This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/2rsdAWAvFSERMu1IGFqZs2IlEX8.mft File: 2rsdAWAvFSERMu1IGFqZs2IlEX8.mft (raw, json) Hash identifier: 71wuFYbA333EpjPtNjGWDGwvVSL/ipumJ/pSobNEPAg= Subject key identifier: 1C:65:42:93:68:B2:1E:D1:53:5F:2F:E5:AF:5B:C9:8F:11:06:A5:E3 Authority key identifier: DA:BB:1D:01:60:2F:15:21:11:32:ED:48:18:5A:99:B3:62:25:11:7F Certificate issuer: /CN=dabb1d01602f15211132ed48185a99b36225117f Certificate serial: 019B0EC9A806CAC8311164DAC65F2245257E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2rsdAWAvFSERMu1IGFqZs2IlEX8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/2rsdAWAvFSERMu1IGFqZs2IlEX8.mft Manifest number: 0FDB Signing time: Thu 11 Dec 2025 19:00:55 +0000 Manifest this update: Thu 11 Dec 2025 19:00:55 +0000 Manifest next update: Fri 12 Dec 2025 19:00:55 +0000 Files and hashes: 1: 2rsdAWAvFSERMu1IGFqZs2IlEX8.crl (hash: u4rgGViFY/DLbDEHXezFlWNKDVPEp0baCdv4sdfDvAQ=) 2: 787WsGeG_PtOH4NifJLvSRcdjKE.roa (hash: LXK7T54I67xPwZvLYoiPIC1z9h7T9ebkz0cAqwvP0HU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/2rsdAWAvFSERMu1IGFqZs2IlEX8.crl rsync://rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/2rsdAWAvFSERMu1IGFqZs2IlEX8.mft rsync://rpki.ripe.net/repository/DEFAULT/2rsdAWAvFSERMu1IGFqZs2IlEX8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:c9:a8:06:ca:c8:31:11:64:da:c6:5f:22:45:25:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dabb1d01602f15211132ed48185a99b36225117f Validity Not Before: Dec 11 19:00:55 2025 GMT Not After : Dec 12 19:00:55 2025 GMT Subject: CN=1c65429368b21ed1535f2fe5af5bc98f1106a5e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:74:31:bf:8e:46:37:f5:d0:ce:a5:1f:01:56: f0:31:ba:28:11:51:63:f2:fe:56:cf:ba:7e:6c:2c: 62:98:8b:c8:7e:b1:3e:8a:be:36:aa:67:a1:f1:ae: 31:32:77:85:71:e5:2b:9b:b2:18:68:34:8e:61:25: e9:c9:b2:2f:1a:12:12:7b:fd:3b:70:79:f3:5f:ac: a0:a8:94:61:2a:ed:3a:9d:de:7e:a0:17:73:5d:48: a8:ce:c9:61:4b:9e:42:d0:d7:5d:ef:d3:74:fc:60: 1b:16:07:0a:fc:42:04:7e:a1:4c:5b:0d:43:a1:f1: 7a:bd:a4:8a:0b:69:63:08:ee:fa:4b:93:b8:e0:9b: ba:a8:39:94:64:28:d3:75:ec:ec:41:a4:a3:d9:74: 68:7c:c6:5d:ae:05:4d:4a:38:e9:60:8f:38:f9:3c: ef:86:7b:23:3e:6d:77:77:96:06:26:a2:df:0d:9f: 86:e1:db:ac:cc:3a:47:d9:69:51:3c:8f:db:9a:7d: 04:e3:05:a8:d1:f8:8b:7d:3f:d9:6e:69:60:98:82: b7:16:71:df:ab:45:9a:d2:2a:7e:1a:45:e3:3e:e7: 6f:d4:3c:c3:06:7b:8f:8f:7b:5e:c0:b0:15:aa:16: c1:de:dd:f6:b6:dd:d7:91:18:5b:8f:60:78:12:5f: 06:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:65:42:93:68:B2:1E:D1:53:5F:2F:E5:AF:5B:C9:8F:11:06:A5:E3 X509v3 Authority Key Identifier: keyid:DA:BB:1D:01:60:2F:15:21:11:32:ED:48:18:5A:99:B3:62:25:11:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2rsdAWAvFSERMu1IGFqZs2IlEX8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/2rsdAWAvFSERMu1IGFqZs2IlEX8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/2rsdAWAvFSERMu1IGFqZs2IlEX8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:e2:e2:9c:24:06:6f:41:11:ee:bf:d5:bf:ec:9d:00:32:5b: c6:81:b4:f6:35:7c:32:78:fc:f1:60:d9:62:5e:7c:21:cc:2e: 0d:3b:b5:67:0f:d1:62:3f:24:f1:6a:60:e0:03:54:93:d1:47: 2d:b1:c0:65:fb:80:0a:62:78:74:3b:2f:ea:14:de:25:8c:9c: 72:83:2d:fd:5c:85:99:55:d0:8c:72:6e:1e:c6:f4:7c:7d:b3: 8d:32:76:24:8f:83:8c:60:3e:50:2c:3f:ae:ed:3e:61:a7:90: 36:11:97:3c:66:d9:80:22:bb:a3:31:ab:4b:08:8d:96:b3:b8: 8a:05:0b:6e:51:bd:9d:0e:21:ac:92:37:70:a9:df:2a:92:af: 9a:53:d3:65:6c:3b:9a:27:19:a8:a6:e3:21:f5:b3:db:b9:9c: da:3e:ad:ed:4b:d7:a1:d4:c8:70:8c:cf:f4:83:96:63:fd:bd: b9:4b:10:46:2b:2c:2b:ed:03:25:0d:9a:73:2b:b3:87:9e:b0: 21:16:23:0c:ff:49:35:ba:d2:41:ef:aa:35:60:27:af:49:b6: 25:ff:40:e3:d0:e2:d0:fc:57:69:87:16:27:fe:fc:48:60:07: 6a:c9:dd:21:29:66:14:7b:8c:f2:b4:4a:14:c6:cd:d9:00:dd: ac:1e:85:bd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOyagGysgxEWTaxl8iRSV+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhYmIxZDAxNjAyZjE1MjExMTMyZWQ0ODE4NWE5OWIzNjIy NTExN2YwHhcNMjUxMjExMTkwMDU1WhcNMjUxMjEyMTkwMDU1WjAzMTEwLwYDVQQD EygxYzY1NDI5MzY4YjIxZWQxNTM1ZjJmZTVhZjViYzk4ZjExMDZhNWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoXQxv45GN/XQzqUfAVbwMbooEVFj 8v5Wz7p+bCximIvIfrE+ir42qmeh8a4xMneFceUrm7IYaDSOYSXpybIvGhISe/07 cHnzX6ygqJRhKu06nd5+oBdzXUiozslhS55C0Ndd79N0/GAbFgcK/EIEfqFMWw1D ofF6vaSKC2ljCO76S5O44Ju6qDmUZCjTdezsQaSj2XRofMZdrgVNSjjpYI84+Tzv hnsjPm13d5YGJqLfDZ+G4duszDpH2WlRPI/bmn0E4wWo0fiLfT/ZbmlgmIK3FnHf q0Wa0ip+GkXjPudv1DzDBnuPj3tewLAVqhbB3t32tt3XkRhbj2B4El8GIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBxlQpNosh7RU18v5a9byY8RBqXjMB8GA1UdIwQY MBaAFNq7HQFgLxUhETLtSBhambNiJRF/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnJzZEFXQXZGU0VSTXUxSUdGcVpzMklsRVg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS85MzMwYmYtYWI2Yy00NDJjLWIzYjUt NmEzOWQwZWY3MmMwLzEvMnJzZEFXQXZGU0VSTXUxSUdGcVpzMklsRVg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS85MzMwYmYtYWI2Yy00NDJjLWIzYjUtNmEzOWQwZWY3MmMw LzEvMnJzZEFXQXZGU0VSTXUxSUdGcVpzMklsRVg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgOLinCQG b0ER7r/Vv+ydADJbxoG09jV8Mnj88WDZYl58IcwuDTu1Zw/RYj8k8Wpg4ANUk9FH LbHAZfuACmJ4dDsv6hTeJYyccoMt/VyFmVXQjHJuHsb0fH2zjTJ2JI+DjGA+UCw/ ru0+YaeQNhGXPGbZgCK7ozGrSwiNlrO4igULblG9nQ4hrJI3cKnfKpKvmlPTZWw7 micZqKbjIfWz27mc2j6t7UvXodTIcIzP9IOWY/29uUsQRissK+0DJQ2acyuzh56w IRYjDP9JNbrSQe+qNWAnr0m2Jf9A49Di0PxXaYcWJ/78SGAHasndISlmFHuM8rRK FMbN2QDdrB6FvQ== -----END CERTIFICATE-----Generated at Thu Dec 11 22:18:40 2025 by rpki-client