This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft File: mk2qT2rA5rwQK2iECirGu1QbQPw.mft (raw, json) Hash identifier: /ANnnwh5OtJN7Q0u8+ljvJoEaGv7P7liF/8hter2/xQ= Subject key identifier: 5B:92:23:DC:8A:1F:23:C7:4B:04:E2:C8:E1:A1:1B:BD:EF:F5:9E:12 Authority key identifier: 9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC Certificate issuer: /CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc Certificate serial: 019B34C5CA13530039E101FFFD6813315BBE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft Manifest number: 077A Signing time: Fri 19 Dec 2025 04:02:16 +0000 Manifest this update: Fri 19 Dec 2025 04:02:16 +0000 Manifest next update: Sat 20 Dec 2025 04:02:16 +0000 Files and hashes: 1: j0Asbb5ngsOWlyvv7kth_3yoBYM.roa (hash: O/JfF/netiv5OyRHt3hhhICYzLbMzCW+fJQdQl7HVfM=) 2: mk2qT2rA5rwQK2iECirGu1QbQPw.crl (hash: vu0d+ZkguY9CEegUTPsl0YnB/XZ0UQgByOgNJ1VInJc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 04:02:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:c5:ca:13:53:00:39:e1:01:ff:fd:68:13:31:5b:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc Validity Not Before: Dec 19 04:02:16 2025 GMT Not After : Dec 20 04:02:16 2025 GMT Subject: CN=5b9223dc8a1f23c74b04e2c8e1a11bbdeff59e12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:9d:21:df:26:6c:11:60:c7:ea:15:46:3d:ce: 53:ce:e0:a4:44:44:28:4a:a9:0c:b1:cd:c6:c2:b6: 4c:ed:c2:e6:8e:36:c5:f1:4e:b0:7a:e0:5f:a9:2c: cb:b4:a6:c9:a0:ab:5e:e7:94:00:28:f0:65:36:4e: 5a:f3:ab:f0:d2:94:19:01:ee:e8:16:cc:3f:a2:e9: 34:80:4d:7c:93:98:8e:aa:98:a7:65:8e:4e:21:96: 3d:dc:05:1f:79:98:49:1d:68:c9:8e:47:6f:9e:04: 02:14:29:52:e7:4d:25:21:09:7e:cf:55:51:99:03: c2:4b:ff:ef:e6:a8:46:67:0e:ea:41:04:09:c2:c4: 16:e8:70:6e:49:25:cc:9d:26:2f:f3:2d:76:62:d0: d4:64:10:8d:65:d2:0f:aa:af:f0:db:a2:32:ba:24: 4a:80:8a:cf:eb:92:81:43:d1:48:0e:fb:c2:8e:16: 63:be:c8:c4:fc:59:dc:c9:70:f8:83:24:4e:a8:8b: a3:74:00:b2:49:5e:4e:dd:84:70:96:84:71:e9:f6: 0d:45:4b:b8:4b:e1:a6:ba:ea:f4:73:bd:3a:f6:b6: 33:9e:62:42:cd:69:37:29:31:6a:97:5e:3f:eb:04: 74:a5:48:be:4f:f2:02:a1:d6:ed:78:cf:d5:e1:ed: 3d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:92:23:DC:8A:1F:23:C7:4B:04:E2:C8:E1:A1:1B:BD:EF:F5:9E:12 X509v3 Authority Key Identifier: keyid:9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:1d:38:c5:54:b5:8a:4e:fe:de:8d:c2:fe:1a:c5:0a:aa:a5: e4:21:87:3c:87:b6:87:57:24:f1:08:fd:71:20:d4:90:fd:50: 