This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/72934e-fe73-4a99-811f-a0cde7ba8bbe/1/p2H8O2oE10MHa9KG3oIURfBlTvc.mft File: p2H8O2oE10MHa9KG3oIURfBlTvc.mft (raw, json) Hash identifier: bFiVc22jGRdVSD5N+iGIVcXeGBXL3vu3deskRUy9fbk= Subject key identifier: C9:B2:75:41:6E:47:0C:78:25:CD:19:3F:4E:A5:D5:A0:6F:10:C8:C4 Authority key identifier: A7:61:FC:3B:6A:04:D7:43:07:6B:D2:86:DE:82:14:45:F0:65:4E:F7 Certificate issuer: /CN=a761fc3b6a04d743076bd286de821445f0654ef7 Certificate serial: 019B202AC11DE87C227A820DBAFAC339A231 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2H8O2oE10MHa9KG3oIURfBlTvc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/72934e-fe73-4a99-811f-a0cde7ba8bbe/1/p2H8O2oE10MHa9KG3oIURfBlTvc.mft Manifest number: 1708 Signing time: Mon 15 Dec 2025 04:00:31 +0000 Manifest this update: Mon 15 Dec 2025 04:00:31 +0000 Manifest next update: Tue 16 Dec 2025 04:00:31 +0000 Files and hashes: 1: p2H8O2oE10MHa9KG3oIURfBlTvc.crl (hash: qSoV4qqP1Why6E7DfqD4klI5maMqE/CTZX34ft3IVy0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/72934e-fe73-4a99-811f-a0cde7ba8bbe/1/p2H8O2oE10MHa9KG3oIURfBlTvc.crl rsync://rpki.ripe.net/repository/DEFAULT/55/72934e-fe73-4a99-811f-a0cde7ba8bbe/1/p2H8O2oE10MHa9KG3oIURfBlTvc.mft rsync://rpki.ripe.net/repository/DEFAULT/p2H8O2oE10MHa9KG3oIURfBlTvc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 04:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:20:2a:c1:1d:e8:7c:22:7a:82:0d:ba:fa:c3:39:a2:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a761fc3b6a04d743076bd286de821445f0654ef7 Validity Not Before: Dec 15 04:00:31 2025 GMT Not After : Dec 16 04:00:31 2025 GMT Subject: CN=c9b275416e470c7825cd193f4ea5d5a06f10c8c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c0:be:75:e4:2b:47:ef:66:40:6f:bf:4f:6e: a7:00:49:3d:17:67:85:41:1b:3a:b9:2c:6d:b8:6a: 30:4c:eb:7f:ef:87:b5:40:9f:65:04:98:28:83:43: fc:72:63:cd:e2:09:1e:e9:b8:21:33:6b:2c:14:e1: ea:3f:12:b3:74:04:b1:07:a2:69:56:45:85:cf:45: 0c:b9:1b:e2:07:c9:8c:3a:3d:b8:7f:fd:57:be:6b: ad:6b:65:7c:6f:14:37:1c:cf:fd:a8:24:02:d0:6b: 64:b2:8d:92:c4:f8:cf:4a:31:32:1c:83:d1:ec:18: f3:d0:52:49:c0:57:35:5c:91:13:dd:a7:18:22:24: 81:ae:7f:02:ba:b3:d0:96:e0:89:0a:0b:57:27:f6: 8d:25:1d:ef:88:18:86:37:83:9c:c4:70:1c:5c:e6: 15:e7:ab:d8:c2:8b:0b:da:b5:41:a4:de:90:0e:17: 50:28:76:5e:60:f7:4b:4d:12:80:02:47:ae:27:6c: 51:a5:95:81:d6:81:b2:34:2a:8d:71:33:a4:b2:7e: 51:6d:b2:bc:57:22:f0:a1:29:ae:b7:0e:c5:2e:f0: a7:e3:77:c2:6e:3c:5a:8b:55:e0:af:a4:c9:4c:e6: e6:67:d9:3a:ba:26:b0:35:2c:98:f9:08:b7:01:dd: 5a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:B2:75:41:6E:47:0C:78:25:CD:19:3F:4E:A5:D5:A0:6F:10:C8:C4 X509v3 Authority Key Identifier: keyid:A7:61:FC:3B:6A:04:D7:43:07:6B:D2:86:DE:82:14:45:F0:65:4E:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2H8O2oE10MHa9KG3oIURfBlTvc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/72934e-fe73-4a99-811f-a0cde7ba8bbe/1/p2H8O2oE10MHa9KG3oIURfBlTvc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/72934e-fe73-4a99-811f-a0cde7ba8bbe/1/p2H8O2oE10MHa9KG3oIURfBlTvc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:35:cc:de:06:25:7a:a6:75:1e:88:08:77:d5:6b:57:b9:25: f7:18:81:9d:6a:b9:10:fd:16:7b:bb:37:ea:59:5c:53:14:18: cf:49:fe:be:f6:43:a9:fd:ce:cf:b8:f8:80:3b:7c:08:89:6f: 72:6d:cf:ce:6a:b1:1a:14:56:5b:0b:f9:03:ef:31:83:2e:e7: c1:f8:38:01:16:2e:17:7b:97:90:bb:b2:a2:b6:a5:3a:62:7b: 17:3f:fd:33:ed:91:7e:97:78:56:a2:ac:ac:14:cc:16:4b:22: 16:a1:34:49:11:2d:1e:d9:1e:65:40:13:29:ff:17:1f:7f:b1: fe:f2:f7:aa:a4:cb:bd:50:93:22:83:cb:04:1b:d7:90:83:d3: f0:10:36:dc:bc:55:9e:68:c5:99:1e:25:f7:f0:bf:11:40:e6: 90:38:e3:fb:db:a0:21:a9:37:d5:44:c5:f5:58:97:9a:84:a7: ac:77:52:e2:0a:37:c8:62:ba:1b:35:dd:50:02:69:77:18:28: fe:28:7b:65:9e:ce:d1:88:14:5c:02:a3:b5:d8:de:ef:64:47: ff:b8:70:ec:fa:d4:02:b3:61:1f:e8:a7:d2:24:e1:cd:5a:64: 27:ee:28:b5:ff:9e:44:6a:c0:93:29:13:24:e5:97:73:0b:05: 40:1f:95:78 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsgKsEd6HwieoINuvrDOaIxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3NjFmYzNiNmEwNGQ3NDMwNzZiZDI4NmRlODIxNDQ1ZjA2 NTRlZjcwHhcNMjUxMjE1MDQwMDMxWhcNMjUxMjE2MDQwMDMxWjAzMTEwLwYDVQQD EyhjOWIyNzU0MTZlNDcwYzc4MjVjZDE5M2Y0ZWE1ZDVhMDZmMTBjOGM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApcC+deQrR+9mQG+/T26nAEk9F2eF QRs6uSxtuGowTOt/74e1QJ9lBJgog0P8cmPN4gke6bghM2ssFOHqPxKzdASxB6Jp VkWFz0UMuRviB8mMOj24f/1Xvmuta2V8bxQ3HM/9qCQC0Gtkso2SxPjPSjEyHIPR 7Bjz0FJJwFc1XJET3acYIiSBrn8CurPQluCJCgtXJ/aNJR3viBiGN4OcxHAcXOYV 56vYwosL2rVBpN6QDhdQKHZeYPdLTRKAAkeuJ2xRpZWB1oGyNCqNcTOksn5RbbK8 VyLwoSmutw7FLvCn43fCbjxai1Xgr6TJTObmZ9k6uiawNSyY+Qi3Ad1a7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMmydUFuRwx4Jc0ZP06l1aBvEMjEMB8GA1UdIwQY MBaAFKdh/DtqBNdDB2vSht6CFEXwZU73MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcDJIOE8yb0UxME1IYTlLRzNvSVVSZkJsVHZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS83MjkzNGUtZmU3My00YTk5LTgxMWYt YTBjZGU3YmE4YmJlLzEvcDJIOE8yb0UxME1IYTlLRzNvSVVSZkJsVHZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS83MjkzNGUtZmU3My00YTk5LTgxMWYtYTBjZGU3YmE4YmJl LzEvcDJIOE8yb0UxME1IYTlLRzNvSVVSZkJsVHZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqDXM3gYl eqZ1HogId9VrV7kl9xiBnWq5EP0We7s36llcUxQYz0n+vvZDqf3Oz7j4gDt8CIlv cm3PzmqxGhRWWwv5A+8xgy7nwfg4ARYuF3uXkLuyoralOmJ7Fz/9M+2Rfpd4VqKs rBTMFksiFqE0SREtHtkeZUATKf8XH3+x/vL3qqTLvVCTIoPLBBvXkIPT8BA23LxV nmjFmR4l9/C/EUDmkDjj+9ugIak31UTF9ViXmoSnrHdS4go3yGK6GzXdUAJpdxgo /ih7ZZ7O0YgUXAKjtdje72RH/7hw7PrUArNhH+in0iThzVpkJ+4otf+eRGrAkykT JOWXcwsFQB+VeA== -----END CERTIFICATE-----Generated at Mon Dec 15 12:12:29 2025 by rpki-client