This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft File: 2RTaVuGpNGSdoClkrBLro0xcuE8.mft (raw, json) Hash identifier: DL6kY0IWTLCQe6ScksEpq+7tpHF0YlYAQ/zqJxJ0b6Q= Subject key identifier: E6:B0:90:9B:08:16:99:79:31:94:53:3E:51:6F:5C:4D:2A:DB:99:7C Authority key identifier: D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F Certificate issuer: /CN=d914da56e1a934649da02964ac12eba34c5cb84f Certificate serial: 019B0CA4BD631ED507748D18234ED04B7019 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft Manifest number: 04CC Signing time: Thu 11 Dec 2025 09:01:21 +0000 Manifest this update: Thu 11 Dec 2025 09:01:21 +0000 Manifest next update: Fri 12 Dec 2025 09:01:21 +0000 Files and hashes: 1: 2RTaVuGpNGSdoClkrBLro0xcuE8.crl (hash: qUxf2a8VgDd6sN/ffzsml1yO5GEkKPqBT8zreMs/q2Y=) 2: As7V6ZE1xBs1gl2SXAEbNIUHC00.roa (hash: kQVt6PxymkEnwafOS16jS1OEQiU/aYHOchiiJ14/rGk=) 3: PIhsP1al3YizxN861NowDoYoHI0.roa (hash: R9+qOpDwEb0Q5efJFh94SK/9P5J9FFbPDMd4Z1g9adY=) 4: TgC9SfoTorK7vBYwI8VYhLdYsAI.roa (hash: cX6b1ElbfxY+vtUnnUoBWdanxCq7AgtL2UTTxProihY=) 5: r6xJZWjtrwNhQith6PiqNcETkoY.roa (hash: 5M8HMFCPR3icG0A/hOYTkDnAzNiqaffro245jnASAHc=) 6: yP_dwUj9wkpGZraCJm3_QUlcxSc.roa (hash: PpcRyK/zlLSo8ZccoU5Ov6j3mDsKb8kB7dCU9P4KBZQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 09:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0c:a4:bd:63:1e:d5:07:74:8d:18:23:4e:d0:4b:70:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d914da56e1a934649da02964ac12eba34c5cb84f Validity Not Before: Dec 11 09:01:21 2025 GMT Not After : Dec 12 09:01:21 2025 GMT Subject: CN=e6b0909b081699793194533e516f5c4d2adb997c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:fe:e1:7a:8e:e6:22:66:33:81:bf:14:33:0d: 30:94:e9:90:81:d8:6e:5d:70:66:88:00:b1:20:ef: fb:4a:55:7b:82:5d:3e:fc:6a:c4:97:67:8d:ef:48: 14:a2:9f:85:ad:b3:39:fb:2d:80:dc:af:dc:e8:78: 09:4c:bc:e1:04:44:80:8d:0b:e6:33:54:8d:9a:11: 56:27:83:55:bd:f7:c3:37:ae:fc:f2:eb:55:30:98: 7d:f2:77:2a:e7:f5:15:fd:cf:68:44:e7:98:3d:fd: 17:58:05:0d:17:23:d1:f3:fc:cb:10:66:5b:f4:c0: 91:e7:84:e1:aa:1d:e6:db:64:fc:dd:e2:b2:4d:34: 54:92:bd:a7:f1:4b:d0:96:6d:75:98:e8:58:f0:d1: fb:df:f6:7f:18:1e:85:4f:63:93:1d:ec:73:ed:a4: 10:11:d6:37:78:86:29:d9:70:94:53:f3:86:21:48: 91:5c:95:25:62:25:d9:44:26:09:0d:11:97:72:c2: 1c:0c:14:07:79:2b:1f:38:c5:d7:20:2c:bb:14:98: 64:eb:29:ca:2a:34:40:3a:0c:bc:4a:8e:62:08:66: 76:40:64:79:48:2b:bc:4f:05:25:2b:cc:a9:fb:79: f9:3d:44:91:f8:54:81:77:1a:46:29:66:d3:ce:4c: c4:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:B0:90:9B:08:16:99:79:31:94:53:3E:51:6F:5C:4D:2A:DB:99:7C