This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft File: 2KVuLWOsXam-012gHL-tIl8EvrA.mft (raw, json) Hash identifier: WQQDm14m55NFu06etXoOCRTqZkO1RqkB9TJGsdhw1oU= Subject key identifier: 5F:A1:81:66:6E:2B:D6:FB:7B:AD:7B:44:61:0E:55:7F:44:77:9F:7F Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0 Certificate issuer: /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0 Certificate serial: 019B3D237A102C6B60C7751C70814768B76E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft Manifest number: 178B Signing time: Sat 20 Dec 2025 19:01:33 +0000 Manifest this update: Sat 20 Dec 2025 19:01:33 +0000 Manifest next update: Sun 21 Dec 2025 19:01:33 +0000 Files and hashes: 1: 2KVuLWOsXam-012gHL-tIl8EvrA.crl (hash: MgxB5yzM8TM+LiA0C+L0Mng4YV0eLBdWjkguW7WlDwA=) 2: RCebozhiTcCblvotMpWCdCJ1ob8.roa (hash: ZFZoBEoVJHz2x12TIIxXed5WibUd/7/bBstI8X2ocJo=) 3: nQS504JwOxjiWHwncxw2UXqZAyw.roa (hash: 3N4RSXWIhF3ipth4gfwK0f71CjoGPMdi4/hqfhot2X4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:23:7a:10:2c:6b:60:c7:75:1c:70:81:47:68:b7:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0 Validity Not Before: Dec 20 19:01:33 2025 GMT Not After : Dec 21 19:01:33 2025 GMT Subject: CN=5fa181666e2bd6fb7bad7b44610e557f44779f7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:60:55:34:7c:71:12:60:ad:40:3b:62:60:81: 5a:79:e0:52:de:4d:d1:69:ee:e8:50:53:0d:2e:a3: 70:c1:8a:b4:ef:b0:0a:e8:bd:aa:0a:23:f1:82:f1: bb:74:26:d4:ef:84:a4:7f:cd:52:35:b0:91:09:4c: 7e:df:e0:cb:f6:53:23:f2:c6:d1:2d:68:ed:cf:40: 1b:a1:da:f1:b2:46:bb:94:4d:46:96:7c:9a:f4:4c: 21:42:64:53:bc:cb:86:76:f5:f9:b4:ef:af:7d:49: 0c:49:c7:61:60:d1:12:dd:4e:6a:31:71:4b:b2:f5: 0c:74:75:f9:8d:9b:e2:66:a1:4e:b5:84:ab:0b:cd: aa:ad:ca:48:ac:b3:eb:f6:a7:1c:8d:a5:60:69:a7: 9b:9b:48:80:d4:d2:97:88:8b:ab:e6:02:a1:3a:df: 56:c6:d0:2b:36:0f:2e:0a:17:a7:43:aa:13:15:b0: a0:fd:7c:1a:2e:32:44:7e:4e:5b:17:6e:62:2e:37: ea:92:ca:3b:5c:70:9d:86:c1:f3:c0:ee:50:63:8a: d4:b1:90:09:28:e2:45:62:57:aa:2a:aa:ea:67:2c: 33:c1:30:d4:6e:cb:96:bd:c5:a9:e4:9d:a7:82:3f: a3:d1:5d:48:81:71:8f:3a:aa:55:7d:7d:6b:f9:ca: 97:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:A1:81:66:6E:2B:D6:FB:7B:AD:7B:44:61:0E:55:7F:44:77:9F:7F X509v3 Authority Key Identifier: keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:ea:78:77:88:15:c7:80:aa:95:db:67:a1:a5:46:89:0c:33: 9e:35:13:fd:06:aa:da:75:88:0a:5f:f2:2a:88:82:e5:66:49: