This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft File: 2sedKFW4l0GCCNR7puUUYAFbXXs.mft (raw, json) Hash identifier: OLLP9+QbFUj4oIAV8U5cLF3AUH2ijBKgMi1NAWUyPPo= Subject key identifier: 46:99:B0:9F:67:8D:61:A2:BC:9C:74:BD:3A:59:1F:A1:A4:08:BA:D5 Authority key identifier: DA:C7:9D:28:55:B8:97:41:82:08:D4:7B:A6:E5:14:60:01:5B:5D:7B Certificate issuer: /CN=dac79d2855b897418208d47ba6e51460015b5d7b Certificate serial: 019B25884A7054B392054D9E4D42F63B8B97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sedKFW4l0GCCNR7puUUYAFbXXs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft Manifest number: 177D Signing time: Tue 16 Dec 2025 05:00:47 +0000 Manifest this update: Tue 16 Dec 2025 05:00:47 +0000 Manifest next update: Wed 17 Dec 2025 05:00:47 +0000 Files and hashes: 1: 2sedKFW4l0GCCNR7puUUYAFbXXs.crl (hash: xAiLule/rKLEYKBry0dRRKEB8WiiOIxDqDMFOz5t3LY=) 2: tC1yV2tBIFtyur1CynjIgKWGcBM.roa (hash: 1+DYEAvIp/jbF3nPZX2n/Pi9ZPPyvPQVRKTGpXSrouQ=) 3: yHaEkoOTCPurcY3b0F-9VL88Kwc.roa (hash: Y+GSgGL/KpLcJxeK38gow6fyI44wgNDdjmQduqWLn3A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.crl rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft rsync://rpki.ripe.net/repository/DEFAULT/2sedKFW4l0GCCNR7puUUYAFbXXs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 05:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:88:4a:70:54:b3:92:05:4d:9e:4d:42:f6:3b:8b:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dac79d2855b897418208d47ba6e51460015b5d7b Validity Not Before: Dec 16 05:00:47 2025 GMT Not After : Dec 17 05:00:47 2025 GMT Subject: CN=4699b09f678d61a2bc9c74bd3a591fa1a408bad5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:98:be:1f:af:e5:f0:49:0a:cc:a4:78:70:ee: 3e:79:87:3c:53:a0:9f:43:f1:22:74:9c:8d:cd:d8: a5:40:7d:22:0d:43:09:06:05:83:b0:c8:60:70:e6: 2f:61:04:13:fd:6f:01:03:7e:2a:09:6c:92:c6:26: 62:d9:e8:17:b4:17:88:8e:01:8c:14:3e:38:cf:d8: 92:21:b3:b1:a3:91:ce:aa:64:b0:51:15:25:85:a9: 7e:c6:b4:02:05:3d:1c:25:cc:35:5e:f4:c6:03:58: 56:26:8f:e9:e4:93:5d:7d:a7:83:6b:ea:7d:e0:cc: f3:13:37:e8:8b:aa:00:93:9b:34:4d:46:f9:1a:8e: 8f:a2:bd:89:7c:32:ac:48:bb:75:11:11:10:d0:f4: e7:cb:6c:1e:36:45:eb:a9:8e:7d:42:68:ad:fd:de: 97:11:0b:71:c1:57:57:df:23:7c:13:54:cd:06:11: b3:81:93:1b:c0:17:e9:a6:19:bb:33:2f:9e:f3:3c: 25:4a:b4:d2:63:66:2b:9e:5f:f2:cc:a1:ac:8b:f0: 42:4d:20:dc:ab:c9:57:5d:be:3a:c3:a2:50:8a:e0: 62:7a:11:e8:90:bc:86:ae:c7:f4:32:b0:60:5f:47: ae:e8:4d:0a:80:3d:45:46:5c:f2:63:41:43:6d:04: fb:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:99:B0:9F:67:8D:61:A2:BC:9C:74:BD:3A:59:1F:A1:A4:08:BA:D5 X509v3 Authority Key Identifier: