This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft File: 2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft (raw, json) Hash identifier: 3pQXB1qWg/k/pvjVFtW0qX8Dfy7+qA7jMmiGWTpHv+M= Subject key identifier: 06:70:8D:A3:A8:09:A0:6B:FA:DB:26:0E:CF:CB:00:86:D1:BE:07:44 Authority key identifier: D9:0D:26:81:51:4A:EF:EE:9D:3C:86:E1:EA:E3:57:36:C8:4D:1C:09 Certificate issuer: /CN=d90d2681514aefee9d3c86e1eae35736c84d1c09 Certificate serial: 019B458182A620DA4DB24F7653CCD8BF057E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft Manifest number: 178F Signing time: Mon 22 Dec 2025 10:01:14 +0000 Manifest this update: Mon 22 Dec 2025 10:01:14 +0000 Manifest next update: Tue 23 Dec 2025 10:01:14 +0000 Files and hashes: 1: 2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl (hash: S0JeSXDQoyRp6N1+iUPFc303MmTgFuceLh8QGtjHCj8=) 2: Y1iEUL6HkZgDZU0_OFEdoFw8lAQ.roa (hash: CDvGigjNlLt/aSYIESg4jn5aQHhCGPQhN6LUC2qBNmo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 10:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:45:81:82:a6:20:da:4d:b2:4f:76:53:cc:d8:bf:05:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d90d2681514aefee9d3c86e1eae35736c84d1c09 Validity Not Before: Dec 22 10:01:14 2025 GMT Not After : Dec 23 10:01:14 2025 GMT Subject: CN=06708da3a809a06bfadb260ecfcb0086d1be0744 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2b:46:28:9a:d4:26:a0:4e:95:2a:7d:81:c3: 12:92:3c:f7:d2:b2:83:b6:32:ca:5e:06:3e:10:e9: 71:f1:4f:af:70:a5:f9:fc:0a:40:f4:03:7a:d1:63: d7:4d:28:70:93:ed:58:3d:4c:9f:0e:b8:05:5c:8c: 78:66:c6:89:1d:ed:0a:36:a6:be:55:42:02:9b:9c: 83:4a:f9:b8:1b:5a:3f:dd:06:7a:dd:89:5c:1a:9b: d5:72:c6:1e:df:46:08:68:c9:f7:6e:6e:c4:16:c5: c1:b8:3b:a8:f3:26:d2:69:b3:c9:93:4d:e6:33:3a: b9:6b:44:e6:19:79:55:91:6c:4e:0a:2e:a9:ad:25: 38:da:b9:b9:df:ea:62:d8:f8:a5:df:a6:97:30:d0: eb:82:36:29:5c:3f:9c:ed:4e:67:c5:6d:91:fb:65: 6d:19:fa:ce:88:16:81:ed:8e:38:57:0f:04:f7:1a: c7:39:ec:c5:14:aa:8e:f0:a1:c4:f9:d8:5f:c9:fb: fe:91:16:21:9a:86:82:e4:de:14:93:b3:71:b4:ad: 38:08:a7:08:e5:2b:b3:3f:2d:12:62:be:63:c4:22: b4:cf:ae:25:5f:ff:c9:8c:df:fd:38:12:ba:c4:db: ba:5e:2d:0f:7a:e3:32:af:26:fa:cf:42:4d:18:c1: 77:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:70:8D:A3:A8:09:A0:6B:FA:DB:26:0E:CF:CB:00:86:D1:BE:07:44 X509v3 Authority Key Identifier: keyid:D9:0D:26:81:51:4A:EF:EE:9D:3C:86:E1:EA:E3:57:36:C8:4D:1C:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:c3:e0:a2:d4:e4:69:16:d5:58:75:e7:48:d6:a4:3a:e1:1f: 