This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft File: 2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft (raw, json) Hash identifier: Zt3ytkaCrgtcK8Pz1nqs14KNma/QmxfYWS3nKuZ4AyY= Subject key identifier: 0B:27:ED:1F:A5:30:39:1E:B3:D2:AB:F5:34:A8:89:7E:48:EA:A8:4E Authority key identifier: D8:07:3D:06:B5:86:52:F8:49:FA:8B:CF:3C:EC:6B:95:09:09:BD:68 Certificate issuer: /CN=d8073d06b58652f849fa8bcf3cec6b950909bd68 Certificate serial: 019B18DF4085875E191758FA471B754F7F59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft Manifest number: 1774 Signing time: Sat 13 Dec 2025 18:00:42 +0000 Manifest this update: Sat 13 Dec 2025 18:00:42 +0000 Manifest next update: Sun 14 Dec 2025 18:00:42 +0000 Files and hashes: 1: 2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl (hash: 9UXW1ovK91J0H6dnmy2K6vm08CUugcngC0baK9XAx1U=) 2: wIuWmKQqKRafTdpQCAjgZGdOwSg.roa (hash: FSZWMB16h9Z2ZEIxjWe18pWkdzeyGtdch3JRTJHt/gU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:18:df:40:85:87:5e:19:17:58:fa:47:1b:75:4f:7f:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8073d06b58652f849fa8bcf3cec6b950909bd68 Validity Not Before: Dec 13 18:00:42 2025 GMT Not After : Dec 14 18:00:42 2025 GMT Subject: CN=0b27ed1fa530391eb3d2abf534a8897e48eaa84e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:87:2f:4e:c3:55:f2:7c:bf:09:7d:d8:54:fe: 78:5f:03:d1:40:69:6d:34:7a:54:2d:66:bb:6a:74: 1e:43:b3:d6:c8:74:c7:eb:