This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft File: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft (raw, json) Hash identifier: GzgFiG8pgi7gKPpekAy2mnS994dZnNUuPJ9mPzi6wak= Subject key identifier: 92:4E:8C:15:57:54:22:C1:DF:A8:1F:2F:01:5D:B1:89:B9:D5:3D:40 Authority key identifier: D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99 Certificate issuer: /CN=d908722a7555dd1621dd6a62209fa8da52942999 Certificate serial: 019B25F6A7BDFABC0E638DEE980F4C1CF102 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft Manifest number: 1606 Signing time: Tue 16 Dec 2025 07:01:20 +0000 Manifest this update: Tue 16 Dec 2025 07:01:20 +0000 Manifest next update: Wed 17 Dec 2025 07:01:20 +0000 Files and hashes: 1: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl (hash: JLSyu9Fq08/i+LNM7U1sv+AaqF2cWQ4E/vYhr1x5MpQ=) 2: Y5hh8AgGKAUf_2S15Xwk_892p60.roa (hash: baZuJeVmztFazA/spLlePhpdINyXpI1DJgHdXLAL5/E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 07:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:f6:a7:bd:fa:bc:0e:63:8d:ee:98:0f:4c:1c:f1:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d908722a7555dd1621dd6a62209fa8da52942999 Validity Not Before: Dec 16 07:01:20 2025 GMT Not After : Dec 17 07:01:20 2025 GMT Subject: CN=924e8c15575422c1dfa81f2f015db189b9d53d40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f5:eb:a4:aa:de:e6:90:03:e4:ec:92:7a:fa: e7:29:6e:75:5e:db:4f:3a:11:c5:dc:f2:86:29:a9: a5:16:56:aa:9c:d2:50:28:72:3d:59:3a:d1:e1:2e: 6d:47:4e:29:91:11:b8:18:8d:69:17:f7:38:e1:c5: 3a:3f:8a:7f:af:58:b4:b5:1d:75:f4:df:96:08:c9: d8:7f:59:63:7f:48:3b:2d:c4:91:d8:f5:8a:ee:36: a1:f6:fd:03:33:92:42:9b:ed:5c:fa:d2:34:41:09: 00:ec:9c:27:1e:c7:01:f1:e3:d0:f3:64:15:2b:13: 1b:01:ee:ad:f4:e2:13:b0:6d:8d:55:00:5e:a4:2c: ab:13:e3:3a:2a:31:4b:8b:12:1e:a5:97:3d:50:64: e6:b2:10:71:8d:25:59:62:50:6b:14:92:a9:22:5b: 1b:f1:90:1d:21:c3:bb:81:76:51:41:cf:92:17:fb: c2:2f:c4:9e:f0:51:cc:ba:5f:68:c1:0a:44:3f:d7: 11:0c:8d:05:fd:e5:80:4f:24:60:4c:72:6e:11:26: ce:a9:da:78:5a:fe:7d:44:a2:c7:a8:a8:d9:f9:98: 31:60:a9:0b:4d:58:51:d3:9d:73:ce:c4:b1:74:29: 19:cb:79:9c:ab:ea:d4:dd:ec:7c:6c:27:2b:61:ee: 2e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:4E:8C:15:57:54:22:C1:DF:A8:1F:2F:01:5D:B1:89:B9:D5:3D:40 X509v3 Authority Key Identifier: keyid:D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:fa:10:5b:58:28:f2:11:5a:d2:5d:e6:8b:00:70:49:a7:9c: 