This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.mft File: 2ilr0AMdba2mxzBzYI89EeRFzkQ.mft (raw, json) Hash identifier: pvQSNx9wR3g8f7ZuCjjl1GYbUD/Nuim85jT78gTEBIE= Subject key identifier: 5A:A2:E2:EF:85:AB:D5:F4:52:10:7F:A4:BF:CD:B8:D0:64:EC:E1:D4 Authority key identifier: DA:29:6B:D0:03:1D:6D:AD:A6:C7:30:73:60:8F:3D:11:E4:45:CE:44 Certificate issuer: /CN=da296bd0031d6dada6c73073608f3d11e445ce44 Certificate serial: 019B10142C4E60F7D88C451FD3B5343AD27F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ilr0AMdba2mxzBzYI89EeRFzkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.mft Manifest number: 05B3 Signing time: Fri 12 Dec 2025 01:01:56 +0000 Manifest this update: Fri 12 Dec 2025 01:01:56 +0000 Manifest next update: Sat 13 Dec 2025 01:01:56 +0000 Files and hashes: 1: 2ilr0AMdba2mxzBzYI89EeRFzkQ.crl (hash: SfOnda8W3/+JgNb8yTaaW4j8LbXbKL2XyK1COpD+7/Y=) 2: xbFh-XL0EOh1euSo-ddC7jaGUKM.roa (hash: 8IT/bBcEgFQE8EaggOanI6nAulFvf6rnXMDUQLI1njI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/2ilr0AMdba2mxzBzYI89EeRFzkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:14:2c:4e:60:f7:d8:8c:45:1f:d3:b5:34:3a:d2:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da296bd0031d6dada6c73073608f3d11e445ce44 Validity Not Before: Dec 12 01:01:56 2025 GMT Not After : Dec 13 01:01:56 2025 GMT Subject: CN=5aa2e2ef85abd5f452107fa4bfcdb8d064ece1d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b0:8b:47:e6:c4:76:71:37:2b:67:bb:9e:a9: ae:4e:cc:bc:91:cb:aa:77:3f:78:5c:0c:77:c0:d9: ce:66:60:12:fc:ec:78:2d:b7:a5:34:b1:ce:24:2b: 2e:94:6b:c0:56:ea:b0:ae:47:d4:f4:f2:75:a8:b1: 41:85:eb:a0:ec:6d:2d:cb:1b:28:9d:1b:43:93:76: 1b:6a:9d:7d:ff:25:04:0e:d6:87:0c:76:ef:a9:75: 78:c9:87:a3:b4:f6:04:90:52:a1:8e:1a:f1:76:27: da:93:fc:77:22:af:1b:87:55:a4:d6:32:9a:53:87: d6:20:84:5b:41:58:e8:c7:df:db:b0:a5:14:a1:a4: 2e:f9:d0:d7:ec:22:34:70:b6:10:bc:d4:ce:5b:9a: 4f:97:2a:01:cd:1b:4b:7e:74:30:3e:cb:f6:83:77: 32:79:96:08:5d:89:40:dd:fa:51:d5:ec:c6:4d:92: 0a:93:16:16:c6:52:b6:3a:b2:0d:b1:15:63:4c:71: 2a:a4:b8:0e:ac:c4:34:c5:18:5d:ed:2d:33:df:d7: d6:01:c0:2b:b7:61:8e:bc:46:88:b5:54:24:46:37: 5b:35:d0:a8:6f:c1:2d:11:39:93:61:ea:30:e0:2b: 53:c6:be:13:ce:0e:7c:7e:19:04:12:e2:f1:95:ca: cf:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:A2:E2:EF:85:AB:D5:F4:52:10:7F:A4:BF:CD:B8:D0:64:EC:E1:D4 X509v3 Authority Key Identifier: keyid:DA:29:6B:D0:03:1D:6D:AD:A6:C7:30:73:60:8F:3D:11:E4:45:CE:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ilr0AMdba2mxzBzYI89EeRFzkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:55:eb:41:1b:38:50:54:84:ca:74:7f:e5:07:f1:80:c0:7b: 