This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft File: 2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft (raw, json) Hash identifier: QEG6ag2MkIMla1qUtrpnqoCM12ZL7MaK1TjjROWhL1E= Subject key identifier: 81:4E:55:43:EE:E0:5B:5C:8C:C2:5E:95:CB:C9:85:19:7F:EB:32:A4 Authority key identifier: DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96 Certificate issuer: /CN=da0589dce63981870a1850906c8c2d1d96740096 Certificate serial: 019B47390F4BFCC95574296D6521D7BA25FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft Manifest number: 0C94 Signing time: Mon 22 Dec 2025 18:01:20 +0000 Manifest this update: Mon 22 Dec 2025 18:01:20 +0000 Manifest next update: Tue 23 Dec 2025 18:01:20 +0000 Files and hashes: 1: 2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl (hash: iNtnBvXLCv6pAivTsNB7fZD92Z3uwi43gKg08LPWDFU=) 2: IdU9T1FkI4A5QGWSCJhjbXvJUH8.roa (hash: oWd/kpimW/XKu4I8ZbE0KWw8XTvLyveRYZw0B6kosK4=) 3: dRyK6fyOLluuno6mdLfm9I8N5cU.roa (hash: hGLM1rnaqR4GcFlhsxhGDSd143ODBHpnIFqXniXaJBo=) 4: oQAGdFifd-TKFIBS06405IGsyvA.roa (hash: zpSW+ojYEzYzrGwuoKq30ePtiLpag8R8YWj5wxmdW5A=) 5: omEKk6HfpuKW0m6N-9CapGLlA_o.roa (hash: KyIBEH08U3tFJ8Ty4CJ5NL0S9/Sl8DxHoRzlmOSkNDs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 18:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:47:39:0f:4b:fc:c9:55:74:29:6d:65:21:d7:ba:25:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da0589dce63981870a1850906c8c2d1d96740096 Validity Not Before: Dec 22 18:01:20 2025 GMT Not After : Dec 23 18:01:20 2025 GMT Subject: CN=814e5543eee05b5c8cc25e95cbc985197feb32a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:8c:c5:4d:08:fe:e3:c9:f5:ed:37:47:b2:0e: 62:d8:0d:5b:34:4a:0a:30:82:21:5a:27:90:b9:ce: 09:c9:ad:2c:e2:cc:e7:68:7f:3a:d2:19:c7:d5:09: 4d:9f:f1:01:1a:6c:24:42:34:6d:8a:4f:af:00:41: 9e:41:79:40:13:e9:9b:34:f4:bd:84:96:10:02:b2: 32:35:6c:8f:77:6c:45:ff:5a:43:26:ce:68:d4:7b: e7:b3:cd:cb:5d:a3:8b:a5:91:d2:e5:35:c8:ad:fb: e4:98:84:bc:2d:15:29:51:da:a1:5e:6f:b4:7d:9f: ae:90:34:24:0e:74:52:fe:8a:ee:c3:b9:f0:a2:cc: b4:83:da:b8:fb:79:84:14:d7:f0:54:6b:97:19:62: 39:b0:67:b3:b3:34:f1:8e:9b:b2:84:94:65:38:b9: b8:83:f9:15:1b:8d:d4:f1:9e:b3:01:fe:3f:2e:b6: b9:ab:1c:fb:4f:79:30:41:45:0e:1c:ae:22:ef:4d: 3b:30:8c:b8:ca:01:f5:97:42:5b:a9:3b:17:61:c6: 7b:61:bd:5d:21:a1:fc:eb:99:da:13:28:7e:50:d7: 03:cb:a9:58:c3:b7:85:41:57:9c:59:dd:ac:b8:b4: 5c:f5:6f:7c:91:a0:a1:47:17:98:04:f5:de:7a:59: d1:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:4E:55:43:EE:E0:5B:5C:8C:C2:5E:95:CB:C9:85:19:7F:EB:32:A4 X509v3 