This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft File: 2zdeFqGTZ96ZuySsEV0lmioEgaw.mft (raw, json) Hash identifier: YlzK0S06sRfKBCX6Mvaa3HGB2jukbWmF6nX38nckXoI= Subject key identifier: F6:7C:D7:6D:71:FA:F0:1F:B8:F0:4D:A3:89:88:3B:C6:8B:BF:7E:7E Authority key identifier: DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC Certificate issuer: /CN=db375e16a19367de99bb24ac115d259a2a0481ac Certificate serial: 019B085B1794DAA0A6A63B1D69A01740443F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft Manifest number: 0D06 Signing time: Wed 10 Dec 2025 13:02:26 +0000 Manifest this update: Wed 10 Dec 2025 13:02:26 +0000 Manifest next update: Thu 11 Dec 2025 13:02:26 +0000 Files and hashes: 1: 2zdeFqGTZ96ZuySsEV0lmioEgaw.crl (hash: wRV++XfA/906H8a8F0qpX+539SUXYU+BiNQvodjH7ag=) 2: x6hLDer_XW1q_iEu4GXkzkZyC4s.roa (hash: WqVvea5/LNqbNIIZsdml33Mg9/QcNbUM12u8YdmaIWc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:08:5b:17:94:da:a0:a6:a6:3b:1d:69:a0:17:40:44:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db375e16a19367de99bb24ac115d259a2a0481ac Validity Not Before: Dec 10 13:02:26 2025 GMT Not After : Dec 11 13:02:26 2025 GMT Subject: CN=f67cd76d71faf01fb8f04da389883bc68bbf7e7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:8f:11:f8:16:5e:d3:44:18:37:98:b5:eb:fa: 7f:4e:d5:c7:4e:e7:e1:3c:af:04:7e:45:d7:0f:b8: cc:8c:ce:ee:1e:05:74:3e:1c:5c:9d:cd:10:88:eb: a1:33:98:05:04:b4:2e:8d:b2:1d:d2:9e:ca:47:c8: c6:b7:62:7a:a9:ec:38:5a:e3:21:57:56:2b:0b:2d: 75:3b:f1:27:95:bb:d4:e4:e5:0d:22:2d:f4:78:05: 5e:7c:4b:97:ec:af:61:71:4d:9d:d4:f6:6c:37:f4: e2:99:86:24:3f:8e:15:e7:41:b8:9b:4b:19:d2:75: 20:4d:a1:bf:f6:f4:94:0a:1e:96:f1:e4:1d:69:59: 3f:90:72:38:f7:14:ea:f7:58:13:40:b9:dd:f2:53: d6:58:6c:ef:90:e5:14:69:7b:28:44:c3:87:2f:65: 03:0c:c3:cd:9f:82:57:53:a7:1f:9e:54:cc:c0:dd: be:f6:ed:3b:dd:04:eb:8e:ac:3f:1f:82:ff:e0:16: 21:54:92:2c:56:44:c9:00:c0:a3:0f:00:ad:20:d3: d5:da:45:76:b3:09:81:71:6b:4d:51:2c:1b:9c:42: 67:c4:25:d2:d0:ee:53:ac:6c:54:47:69:ea:d5:af: ea:7a:0d:ad:52:e3:70:72:5a:c7:15:8e:2a:e1:d5: 16:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:7C:D7:6D:71:FA:F0:1F:B8:F0:4D:A3:89:88:3B:C6:8B:BF:7E:7E X509v3 Authority Key Identifier: keyid:DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d3:90:f3:a4:40:be:80:23:59:b5:ec:08:56:b0:0b:07:20:46: d1:92:98:60:64:45:92:5e:8e:74:ae:6f:7f:d4:86:26:6c:62: