This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft File: 2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft (raw, json) Hash identifier: thuFsT+A7R3QSDo5Q1eN6x5PGXW/BAGyMziBFRGAWqI= Subject key identifier: 10:B0:E8:D5:3A:0F:78:EC:36:DD:AF:32:B5:79:CF:EE:D9:EA:14:2C Authority key identifier: DA:DD:D1:B6:36:FE:3D:F1:DF:3D:81:1F:64:45:83:31:2A:65:13:37 Certificate issuer: /CN=daddd1b636fe3df1df3d811f644583312a651337 Certificate serial: 019B19BCD9167CADDE6CE5BE342D3F45F904 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft Manifest number: 13DD Signing time: Sat 13 Dec 2025 22:02:45 +0000 Manifest this update: Sat 13 Dec 2025 22:02:45 +0000 Manifest next update: Sun 14 Dec 2025 22:02:45 +0000 Files and hashes: 1: 2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl (hash: 2atpA+GVBmmDM4YFKaO4Pw3BLdmOrF5UmlkMTGdCktY=) 2: Ayr05U3NKAd6mblS63pAVZbHnEI.roa (hash: PYCcEhQQfZIx55w6ukJcbUlLU5BAsDen0FIJwdgcRtk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:bc:d9:16:7c:ad:de:6c:e5:be:34:2d:3f:45:f9:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daddd1b636fe3df1df3d811f644583312a651337 Validity Not Before: Dec 13 22:02:45 2025 GMT Not After : Dec 14 22:02:45 2025 GMT Subject: CN=10b0e8d53a0f78ec36ddaf32b579cfeed9ea142c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:5e:68:61:9e:65:89:fb:05:0d:0b:5e:f6:08: b7:fd:40:db:e2:3d:25:7f:87:4e:45:1e:58:a0:8f: a9:47:b5:73:7b:48:61:38:16:0c:4b:bf:93:31:f2: 92:c0:d2:36:62:9a:3d:26:1d:5e:eb:85:89:cd:76: 3b:d1:e4:d4:7f:d5:dc:c7:20:ad:1f:60:1e:7e:af: da:c8:cd:09:3f:5b:52:5b:09:fd:fa:4d:50:76:34: f2:dc:0d:c1:ad:be:a7:50:75:89:a1:84:6b:f7:13: e3:40:fe:8e:8d:39:61:f7:b4:cc:31:21:aa:7c:5b: 60:01:94:e9:9d:ac:73:69:d2:0c:39:53:f1:39:10: 2c:ab:aa:75:7f:30:9b:ba:dd:19:b7:6b:ac:69:a5: 2e:f8:56:19:c6:4a:59:47:e9:b3:ae:90:1a:b5:7c: 74:72:2f:f5:c8:86:97:6c:c7:3a:15:77:0c:f1:0d: 53:64:c7:31:3c:69:57:6e:b2:c8:68:41:4d:e0:96: ca:dc:86:27:e1:97:70:19:f8:b1:93:2b:09:32:dc: 24:1c:e9:46:f9:85:bc:7e:b8:e4:ac:68:f8:05:56: b4:10:2b:9d:c6:98:e5:b8:78:ec:3a:d0:cf:df:c1: 25:2a:da:08:6e:ba:a2:bd:8b:92:1c:c9:25:12:1b: a0:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:B0:E8:D5:3A:0F:78:EC:36:DD:AF:32:B5:79:CF:EE:D9:EA:14:2C X509v3 Authority Key Identifier: keyid:DA:DD:D1:B6:36:FE:3D:F1:DF:3D:81:1F:64:45:83:31:2A:65:13:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:81:a0:66:f9:24:e3:46:5a:4a:9f:33:6c:8a:39:6c:9a:a4: 