This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft File: 2ChPGM1EYEvdbQj02HjcYUVsQP0.mft (raw, json) Hash identifier: m9qFTi7zl1WNnIeRFYjCEoIaPw/Ho0CTffZRjNndgEk= Subject key identifier: CB:38:72:61:08:8B:BF:0F:E0:D4:5A:C4:91:7E:B1:37:86:C2:76:2D Authority key identifier: D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD Certificate issuer: /CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd Certificate serial: 019B2219A1DECEF7AA6CBFFFFA86416A4AD0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft Manifest number: 178B Signing time: Mon 15 Dec 2025 13:01:03 +0000 Manifest this update: Mon 15 Dec 2025 13:01:03 +0000 Manifest next update: Tue 16 Dec 2025 13:01:03 +0000 Files and hashes: 1: 2ChPGM1EYEvdbQj02HjcYUVsQP0.crl (hash: POsPHSFSKVXcTzvP8MzkNp/qZI20xRd5iNGClZZTeMI=) 2: QwB_J4IBjr_kwpZ0DSZt7jLyFUw.roa (hash: xjQoVVO98cxf92eXukztlmvd0mAJHZVRoWG3GH3edIU=) 3: RZQ5y55NZ91q7qGueZI2kyy2lHI.roa (hash: s/DyWvu0J1swkDaWXLLyRdJ0euIh4+uqvas0DU4Xq7I=) 4: noQO1tLrNCKz3bIWnBbDMmvuYLg.roa (hash: hYTtEju7KkB6LYquIBvGjeZyYymRK8/pFRz4XyGZMT8=) 5: qWeBIgMT9yofaevmnsJv-k3J7gM.roa (hash: OVmNg3h2HayVISC+svzIkwU6u8HmPx4SN/OehOmAqgY=) 6: qq3OJ7E8FdGE4BJdu3ZOq4LInY8.roa (hash: jyVlOFzMs6a5a3ty01oIP3DwXzFAJhXu3CIHkhRdIo8=) 7: v5y-XO_c3BUL4I2vKl0yvM3sR48.roa (hash: job18wRUBRjomyukO0QxaFg1pEdwxYB+4rsX0iFAoJo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 13:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:22:19:a1:de:ce:f7:aa:6c:bf:ff:fa:86:41:6a:4a:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd Validity Not Before: Dec 15 13:01:03 2025 GMT Not After : Dec 16 13:01:03 2025 GMT Subject: CN=cb387261088bbf0fe0d45ac4917eb13786c2762d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:72:a4:35:2e:2c:df:31:95:ed:7a:d6:07:c1: ae:e7:55:b4:db:0f:45:3b:82:91:cb:0a:f6:1c:de: 29:07:20:6b:7f:6b:c7:5b:21:57:49:3e:70:62:8b: b9:5b:32:22:3f:d0:57:d2:7f:aa:dd:1c:70:83:95: 6c:65:30:49:4f:e9:d6:c1:ca:0c:77:dc:a7:4d:57: 43:20:7d:7c:4b:83:76:3e:e3:13:b2:e3:30:83:56: 26:ef:4a:73:d8:79:0c:35:06:4c:77:d8:a2:f0:05: de:54:2a:53:47:74:1a:68:fb:f9:ab:37:58:f5:d5: d9:c9:3d:93:97:88:b2:a1:1a:54:b4:7f:c3:48:40: e0:ab:3e:f2:db:23:86:6e:5e:0f:49:28:40:77:71: a5:e7:37:2d:8c:47:22:21:49:54:c3:19:db:c8:6e: cb:60:af:c3:ed:12:c4:6f:1e:18:3c:8c:91:04:00: d7:dd:e3:c3:b1:22:87:ac:0a:8d:45:2a:11:8c:cf: b8:94:7c:e1:7d:37:89:73:30:3b:18:77:49:80:f0: 89:9d:96:2e:25:a1:8f:a7:9f:eb:08:30:e9:07:8a: 34:70:09:2b:24:d4:92:12:00:44:95:63:a5:bd:09: bf:05:df:3d:de:df:77:55:66:e4:88:25:b6:7b:67: 9f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:38:72:61:08:8B:BF:0F:E0:D4:5A:C4:91:7E:B1:37:86:C2:76:2D