This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft File: Us2aZRLb8lpfGbgn16LH4iou6N0.mft (raw, json) Hash identifier: k+BenrpI+SEjMI/e2M7Ilw63AGUQr6h8Rqgwesq68gs= Subject key identifier: 14:02:0D:B0:38:38:75:12:7F:29:D6:67:54:8E:B7:C1:F4:31:19:D3 Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Certificate serial: 019B0E926CC7E213AC3258EDBCBDC73AEB5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft Manifest number: 0A33 Signing time: Thu 11 Dec 2025 18:00:35 +0000 Manifest this update: Thu 11 Dec 2025 18:00:35 +0000 Manifest next update: Fri 12 Dec 2025 18:00:35 +0000 Files and hashes: 1: 1-fNwUFlO6fD6i3f_1SheL5UVW0g.roa (hash: 32fP/D02b4404J0+5cPNK59TuFMj1f7NhGygcv25yuI=) 2: 1FJeVgZId139knZgMTYZmAnwLDs.roa (hash: VPpFwlCkzXISful3TlM5ZgodfCcJYCCPoZqn50dkuRo=) 3: BaoLehfzYM1vkBF2LqjuxCVGppw.roa (hash: wk0ycjZln2vcCwTCcN83YoDpaabATIZRlFvsl/RZ67U=) 4: ONKzBcZlLaDvBXj0ChQkq0AcBAo.roa (hash: xt6U3+zGv+p5+qldoLqBIRpHRAbFRfEFMt0N2Y4HxPA=) 5: QBzq9SwT5Mj7Gipr9Se8Luh44tY.roa (hash: G8hbbzFis0gYCX0QYtBRD4Pqznb+xerkkNt98SZq2jU=) 6: Us2aZRLb8lpfGbgn16LH4iou6N0.crl (hash: 058XaE4HakgygL9WgnI+tJlIjjqsoZ8SmlpouXtTT84=) 7: W8Ti_dXcYalIUeRHiuN7_Pq4Q6k.roa (hash: 4QiUW7JIueqmFCn96lHxs3k9V/e0E2VEpe0b6/Dk6p8=) 8: XmP5gd5RMoI2I-3CuFjmsoadU-A.roa (hash: yTuyaNUFHzFeSHibSr05GdVIbx2NHYDZL76zx1zzku8=) 9: dLmCIA0WBqPvZ0tgv6iuNeMWI4k.roa (hash: YicG4lKEA73qVApeIKJhpm23B3p/oY3KjALkj9qrn/g=) 10: dxXbgNQXIcZf-wRxxpxKbsjTAhQ.roa (hash: 7Q2urw+eTsZ+V/fuq0yE3c5anzy795+Z4CJRGjeU6Hk=) 11: fYtRnjgkdcOcs2OTSoOyF7XeMYQ.roa (hash: BGM9RaFK/cZe9M2jNupJdVSdkow5uJUKCy6zw6S9pgQ=) 12: irPx7LPWmaDBY-_AbmGw3WFEhaQ.roa (hash: jDb6rbhv8bZIGpVJLz4cPKbnagFjHpigNY2MzVPUyPM=) 13: obpj78Cj4h6AqPChG513fVXXoMs.roa (hash: xhWt95TQUSf4jmhliYXpfzfmunJAIuxitDmmO5ohsLY=) 14: peFNs9o1tsBGwnwboXKeedD2GlM.roa (hash: Dmic12i1kcUbMMXMNmS8BrjxjQvM2y0e2GWo+yQ4WH0=) 15: vQdExQLdiUm5HPW2ned19BID9dw.roa (hash: 8R/4iMjA1jkjQuW17H+B8/zEgk5IKMSv1XvcdZ37ua0=) 16: zAnPUHrCJSV18x-mMc7-hNiZjaY.roa (hash: LG3Y0utc8dwpuU3oGtbD8u6QKi2Bv7dHexHJeWNV5Hk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:92:6c:c7:e2:13:ac:32:58:ed:bc:bd:c7:3a:eb:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Validity Not Before: Dec 11 18:00:35 2025 GMT Not After : Dec 12 18:00:35 2025 GMT Subject: CN=14020db0383875127f29d667548eb7c1f43119d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:43:01:e7:de:27:ac:19:42:60:6f:cf:3f:df: a9:57:ed:7b:54:41:84:1f:f9:64:bc:02:b7:95:c0: 47:ec:7d:9a:8c:98:2c:93:68:8f:9c:3c:41:1f:ac: b8:c3:11:cc:81:58:0f:6b:7e:17:e7:53:56:81:91: 1c:2b:ea:f8:1f:0e:4a:c7:f9:95:b2:35:b8:6a:41: fe:44:d5:eb:7d:c9:ee:52:d4:0a:2c:d8:02:fe:39: ef:6e:f1:71:ec:79:07:34:a5:9e:27:5f:49:89:60: 8a:65:fe:ca:4e:f0:2a:06:59:f1:05:e8:f5:52:c4: 8c:fe:e8:e5:34:2f:35:a3:34:14:03:03:7d:a8:56: 