f1:13:db:79:9c:33:69:68:63:97:b7:1d:38:f1:dd:f9:8f:99: 15:9e:4c:94:9b:4c:ba:61:80:ea:c3:80:45:86:fc:a0:6f:f3: ca:7f:4e:15:29:8c:02:76:4f:be:52:44:50:93:e5:d4:05:cd: 77:d6:d2:a8:a0:69:b5:66:76:0a:a6:19:80:93:99:6d:4d:1e: ad:23:5e:cc:ce:c5:ba:ce:1c:61:da:30:18:41:d3:19:af:b6: 64:bc:c0:cd:db:34:bd:f1:59:b5:b3:70:c0:20:55:44:42:c7: 03:92:70:b0:45:21:e5:ab:c3:01:c5:08:49:bd:ed:9c:11:b8: 56:54:0c:ab:72:6c:53:b1:1d:af:c3:a7:2c:ab:b4:78:ce:cd: 19:81:d0:3e:ff:e0:21:11:50:c9:b4:3c:6e:4f:4d:e5:27:9a: 1d:3c:ad:96:76:00:f6:16:af:a9:e4:75:7a:a1:49:7e:ea:43: 2c:4a:7e:4b:f9:a7:45:07:63:d7:a2:50:f2:e2:98:7e:9d:bb: 8a:e6:b6:b4:81:55:31:36:61:e8:c2:eb:7d:4f:48:b0:3f:2a: d1:93:a8:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsIWxeU2qCmpjsdaaAXQEQ/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiMzc1ZTE2YTE5MzY3ZGU5OWJiMjRhYzExNWQyNTlhMmEw NDgxYWMwHhcNMjUxMjEwMTMwMjI2WhcNMjUxMjExMTMwMjI2WjAzMTEwLwYDVQQD EyhmNjdjZDc2ZDcxZmFmMDFmYjhmMDRkYTM4OTg4M2JjNjhiYmY3ZTdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAio8R+BZe00QYN5i16/p/TtXHTufh PK8EfkXXD7jMjM7uHgV0Phxcnc0QiOuhM5gFBLQujbId0p7KR8jGt2J6qew4WuMh V1YrCy11O/EnlbvU5OUNIi30eAVefEuX7K9hcU2d1PZsN/TimYYkP44V50G4m0sZ 0nUgTaG/9vSUCh6W8eQdaVk/kHI49xTq91gTQLnd8lPWWGzvkOUUaXsoRMOHL2UD DMPNn4JXU6cfnlTMwN2+9u073QTrjqw/H4L/4BYhVJIsVkTJAMCjDwCtINPV2kV2 swmBcWtNUSwbnEJnxCXS0O5TrGxUR2nq1a/qeg2tUuNwclrHFY4q4dUW3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPZ8121x+vAfuPBNo4mIO8aLv35+MB8GA1UdIwQY MBaAFNs3Xhahk2fembskrBFdJZoqBIGsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnpkZUZxR1RaOTZadXlTc0VWMGxtaW9FZ2F3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy85YmM1YmMtOGY5OS00MmVkLWE4Y2Ut NWI4NmJhNTg1OTIyLzEvMnpkZUZxR1RaOTZadXlTc0VWMGxtaW9FZ2F3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy85YmM1YmMtOGY5OS00MmVkLWE4Y2UtNWI4NmJhNTg1OTIy LzEvMnpkZUZxR1RaOTZadXlTc0VWMGxtaW9FZ2F3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA05DzpEC+ gCNZtewIVrALByBG0ZKYYGRFkl6OdK5vf9SGJmxi8RPbeZwzaWhjl7cdOPHd+Y+Z FZ5MlJtMumGA6sOARYb8oG/zyn9OFSmMAnZPvlJEUJPl1AXNd9bSqKBptWZ2CqYZ gJOZbU0erSNezM7Fus4cYdowGEHTGa+2ZLzAzds0vfFZtbNwwCBVRELHA5JwsEUh 5avDAcUISb3tnBG4VlQMq3JsU7Edr8OnLKu0eM7NGYHQPv/gIRFQybQ8bk9N5Sea HTytlnYA9havqeR1eqFJfupDLEp+S/mnRQdj16JQ8uKYfp27iua2tIFVMTZh6MLr fU9IsD8q0ZOoxw== -----END CERTIFICATE-----Generated at Wed Dec 10 19:27:59 2025 by rpki-client