Authority Key Identifier: keyid:DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:f2:f6:18:e9:bc:63:a2:b7:a0:f0:44:51:02:c5:bd:ba:2d: 08:f1:16:d1:66:8f:cb:85:24:ed:53:dd:77:34:17:14:ba:47: dc:c0:fa:13:ee:42:96:1d:f3:a3:4a:4a:0c:15:0c:5a:13:ce: af:bd:f9:db:72:75:be:e8:3a:5a:21:51:31:e9:8f:49:aa:31: b7:d4:7e:09:4a:fa:61:5e:b0:19:54:27:d4:41:3f:cb:9a:1f: a0:41:4b:1d:2b:53:2a:eb:39:a3:c0:82:a7:f9:71:37:8f:15: bd:a9:21:d9:15:3a:5b:26:81:3c:8d:99:95:1e:63:9f:b0:9f: 0a:1e:1c:8d:59:54:1b:d6:f1:d7:c0:66:55:44:c2:f2:78:6c: 38:a0:e8:64:b3:77:16:5c:6f:64:e7:5f:e8:ee:ea:d5:2d:80: 2c:1a:5a:78:3a:53:9f:03:e4:66:53:0a:77:95:11:7f:ae:a1: 11:86:5d:8c:de:73:c4:fa:62:24:ba:9e:bc:24:32:6a:9f:e7: f7:d6:cf:20:6a:da:7a:ce:4e:69:59:bc:e3:61:b4:84:00:6a: fe:12:0c:f9:3d:c4:e0:d3:bc:00:f7:27:15:ab:68:20:fe:cc: 6d:8c:81:24:34:c6:88:4e:17:44:8e:1e:4a:69:9a:43:4b:7c: 24:08:35:33 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtHOQ9L/MlVdCltZSHXuiX8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhMDU4OWRjZTYzOTgxODcwYTE4NTA5MDZjOGMyZDFkOTY3 NDAwOTYwHhcNMjUxMjIyMTgwMTIwWhcNMjUxMjIzMTgwMTIwWjAzMTEwLwYDVQQD Eyg4MTRlNTU0M2VlZTA1YjVjOGNjMjVlOTVjYmM5ODUxOTdmZWIzMmE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr4zFTQj+48n17TdHsg5i2A1bNEoK MIIhWieQuc4Jya0s4sznaH860hnH1QlNn/EBGmwkQjRtik+vAEGeQXlAE+mbNPS9 hJYQArIyNWyPd2xF/1pDJs5o1Hvns83LXaOLpZHS5TXIrfvkmIS8LRUpUdqhXm+0 fZ+ukDQkDnRS/oruw7nwosy0g9q4+3mEFNfwVGuXGWI5sGezszTxjpuyhJRlOLm4 g/kVG43U8Z6zAf4/Lra5qxz7T3kwQUUOHK4i7007MIy4ygH1l0JbqTsXYcZ7Yb1d IaH865naEyh+UNcDy6lYw7eFQVecWd2suLRc9W98kaChRxeYBPXeelnRUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIFOVUPu4FtcjMJelcvJhRl/6zKkMB8GA1UdIwQY MBaAFNoFidzmOYGHChhQkGyMLR2WdACWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmdXSjNPWTVnWWNLR0ZDUWJJd3RIWlowQUpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC82MzI2YmItYmEzMy00MzM5LWI4YzYt MTRlM2MyMDE3OTY5LzEvMmdXSjNPWTVnWWNLR0ZDUWJJd3RIWlowQUpZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC82MzI2YmItYmEzMy00MzM5LWI4YzYtMTRlM2MyMDE3OTY5 LzEvMmdXSjNPWTVnWWNLR0ZDUWJJd3RIWlowQUpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWPL2GOm8 Y6K3oPBEUQLFvbotCPEW0WaPy4Uk7VPddzQXFLpH3MD6E+5Clh3zo0pKDBUMWhPO r73523J1vug6WiFRMemPSaoxt9R+CUr6YV6wGVQn1EE/y5ofoEFLHStTKus5o8CC p/lxN48Vvakh2RU6WyaBPI2ZlR5jn7CfCh4cjVlUG9bx18BmVUTC8nhsOKDoZLN3 FlxvZOdf6O7q1S2ALBpaeDpTnwPkZlMKd5URf66hEYZdjN5zxPpiJLqevCQyap/n 99bPIGraes5OaVm842G0hABq/hIM+T3E4NO8APcnFatoIP7MbYyBJDTGiE4XRI4e SmmaQ0t8JAg1Mw== -----END CERTIFICATE-----Generated at Tue Dec 23 04:15:57 2025 by rpki-client