This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft File: 2PuW6jr1HFMtfo_oyUN29R4epAI.mft (raw, json) Hash identifier: ZhdzmMmejefyWFNT9B0TgpwonKv+UWEqhQOU7J8grhs= Subject key identifier: 29:60:6D:40:61:57:AF:E5:C8:C3:B0:F4:D0:94:61:AB:20:2D:87:6D Authority key identifier: D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02 Certificate issuer: /CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402 Certificate serial: 019B360E44894463BDFFB47CB272ACB3BAB8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft Manifest number: 15A9 Signing time: Fri 19 Dec 2025 10:01:03 +0000 Manifest this update: Fri 19 Dec 2025 10:01:03 +0000 Manifest next update: Sat 20 Dec 2025 10:01:03 +0000 Files and hashes: 1: 2PuW6jr1HFMtfo_oyUN29R4epAI.crl (hash: i2KcvTiYL7Pw3HISuOvE75l0l8avWFyLCvkdzEnRyXo=) 2: qvV18edZ4nG1g9Z6XFGjfB91HGk.roa (hash: xA0FHg4k3qhHIOcw440t6o/vgKfLrTtDa1pgd5bBDMs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:0e:44:89:44:63:bd:ff:b4:7c:b2:72:ac:b3:ba:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402 Validity Not Before: Dec 19 10:01:03 2025 GMT Not After : Dec 20 10:01:03 2025 GMT Subject: CN=29606d406157afe5c8c3b0f4d09461ab202d876d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:29:6b:14:2a:2b:04:88:50:a8:92:76:44:7c: 38:78:e5:d7:fc:a3:8b:28:7f:01:ba:ba:77:61:50: 09:67:60:0b:21:6f:72:30:d1:9e:f3:c1:34:6f:3b: 85:bd:05:15:23:da:32:2f:e6:6a:2c:75:6c:d5:f1: ec:f8:bb:28:9f:d9:e5:fd:c4:04:fa:a8:4d:5a:df: 69:c4:47:6a:f7:ae:75:87:bb:3d:b8:6a:8a:d3:1e: cf:59:58:f9:05:64:5b:aa:e2:2e:85:0f:af:e0:34: d1:ad:d6:9b:db:7f:37:ef:cb:69:9c:ac:8c:23:ac: bd:48:2e:31:ca:e4:97:e6:7a:f3:7e:92:30:fd:42: 94:74:9d:69:0d:6b:c0:c0:25:19:67:f9:ba:b4:b0: cf:b5:2f:03:77:49:cb:f7:b1:96:2c:63:12:da:30: 77:8e:bc:ab:cd:09:d7:9a:bb:81:6b:bb:7a:23:5a: ac:c0:e2:cd:9a:40:ed:14:7c:a9:9d:b0:69:b4:80: 9f:5f:fc:22:ec:80:e5:5e:0c:30:1c:1f:ec:de:8c: 2b:cc:8a:e0:24:bb:ea:77:07:e9:c4:d5:1e:25:27: bb:92:99:62:0e:32:35:1d:6c:1b:e8:8b:15:52:87: 17:40:27:7a:a1:a7:fc:5d:de:05:8e:68:a7:ae:a6: 8f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:60:6D:40:61:57:AF:E5:C8:C3:B0:F4:D0:94:61:AB:20:2D:87:6D X509v3 Authority Key Identifier: keyid:D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:a1:6e:ae:92:e5:65:7c:db:ed:42:83:79:50:38:41:14:69: 80:bd:92:65:b7:9e:3b:3e:a5:59:43:dd:50:8b:2c:93:98:55: 