X509v3 Authority Key Identifier: keyid:D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d9:6c:e9:f4:36:e9:0a:68:9f:20:c2:ea:c4:00:e3:5c:9e:bc: de:e6:d2:f7:4c:da:bb:c3:7c:0f:d9:4b:0c:e9:d8:5b:4a:20: 18:13:08:f3:e6:6c:8b:cb:10:ef:34:9f:91:51:83:d2:f2:74: 74:dc:e5:9d:fa:ed:a0:91:3c:a3:e2:d8:7a:ea:b1:66:14:a4: 45:82:f9:6a:fa:cc:e5:86:83:dd:09:9a:bd:5c:50:aa:d3:02: 9f:67:33:3c:e1:ca:2a:85:12:1a:fe:f2:12:58:f1:b1:10:64: eb:55:c2:57:6f:5c:9d:c4:92:f3:86:cb:93:38:d1:9f:d6:4c: 53:32:f6:93:7b:28:84:a8:ca:2b:86:a9:42:de:4c:c1:7f:49: a9:26:76:7d:f1:88:1d:b1:1a:d8:25:8a:ce:87:08:90:90:1b: 13:b3:c5:8b:00:84:a7:a2:14:60:1e:08:af:51:e3:5d:68:53: cb:5a:06:b1:cf:6a:ad:e9:8b:29:0d:b2:c7:2a:51:fa:26:18: e1:cc:a1:49:b8:6d:cd:5c:db:6c:14:10:be:24:16:fc:a4:e5: 23:36:e1:85:19:0d:c8:8b:ad:ca:51:7f:63:ed:b3:3f:ae:9e: dd:d6:fc:b4:d4:0f:d8:9e:48:4d:ba:34:66:61:43:1f:7e:cb: 0d:5b:40:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsiGaHezveqbL//+oZBakrQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4Mjg0ZjE4Y2Q0NDYwNGJkZDZkMDhmNGQ4NzhkYzYxNDU2 YzQwZmQwHhcNMjUxMjE1MTMwMTAzWhcNMjUxMjE2MTMwMTAzWjAzMTEwLwYDVQQD EyhjYjM4NzI2MTA4OGJiZjBmZTBkNDVhYzQ5MTdlYjEzNzg2YzI3NjJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwXKkNS4s3zGV7XrWB8Gu51W02w9F O4KRywr2HN4pByBrf2vHWyFXST5wYou5WzIiP9BX0n+q3Rxwg5VsZTBJT+nWwcoM d9ynTVdDIH18S4N2PuMTsuMwg1Ym70pz2HkMNQZMd9ii8AXeVCpTR3QaaPv5qzdY 9dXZyT2Tl4iyoRpUtH/DSEDgqz7y2yOGbl4PSShAd3Gl5zctjEciIUlUwxnbyG7L YK/D7RLEbx4YPIyRBADX3ePDsSKHrAqNRSoRjM+4lHzhfTeJczA7GHdJgPCJnZYu JaGPp5/rCDDpB4o0cAkrJNSSEgBElWOlvQm/Bd893t93VWbkiCW2e2efRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMs4cmEIi78P4NRaxJF+sTeGwnYtMB8GA1UdIwQY MBaAFNgoTxjNRGBL3W0I9Nh43GFFbED9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkNoUEdNMUVZRXZkYlFqMDJIamNZVVZzUVAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8yNjUyY2QtN2VjZi00OWU4LWE0Zjgt Yzc4NjkxMjg1ODJjLzEvMkNoUEdNMUVZRXZkYlFqMDJIamNZVVZzUVAwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi8yNjUyY2QtN2VjZi00OWU4LWE0ZjgtYzc4NjkxMjg1ODJj LzEvMkNoUEdNMUVZRXZkYlFqMDJIamNZVVZzUVAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA2Wzp9Dbp CmifIMLqxADjXJ683ubS90zau8N8D9lLDOnYW0ogGBMI8+Zsi8sQ7zSfkVGD0vJ0 dNzlnfrtoJE8o+LYeuqxZhSkRYL5avrM5YaD3QmavVxQqtMCn2czPOHKKoUSGv7y EljxsRBk61XCV29cncSS84bLkzjRn9ZMUzL2k3sohKjKK4apQt5MwX9JqSZ2ffGI HbEa2CWKzocIkJAbE7PFiwCEp6IUYB4Ir1HjXWhTy1oGsc9qremLKQ2yxypR+iYY 4cyhSbhtzVzbbBQQviQW/KTlIzbhhRkNyIutylF/Y+2zP66e3db8tNQP2J5ITbo0 ZmFDH37LDVtAwQ== -----END CERTIFICATE-----Generated at Mon Dec 15 16:54:35 2025 by rpki-client