This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.mft File: m2JkjpE6NkDwMbY6a9krDijhOfs.mft (raw, json) Hash identifier: WTswK5leH3rfcU96EqObVFQ/hUKg4naz2vDs2v/EnH4= Subject key identifier: 7C:B8:12:BB:46:6B:87:EA:33:AC:FF:34:40:C8:F7:6B:E4:55:C2:6F Authority key identifier: 9B:62:64:8E:91:3A:36:40:F0:31:B6:3A:6B:D9:2B:0E:28:E1:39:FB Certificate issuer: /CN=9b62648e913a3640f031b63a6bd92b0e28e139fb Certificate serial: 019B5A88426A5B40F8BB3FD21B62F33FAB0E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m2JkjpE6NkDwMbY6a9krDijhOfs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.mft Manifest number: 0330 Signing time: Fri 26 Dec 2025 12:00:37 +0000 Manifest this update: Fri 26 Dec 2025 12:00:37 +0000 Manifest next update: Sat 27 Dec 2025 12:00:37 +0000 Files and hashes: 1: GFs318vhhs43UeJYStMCcJcloVE.roa (hash: W8/O6hKTgxLPwLzEgTm/PKRsS6eSZm8+16PIQciHYr8=) 2: m2JkjpE6NkDwMbY6a9krDijhOfs.crl (hash: MTBkOH7tRM9tVlzwwQju88TBgFRzctlw6ujftQudRHI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.mft rsync://rpki.ripe.net/repository/DEFAULT/m2JkjpE6NkDwMbY6a9krDijhOfs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:88:42:6a:5b:40:f8:bb:3f:d2:1b:62:f3:3f:ab:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9b62648e913a3640f031b63a6bd92b0e28e139fb Validity Not Before: Dec 26 12:00:37 2025 GMT Not After : Dec 27 12:00:37 2025 GMT Subject: CN=7cb812bb466b87ea33acff3440c8f76be455c26f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:bf:38:b1:84:76:e6:43:fd:89:16:ca:72:9c: 91:8f:be:e2:78:a0:4b:95:45:59:65:f7:d5:f3:55: 6d:3c:d0:4b:52:cf:d8:96:8c:40:49:cf:9d:38:31: 6a:5f:3b:d5:a6:55:b6:21:4d:d8:a2:48:3c:ee:c9: e2:9a:5b:6a:b8:ed:ee:d5:6f:1f:14:d8:77:97:1d: 14:67:51:c8:37:da:dc:f4:5b:03:b0:9e:e4:8d:60: ae:fa:4b:cd:a8:ff:76:27:13:c2:d2:c2:d5:be:61: e8:aa:5f:e9:ff:9f:44:6b:e2:c2:3b:af:c6:45:47: 0c:28:73:b1:4e:9a:65:d4:ee:ba:33:73:42:a1:42: 8b:28:d3:cd:d5:a7:06:32:99:9a:8d:76:98:68:3c: 9a:09:1e:62:3f:80:75:61:76:11:db:12:f0:67:fc: e2:d4:f3:78:ba:f9:7a:51:cb:e9:5e:ca:41:84:d6: c3:23:6f:a8:65:ec:59:7d:6c:ad:aa:ca:4d:18:54: 6f:54:a7:e6:5f:62:65:e5:ea:0c:a2:17:39:41:7a: 22:09:94:57:c9:95:3d:c3:fe:e4:67:b9:36:eb:98: a7:64:3d:a6:3a:f8:45:28:cb:2d:4a:4e:75:93:fd: 2e:07:25:b6:17:0d:bc:bc:d6:bd:c8:1f:47:9b:21: f4:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:B8:12:BB:46:6B:87:EA:33:AC:FF:34:40:C8:F7:6B:E4:55:C2:6F X509v3 Authority Key Identifier: keyid:9B:62:64:8E:91:3A:36:40:F0:31:B6:3A:6B:D9:2B:0E:28:E1:39:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m2JkjpE6NkDwMbY6a9krDijhOfs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:d8:86:c9:c7:9d:77:0f:77:54:2e:21:c1:4f:7e:b1:26:46: 81:b5:3a:5c:9a:a1:9f:5c:0e:db:59:9c:37:6a:21:39:f7:6a: 38:e8:b9:a9:cf:06:71:04:c3:66:6d:60:24:78:ed:07:0e:72: d6:b9:e6:61:16:dd:d7:5c:3e:64:89:4e:63:71:eb:7b:b1:2d: 74:46:cc:fe:15:4d:93:f5:c2:dc:3b:7a:51:eb:ca:5b:b7:c5: 52:78:ed:3b:f5:57:b1:56:3a:49:61:88:2c:9b:f7:17:8b:84: be:a2:b3:2f:5a:f7:12:98:b6:73:8f:58:12:97:65:43:20:fe: 5b:9a:be:f5:ee:73:7c:c5:34:19:8d:7c:92:20:05:74:18:4f: f0:b9:56:93:99:c6:a5:ff:4e:6f:21:47:de:8c:e9:1d:dc:ec: 59:5d:7a:51:8a:41:e9:b8:af:07:2c:df:71:15:ec:72:92:49: 5d:f1:cf:fc:79:a4:ba:a3:1a:ca:c0:83:1f:41:c9:73:e7:3b: cd:3c:7a:a8:6b:aa:3f:5a:67:de:45:25:0c:80:3c:c0:de:a9: 32:b7:0c:03:20:49:d3:1f:67:4e:3b:7b:c6:99:a3:36:86:9d: 3c:69:40:74:7f:66:f7:1c:0c:74:58:bc:28:61:11:ef:1e:4f: f4:a0:b8:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaiEJqW0D4uz/SG2LzP6sOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDliNjI2NDhlOTEzYTM2NDBmMDMxYjYzYTZiZDkyYjBlMjhl MTM5ZmIwHhcNMjUxMjI2MTIwMDM3WhcNMjUxMjI3MTIwMDM3WjAzMTEwLwYDVQQD Eyg3Y2I4MTJiYjQ2NmI4N2VhMzNhY2ZmMzQ0MGM4Zjc2YmU0NTVjMjZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn784sYR25kP9iRbKcpyRj77ieKBL lUVZZffV81VtPNBLUs/YloxASc+dODFqXzvVplW2IU3Yokg87snimltquO3u1W8f FNh3lx0UZ1HIN9rc9FsDsJ7kjWCu+kvNqP92JxPC0sLVvmHoql/p/59Ea+LCO6/G RUcMKHOxTppl1O66M3NCoUKLKNPN1acGMpmajXaYaDyaCR5iP4B1YXYR2xLwZ/zi 1PN4uvl6UcvpXspBhNbDI2+oZexZfWytqspNGFRvVKfmX2Jl5eoMohc5QXoiCZRX yZU9w/7kZ7k265inZD2mOvhFKMstSk51k/0uByW2Fw28vNa9yB9HmyH07QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHy4ErtGa4fqM6z/NEDI92vkVcJvMB8GA1UdIwQY MBaAFJtiZI6ROjZA8DG2OmvZKw4o4Tn7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbTJKa2pwRTZOa0R3TWJZNmE5a3JEaWpoT2ZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS84ODY1ZDctOWZlYS00N2Y2LWEzZmMt OThiZDE1NjAyOWMwLzEvbTJKa2pwRTZOa0R3TWJZNmE5a3JEaWpoT2ZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS84ODY1ZDctOWZlYS00N2Y2LWEzZmMtOThiZDE1NjAyOWMw LzEvbTJKa2pwRTZOa0R3TWJZNmE5a3JEaWpoT2ZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjNiGyced dw93VC4hwU9+sSZGgbU6XJqhn1wO21mcN2ohOfdqOOi5qc8GcQTDZm1gJHjtBw5y 1rnmYRbd11w+ZIlOY3Hre7EtdEbM/hVNk/XC3Dt6UevKW7fFUnjtO/VXsVY6SWGI LJv3F4uEvqKzL1r3Epi2c49YEpdlQyD+W5q+9e5zfMU0GY18kiAFdBhP8LlWk5nG pf9ObyFH3ozpHdzsWV16UYpB6bivByzfcRXscpJJXfHP/HmkuqMaysCDH0HJc+c7 zTx6qGuqP1pn3kUlDIA8wN6pMrcMAyBJ0x9nTjt7xpmjNoadPGlAdH9m9xwMdFi8 KGER7x5P9KC4hA== -----END CERTIFICATE-----Generated at Fri Dec 26 14:17:28 2025 by rpki-client