This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/af2e22-6e8e-4905-9e65-b5eb4c6b7ea8/1/2sqD6x-vl3PTUMfc5hLKKBSE5_w.mft File: 2sqD6x-vl3PTUMfc5hLKKBSE5_w.mft (raw, json) Hash identifier: l8Pr11UPRNYKonULG6j6nwvdZxV6ajrfU9pq1VRmS3E= Subject key identifier: 9E:C7:21:29:5E:54:32:A0:DF:E3:17:38:BB:2A:88:B5:F7:0C:72:2E Authority key identifier: DA:CA:83:EB:1F:AF:97:73:D3:50:C7:DC:E6:12:CA:28:14:84:E7:FC Certificate issuer: /CN=daca83eb1faf9773d350c7dce612ca281484e7fc Certificate serial: 019B2A40ECC8B5C8435CEA75AA50D411A8F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sqD6x-vl3PTUMfc5hLKKBSE5_w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/af2e22-6e8e-4905-9e65-b5eb4c6b7ea8/1/2sqD6x-vl3PTUMfc5hLKKBSE5_w.mft Manifest number: 52 Signing time: Wed 17 Dec 2025 03:00:56 +0000 Manifest this update: Wed 17 Dec 2025 03:00:56 +0000 Manifest next update: Thu 18 Dec 2025 03:00:56 +0000 Files and hashes: 1: 2sqD6x-vl3PTUMfc5hLKKBSE5_w.crl (hash: XIkmr2rf26LCKhGJ/Bv+bmXMfVjFBtyriY1XTpn1vWo=) 2: Sje7jsEY6Q5QZ-9f7bnaO9an76Y.asa (hash: O4SIoTXA4q+P1Mi3ahhyNTxM+UaORubTrEPP+a97Z0c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/af2e22-6e8e-4905-9e65-b5eb4c6b7ea8/1/2sqD6x-vl3PTUMfc5hLKKBSE5_w.crl rsync://rpki.ripe.net/repository/DEFAULT/30/af2e22-6e8e-4905-9e65-b5eb4c6b7ea8/1/2sqD6x-vl3PTUMfc5hLKKBSE5_w.mft rsync://rpki.ripe.net/repository/DEFAULT/2sqD6x-vl3PTUMfc5hLKKBSE5_w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2a:40:ec:c8:b5:c8:43:5c:ea:75:aa:50:d4:11:a8:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daca83eb1faf9773d350c7dce612ca281484e7fc Validity Not Before: Dec 17 03:00:56 2025 GMT Not After : Dec 18 03:00:56 2025 GMT Subject: CN=9ec721295e5432a0dfe31738bb2a88b5f70c722e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:9b:05:b4:0d:b4:cd:43:5a:39:76:a0:ce:7f: d1:a6:47:34:73:c6:73:10:c5:09:0f:ae:d7:65:24: 06:99:6d:76:cc:9d:1e:db:37:e9:cf:4f:4a:6e:ad: d3:af:1e:a8:c5:2a:0e:8d:bd:ba:91:2e:03:4f:16: 06:2c:2e:30:81:6d:af:cb:e7:b5:04:3b:9f:25:c7: d0:c2:e4:eb:d4:52:4d:17:27:d7:ff:4d:de:e0:db: 4d:e7:de:88:e2:ef:65:ec:85:1a:42:0f:72:30:f3: 7d:e3:23:66:ed:28:57:a9:2f:98:1c:f3:59:ff:8c: ad:60:0e:26:59:49:13:62:16:ec:00:b8:52:f0:de: 80:f1:1a:68:b2:3f:59:a8:77:41:5b:61:e2:7e:b9: 9f:4c:66:50:06:f7:cd:ba:4b:c0:b3:4c:bc:1e:db: ea:97:24:f2:36:88:4f:1c:0f:bd:ca:28:ba:ad:fe: 48:3f:a0:b7:3f:ac:e3:df:32:dc:fe:11:80:df:a1: 1a:6c:b0:27:8e:8b:00:c0:f0:76:31:09:a8:c5:5a: 4e:b8:8e:da:63:66:28:33:64:da:dc:99:c1:7e:dd: bc:0a:a4:4f:a2:b7:f2:64:70:5e:48:a5:14:bd:fc: 74:dc:3e:2c:36:4e:64:64:2e:e1:ba:5a:28:f5:e9: 9f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:C7:21:29:5E:54:32:A0:DF:E3:17:38:BB:2A:88:B5:F7:0C:72:2E X509v3 Authority Key Identifier: keyid:DA:CA:83:EB:1F:AF:97:73:D3:50:C7:DC:E6:12:CA:28:14:84:E7:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sqD6x-vl3PTUMfc5hLKKBSE5_w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/af2e22-6e8e-4905-9e65-b5eb4c6b7ea8/1/2sqD6x-vl3PTUMfc5hLKKBSE5_w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/af2e22-6e8e-4905-9e65-b5eb4c6b7ea8/1/2sqD6x-vl3PTUMfc5hLKKBSE5_w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:14:71:2c:8e:fe:33:4f:b0:2c:59:82:b3:33:3d:e8:6a:ff: 89:25:73:86:9b:b3:36:58:0f:70:dd:31:80:d1:b3:d7:b4:43: f8:25:54:3f:24:6e:bd:b4:b9:e6:ea:f9:1d:9b:69:5a:40:2e: 6e:b9:5d:b5:64:60:88:3e:c9:5d:5c:6b:35:1d:c4:0a:2d:ca: 56:08:44:30:b7:05:b1:9b:51:7b:41:c0:93:cb:a6:f1:05:67: dc:07:e4:6a:dc:41:37:0c:bd:a0:b0:c4:a9:68:d5:d6:5c:73: cf:42:19:a0:41:eb:db:90:8f:d8:6c:c0:ed:e9:80:1a:65:a1: 68:5f:9b:d7:a3:28:0d:14:86:ad:eb:de:77:b2:08:b4:1a:20: 6c:bc:56:c3:c6:a0:12:41:d7:28:2e:63:5e:fb:7e:fd:4e:30: ae:df:a1:0b:b9:49:6f:2e:42:86:22:91:f0:0b:70:58:9c:cb: 20:90:41:7e:17:4d:ce:9c:fd:d2:52:e2:52:a3:39:01:cf:42: 96:20:c1:63:40:a9:e3:e6:2b:df:33:c6:fa:34:ac:98:f2:ab: e0:6f:68:be:f7:37:8c:2a:a1:10:72:d6:99:d5:5b:ba:f7:ea: d4:cd:75:df:a1:b1:27:37:4f:ef:96:0f:79:5b:b0:27:ed:30: 2a:54:18:7a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsqQOzItchDXOp1qlDUEaj1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhY2E4M2ViMWZhZjk3NzNkMzUwYzdkY2U2MTJjYTI4MTQ4 NGU3ZmMwHhcNMjUxMjE3MDMwMDU2WhcNMjUxMjE4MDMwMDU2WjAzMTEwLwYDVQQD Eyg5ZWM3MjEyOTVlNTQzMmEwZGZlMzE3MzhiYjJhODhiNWY3MGM3MjJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmpsFtA20zUNaOXagzn/Rpkc0c8Zz EMUJD67XZSQGmW12zJ0e2zfpz09Kbq3Trx6oxSoOjb26kS4DTxYGLC4wgW2vy+e1 BDufJcfQwuTr1FJNFyfX/03e4NtN596I4u9l7IUaQg9yMPN94yNm7ShXqS+YHPNZ /4ytYA4mWUkTYhbsALhS8N6A8Rposj9ZqHdBW2HifrmfTGZQBvfNukvAs0y8Htvq lyTyNohPHA+9yii6rf5IP6C3P6zj3zLc/hGA36EabLAnjosAwPB2MQmoxVpOuI7a Y2YoM2Ta3JnBft28CqRPorfyZHBeSKUUvfx03D4sNk5kZC7huloo9emfkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ7HISleVDKg3+MXOLsqiLX3DHIuMB8GA1UdIwQY MBaAFNrKg+sfr5dz01DH3OYSyigUhOf8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnNxRDZ4LXZsM1BUVU1mYzVoTEtLQlNFNV93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9hZjJlMjItNmU4ZS00OTA1LTllNjUt YjVlYjRjNmI3ZWE4LzEvMnNxRDZ4LXZsM1BUVU1mYzVoTEtLQlNFNV93Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC9hZjJlMjItNmU4ZS00OTA1LTllNjUtYjVlYjRjNmI3ZWE4 LzEvMnNxRDZ4LXZsM1BUVU1mYzVoTEtLQlNFNV93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfhRxLI7+ M0+wLFmCszM96Gr/iSVzhpuzNlgPcN0xgNGz17RD+CVUPyRuvbS55ur5HZtpWkAu brldtWRgiD7JXVxrNR3ECi3KVghEMLcFsZtRe0HAk8um8QVn3AfkatxBNwy9oLDE qWjV1lxzz0IZoEHr25CP2GzA7emAGmWhaF+b16MoDRSGreved7IItBogbLxWw8ag EkHXKC5jXvt+/U4wrt+hC7lJby5ChiKR8AtwWJzLIJBBfhdNzpz90lLiUqM5Ac9C liDBY0Cp4+Yr3zPG+jSsmPKr4G9ovvc3jCqhEHLWmdVbuvfq1M1136GxJzdP75YP eVuwJ+0wKlQYeg== -----END CERTIFICATE-----Generated at Wed Dec 17 06:34:34 2025 by rpki-client