This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft File: h-2cuDQKwglaTLBSjl6i9zjOpnI.mft (raw, json) Hash identifier: 2k6GTsK2yc5l+WGMdUuGbfIOlH5udMtOY0R0n2FRl9U= Subject key identifier: 07:DC:64:E1:DC:51:12:3E:46:8C:C4:A0:A1:B6:A8:AC:7B:12:47:B8 Authority key identifier: 87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72 Certificate issuer: /CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672 Certificate serial: 019B39EAA539A7734ECB55FB6B4F8E3D4A89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft Manifest number: 0552 Signing time: Sat 20 Dec 2025 04:00:37 +0000 Manifest this update: Sat 20 Dec 2025 04:00:37 +0000 Manifest next update: Sun 21 Dec 2025 04:00:37 +0000 Files and hashes: 1: Q_kLSJOWLJDEhyzkodJRQWJEfMU.roa (hash: 2p8AahImaC704aSN2Sau8pFCrbFVUG9Dz60aJg9x1m8=) 2: h-2cuDQKwglaTLBSjl6i9zjOpnI.crl (hash: QI6oSCBrIoZAu+1Y4vacEhHypHQiRx8WKIrd/7jRdMw=) 3: hl-bZEBFsh1ZChc40Z0fl2eFeDc.roa (hash: GoC7lm4BXzEaLJBGVeCTSYenfrijER5VgtT8WvoxW4g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:ea:a5:39:a7:73:4e:cb:55:fb:6b:4f:8e:3d:4a:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672 Validity Not Before: Dec 20 04:00:37 2025 GMT Not After : Dec 21 04:00:37 2025 GMT Subject: CN=07dc64e1dc51123e468cc4a0a1b6a8ac7b1247b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:6f:35:c0:9a:8b:91:81:f4:0c:d2:a9:80:dd: f7:34:4b:5b:51:3a:6c:3a:82:9b:23:fa:c6:89:10: af:e5:3f:5d:29:0a:75:d7:55:a8:94:14:79:3a:8a: c5:91:05:64:39:34:cc:e9:c5:e8:01:c7:5e:91:f1: b2:2b:f0:4b:92:4c:31:7b:27:7a:19:82:d5:9f:1d: b2:32:25:e8:9b:df:9b:c3:97:8e:dd:9b:d8:a0:90: b7:14:ee:bc:9f:8e:c0:95:b4:98:b0:70:dc:a9:0e: c2:03:d2:86:10:06:85:dc:43:d4:d0:b0:30:9e:2b: f8:42:6d:78:e0:cf:f1:60:e9:e1:b2:d8:85:4f:31: 04:d2:64:93:9f:5c:f6:1b:1b:6e:a2:df:99:d9:90: bb:ab:f6:b5:13:7c:d3:43:18:0d:f5:73:a6:a4:b6: cb:f7:57:65:d1:3b:f3:8c:cd:5e:9e:8f:74:31:07: b3:1b:98:60:e6:71:f9:8e:25:75:78:fd:0b:a8:8d: 9f:4a:16:49:c5:3a:67:50:9c:bf:8e:8a:cf:09:8a: b9:37:18:b0:ec:08:20:f2:fe:64:c4:b9:c6:97:bb: 1e:53:28:02:03:20:42:c4:f6:f8:f9:d4:2f:1d:60: 2e:72:8f:b7:f1:7d:aa:a5:88:58:23:6c:63:f3:58: 1c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:DC:64:E1:DC:51:12:3E:46:8C:C4:A0:A1:B6:A8:AC:7B:12:47:B8 X509v3 Authority Key Identifier: keyid:87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:16:9c:ab:ad:0b:cb:16:17:f1:58:22:75:c9:40:da:05:a1: aa:56:e4:e8:24:ad:54:40:08:a9:29:26:98:09:81:2f:c2:46: 87:ad:d8:93:96:cf:0c:9e:f6:53:59:e9:5f:5a:21:9e:4e:c9: 78:93:39:9b:80:98:cd:b5:5c:9c:36:a3:84:f9:35:1b:f4:c6: 68:8e:1f:af:d3:02:4b:aa:c9:2c:9b:f2:f0:25:32:f9:7b:84: 9b:3f:ee:c3:9f:df:f7:94:2f:f8:93:a7:e4:59:61:1f:66:49: 58:8b:77:58:7e:6a:29:b1:ca:ef:88:fe:fa:d5:98:e8:28:1a: 24:53:b8:1a:a0:74:51:41:a9:9f:aa:8d:0d:a7:6f:fd:44:21: 21:a6:0b:6b:64:4c:94:0d:29:3b:c7:75:28:e3:24:2e:cc:c9: ca:7e:df:2d:e1:67:df:c1:d3:a2:66:79:f7:ce:65:e6:fb:0a: ac:a2:3e:50:ed:bd:62:ea:af:38:7a:d2:58:89:31:a9:5e:c5: ec:f8:91:b0:92:1c:83:0c:ce:1d:75:c2:90:53:73:68:35:cc: 00:28:24:01:12:64:50:99:b9:5a:8d:6a:15:f8:a4:a7:b5:38: 99:76:af:b9:7f:4d:56:47:e0:0f:ce:68:af:9f:f1:b9:6d:4f: c8:1d:9f:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs56qU5p3NOy1X7a0+OPUqJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3ZWQ5Y2I4MzQwYWMyMDk1YTRjYjA1MjhlNWVhMmY3Mzhj ZWE2NzIwHhcNMjUxMjIwMDQwMDM3WhcNMjUxMjIxMDQwMDM3WjAzMTEwLwYDVQQD EygwN2RjNjRlMWRjNTExMjNlNDY4Y2M0YTBhMWI2YThhYzdiMTI0N2I4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkm81wJqLkYH0DNKpgN33NEtbUTps OoKbI/rGiRCv5T9dKQp111WolBR5OorFkQVkOTTM6cXoAcdekfGyK/BLkkwxeyd6 GYLVnx2yMiXom9+bw5eO3ZvYoJC3FO68n47AlbSYsHDcqQ7CA9KGEAaF3EPU0LAw niv4Qm144M/xYOnhstiFTzEE0mSTn1z2Gxtuot+Z2ZC7q/a1E3zTQxgN9XOmpLbL 91dl0TvzjM1eno90MQezG5hg5nH5jiV1eP0LqI2fShZJxTpnUJy/jorPCYq5Nxiw 7Agg8v5kxLnGl7seUygCAyBCxPb4+dQvHWAuco+38X2qpYhYI2xj81gcXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAfcZOHcURI+RozEoKG2qKx7Eke4MB8GA1UdIwQY MBaAFIftnLg0CsIJWkywUo5eovc4zqZyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaC0yY3VEUUt3Z2xhVExCU2psNmk5empPcG5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi82MzgxZDMtNWQwMS00YWJjLWJlZDct N2IyMWJmMzAzY2NjLzEvaC0yY3VEUUt3Z2xhVExCU2psNmk5empPcG5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi82MzgxZDMtNWQwMS00YWJjLWJlZDctN2IyMWJmMzAzY2Nj LzEvaC0yY3VEUUt3Z2xhVExCU2psNmk5empPcG5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVBacq60L yxYX8VgidclA2gWhqlbk6CStVEAIqSkmmAmBL8JGh63Yk5bPDJ72U1npX1ohnk7J eJM5m4CYzbVcnDajhPk1G/TGaI4fr9MCS6rJLJvy8CUy+XuEmz/uw5/f95Qv+JOn 5FlhH2ZJWIt3WH5qKbHK74j++tWY6CgaJFO4GqB0UUGpn6qNDadv/UQhIaYLa2RM lA0pO8d1KOMkLszJyn7fLeFn38HTomZ5985l5vsKrKI+UO29YuqvOHrSWIkxqV7F 7PiRsJIcgwzOHXXCkFNzaDXMACgkARJkUJm5Wo1qFfikp7U4mXavuX9NVkfgD85o r5/xuW1PyB2fWQ== -----END CERTIFICATE-----Generated at Sat Dec 20 06:39:34 2025 by rpki-client