X509v3 Authority Key Identifier: keyid:D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ce:d9:c2:a8:f7:58:00:c9:61:0b:99:49:b5:30:6c:26:64:6f: 04:34:99:a3:2a:45:d6:e7:8e:2d:3f:f1:8d:04:70:fa:46:4b: ee:f9:98:96:3e:15:36:9f:53:26:cb:9e:99:9a:2d:72:7f:8f: dc:4c:14:16:b2:e3:38:28:55:27:02:2c:3b:4a:cd:84:84:b5: f1:2a:c8:89:b2:e7:e3:e7:42:f2:85:23:f0:7b:f3:c3:ea:5a: 27:be:c2:22:61:6a:da:e3:00:8e:fd:b1:45:f2:09:4e:80:82: ee:bf:53:36:d6:d8:68:dc:b8:75:30:bb:5f:38:52:ea:18:c3: d5:6d:ec:be:bf:a6:b1:8b:f9:b3:e8:fe:dd:45:6b:fa:6d:d6: 24:90:54:d4:8a:c0:10:ae:83:54:f5:5c:b7:99:f8:39:39:14: a2:71:fa:b2:0c:0a:5d:ce:77:03:93:3c:be:3f:ee:74:c4:df: 27:e4:e6:8a:c3:ee:ef:18:e6:2d:83:12:0e:b4:b6:0f:3b:e2: 9e:3a:03:88:fe:e1:69:06:a9:2a:d9:7f:45:83:db:f7:9b:95: 88:1d:6e:f7:c3:a6:1b:0b:65:de:27:9d:44:b5:3c:72:38:08: 2c:72:dd:75:17:45:91:0e:22:43:50:bc:14:a1:44:79:de:0a: 4b:64:00:8e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsMpL1jHtUHdI0YI07QS3AZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5MTRkYTU2ZTFhOTM0NjQ5ZGEwMjk2NGFjMTJlYmEzNGM1 Y2I4NGYwHhcNMjUxMjExMDkwMTIxWhcNMjUxMjEyMDkwMTIxWjAzMTEwLwYDVQQD EyhlNmIwOTA5YjA4MTY5OTc5MzE5NDUzM2U1MTZmNWM0ZDJhZGI5OTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1/7heo7mImYzgb8UMw0wlOmQgdhu XXBmiACxIO/7SlV7gl0+/GrEl2eN70gUop+FrbM5+y2A3K/c6HgJTLzhBESAjQvm M1SNmhFWJ4NVvffDN6788utVMJh98ncq5/UV/c9oROeYPf0XWAUNFyPR8/zLEGZb 9MCR54Thqh3m22T83eKyTTRUkr2n8UvQlm11mOhY8NH73/Z/GB6FT2OTHexz7aQQ EdY3eIYp2XCUU/OGIUiRXJUlYiXZRCYJDRGXcsIcDBQHeSsfOMXXICy7FJhk6ynK KjRAOgy8So5iCGZ2QGR5SCu8TwUlK8yp+3n5PUSR+FSBdxpGKWbTzkzENQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOawkJsIFpl5MZRTPlFvXE0q25l8MB8GA1UdIwQY MBaAFNkU2lbhqTRknaApZKwS66NMXLhPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlJUYVZ1R3BOR1Nkb0Nsa3JCTHJvMHhjdUU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS83YTExYjUtYTQwNS00MWNiLTgxY2It ZjZiY2NmMWU1MzFmLzEvMlJUYVZ1R3BOR1Nkb0Nsa3JCTHJvMHhjdUU4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS83YTExYjUtYTQwNS00MWNiLTgxY2ItZjZiY2NmMWU1MzFm LzEvMlJUYVZ1R3BOR1Nkb0Nsa3JCTHJvMHhjdUU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAztnCqPdY AMlhC5lJtTBsJmRvBDSZoypF1ueOLT/xjQRw+kZL7vmYlj4VNp9TJsuemZotcn+P 3EwUFrLjOChVJwIsO0rNhIS18SrIibLn4+dC8oUj8Hvzw+paJ77CImFq2uMAjv2x RfIJToCC7r9TNtbYaNy4dTC7XzhS6hjD1W3svr+msYv5s+j+3UVr+m3WJJBU1IrA EK6DVPVct5n4OTkUonH6sgwKXc53A5M8vj/udMTfJ+TmisPu7xjmLYMSDrS2Dzvi njoDiP7haQapKtl/RYPb95uViB1u98OmGwtl3iedRLU8cjgILHLddRdFkQ4iQ1C8 FKFEed4KS2QAjg== -----END CERTIFICATE-----Generated at Thu Dec 11 15:07:23 2025 by rpki-client