3e:83:75:ab:5b:01:46:5e:ec:6a:cd:2b:c8:fb:65:d4:a0:af: 21:64:e1:0e:fb:90:1b:7f:93:e2:d1:bf:11:a5:04:f1:11:f6: fe:ec:92:c1:38:f4:e5:a6:c0:ea:f5:2b:5c:0b:a3:61:1a:f8: 4b:4c:2e:fb:3f:be:50:d8:47:c0:df:ab:8c:98:24:eb:73:0c: 50:f3:dd:90:7e:ec:a5:58:a1:3c:d3:1c:72:26:2e:b6:3e:19: 4e:83:24:bf:94:41:92:ad:0c:6d:d7:3c:72:9b:37:58:02:9f: 28:aa:14:a3:02:b2:54:7f:aa:18:da:5e:47:54:a0:e3:e3:00: 8b:1d:aa:4e:03:aa:26:fa:b7:ed:ae:41:6f:c6:d6:80:7a:b7: 42:5e:30:1a:ec:a1:dc:01:03:42:9b:6d:49:b8:7a:8d:e2:d9: c8:10:e7:a6:c9:4d:2a:21:e5:c2:58:b9:3e:59:af:f1:6e:7c: 0a:de:b7:ff:72:16:6f:0b:90:d1:76:f3:82:55:11:10:82:ca: 45:03:d1:8f:ad:4a:4b:36:bf:14:2e:a3:df:7b:fc:73:35:a0: 93:d5:0e:16:bd:46:cc:51:a8:e1:d1:8b:29:98:b5:ba:c7:9b: dd:be:dc:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsl9qe9+rwOY43umA9MHPECMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5MDg3MjJhNzU1NWRkMTYyMWRkNmE2MjIwOWZhOGRhNTI5 NDI5OTkwHhcNMjUxMjE2MDcwMTIwWhcNMjUxMjE3MDcwMTIwWjAzMTEwLwYDVQQD Eyg5MjRlOGMxNTU3NTQyMmMxZGZhODFmMmYwMTVkYjE4OWI5ZDUzZDQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7PXrpKre5pAD5OySevrnKW51XttP OhHF3PKGKamlFlaqnNJQKHI9WTrR4S5tR04pkRG4GI1pF/c44cU6P4p/r1i0tR11 9N+WCMnYf1ljf0g7LcSR2PWK7jah9v0DM5JCm+1c+tI0QQkA7JwnHscB8ePQ82QV KxMbAe6t9OITsG2NVQBepCyrE+M6KjFLixIepZc9UGTmshBxjSVZYlBrFJKpIlsb 8ZAdIcO7gXZRQc+SF/vCL8Se8FHMul9owQpEP9cRDI0F/eWATyRgTHJuESbOqdp4 Wv59RKLHqKjZ+ZgxYKkLTVhR051zzsSxdCkZy3mcq+rU3ex8bCcrYe4uAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJJOjBVXVCLB36gfLwFdsYm51T1AMB8GA1UdIwQY MBaAFNkIcip1Vd0WId1qYiCfqNpSlCmZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlFoeUtuVlYzUlloM1dwaUlKLW8ybEtVS1prLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8wODY2YjAtZmU2Yi00NjZmLWJiODYt MmQ5ZmNhNjYyZTUyLzEvMlFoeUtuVlYzUlloM1dwaUlKLW8ybEtVS1prLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yi8wODY2YjAtZmU2Yi00NjZmLWJiODYtMmQ5ZmNhNjYyZTUy LzEvMlFoeUtuVlYzUlloM1dwaUlKLW8ybEtVS1prLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHfoQW1go 8hFa0l3miwBwSaecPoN1q1sBRl7sas0ryPtl1KCvIWThDvuQG3+T4tG/EaUE8RH2 /uySwTj05abA6vUrXAujYRr4S0wu+z++UNhHwN+rjJgk63MMUPPdkH7spVihPNMc ciYutj4ZToMkv5RBkq0Mbdc8cps3WAKfKKoUowKyVH+qGNpeR1Sg4+MAix2qTgOq Jvq37a5Bb8bWgHq3Ql4wGuyh3AEDQpttSbh6jeLZyBDnpslNKiHlwli5Plmv8W58 Ct63/3IWbwuQ0XbzglUREILKRQPRj61KSza/FC6j33v8czWgk9UOFr1GzFGo4dGL KZi1useb3b7chQ== -----END CERTIFICATE-----Generated at Tue Dec 16 16:52:35 2025 by rpki-client