ae:54:6b:ce:47:08:38:48:ce:db:07:48:45:24:41:1a:67:45: 2a:bb:5e:69:c6:87:c9:8d:14:48:b3:b3:58:67:84:32:fd:33: 3b:0d:e3:f7:8f:71:31:9d:5b:85:74:4d:05:98:bb:4f:a6:ca: f1:91:25:1d:df:02:4c:17:86:16:fb:5d:13:50:43:9d:3b:c3: a4:e2:5c:69:a5:24:4b:0d:bd:b3:07:e1:e8:11:ba:d0:cb:fd: 57:1d:bf:39:91:7c:f5:67:39:c7:4d:30:4a:33:77:3c:00:1b: f5:37:5c:60:a4:b8:25:13:6e:e8:a7:9d:ec:ba:55:d1:10:92: 6d:3e:59:1b:92:37:f5:35:60:ad:dc:6a:c4:6d:37:bc:03:04: 70:a8:b8:dd:aa:69:dc:2c:c9:d4:07:01:31:ac:0a:09:88:17: ee:b4:d8:41:12:b8:de:e7:d2:4c:37:6b:09:43:31:a1:af:b1: 4e:b0:6e:e5:b5:5f:89:4e:00:b1:6a:3f:5d:55:cd:b8:13:f4: ee:c0:d3:31:a9:13:86:b3:9b:a5:ac:8c:bb:d8:45:f0:08:2b: ac:d2:6f:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9I3oQLGtgx3UccIFHaLduMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4YTU2ZTJkNjNhYzVkYTliZWQzNWRhMDFjYmZhZDIyNWYw NGJlYjAwHhcNMjUxMjIwMTkwMTMzWhcNMjUxMjIxMTkwMTMzWjAzMTEwLwYDVQQD Eyg1ZmExODE2NjZlMmJkNmZiN2JhZDdiNDQ2MTBlNTU3ZjQ0Nzc5ZjdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoWBVNHxxEmCtQDtiYIFaeeBS3k3R ae7oUFMNLqNwwYq077AK6L2qCiPxgvG7dCbU74Skf81SNbCRCUx+3+DL9lMj8sbR LWjtz0Abodrxska7lE1Glnya9EwhQmRTvMuGdvX5tO+vfUkMScdhYNES3U5qMXFL svUMdHX5jZviZqFOtYSrC82qrcpIrLPr9qccjaVgaaebm0iA1NKXiIur5gKhOt9W xtArNg8uChenQ6oTFbCg/XwaLjJEfk5bF25iLjfqkso7XHCdhsHzwO5QY4rUsZAJ KOJFYleqKqrqZywzwTDUbsuWvcWp5J2ngj+j0V1IgXGPOqpVfX1r+cqXgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF+hgWZuK9b7e617RGEOVX9Ed59/MB8GA1UdIwQY MBaAFNilbi1jrF2pvtNdoBy/rSJfBL6wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMktWdUxXT3NYYW0tMDEyZ0hMLXRJbDhFdnJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC83NDE3N2MtNWUzYi00ODM2LTg4Njct ZThkNDdiYmEyNWJmLzEvMktWdUxXT3NYYW0tMDEyZ0hMLXRJbDhFdnJBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC83NDE3N2MtNWUzYi00ODM2LTg4NjctZThkNDdiYmEyNWJm LzEvMktWdUxXT3NYYW0tMDEyZ0hMLXRJbDhFdnJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgep4d4gV x4CqldtnoaVGiQwznjUT/Qaq2nWICl/yKoiC5WZJrlRrzkcIOEjO2wdIRSRBGmdF KrteacaHyY0USLOzWGeEMv0zOw3j949xMZ1bhXRNBZi7T6bK8ZElHd8CTBeGFvtd E1BDnTvDpOJcaaUkSw29swfh6BG60Mv9Vx2/OZF89Wc5x00wSjN3PAAb9TdcYKS4 JRNu6Ked7LpV0RCSbT5ZG5I39TVgrdxqxG03vAMEcKi43app3CzJ1AcBMawKCYgX 7rTYQRK43ufSTDdrCUMxoa+xTrBu5bVfiU4AsWo/XVXNuBP07sDTMakThrObpayM u9hF8AgrrNJvwA== -----END CERTIFICATE-----Generated at Sun Dec 21 02:46:03 2025 by rpki-client