This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.mft File: 2HcqrBtiuH1rAdV6GgCmpyuKfaY.mft (raw, json) Hash identifier: kwPKKUZDKeFZhjzMJr8oz7sN/QnxMPf7fKGXdDY5rJc= Subject key identifier: 81:8F:31:72:1B:DC:43:C1:4D:31:D0:AD:16:A4:61:B4:2B:E7:B5:B5 Authority key identifier: D8:77:2A:AC:1B:62:B8:7D:6B:01:D5:7A:1A:00:A6:A7:2B:8A:7D:A6 Certificate issuer: /CN=d8772aac1b62b87d6b01d57a1a00a6a72b8a7da6 Certificate serial: 019AF5E584F2A8A34D50F471B4065833BF0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HcqrBtiuH1rAdV6GgCmpyuKfaY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.mft Manifest number: 1651 Signing time: Sat 06 Dec 2025 23:00:50 +0000 Manifest this update: Sat 06 Dec 2025 23:00:50 +0000 Manifest next update: Sun 07 Dec 2025 23:00:50 +0000 Files and hashes: 1: 2HcqrBtiuH1rAdV6GgCmpyuKfaY.crl (hash: lKvJPaPzp2/DFi7+/XiNAYwX7cJyCDwJLqA20OJW8Gc=) 2: B5m6j_K3O894W_R_t6V6YidAg_M.roa (hash: bXrv4zwrH5nVqybqsixx97jvkGY3LFCIFwVY3pH6Bk8=) 3: KqKhKARLMvPV_bRfQE5O-Q0jitE.roa (hash: g5DaBAVimvDHhHZlO6bebh2BYJNntLdIOufL8sw6/TA=) 4: PSzX4ETQs2L8cNC3MHgmvmQQifU.roa (hash: UakKPUPcxegOjzkx7/qLz6OeHL3ixKpktOgsps0SIHU=) 5: gpM2Niv38-bAPpYWDWu_AiD_7fU.roa (hash: U97/Bujuoe+UqbMI2I87geGUh9XKKMGTDgPKSh0HsUc=) 6: v_tCnLJbfmXfnX8r8TkiKrJdo6U.roa (hash: 2qeSRWLeCZqoEkwlBGulwS0BehW+dyHuoHpo1B95cR8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.crl rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.mft rsync://rpki.ripe.net/repository/DEFAULT/2HcqrBtiuH1rAdV6GgCmpyuKfaY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:e5:84:f2:a8:a3:4d:50:f4:71:b4:06:58:33:bf:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8772aac1b62b87d6b01d57a1a00a6a72b8a7da6 Validity Not Before: Dec 6 23:00:50 2025 GMT Not After : Dec 7 23:00:50 2025 GMT Subject: CN=818f31721bdc43c14d31d0ad16a461b42be7b5b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:85:ba:ed:94:b5:39:89:83:b9:c3:ef:e3:a0: ba:6d:27:b0:40:3f:7b:7a:58:6a:33:89:c3:6a:75: f1:77:b7:9c:75:fc:fb:a7:46:c0:dc:20:49:2e:0c: 48:8c:07:e8:d7:82:9f:b8:69:ea:c9:20:86:98:63: e2:a3:bd:7f:1a:dc:43:86:56:2f:5e:a0:10:55:36: 06:2a:29:4e:36:da:76:27:0f:46:86:fb:ff:2a:70: 4f:5e:6e:f9:09:e9:98:47:b6:3d:b8:11:40:eb:63: a0:05:b2:65:c1:b2:af:9b:ab:6f:19:17:48:a0:2f: 23:11:1f:67:b0:2a:73:98:c6:75:2b:4d:78:1e:17: 01:e9:ea:03:31:97:ca:14:e6:fd:e0:61:ee:6d:55: 0d:43:cf:d6:7f:32:d2:94:7d:52:00:dc:57:0d:5c: f8:26:bd:c3:fb:ce:be:2b:a4:c7:33:44:d7:8d:a2: 88:00:c4:f3:42:ce:59:3d:38:2d:09:19:44:93:98: 83:12:b9:89:4b:e5:5f:fa:f1:08:f5:21:25:88:7f: 62:88:dd:5d:19:e6:69:3a:6c:e0:c0:aa:eb:0f:f1: 62:f1:d2:c1:67:b3:e2:94:8e:1a:31:02:06:61:0d: 55:6b:14:ef:6c:09:12:6c:c4:a6:20:02:b4:5c:61: 64:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:8F:31:72:1B:DC:43:C1:4D:31:D0:AD:16:A4:61:B4:2B:E7:B5:B5 