This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/aae17f-c35b-407c-896b-7e57691bbed9/1/214_2Taim0KaFIK070HDJuKTfSo.mft File: 214_2Taim0KaFIK070HDJuKTfSo.mft (raw, json) Hash identifier: c62qefB73EVxa8SnHdDEKeDeDokoGrEEMAAF6f98nqA= Subject key identifier: CE:13:05:67:CF:8F:06:5C:57:EA:9C:4E:D8:A4:D4:E4:A2:7A:30:D6 Authority key identifier: DB:5E:3F:D9:36:A2:9B:42:9A:14:82:B4:EF:41:C3:26:E2:93:7D:2A Certificate issuer: /CN=db5e3fd936a29b429a1482b4ef41c326e2937d2a Certificate serial: 019B299C43810B5CFE44D9D57677F1A67198 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/214_2Taim0KaFIK070HDJuKTfSo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/aae17f-c35b-407c-896b-7e57691bbed9/1/214_2Taim0KaFIK070HDJuKTfSo.mft Manifest number: 177B Signing time: Wed 17 Dec 2025 00:01:05 +0000 Manifest this update: Wed 17 Dec 2025 00:01:05 +0000 Manifest next update: Thu 18 Dec 2025 00:01:05 +0000 Files and hashes: 1: 214_2Taim0KaFIK070HDJuKTfSo.crl (hash: J6MtMKBS2axbkKFpmQq6QN0Gpfxcqc8W0xMEZlLEsks=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/aae17f-c35b-407c-896b-7e57691bbed9/1/214_2Taim0KaFIK070HDJuKTfSo.crl rsync://rpki.ripe.net/repository/DEFAULT/90/aae17f-c35b-407c-896b-7e57691bbed9/1/214_2Taim0KaFIK070HDJuKTfSo.mft rsync://rpki.ripe.net/repository/DEFAULT/214_2Taim0KaFIK070HDJuKTfSo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 19:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:29:9c:43:81:0b:5c:fe:44:d9:d5:76:77:f1:a6:71:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db5e3fd936a29b429a1482b4ef41c326e2937d2a Validity Not Before: Dec 17 00:01:05 2025 GMT Not After : Dec 18 00:01:05 2025 GMT Subject: CN=ce130567cf8f065c57ea9c4ed8a4d4e4a27a30d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2e:52:6f:99:3e:dd:e1:f9:05:5a:17:fb:be: b6:16:e4:02:cc:ef:1d:a4:c9:83:01:e5:c5:29:ae: 25:93:96:15:f6:6e:26:64:b1:39:1f:10:43:97:a0: de:0e:1e:77:b1:84:f4:32:23:c4:73:23:58:0d:66: 66:b2:fa:b9:c2:00:00:25:90:78:7a:45:b0:8f:08: 5b:14:e0:80:43:34:19:a2:c1:e6:cf:2b:b7:45:7a: a5:f9:c6:bf:42:a4:4b:a7:7b:37:ed:5c:0c:bb:d9: f1:5e:f3:6d:31:eb:07:19:a9:3f:04:b1:2f:d1:ed: 36:94:72:b9:d4:8f:a0:3d:aa:ef:5f:d4:a8:5c:40: bc:6a:d8:46:5a:17:20:e8:9a:41:7f:1a:60:41:09: 19:0b:bc:a2:02:80:87:01:aa:3e:2b:59:12:42:26: 1e:9e:e4:ec:8e:63:16:12:bb:68:0c:37:6c:36:db: 60:63:b5:f3:f8:3c:dd:d0:dc:f1:bf:d4:50:bd:42: d8:5c:96:74:f5:e8:24:cc:1b:91:34:3d:01:77:73: 22:e6:7f:50:22:b2:48:5b:57:cc:73:d0:97:38:a8: 7e:28:86:d0:45:81:28:36:66:68:c3:51:4c:e1:e4: 45:f4:63:3d:e6:c8:1e:8c:7e:86:9e:85:56:ff:75: 1e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:13:05:67:CF:8F:06:5C:57:EA:9C:4E:D8:A4:D4:E4:A2:7A:30:D6 X509v3 Authority Key Identifier: keyid:DB:5E:3F:D9:36:A2:9B:42:9A:14:82:B4:EF:41:C3:26:E2:93:7D:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/214_2Taim0KaFIK070HDJuKTfSo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/aae17f-c35b-407c-896b-7e57691bbed9/1/214_2Taim0KaFIK070HDJuKTfSo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/aae17f-c35b-407c-896b-7e57691bbed9/1/214_2Taim0KaFIK070HDJuKTfSo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:06:f9:78:b2:5e:12:dd:93:dd:a5:a9:7a:1d:71:a7:89:b5: 35:af:d4:4c:98:71:26:24:fe:a4:c0:11:73:10:81:01:2c:8d: b2:4d:bc:97:99:01:97:83:50:e5:4f:ce:5f:4a:6f:41:f5:02: 84:6d:c1:93:c8:57:18:7f:92:82:fa:b6:dd:bf:99:c1:ba:c3: 8a:9d:26:6b:b2:fd:48:cd:95:1c:e9:28:2b:b2:16:e4:7f:49: 5a:cd:6f:dd:dc:d1:69:22:2c:b5:b6:b9:e0:83:72:3f:17:88: a3:21:b6:df:36:5d:62:4f:d5:ec:36:c1:c8:c3:67:70:81:24: 4a:e7:9b:9a:d5:a0:b2:ca:12:6e:0b:1f:c6:48:ac:e2:28:7f: 95:de:d9:7d:c7:f4:b7:7a:d8:4c:b2:da:de:af:8c:3f:3a:85: ad:b7:75:b8:1a:ce:fd:fc:c3:66:ca:0c:e1:a4:e5:5e:dc:1c: 3e:0e:66:77:01:03:22:19:12:f7:83:03:e7:5c:53:06:bc:c8: 7b:48:14:e9:aa:83:52:f8:65:56:6b:00:2f:26:e1:39:fb:e6: b4:15:84:f3:47:bc:e7:a1:b5:30:8d:a4:b0:0e:a6:a0:30:3e: f9:98:90:36:18:f4:8d:89:41:0c:8c:31:95:bc:ac:02:b5:aa: 92:e2:05:70 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZspnEOBC1z+RNnVdnfxpnGYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiNWUzZmQ5MzZhMjliNDI5YTE0ODJiNGVmNDFjMzI2ZTI5 MzdkMmEwHhcNMjUxMjE3MDAwMTA1WhcNMjUxMjE4MDAwMTA1WjAzMTEwLwYDVQQD EyhjZTEzMDU2N2NmOGYwNjVjNTdlYTljNGVkOGE0ZDRlNGEyN2EzMGQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyi5Sb5k+3eH5BVoX+762FuQCzO8d pMmDAeXFKa4lk5YV9m4mZLE5HxBDl6DeDh53sYT0MiPEcyNYDWZmsvq5wgAAJZB4 ekWwjwhbFOCAQzQZosHmzyu3RXql+ca/QqRLp3s37VwMu9nxXvNtMesHGak/BLEv 0e02lHK51I+gParvX9SoXEC8athGWhcg6JpBfxpgQQkZC7yiAoCHAao+K1kSQiYe nuTsjmMWErtoDDdsNttgY7Xz+Dzd0Nzxv9RQvULYXJZ09egkzBuRND0Bd3Mi5n9Q IrJIW1fMc9CXOKh+KIbQRYEoNmZow1FM4eRF9GM95sgejH6GnoVW/3UeoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM4TBWfPjwZcV+qcTtik1OSiejDWMB8GA1UdIwQY MBaAFNteP9k2optCmhSCtO9Bwybik30qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjE0XzJUYWltMEthRklLMDcwSERKdUtUZlNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC9hYWUxN2YtYzM1Yi00MDdjLTg5NmIt N2U1NzY5MWJiZWQ5LzEvMjE0XzJUYWltMEthRklLMDcwSERKdUtUZlNvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC9hYWUxN2YtYzM1Yi00MDdjLTg5NmItN2U1NzY5MWJiZWQ5 LzEvMjE0XzJUYWltMEthRklLMDcwSERKdUtUZlNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGwb5eLJe Et2T3aWpeh1xp4m1Na/UTJhxJiT+pMARcxCBASyNsk28l5kBl4NQ5U/OX0pvQfUC hG3Bk8hXGH+Sgvq23b+ZwbrDip0ma7L9SM2VHOkoK7IW5H9JWs1v3dzRaSIstba5 4INyPxeIoyG23zZdYk/V7DbByMNncIEkSuebmtWgssoSbgsfxkis4ih/ld7Zfcf0 t3rYTLLa3q+MPzqFrbd1uBrO/fzDZsoM4aTlXtwcPg5mdwEDIhkS94MD51xTBrzI e0gU6aqDUvhlVmsALybhOfvmtBWE80e856G1MI2ksA6moDA++ZiQNhj0jYlBDIwx lbysArWqkuIFcA== -----END CERTIFICATE-----Generated at Wed Dec 17 03:45:36 2025 by rpki-client