90:f6:a0:b5:08:f3:2c:8a:88:29:97:9e:46:3d:b6:81:be:e8: ae:bb:67:03:97:03:90:4e:7d:31:0f:44:77:78:6c:dc:21:61: 0b:17:0e:1a:00:6e:63:63:64:6a:c4:33:36:fc:e6:59:a4:2e: cb:63:46:31:25:52:2e:33:f3:38:3a:fe:c4:ba:a6:b6:dc:b5: 98:a3:f7:92:20:75:43:7c:fc:a7:c6:c5:72:86:e6:90:af:58: f3:32:11:3c:ce:85:f8:9d:6a:ce:14:7c:37:41:66:ae:a2:59: ff:b7:8e:62:45:97:d8:79:a0:df:a8:cf:a9:cc:83:f8:de:06: b1:73:fa:12:be:0c:f0:74:fd:42:81:8e:c7:b3:c7:c7:0f:46: 38:e2:2d:3e:2b:a5:0e:f7:c7:7d:8c:22:1c:8b:61:33:b0:6b: 21:0f:a5:4b:84:48:ff:49:d3:0a:41:74:71:45:dc:d5:85:73: 45:19:dc:14:c1:bd:7b:c6:d9:f7:ac:dc:73:77:e2:ee:6e:b5: 89:c2:20:d4:21:f3:30:f1:9f:fe:84:6e:2c:07:6e:d3:0b:3b: a2:81:7a:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0xcoTUwA54QH//WgTMVu+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhNGRhYTRmNmFjMGU2YmMxMDJiNjg4NDBhMmFjNmJiNTQx YjQwZmMwHhcNMjUxMjE5MDQwMjE2WhcNMjUxMjIwMDQwMjE2WjAzMTEwLwYDVQQD Eyg1YjkyMjNkYzhhMWYyM2M3NGIwNGUyYzhlMWExMWJiZGVmZjU5ZTEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7p0h3yZsEWDH6hVGPc5TzuCkREQo SqkMsc3GwrZM7cLmjjbF8U6weuBfqSzLtKbJoKte55QAKPBlNk5a86vw0pQZAe7o Fsw/ouk0gE18k5iOqpinZY5OIZY93AUfeZhJHWjJjkdvngQCFClS500lIQl+z1VR mQPCS//v5qhGZw7qQQQJwsQW6HBuSSXMnSYv8y12YtDUZBCNZdIPqq/w26IyuiRK gIrP65KBQ9FIDvvCjhZjvsjE/FncyXD4gyROqIujdACySV5O3YRwloRx6fYNRUu4 S+Gmuur0c7069rYznmJCzWk3KTFql14/6wR0pUi+T/ICodbteM/V4e098wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFuSI9yKHyPHSwTiyOGhG73v9Z4SMB8GA1UdIwQY MBaAFJpNqk9qwOa8ECtohAoqxrtUG0D8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWsycVQyckE1cndRSzJpRUNpckd1MVFiUVB3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9jZDQ2MjQtNjIwYS00Y2IyLWE0MTYt NmJlOTJiMWFhOGIzLzEvbWsycVQyckE1cndRSzJpRUNpckd1MVFiUVB3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny9jZDQ2MjQtNjIwYS00Y2IyLWE0MTYtNmJlOTJiMWFhOGIz LzEvbWsycVQyckE1cndRSzJpRUNpckd1MVFiUVB3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhx04xVS1 ik7+3o3C/hrFCqql5CGHPIe2h1ck8Qj9cSDUkP1QkPagtQjzLIqIKZeeRj22gb7o rrtnA5cDkE59MQ9Ed3hs3CFhCxcOGgBuY2NkasQzNvzmWaQuy2NGMSVSLjPzODr+ xLqmtty1mKP3kiB1Q3z8p8bFcobmkK9Y8zIRPM6F+J1qzhR8N0FmrqJZ/7eOYkWX 2Hmg36jPqcyD+N4GsXP6Er4M8HT9QoGOx7PHxw9GOOItPiulDvfHfYwiHIthM7Br IQ+lS4RI/0nTCkF0cUXc1YVzRRncFMG9e8bZ96zcc3fi7m61icIg1CHzMPGf/oRu LAdu0ws7ooF60A== -----END CERTIFICATE-----Generated at Fri Dec 19 13:11:06 2025 by rpki-client