X509v3 Authority Key Identifier: keyid:D8:77:2A:AC:1B:62:B8:7D:6B:01:D5:7A:1A:00:A6:A7:2B:8A:7D:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HcqrBtiuH1rAdV6GgCmpyuKfaY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:df:97:e0:5b:c0:4c:d7:fc:3d:9c:8d:7b:b6:f2:a1:06:30: 10:c5:7f:d3:e3:24:51:3c:3e:2d:6a:cb:b3:8c:5f:01:2a:e9: 14:ef:50:6a:43:02:cc:ad:dc:1c:57:87:0a:da:93:11:24:8c: a6:92:74:bf:d9:3e:19:f6:24:b2:89:27:3a:d4:61:bd:33:e1: 52:82:ee:10:3f:7b:b1:6e:34:16:c2:71:7b:22:ea:84:95:a5: 5b:e5:5e:21:3f:80:1a:22:8c:43:68:ce:2d:5c:35:7f:65:8a: 60:90:01:35:94:7c:b0:cf:8b:68:83:72:56:62:6b:1f:bf:20: f3:2d:ea:0f:b0:1f:9d:bc:7a:93:fa:4c:12:3d:e9:2f:a6:25: 8e:25:38:27:75:d9:95:fb:49:76:84:2a:ed:cb:42:7b:02:3f: ed:08:f9:16:44:bb:ef:30:a7:ca:05:69:12:66:b9:b9:81:43: b9:66:64:e5:7c:87:57:db:d1:42:28:bb:90:2f:11:1d:1f:79: e0:aa:10:14:af:9a:ae:36:fa:20:d1:86:02:24:d4:74:bf:13: 79:b7:29:7e:5b:64:d6:04:3a:1f:8e:49:4c:b7:33:e9:c4:4d: 12:7c:47:22:b6:4f:59:8c:c0:82:8c:0c:10:16:90:b7:8a:57: f6:9d:64:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr15YTyqKNNUPRxtAZYM78KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4NzcyYWFjMWI2MmI4N2Q2YjAxZDU3YTFhMDBhNmE3MmI4 YTdkYTYwHhcNMjUxMjA2MjMwMDUwWhcNMjUxMjA3MjMwMDUwWjAzMTEwLwYDVQQD Eyg4MThmMzE3MjFiZGM0M2MxNGQzMWQwYWQxNmE0NjFiNDJiZTdiNWI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArYW67ZS1OYmDucPv46C6bSewQD97 elhqM4nDanXxd7ecdfz7p0bA3CBJLgxIjAfo14KfuGnqySCGmGPio71/GtxDhlYv XqAQVTYGKilONtp2Jw9Ghvv/KnBPXm75CemYR7Y9uBFA62OgBbJlwbKvm6tvGRdI oC8jER9nsCpzmMZ1K014HhcB6eoDMZfKFOb94GHubVUNQ8/WfzLSlH1SANxXDVz4 Jr3D+86+K6THM0TXjaKIAMTzQs5ZPTgtCRlEk5iDErmJS+Vf+vEI9SEliH9iiN1d GeZpOmzgwKrrD/Fi8dLBZ7PilI4aMQIGYQ1VaxTvbAkSbMSmIAK0XGFkcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIGPMXIb3EPBTTHQrRakYbQr57W1MB8GA1UdIwQY MBaAFNh3KqwbYrh9awHVehoApqcrin2mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkhjcXJCdGl1SDFyQWRWNkdnQ21weXVLZmFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My82MTZhNTgtNTM0Mi00MzJjLWE5YzUt MzMzYmVlY2ZmNmY0LzEvMkhjcXJCdGl1SDFyQWRWNkdnQ21weXVLZmFZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My82MTZhNTgtNTM0Mi00MzJjLWE5YzUtMzMzYmVlY2ZmNmY0 LzEvMkhjcXJCdGl1SDFyQWRWNkdnQ21weXVLZmFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaN+X4FvA TNf8PZyNe7byoQYwEMV/0+MkUTw+LWrLs4xfASrpFO9QakMCzK3cHFeHCtqTESSM ppJ0v9k+GfYksoknOtRhvTPhUoLuED97sW40FsJxeyLqhJWlW+VeIT+AGiKMQ2jO LVw1f2WKYJABNZR8sM+LaINyVmJrH78g8y3qD7Afnbx6k/pMEj3pL6YljiU4J3XZ lftJdoQq7ctCewI/7Qj5FkS77zCnygVpEma5uYFDuWZk5XyHV9vRQii7kC8RHR95 4KoQFK+arjb6INGGAiTUdL8Tebcpfltk1gQ6H45JTLcz6cRNEnxHIrZPWYzAgowM EBaQt4pX9p1khA== -----END CERTIFICATE-----Generated at Sun Dec 7 09:19:15 2025 by rpki-client