This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft File: 2gszzdt5m3vPXT3OAE_bqMPoZP8.mft (raw, json) Hash identifier: b7QbNv9Qicm8nXkmfJoUR8yruCjdcxM6oJvXpslU6jg= Subject key identifier: D0:48:70:16:F9:67:A6:6A:09:66:F0:58:77:AC:D0:69:54:E0:E6:4C Authority key identifier: DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF Certificate issuer: /CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff Certificate serial: 019AF209A907CE5AA58412F4EB98DE67F082 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft Manifest number: 0DCB Signing time: Sat 06 Dec 2025 05:01:50 +0000 Manifest this update: Sat 06 Dec 2025 05:01:50 +0000 Manifest next update: Sun 07 Dec 2025 05:01:50 +0000 Files and hashes: 1: 17FLk26rZWNpnvEJucbEAG-7zqY.roa (hash: qMmpcRGKwOqOR5+GsVwNkgRbdBAdNorVpaMiale+nXI=) 2: 2gszzdt5m3vPXT3OAE_bqMPoZP8.crl (hash: wJrs4SoNXOrSNSwI9/AS7q+ItIh0ONQhfp20fmGN7VU=) 3: bBGzNd5qGUUIPYH3-5zWMnwwyJg.roa (hash: 290Z2J6Jo9xanYpdqpciKr53wSmtU/PW4k3Qs+NnOTs=) 4: k29cbE30TGhu-1q8rRu7-jpqTg4.roa (hash: 9mQL8HUgIQzEZ7MXmoS/sUavd/K/UaaalJ5/ztoLSTk=) 5: s7mUu7WrVHVPJEBCCdi0H3bHpis.roa (hash: ExGJpFM76OJZURK1GFJNiBKKffY4pIrBrUBBm9tcC8g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:a9:07:ce:5a:a5:84:12:f4:eb:98:de:67:f0:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff Validity Not Before: Dec 6 05:01:50 2025 GMT Not After : Dec 7 05:01:50 2025 GMT Subject: CN=d0487016f967a66a0966f05877acd06954e0e64c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:fa:aa:df:c8:22:af:b1:c8:ef:32:28:ab:44: a3:cf:08:c0:ee:8e:a5:b2:0e:cf:51:48:d7:cc:59: bd:d1:cf:e4:53:89:69:de:f5:3f:33:f3:b1:a6:cb: 86:39:2f:07:8a:e8:59:2e:0d:47:97:30:35:8a:e5: 84:c2:1a:ca:70:0d:a2:6f:4a:4d:e6:c8:b9:f3:0f: f2:f3:34:63:19:85:ad:79:3f:62:1d:d3:2d:17:38: 94:ad:3b:82:a1:97:f8:27:dd:64:65:50:bd:03:bb: 19:f5:95:88:72:5d:45:96:c4:b4:f1:68:b9:c6:94: 3d:c0:8f:c3:e5:97:d9:53:67:d8:bd:85:bd:b2:c9: e7:d2:0a:1b:cd:a5:68:e5:37:41:b5:2f:c6:58:bf: 8b:9a:9e:d0:4b:23:c2:1d:9e:93:db:ae:7f:71:3f: 3f:f7:12:76:36:a6:65:1f:43:c3:a7:51:4c:68:96: 0d:82:3f:64:6b:43:49:06:c2:bc:3e:32:47:ec:fc: 5a:a6:ec:44:22:f7:25:b2:0b:f9:87:7f:78:14:45: e1:93:c8:ab:70:f1:b8:93:db:50:50:5c:ee:f9:f4: bf:60:8d:8b:6a:ca:39:b8:03:05:cf:52:59:3a:76: 9a:45:a3:f6:4e:88:10:c3:d8:60:4a:46:c8:eb:b8: b7:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:48:70:16:F9:67:A6:6A:09:66:F0:58:77:AC:D0:69:54:E0:E6:4C X509v3 Authority Key Identifier: keyid:DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:33:24:37:75:25:03:27:39:20:85:09:af:bc:40:2a:1f:2e: fe:0d:39:e5:4b:5d:17:c8:9c:b9:33:8b:4d:ff:3c:66:65:0b: 31:11:6b:1c:75:15:be:74:53:a9:b9:81:29:36:30:7d:46:cf: c4:23:dd:de:8e:8c:1c:53:25:94:a5:4d:5c:30:d9:3d:5a:52: ea:5f:35:89:3d:b9:76:aa:2c:ab:39:01:6c:f9:8e:ec:b8:28: 96:3d:09:f7:cc:0c:9c:d5:a4:16:80:55:de:23:d9:67:db:79: 99:17:9c:9e:51:f4:ee:ce:b2:8a:b2:f0:d0:d1:e6:6b:fa:6b: de:cc:3b:e6:41:bc:ab:8b:27:97:98:93:1d:07:37:cd:78:88: 51:c5:25:5d:87:ab:ee:fa:54:30:d0:ad:1d:e7:0b:d8:63:09: 2f:31:95:f6:03:1e:09:71:f8:ab:d3:af:69:50:d9:ba:e8:66: 4a:06:ee:12:c4:11:c1:a1:c3:68:b3:9e:bf:02:37:57:b7:e6: 74:41:40:37:92:42:ab:f6:1a:c1:42:43:63:dd:d7:61:85:8b: ef:7d:2d:f6:90:ab:76:62:40:29:06:23:43:4e:98:f1:fd:39: 9b:5d:49:04:b4:d7:7c:96:52:fc:f4:c1:07:b3:3c:54:3b:92: 85:5f:e0:60 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCakHzlqlhBL065jeZ/CCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhMGIzM2NkZGI3OTliN2JjZjVkM2RjZTAwNGZkYmE4YzNl ODY0ZmYwHhcNMjUxMjA2MDUwMTUwWhcNMjUxMjA3MDUwMTUwWjAzMTEwLwYDVQQD EyhkMDQ4NzAxNmY5NjdhNjZhMDk2NmYwNTg3N2FjZDA2OTU0ZTBlNjRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk/qq38gir7HI7zIoq0SjzwjA7o6l sg7PUUjXzFm90c/kU4lp3vU/M/OxpsuGOS8HiuhZLg1HlzA1iuWEwhrKcA2ib0pN 5si58w/y8zRjGYWteT9iHdMtFziUrTuCoZf4J91kZVC9A7sZ9ZWIcl1FlsS08Wi5 xpQ9wI/D5ZfZU2fYvYW9ssnn0gobzaVo5TdBtS/GWL+Lmp7QSyPCHZ6T265/cT8/ 9xJ2NqZlH0PDp1FMaJYNgj9ka0NJBsK8PjJH7PxapuxEIvclsgv5h394FEXhk8ir cPG4k9tQUFzu+fS/YI2Laso5uAMFz1JZOnaaRaP2TogQw9hgSkbI67i3jwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNBIcBb5Z6ZqCWbwWHes0GlU4OZMMB8GA1UdIwQY MBaAFNoLM83beZt7z109zgBP26jD6GT/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmdzenpkdDVtM3ZQWFQzT0FFX2JxTVBvWlA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8wMzJkOGItNDg4MS00NmZhLWI2NzQt NzczM2JkODg4ZTI4LzEvMmdzenpkdDVtM3ZQWFQzT0FFX2JxTVBvWlA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS8wMzJkOGItNDg4MS00NmZhLWI2NzQtNzczM2JkODg4ZTI4 LzEvMmdzenpkdDVtM3ZQWFQzT0FFX2JxTVBvWlA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATTMkN3Ul Ayc5IIUJr7xAKh8u/g055UtdF8icuTOLTf88ZmULMRFrHHUVvnRTqbmBKTYwfUbP xCPd3o6MHFMllKVNXDDZPVpS6l81iT25dqosqzkBbPmO7Lgolj0J98wMnNWkFoBV 3iPZZ9t5mRecnlH07s6yirLw0NHma/pr3sw75kG8q4snl5iTHQc3zXiIUcUlXYer 7vpUMNCtHecL2GMJLzGV9gMeCXH4q9OvaVDZuuhmSgbuEsQRwaHDaLOevwI3V7fm dEFAN5JCq/YawUJDY93XYYWL730t9pCrdmJAKQYjQ06Y8f05m11JBLTXfJZS/PTB B7M8VDuShV/gYA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:13:28 2025 by rpki-client