58:c6:f0:22:db:69:4d:95:1b:15:13:e8:9a:16:3d:11:3f:3e: a7:b2:ea:17:57:ab:bb:16:54:5f:91:f1:27:bb:87:6e:77:7a: 28:1b:3b:dc:5f:c9:b0:df:08:71:55:97:67:1d:3e:9a:ca:3b: f2:fa:b3:4c:29:f0:ef:28:04:c8:21:f8:4f:f7:cd:d3:7a:6d: 7e:c0:2e:46:90:2f:5e:04:98:79:c2:b2:a0:ea:11:d5:05:95: dd:91:32:34:95:57:aa:44:d7:e2:a1:ac:79:7d:59:59:0b:ed: ea:7b:df:95:42:6a:82:1d:d6:1d:0a:b6:fd:b8:31:eb:84:f1: 71:33:0a:8c:28:57:4f:00:61:de:b6:de:31:0e:23:bc:c9:15: 03:fc:ad:af:bb:17:97:ca:2a:b6:f2:af:1a:44:c4:e3:c0:00: 6b:8b:ce:4d:58:d2:2e:e7:ac:8e:ae:51:91:4f:c8:62:a2:e7: a0:7c:41:1b:b9:67:d5:2f:e1:03:8c:ad:67:a2:75:ac:7b:f7: 8f:b1:d5:0c:5f:34:49:04:1d:b8:05:6f:1e:d7:43:2d:91:b5: 02:bc:a2:d6:30:8e:27:51:7f:bb:bf:7c:3d:15:9f:7f:fd:aa: 50:c1:e5:66 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtFgYKmINpNsk92U8zYvwV+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5MGQyNjgxNTE0YWVmZWU5ZDNjODZlMWVhZTM1NzM2Yzg0 ZDFjMDkwHhcNMjUxMjIyMTAwMTE0WhcNMjUxMjIzMTAwMTE0WjAzMTEwLwYDVQQD EygwNjcwOGRhM2E4MDlhMDZiZmFkYjI2MGVjZmNiMDA4NmQxYmUwNzQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuytGKJrUJqBOlSp9gcMSkjz30rKD tjLKXgY+EOlx8U+vcKX5/ApA9AN60WPXTShwk+1YPUyfDrgFXIx4ZsaJHe0KNqa+ VUICm5yDSvm4G1o/3QZ63YlcGpvVcsYe30YIaMn3bm7EFsXBuDuo8ybSabPJk03m Mzq5a0TmGXlVkWxOCi6prSU42rm53+pi2Pil36aXMNDrgjYpXD+c7U5nxW2R+2Vt GfrOiBaB7Y44Vw8E9xrHOezFFKqO8KHE+dhfyfv+kRYhmoaC5N4Uk7NxtK04CKcI 5SuzPy0SYr5jxCK0z64lX//JjN/9OBK6xNu6Xi0PeuMyryb6z0JNGMF3UwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAZwjaOoCaBr+tsmDs/LAIbRvgdEMB8GA1UdIwQY MBaAFNkNJoFRSu/unTyG4erjVzbITRwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlEwbWdWRks3LTZkUEliaDZ1TlhOc2hOSEFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC9lMGQ5NTYtN2I4Ny00ZWRkLWI5NDQt MWQwZjI5YjRiOTdmLzEvMlEwbWdWRks3LTZkUEliaDZ1TlhOc2hOSEFrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OC9lMGQ5NTYtN2I4Ny00ZWRkLWI5NDQtMWQwZjI5YjRiOTdm LzEvMlEwbWdWRks3LTZkUEliaDZ1TlhOc2hOSEFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXsPgotTk aRbVWHXnSNakOuEfWMbwIttpTZUbFRPomhY9ET8+p7LqF1eruxZUX5HxJ7uHbnd6 KBs73F/JsN8IcVWXZx0+mso78vqzTCnw7ygEyCH4T/fN03ptfsAuRpAvXgSYecKy oOoR1QWV3ZEyNJVXqkTX4qGseX1ZWQvt6nvflUJqgh3WHQq2/bgx64TxcTMKjChX TwBh3rbeMQ4jvMkVA/ytr7sXl8oqtvKvGkTE48AAa4vOTVjSLuesjq5RkU/IYqLn oHxBG7ln1S/hA4ytZ6J1rHv3j7HVDF80SQQduAVvHtdDLZG1Aryi1jCOJ1F/u798 PRWff/2qUMHlZg== -----END CERTIFICATE-----Generated at Mon Dec 22 11:32:08 2025 by rpki-client