This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft File: 2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft (raw, json) Hash identifier: 9SVw3eR66LH5SmHMiKhFRNO2FWtVjIZmrsH+p4lZnyg= Subject key identifier: AD:8D:71:87:CA:F0:5D:30:AA:63:E1:B2:F0:59:DD:FB:86:81:8D:96 Authority key identifier: DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96 Certificate issuer: /CN=da0589dce63981870a1850906c8c2d1d96740096 Certificate serial: 019B1CBC6D7C98038C1DD60DE0928B89C8C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft Manifest number: 0C7E Signing time: Sun 14 Dec 2025 12:01:09 +0000 Manifest this update: Sun 14 Dec 2025 12:01:09 +0000 Manifest next update: Mon 15 Dec 2025 12:01:09 +0000 Files and hashes: 1: 2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl (hash: EtU3JGfGfL6BWOabwqyWsRcZKfTRhaTkgirW0Vjxt9s=) 2: IdU9T1FkI4A5QGWSCJhjbXvJUH8.roa (hash: oWd/kpimW/XKu4I8ZbE0KWw8XTvLyveRYZw0B6kosK4=) 3: dRyK6fyOLluuno6mdLfm9I8N5cU.roa (hash: hGLM1rnaqR4GcFlhsxhGDSd143ODBHpnIFqXniXaJBo=) 4: oQAGdFifd-TKFIBS06405IGsyvA.roa (hash: zpSW+ojYEzYzrGwuoKq30ePtiLpag8R8YWj5wxmdW5A=) 5: omEKk6HfpuKW0m6N-9CapGLlA_o.roa (hash: KyIBEH08U3tFJ8Ty4CJ5NL0S9/Sl8DxHoRzlmOSkNDs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1c:bc:6d:7c:98:03:8c:1d:d6:0d:e0:92:8b:89:c8:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da0589dce63981870a1850906c8c2d1d96740096 Validity Not Before: Dec 14 12:01:09 2025 GMT Not After : Dec 15 12:01:09 2025 GMT Subject: CN=ad8d7187caf05d30aa63e1b2f059ddfb86818d96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:2e:7c:46:f8:98:35:6f:e9:60:a0:79:b5:98: ae:32:09:c1:3c:ec:5b:d4:0f:87:94:85:9e:0e:f0: 22:17:11:4f:d5:f7:26:af:bd:e9:7e:01:28:65:5f: 6a:d0:bf:19:1c:b6:9a:7d:ea:a2:d9:d3:ec:30:2b: a9:ff:bc:1b:c4:2a:c7:1e:b7:e7:a1:86:43:ea:c1: 34:7a:04:99:20:1a:d9:59:2f:45:85:28:f2:3d:61: b0:6d:91:21:03:56:63:07:20:09:16:62:dc:da:f3: f4:f0:2f:9d:73:57:93:d1:3a:06:68:1e:54:e3:24: 31:ff:63:90:2a:bf:d6:a6:08:c3:4a:fd:9f:7a:1b: 3a:56:8e:d3:dc:83:ab:a3:3c:96:20:df:64:be:44: d2:cd:d6:b5:87:44:98:b8:35:ac:31:9c:1a:ee:2b: 12:8e:6a:6c:13:c0:ec:7a:cb:5d:37:d2:85:f3:80: 8f:09:f5:2b:0a:bd:58:47:18:3d:5a:7b:84:21:44: e0:f9:9f:74:2e:1c:08:4a:75:0d:90:19:0f:74:96: 7d:75:2b:48:68:b9:61:5f:28:45:45:34:5e:bd:86: e9:f7:42:78:e9:04:7c:98:45:a4:1a:a3:ad:ca:71: 7b:08:2e:a3:ad:a8:8e:47:d7:be:51:8d:bc:25:17: 8b:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:8D:71:87:CA:F0:5D:30:AA:63:E1:B2:F0:59:DD:FB:86:81:8D:96 X509v3 Authority Key Identifier: keyid:DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:d1:ad:8c:7c:55:25:db:54:01:8b:84:c6:75:d4:93:92:f7: fb:3b:fb:9d:f6:01:39:e2:43:d0:23:1e:97:0d:dd:51:4a:f4: 40:eb:6e:36:bd:cc:6d:be:a3:7e:1d:fc:97:56:1d:df:52:ec: d9:e0:01:ba:d6:ac:ed:5d:d6:02:6b:e0:4b:d2:0d:23:cc:f1: 9c:e9:00:32:c8:7c:be:b9:9a:ce:b5:9c:01:62:f9:91:01:e3: a7:f8:9e:41:49:64:e4:71:53:6e:8c:86:68:21:72:f1:20:f7: b3:c0:8e:49:a9:bd:08:2c:7b:a1:94:44:c4:83:c8:4d:c7:1e: 0a:e9:fd:55:f7:cb:6e:4a:22:a5:49:38:eb:4e:be:c5:0f:7f: 67:e5:92:32:cf:99:ab:7c:ea:c6:5e:9a:9d:49:30:f1:ab:47: 25:77:30:74:36:19:31:d3:d5:b3:2c:47:bc:a1:93:30:f8:57: ba:09:c5:c3:49:7f:d8:ca:5b:86:6b:78:88:0e:d0:c4:5c:50: 38:bc:99:ce:2a:35:5e:df:89:9b:b4:a0:38:42:4a:a5:95:35: 79:f3:a3:54:37:39:d8:e8:73:29:ec:85:22:0b:a4:ab:9e:ad: 21:5e:4b:59:bb:80:68:f1:22:28:59:8f:79:5e:66:2e:e6:75: 99:a2:fc:78 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZscvG18mAOMHdYN4JKLicjEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhMDU4OWRjZTYzOTgxODcwYTE4NTA5MDZjOGMyZDFkOTY3 NDAwOTYwHhcNMjUxMjE0MTIwMTA5WhcNMjUxMjE1MTIwMTA5WjAzMTEwLwYDVQQD EyhhZDhkNzE4N2NhZjA1ZDMwYWE2M2UxYjJmMDU5ZGRmYjg2ODE4ZDk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4i58RviYNW/pYKB5tZiuMgnBPOxb 1A+HlIWeDvAiFxFP1fcmr73pfgEoZV9q0L8ZHLaafeqi2dPsMCup/7wbxCrHHrfn oYZD6sE0egSZIBrZWS9FhSjyPWGwbZEhA1ZjByAJFmLc2vP08C+dc1eT0ToGaB5U 4yQx/2OQKr/WpgjDSv2fehs6Vo7T3IOrozyWIN9kvkTSzda1h0SYuDWsMZwa7isS jmpsE8DsestdN9KF84CPCfUrCr1YRxg9WnuEIUTg+Z90LhwISnUNkBkPdJZ9dStI aLlhXyhFRTRevYbp90J46QR8mEWkGqOtynF7CC6jraiOR9e+UY28JReLdwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK2NcYfK8F0wqmPhsvBZ3fuGgY2WMB8GA1UdIwQY MBaAFNoFidzmOYGHChhQkGyMLR2WdACWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmdXSjNPWTVnWWNLR0ZDUWJJd3RIWlowQUpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC82MzI2YmItYmEzMy00MzM5LWI4YzYt MTRlM2MyMDE3OTY5LzEvMmdXSjNPWTVnWWNLR0ZDUWJJd3RIWlowQUpZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC82MzI2YmItYmEzMy00MzM5LWI4YzYtMTRlM2MyMDE3OTY5 LzEvMmdXSjNPWTVnWWNLR0ZDUWJJd3RIWlowQUpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAENGtjHxV JdtUAYuExnXUk5L3+zv7nfYBOeJD0CMelw3dUUr0QOtuNr3Mbb6jfh38l1Yd31Ls 2eAButas7V3WAmvgS9INI8zxnOkAMsh8vrmazrWcAWL5kQHjp/ieQUlk5HFTboyG aCFy8SD3s8COSam9CCx7oZRExIPITcceCun9VffLbkoipUk4606+xQ9/Z+WSMs+Z q3zqxl6anUkw8atHJXcwdDYZMdPVsyxHvKGTMPhXugnFw0l/2Mpbhmt4iA7QxFxQ OLyZzio1Xt+Jm7SgOEJKpZU1efOjVDc52OhzKeyFIgukq56tIV5LWbuAaPEiKFmP eV5mLuZ1maL8eA== -----END CERTIFICATE-----Generated at Sun Dec 14 14:46:01 2025 by rpki-client