9icmgi7Lzut7S3UudFoqKjWqZZDA0Tg25CuQ1FTXpa32MdAYJoH3f mqpQIAqkpCN83Q== -----END CERTIFICATE-----Generated at Sat Dec 6 17:54:18 2025 by rpki-client