14:a2:a9:3d:fd:4d:a3:b4:e6:53:16:18:b4:02:5b:e0:46:0b: b6:de:b0:b7:99:cf:35:f2:41:95:18:d7:1e:83:56:e1:00:2c: 1a:f8:d0:dc:3b:b2:61:26:c0:43:e6:a6:12:c6:a9:79:30:3a: 01:8c:ab:d2:ba:19:e3:8c:60:6c:3a:2e:79:6f:d3:3b:f3:81: c1:c0:61:d5:ba:65:58:7e:85:a8:13:cc:33:2e:58:dc:f8:5f: 8d:23:7b:3d:8f:c1:d3:dd:fb:32:84:06:b1:f5:8e:52:de:4b: 09:77:1d:fa:62:38:da:71:54:d0:c7:3f:a9:fe:97:cb:95:c7: f9:23:83:02:08:6e:60:ca:ee:96:63:bf:94:bb:35:09:b1:75: dc:c6:dc:75:15:03:f1:ba:8d:8f:9e:31:bf:eb:ca:d7:e0:46: 1f:d8:8e:69:e9:4b:dc:6a:1c:58:68:8c:5f:60:d5:63:70:f1: e4:f8:5c:91:a2:c7:6d:e8:02:6b:ff:7b:e2:9a:af:87:74:31: cb:1f:6b:4a:d6:7f:51:c8:40:26:a8:8f:1e:f9:f4:50:3d:3a: 5b:85:08:d7:e7:7c:f1:e9:0a:56:2e:fb:c3:6e:46:73:a2:42: 5c:6b:33:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZvNkWfK3ebOW+NC0/RfkEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhZGRkMWI2MzZmZTNkZjFkZjNkODExZjY0NDU4MzMxMmE2 NTEzMzcwHhcNMjUxMjEzMjIwMjQ1WhcNMjUxMjE0MjIwMjQ1WjAzMTEwLwYDVQQD EygxMGIwZThkNTNhMGY3OGVjMzZkZGFmMzJiNTc5Y2ZlZWQ5ZWExNDJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArF5oYZ5lifsFDQte9gi3/UDb4j0l f4dORR5YoI+pR7Vze0hhOBYMS7+TMfKSwNI2Ypo9Jh1e64WJzXY70eTUf9XcxyCt H2Aefq/ayM0JP1tSWwn9+k1QdjTy3A3Brb6nUHWJoYRr9xPjQP6OjTlh97TMMSGq fFtgAZTpnaxzadIMOVPxORAsq6p1fzCbut0Zt2usaaUu+FYZxkpZR+mzrpAatXx0 ci/1yIaXbMc6FXcM8Q1TZMcxPGlXbrLIaEFN4JbK3IYn4ZdwGfixkysJMtwkHOlG +YW8frjkrGj4BVa0ECudxpjluHjsOtDP38ElKtoIbrqivYuSHMklEhugfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBCw6NU6D3jsNt2vMrV5z+7Z6hQsMB8GA1UdIwQY MBaAFNrd0bY2/j3x3z2BH2RFgzEqZRM3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnQzUnRqYi1QZkhmUFlFZlpFV0RNU3BsRXpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi80NjQzZDctMzdkNy00YjNjLWExYTUt NjMyY2U2N2MwODVhLzEvMnQzUnRqYi1QZkhmUFlFZlpFV0RNU3BsRXpjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi80NjQzZDctMzdkNy00YjNjLWExYTUtNjMyY2U2N2MwODVh LzEvMnQzUnRqYi1QZkhmUFlFZlpFV0RNU3BsRXpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl4GgZvkk 40ZaSp8zbIo5bJqkFKKpPf1No7TmUxYYtAJb4EYLtt6wt5nPNfJBlRjXHoNW4QAs GvjQ3DuyYSbAQ+amEsapeTA6AYyr0roZ44xgbDoueW/TO/OBwcBh1bplWH6FqBPM My5Y3PhfjSN7PY/B0937MoQGsfWOUt5LCXcd+mI42nFU0Mc/qf6Xy5XH+SODAghu YMrulmO/lLs1CbF13MbcdRUD8bqNj54xv+vK1+BGH9iOaelL3GocWGiMX2DVY3Dx 5PhckaLHbegCa/974pqvh3Qxyx9rStZ/UchAJqiPHvn0UD06W4UI1+d88ekKVi77 w25Gc6JCXGszRA== -----END CERTIFICATE-----Generated at Sun Dec 14 03:29:46 2025 by rpki-client