This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft File: 2CsoRvCTvJQWBBvmiix4MWHrBN8.mft (raw, json) Hash identifier: tb7g67vYR5rWTnCZZk/7F7FhpDcLzuG4hw0rfAp+jaE= Subject key identifier: F1:D5:89:DF:F1:37:D8:4D:62:0B:D4:55:9B:A4:96:FF:D0:F9:B4:37 Authority key identifier: D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF Certificate issuer: /CN=d82b2846f093bc9416041be68a2c783161eb04df Certificate serial: 019B40C86D1B8EBF9492418748CE9B65DD6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft Manifest number: 0932 Signing time: Sun 21 Dec 2025 12:00:35 +0000 Manifest this update: Sun 21 Dec 2025 12:00:35 +0000 Manifest next update: Mon 22 Dec 2025 12:00:35 +0000 Files and hashes: 1: 2CsoRvCTvJQWBBvmiix4MWHrBN8.crl (hash: elcJfIpLHNJQhRTsUljrsRbzaflDgPXmp2EFT0+6iZw=) 2: hTfKaocG3Hu8jZISH8wxDZSDFQU.roa (hash: SPxEv0NQloEq4rpI+CK4+O5Rga0a1/KsmAnYz63xRLM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 12:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:c8:6d:1b:8e:bf:94:92:41:87:48:ce:9b:65:dd:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d82b2846f093bc9416041be68a2c783161eb04df Validity Not Before: Dec 21 12:00:35 2025 GMT Not After : Dec 22 12:00:35 2025 GMT Subject: CN=f1d589dff137d84d620bd4559ba496ffd0f9b437 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e0:b1:95:46:62:c2:2c:3f:d5:1f:61:62:9f: f9:bd:49:f8:2a:53:4d:83:ef:30:cb:f1:9d:54:5e: a2:0c:cf:d4:e1:8a:86:10:2b:ce:5a:90:ad:ef:79: 12:df:73:b0:33:97:99:e9:27:1b:fa:bd:ab:6f:99: 25:00:ee:b9:46:02:8d:0f:97:5c:9e:7e:28:02:93: 98:86:59:91:86:e3:de:f3:44:96:ba:73:6d:99:60: d0:04:47:58:9c:b5:12:79:3d:8e:c8:2e:7e:3b:83: 15:8a:e3:2c:dd:c0:d6:35:5a:40:b5:d2:be:1f:7a: 5c:fb:59:eb:85:3c:fa:5a:fc:e0:eb:4d:c7:b4:36: 0b:e9:3b:2e:29:2a:b7:da:58:3a:50:24:98:83:a2: b0:19:22:92:f3:7c:44:a7:9c:99:87:25:7e:63:ab: 6c:63:b6:e7:14:cb:50:d1:91:f7:84:b4:57:19:ca: 96:7c:cd:05:18:ac:a0:c7:94:38:bb:4c:50:65:72: 60:d0:f1:3b:33:eb:91:2c:e4:54:74:a3:a1:69:a9: 97:41:03:da:0f:ff:b3:62:4b:a0:88:a7:05:4c:46: d6:1f:d2:42:0f:ed:b8:17:32:20:b3:a7:cd:aa:3d: 11:3a:61:10:40:7c:5b:1c:02:cd:79:0b:c2:93:f7: d0:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:D5:89:DF:F1:37:D8:4D:62:0B:D4:55:9B:A4:96:FF:D0:F9:B4:37 X509v3 Authority Key Identifier: keyid:D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:4b:68:a2:ff:fd:22:a7:ab:51:1c:df:0b:ff:d9:b7:bd:20: 