3b:f3:e3:12:1e:c7:9a:b7:a8:a2:8f:08:b7:8d:84:a0:ef:8b: 6d:9c:11:c3:07:6a:20:02:37:a1:6d:44:f2:a0:a0:b5:92:18: 06:fe:46:29:e6:b3:08:dc:0c:7a:f7:2c:34:65:28:ff:e9:1c: 8e:e2:a7:d4:e4:7c:63:0f:17:9a:cb:ad:34:3c:f5:68:38:0a: 01:64:94:59:99:4e:21:43:e4:04:c2:8b:52:62:aa:58:93:ce: d4:3f:fe:a1:93:a2:73:ea:88:92:57:8b:a9:43:e3:45:f8:cd: 72:22:78:aa:20:ac:7b:b0:1d:25:6f:f6:fd:0a:63:75:19:8b: d0:4f:b9:e3:f7:3c:2f:3e:ac:e6:13:2d:bb:e5:b4:f0:d3:68: 81:f0:df:e2:11:0d:02:23:2a:b1:a5:3f:1d:ac:e1:b5:c7:d4: 99:98:0b:ec:c6:8a:fa:67:a0:39:8c:3a:78:63:ab:ab:bc:ae: cc:c8:ae:18:9c:ff:33:4a:82:92:08:45:a8:20:aa:22:57:5a: 29:de:56:ff:d6:81:c6:3c:4a:e4:26:45:f3:f5:d5:c0:81:bb: 40:1e:7b:2b:e2:fe:d4:12:fa:c7:86:70:cf:39:f2:4c:a6:b9: 9d:30:7c:1a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQFCxOYPfYjEUf07U0OtJ/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhMjk2YmQwMDMxZDZkYWRhNmM3MzA3MzYwOGYzZDExZTQ0 NWNlNDQwHhcNMjUxMjEyMDEwMTU2WhcNMjUxMjEzMDEwMTU2WjAzMTEwLwYDVQQD Eyg1YWEyZTJlZjg1YWJkNWY0NTIxMDdmYTRiZmNkYjhkMDY0ZWNlMWQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAobCLR+bEdnE3K2e7nqmuTsy8kcuq dz94XAx3wNnOZmAS/Ox4LbelNLHOJCsulGvAVuqwrkfU9PJ1qLFBheug7G0tyxso nRtDk3Ybap19/yUEDtaHDHbvqXV4yYejtPYEkFKhjhrxdifak/x3Iq8bh1Wk1jKa U4fWIIRbQVjox9/bsKUUoaQu+dDX7CI0cLYQvNTOW5pPlyoBzRtLfnQwPsv2g3cy eZYIXYlA3fpR1ezGTZIKkxYWxlK2OrINsRVjTHEqpLgOrMQ0xRhd7S0z39fWAcAr t2GOvEaItVQkRjdbNdCob8EtETmTYeow4CtTxr4Tzg58fhkEEuLxlcrPqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFqi4u+Fq9X0UhB/pL/NuNBk7OHUMB8GA1UdIwQY MBaAFNopa9ADHW2tpscwc2CPPRHkRc5EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmlscjBBTWRiYTJteHpCellJODlFZVJGemtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC8xYWFmYTAtMDI3OC00ZGQ2LTg4MDct NTcyNmMyYjUxNDhkLzEvMmlscjBBTWRiYTJteHpCellJODlFZVJGemtRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC8xYWFmYTAtMDI3OC00ZGQ2LTg4MDctNTcyNmMyYjUxNDhk LzEvMmlscjBBTWRiYTJteHpCellJODlFZVJGemtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVlXrQRs4 UFSEynR/5QfxgMB7O/PjEh7Hmreooo8It42EoO+LbZwRwwdqIAI3oW1E8qCgtZIY Bv5GKeazCNwMevcsNGUo/+kcjuKn1OR8Yw8XmsutNDz1aDgKAWSUWZlOIUPkBMKL UmKqWJPO1D/+oZOic+qIkleLqUPjRfjNciJ4qiCse7AdJW/2/QpjdRmL0E+54/c8 Lz6s5hMtu+W08NNogfDf4hENAiMqsaU/HazhtcfUmZgL7MaK+megOYw6eGOrq7yu zMiuGJz/M0qCkghFqCCqIldaKd5W/9aBxjxK5CZF8/XVwIG7QB57K+L+1BL6x4Zw zznyTKa5nTB8Gg== -----END CERTIFICATE-----Generated at Fri Dec 12 02:39:13 2025 by rpki-client