40:3d:21:3c:6c:1d:d7:e2:d2:10:61:d7:8e:c8:91:40:1d:8c: 9d:2c:d8:38:29:b4:c6:78:4c:6b:db:a1:6f:56:a2:9a:0d:8c: 7a:d8:11:22:a5:24:31:d1:08:27:02:68:68:bf:91:96:14:43: 76:72:8f:42:aa:3e:ca:18:2d:4a:94:12:ff:fb:4c:74:80:11: 40:6d:c0:57:11:e6:22:6b:bc:fa:85:c8:1c:82:57:2b:ff:d1: 5a:85:1d:b9:27:ff:f9:49:20:4b:97:e1:26:4d:67:99:ff:d6: ec:de:61:a7:6a:46:67:4d:aa:e4:b3:2f:56:86:11:a6:f1:bc: c3:4e:05:b6:f1:74:98:e3:33:4b:30:2f:d0:c0:c3:e8:b1:51: 54:05:41:f8:00:8b:b0:2a:9c:1e:5c:ec:e8:28:33:cb:d1:24: 07:fe:5c:25:12:98:d4:62:00:1f:07:43:87:25:21:51:78:30: 47:14:71:ad:0d:73:52:d4:57:61:f3:06:d3:74:0b:9c:0a:ca: a5:c7:d0:59:7a:64:cf:96:0d:00:5b:cb:d5:9e:33:40:84:42: 64:af:c3:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs2DkSJRGO9/7R8snKss7q4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4ZmI5NmVhM2FmNTFjNTMyZDdlOGZlOGM5NDM3NmY1MWUx ZWE0MDIwHhcNMjUxMjE5MTAwMTAzWhcNMjUxMjIwMTAwMTAzWjAzMTEwLwYDVQQD EygyOTYwNmQ0MDYxNTdhZmU1YzhjM2IwZjRkMDk0NjFhYjIwMmQ4NzZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyilrFCorBIhQqJJ2RHw4eOXX/KOL KH8Burp3YVAJZ2ALIW9yMNGe88E0bzuFvQUVI9oyL+ZqLHVs1fHs+Lson9nl/cQE +qhNWt9pxEdq9651h7s9uGqK0x7PWVj5BWRbquIuhQ+v4DTRrdab238378tpnKyM I6y9SC4xyuSX5nrzfpIw/UKUdJ1pDWvAwCUZZ/m6tLDPtS8Dd0nL97GWLGMS2jB3 jryrzQnXmruBa7t6I1qswOLNmkDtFHypnbBptICfX/wi7IDlXgwwHB/s3owrzIrg JLvqdwfpxNUeJSe7kpliDjI1HWwb6IsVUocXQCd6oaf8Xd4FjminrqaP8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFClgbUBhV6/lyMOw9NCUYasgLYdtMB8GA1UdIwQY MBaAFNj7luo69RxTLX6P6MlDdvUeHqQCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlB1VzZqcjFIRk10Zm9fb3lVTjI5UjRlcEFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS81M2ZmYTAtOTA2MC00NzJjLWFhYzIt OGViODVlMzI4M2UyLzEvMlB1VzZqcjFIRk10Zm9fb3lVTjI5UjRlcEFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS81M2ZmYTAtOTA2MC00NzJjLWFhYzItOGViODVlMzI4M2Uy LzEvMlB1VzZqcjFIRk10Zm9fb3lVTjI5UjRlcEFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAKFurpLl ZXzb7UKDeVA4QRRpgL2SZbeeOz6lWUPdUIssk5hVQD0hPGwd1+LSEGHXjsiRQB2M nSzYOCm0xnhMa9uhb1aimg2MetgRIqUkMdEIJwJoaL+RlhRDdnKPQqo+yhgtSpQS //tMdIARQG3AVxHmImu8+oXIHIJXK//RWoUduSf/+UkgS5fhJk1nmf/W7N5hp2pG Z02q5LMvVoYRpvG8w04FtvF0mOMzSzAv0MDD6LFRVAVB+ACLsCqcHlzs6Cgzy9Ek B/5cJRKY1GIAHwdDhyUhUXgwRxRxrQ1zUtRXYfMG03QLnArKpcfQWXpkz5YNAFvL 1Z4zQIRCZK/D3A== -----END CERTIFICATE-----Generated at Fri Dec 19 16:23:02 2025 by rpki-client