3d:66:52:d8:a9:0c:85:ed:d6:7d:a3:59:a6:fc:d9:a1:f7:c7: 5a:c1:e9:aa:49:21:ff:05:bc:3d:5d:3a:7f:56:8a:24:ea:14: 63:b3:0a:84:5d:04:1d:fc:57:4f:35:44:ae:54:f6:cb:ab:32: 78:53:ea:2e:2d:8e:5e:e1:01:94:bc:fc:49:76:32:6a:72:ac: fa:93:49:0b:f5:ba:42:58:05:76:2b:77:7d:0d:a0:4b:28:6f: 1d:9d:b3:53:1a:a5:49:1b:a4:8f:16:08:8b:91:44:e7:fe:bc: ed:bc:d0:55:d4:e6:7c:f6:c5:25:98:cb:03:53:3b:ec:7b:b6: fb:9f:56:4b:25:9b:7f:75:2a:c7:ba:c5:63:ca:a9:1c:e5:4c: 7e:17:24:82:7b:7f:35:e9:14:8b:c4:68:40:45:83:9a:96:41: 34:21:d8:d9:7a:7d:00:c3:99:3e:78:3b:04:bc:9d:6a:2a:66: 17:c9:a7:5f:25:36:da:4e:c1:a2:37:b1:5e:e0:ff:2f:a1:8c: 73:5f:3a:d2:68:50:a7:b6:72:81:de:b1:41:b6:44:78:78:c7: b8:9f:d5:34:fe:a7:77:87:17:21:f9:af:aa:a5:4b:7c:25:f7: 8c:1e:20:56 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtAyG0bjr+UkkGHSM6bZd1qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4MmIyODQ2ZjA5M2JjOTQxNjA0MWJlNjhhMmM3ODMxNjFl YjA0ZGYwHhcNMjUxMjIxMTIwMDM1WhcNMjUxMjIyMTIwMDM1WjAzMTEwLwYDVQQD EyhmMWQ1ODlkZmYxMzdkODRkNjIwYmQ0NTU5YmE0OTZmZmQwZjliNDM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvuCxlUZiwiw/1R9hYp/5vUn4KlNN g+8wy/GdVF6iDM/U4YqGECvOWpCt73kS33OwM5eZ6Scb+r2rb5klAO65RgKND5dc nn4oApOYhlmRhuPe80SWunNtmWDQBEdYnLUSeT2OyC5+O4MViuMs3cDWNVpAtdK+ H3pc+1nrhTz6Wvzg603HtDYL6TsuKSq32lg6UCSYg6KwGSKS83xEp5yZhyV+Y6ts Y7bnFMtQ0ZH3hLRXGcqWfM0FGKygx5Q4u0xQZXJg0PE7M+uRLORUdKOhaamXQQPa D/+zYkugiKcFTEbWH9JCD+24FzIgs6fNqj0ROmEQQHxbHALNeQvCk/fQFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPHVid/xN9hNYgvUVZuklv/Q+bQ3MB8GA1UdIwQY MBaAFNgrKEbwk7yUFgQb5ooseDFh6wTfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkNzb1J2Q1R2SlFXQkJ2bWlpeDRNV0hyQk44LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy81YjJkNmUtODI0Ny00NDhmLWEzNTgt NTQ3M2VlMWRhYTliLzEvMkNzb1J2Q1R2SlFXQkJ2bWlpeDRNV0hyQk44Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy81YjJkNmUtODI0Ny00NDhmLWEzNTgtNTQ3M2VlMWRhYTli LzEvMkNzb1J2Q1R2SlFXQkJ2bWlpeDRNV0hyQk44LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX0toov/9 IqerURzfC//Zt70gPWZS2KkMhe3WfaNZpvzZoffHWsHpqkkh/wW8PV06f1aKJOoU Y7MKhF0EHfxXTzVErlT2y6syeFPqLi2OXuEBlLz8SXYyanKs+pNJC/W6QlgFdit3 fQ2gSyhvHZ2zUxqlSRukjxYIi5FE5/687bzQVdTmfPbFJZjLA1M77Hu2+59WSyWb f3Uqx7rFY8qpHOVMfhckgnt/NekUi8RoQEWDmpZBNCHY2Xp9AMOZPng7BLydaipm F8mnXyU22k7BojexXuD/L6GMc1860mhQp7Zygd6xQbZEeHjHuJ/VNP6nd4cXIfmv qqVLfCX3jB4gVg== -----END CERTIFICATE-----Generated at Sun Dec 21 19:51:27 2025 by rpki-client