2a:12:74:7e:2e:c4:ae:7f:e8:7f:ae:c6:48:29:4f: 98:8e:81:21:f9:da:e9:d4:c0:47:ed:61:fe:d9:6a: 49:03:3f:bd:68:67:6f:9e:cf:f1:4b:56:ca:cc:8b: 01:fe:13:61:cc:e7:c9:51:7d:ad:bf:d3:07:34:36: f5:fa:55:35:3c:06:35:64:dc:8a:40:0e:4a:36:da: d7:37:6c:e6:bb:b2:be:9a:8a:1f:d4:d6:75:a8:d0: 37:ff:d7:89:4b:53:1f:9d:cf:59:d4:4d:e0:b3:5a: a6:57:c4:c3:ea:9e:51:22:94:68:46:d2:12:d1:96: 56:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:02:0D:B0:38:38:75:12:7F:29:D6:67:54:8E:B7:C1:F4:31:19:D3 X509v3 Authority Key Identifier: keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:87:81:e2:b1:a0:a5:9b:52:25:b3:ae:93:3a:fb:ad:c8:9a: f9:5a:37:86:f7:03:60:1a:5a:c9:70:db:0e:d7:88:38:7b:3a: b2:67:ea:0e:dd:16:d9:90:04:eb:f5:c8:18:b4:d9:8b:4d:ab: 5b:27:7c:53:3a:05:8c:d9:a7:76:bb:af:55:86:55:0c:38:62: a6:c2:35:19:e4:bc:a3:aa:2f:bd:30:ba:2c:69:5a:7b:b3:6b: c7:ee:0e:a0:c3:aa:59:fb:fb:c0:5e:c0:a0:35:d8:b6:76:34: d6:2d:cd:fd:03:cb:ad:8b:81:84:32:b9:0f:3d:fe:d9:88:05: 8c:e4:f5:3b:6f:13:8b:40:70:70:09:e7:14:66:21:4d:74:2f: 9c:7f:2b:d8:89:97:cf:9b:0f:f7:d9:f5:ef:60:59:16:1f:e9: 67:26:c3:f9:b4:3d:0c:ca:6f:5a:bb:69:9b:27:3f:22:d3:26: 83:c6:38:56:ef:d5:29:36:34:3a:96:3a:4c:81:a8:4a:11:c8: ff:73:01:d1:e7:b8:ed:cb:a3:94:7c:57:e9:b1:a3:a1:ca:d0: ee:c6:f1:37:ad:84:05:1b:dd:bf:7d:3a:06:88:08:ff:11:85: 0a:bc:63:60:44:3b:c2:76:72:93:42:19:cb:27:1c:62:3f:ee: c7:c7:6c:54 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOkmzH4hOsMljtvL3HOutaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyY2Q5YTY1MTJkYmYyNWE1ZjE5YjgyN2Q3YTJjN2UyMmEy ZWU4ZGQwHhcNMjUxMjExMTgwMDM1WhcNMjUxMjEyMTgwMDM1WjAzMTEwLwYDVQQD EygxNDAyMGRiMDM4Mzg3NTEyN2YyOWQ2Njc1NDhlYjdjMWY0MzExOWQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAukMB594nrBlCYG/PP9+pV+17VEGE H/lkvAK3lcBH7H2ajJgsk2iPnDxBH6y4wxHMgVgPa34X51NWgZEcK+r4Hw5Kx/mV sjW4akH+RNXrfcnuUtQKLNgC/jnvbvFx7HkHNKWeJ19JiWCKZf7KTvAqBlnxBej1 UsSM/ujlNC81ozQUAwN9qFYqEnR+LsSuf+h/rsZIKU+YjoEh+drp1MBH7WH+2WpJ Az+9aGdvns/xS1bKzIsB/hNhzOfJUX2tv9MHNDb1+lU1PAY1ZNyKQA5KNtrXN2zm u7K+moof1NZ1qNA3/9eJS1Mfnc9Z1E3gs1qmV8TD6p5RIpRoRtIS0ZZW3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBQCDbA4OHUSfynWZ1SOt8H0MRnTMB8GA1UdIwQY MBaAFFLNmmUS2/JaXxm4J9eix+IqLujdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUt Y2NhMzc2MDZiZjE4LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUtY2NhMzc2MDZiZjE4 LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASoeB4rGg pZtSJbOukzr7rcia+Vo3hvcDYBpayXDbDteIOHs6smfqDt0W2ZAE6/XIGLTZi02r Wyd8UzoFjNmndruvVYZVDDhipsI1GeS8o6ovvTC6LGlae7Nrx+4OoMOqWfv7wF7A oDXYtnY01i3N/QPLrYuBhDK5Dz3+2YgFjOT1O28Ti0BwcAnnFGYhTXQvnH8r2ImX z5sP99n172BZFh/pZybD+bQ9DMpvWrtpmyc/ItMmg8Y4Vu/VKTY0OpY6TIGoShHI /3MB0ee47cujlHxX6bGjocrQ7sbxN62EBRvdv306BogI/xGFCrxjYEQ7wnZyk0IZ yyccYj/ux8dsVA== -----END CERTIFICATE-----Generated at Thu Dec 11 23:57:44 2025 by rpki-client