This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft File: J0PbfuNKwtTtV49JXgCWy5iv9xw.mft (raw, json) Hash identifier: eTagbBtydKP9pUDRH95EupbQiZFxgJ5D/egrnvtP8K4= Subject key identifier: 77:9F:83:B1:74:9D:37:E3:70:7A:1F:76:30:86:F9:FA:0C:AE:1F:80 Authority key identifier: 27:43:DB:7E:E3:4A:C2:D4:ED:57:8F:49:5E:00:96:CB:98:AF:F7:1C Certificate issuer: /CN=2743db7ee34ac2d4ed578f495e0096cb98aff71c Certificate serial: 019B0E935A7CC7A4A5DF60E92A2F7DDC491E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J0PbfuNKwtTtV49JXgCWy5iv9xw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft Manifest number: 02BB Signing time: Thu 11 Dec 2025 18:01:36 +0000 Manifest this update: Thu 11 Dec 2025 18:01:36 +0000 Manifest next update: Fri 12 Dec 2025 18:01:36 +0000 Files and hashes: 1: J0PbfuNKwtTtV49JXgCWy5iv9xw.crl (hash: fVQalDjmfYt6HbiDOZfeWnm08UANiaOFxDe99Mqibx0=) 2: dDAgjd5fwQ3cte1EAxZ7pLJLl0U.roa (hash: 2txr4+GD0XgpxhSLLq5aM5yNR187eckG+kO4tKZmm3U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.crl rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft rsync://rpki.ripe.net/repository/DEFAULT/J0PbfuNKwtTtV49JXgCWy5iv9xw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:93:5a:7c:c7:a4:a5:df:60:e9:2a:2f:7d:dc:49:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2743db7ee34ac2d4ed578f495e0096cb98aff71c Validity Not Before: Dec 11 18:01:36 2025 GMT Not After : Dec 12 18:01:36 2025 GMT Subject: CN=779f83b1749d37e3707a1f763086f9fa0cae1f80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:3f:fe:28:6e:7a:55:1f:b7:61:34:88:4a:67: ce:bf:f8:e9:fe:1b:a2:99:ba:df:cf:52:8c:0f:55: d4:b7:5e:3a:31:31:e6:16:d1:76:7c:07:fa:dd:87: 6b:49:4b:8b:b9:e1:45:32:fc:88:1e:80:3b:73:fe: a7:b9:72:c5:74:3a:08:d8:47:11:72:0e:91:94:b2: d9:08:5d:ed:07:2b:ef:4e:f7:b0:f4:d7:a3:48:ed: 5a:b4:5a:65:5e:ff:9e:81:9a:8e:25:ea:d5:6f:80: 61:e2:2b:30:0a:53:7f:4d:12:d8:4c:f2:21:93:39: ec:46:7b:59:42:4c:fe:22:39:b2:a5:ef:3e:29:2a: a7:7e:c9:04:c1:3e:bc:06:d5:b0:d9:9b:e7:2a:bd: 18:11:c5:07:1e:98:75:43:a0:ca:69:0f:a4:c5:e1: c3:49:b2:42:b4:69:c7:3e:bd:f7:06:31:7d:32:9a: 7e:9c:d2:ec:a3:ce:11:3c:6f:1e:5e:a8:08:cf:ee: d5:7b:09:b6:49:4c:ee:c1:ae:64:73:e6:f9:5f:77: 54:49:7c:e4:de:a3:b3:25:70:d3:41:fd:7a:76:23: d8:f8:29:06:6f:02:83:c2:b6:2d:c2:48:44:82:44: 6a:cd:0c:7b:b2:29:5f:81:f3:8b:43:8c:e8:41:12: ff:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:9F:83:B1:74:9D:37:E3:70:7A:1F:76:30:86:F9:FA:0C:AE:1F:80 X509v3 Authority Key Identifier: keyid:27:43:DB:7E:E3:4A:C2:D4:ED:57:8F:49:5E:00:96:CB:98:AF:F7:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J0PbfuNKwtTtV49JXgCWy5iv9xw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:39:af:61:02:80:c8:d3:f1:f3:2b:b3:d7:30:b9:c4:47:b6: c6:a6:ff:00:18:7e:e2:3c:b8:97:4f:27:5c:72:8c:0f:18:ac: a7:3a:2d:be:a4:8a:c1:d7:5d:ed:0e:59:05:42:dd:31:0b:29: 0b:de:a2:67:dd:eb:a6:5b:dd:04:4d:9d:cb:9e:8f:5e:61:ea: fd:7f:e9:63:e3:b3:a5:87:28:bb:56:1c:89:e2:8b:8b:35:46: fb:e4:8d:8f:9a:44:77:db:8b:aa:9b:cf:c9:0c:bb:a2:da:e1: 27:a8:8b:57:db:ca:1f:93:d0:a3:a1:32:a1:b3:06:25:7f:73: 52:c3:bb:c1:a5:70:cc:ca:72:73:d6:b4:44:0f:d3:1f:37:e1: a1:d7:32:33:89:5e:8f:33:e3:14:68:da:f6:23:b8:7c:cc:5d: 34:5e:bf:36:ee:0e:18:29:29:a3:c2:a2:0f:59:cf:d9:f7:91: 8d:e4:30:e0:c3:58:4d:6e:b5:67:78:94:63:ae:43:23:21:f6: 52:39:13:48:fd:18:8d:9a:aa:2f:b8:27:0e:93:36:81:d4:bb: 8f:d5:de:11:46:0e:87:47:29:64:14:47:35:57:bb:af:02:bc: 22:bd:7e:1c:d6:c6:52:84:d8:9f:d8:bb:4f:f2:2d:9a:6f:f9: cb:7b:10:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOk1p8x6Sl32DpKi993EkeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3NDNkYjdlZTM0YWMyZDRlZDU3OGY0OTVlMDA5NmNiOThh ZmY3MWMwHhcNMjUxMjExMTgwMTM2WhcNMjUxMjEyMTgwMTM2WjAzMTEwLwYDVQQD Eyg3NzlmODNiMTc0OWQzN2UzNzA3YTFmNzYzMDg2ZjlmYTBjYWUxZjgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkj/+KG56VR+3YTSISmfOv/jp/hui mbrfz1KMD1XUt146MTHmFtF2fAf63YdrSUuLueFFMvyIHoA7c/6nuXLFdDoI2EcR cg6RlLLZCF3tByvvTvew9NejSO1atFplXv+egZqOJerVb4Bh4iswClN/TRLYTPIh kznsRntZQkz+Ijmype8+KSqnfskEwT68BtWw2ZvnKr0YEcUHHph1Q6DKaQ+kxeHD SbJCtGnHPr33BjF9Mpp+nNLso84RPG8eXqgIz+7Vewm2SUzuwa5kc+b5X3dUSXzk 3qOzJXDTQf16diPY+CkGbwKDwrYtwkhEgkRqzQx7silfgfOLQ4zoQRL/1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHefg7F0nTfjcHofdjCG+foMrh+AMB8GA1UdIwQY MBaAFCdD237jSsLU7VePSV4AlsuYr/ccMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSjBQYmZ1Tkt3dFR0VjQ5SlhnQ1d5NWl2OXh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS8yZmJjNjctZDZmOC00ZWE0LWJkZTMt NTNiMzEwNDRlZDViLzEvSjBQYmZ1Tkt3dFR0VjQ5SlhnQ1d5NWl2OXh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS8yZmJjNjctZDZmOC00ZWE0LWJkZTMtNTNiMzEwNDRlZDVi LzEvSjBQYmZ1Tkt3dFR0VjQ5SlhnQ1d5NWl2OXh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZDmvYQKA yNPx8yuz1zC5xEe2xqb/ABh+4jy4l08nXHKMDxispzotvqSKwddd7Q5ZBULdMQsp C96iZ93rplvdBE2dy56PXmHq/X/pY+OzpYcou1YcieKLizVG++SNj5pEd9uLqpvP yQy7otrhJ6iLV9vKH5PQo6EyobMGJX9zUsO7waVwzMpyc9a0RA/THzfhodcyM4le jzPjFGja9iO4fMxdNF6/Nu4OGCkpo8KiD1nP2feRjeQw4MNYTW61Z3iUY65DIyH2 UjkTSP0YjZqqL7gnDpM2gdS7j9XeEUYOh0cpZBRHNVe7rwK8Ir1+HNbGUoTYn9i7 T/Itmm/5y3sQ2Q== -----END CERTIFICATE-----Generated at Thu Dec 11 23:57:07 2025 by rpki-client