keyid:DA:C7:9D:28:55:B8:97:41:82:08:D4:7B:A6:E5:14:60:01:5B:5D:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sedKFW4l0GCCNR7puUUYAFbXXs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:2e:0a:70:a1:ea:a4:dd:6d:a4:26:f4:63:ad:fa:b9:3b:2f: b8:8b:f8:1e:c9:18:8e:9b:c7:ce:47:8a:39:74:bb:35:33:5a: 96:7f:0b:b6:61:50:83:c1:f5:ae:14:ae:dc:10:e6:5b:19:8f: 10:54:12:af:1b:07:38:01:42:d4:e2:d9:aa:4f:bf:a3:c9:f5: 12:88:80:c3:1e:63:ed:9a:c4:d6:99:2e:0e:db:7a:e5:b6:73: e8:ae:c4:b9:cb:9b:16:69:0d:b8:70:d2:2e:aa:7b:c3:f2:e2: 4b:1c:08:67:13:c7:1d:49:8e:8c:09:29:37:eb:d2:1e:c8:ef: 0e:f5:11:3d:09:59:b5:f5:f8:0f:48:b8:35:f2:68:0a:2e:4e: f8:b2:2e:78:e0:39:55:c9:c0:95:10:09:f9:fc:d3:97:c2:dd: 98:d8:e5:61:25:fd:7e:e0:3e:02:b9:5f:af:7a:34:57:ae:78: dc:93:2f:26:72:11:7a:9f:16:20:f5:95:3c:25:90:b6:ec:92: e8:67:c0:86:80:54:32:bf:f3:71:20:c6:d8:ea:db:fd:56:90: 93:e1:ae:31:07:4f:96:e8:02:15:88:20:ae:aa:46:57:f8:4b: 4a:5e:57:30:82:3a:b6:de:a8:37:b4:e2:79:bd:46:16:07:e2: 52:5a:74:99 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsliEpwVLOSBU2eTUL2O4uXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhYzc5ZDI4NTViODk3NDE4MjA4ZDQ3YmE2ZTUxNDYwMDE1 YjVkN2IwHhcNMjUxMjE2MDUwMDQ3WhcNMjUxMjE3MDUwMDQ3WjAzMTEwLwYDVQQD Eyg0Njk5YjA5ZjY3OGQ2MWEyYmM5Yzc0YmQzYTU5MWZhMWE0MDhiYWQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3pi+H6/l8EkKzKR4cO4+eYc8U6Cf Q/EidJyNzdilQH0iDUMJBgWDsMhgcOYvYQQT/W8BA34qCWySxiZi2egXtBeIjgGM FD44z9iSIbOxo5HOqmSwURUlhal+xrQCBT0cJcw1XvTGA1hWJo/p5JNdfaeDa+p9 4MzzEzfoi6oAk5s0TUb5Go6Por2JfDKsSLt1EREQ0PTny2weNkXrqY59Qmit/d6X EQtxwVdX3yN8E1TNBhGzgZMbwBfpphm7My+e8zwlSrTSY2Yrnl/yzKGsi/BCTSDc q8lXXb46w6JQiuBiehHokLyGrsf0MrBgX0eu6E0KgD1FRlzyY0FDbQT7IQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEaZsJ9njWGivJx0vTpZH6GkCLrVMB8GA1UdIwQY MBaAFNrHnShVuJdBggjUe6blFGABW117MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnNlZEtGVzRsMEdDQ05SN3B1VVVZQUZiWFhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny81YjExNDktNjQ3ZC00MDY3LTk4MDct NDQ1ZDQ1ODhjMzEyLzEvMnNlZEtGVzRsMEdDQ05SN3B1VVVZQUZiWFhzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny81YjExNDktNjQ3ZC00MDY3LTk4MDctNDQ1ZDQ1ODhjMzEy LzEvMnNlZEtGVzRsMEdDQ05SN3B1VVVZQUZiWFhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhC4KcKHq pN1tpCb0Y636uTsvuIv4HskYjpvHzkeKOXS7NTNaln8LtmFQg8H1rhSu3BDmWxmP EFQSrxsHOAFC1OLZqk+/o8n1EoiAwx5j7ZrE1pkuDtt65bZz6K7EucubFmkNuHDS Lqp7w/LiSxwIZxPHHUmOjAkpN+vSHsjvDvURPQlZtfX4D0i4NfJoCi5O+LIueOA5 VcnAlRAJ+fzTl8LdmNjlYSX9fuA+Arlfr3o0V6543JMvJnIRep8WIPWVPCWQtuyS 6GfAhoBUMr/zcSDG2Orb/VaQk+GuMQdPlugCFYggrqpGV/hLSl5XMII6tt6oN7Ti eb1GFgfiUlp0mQ== -----END CERTIFICATE-----Generated at Tue Dec 16 12:11:17 2025 by rpki-client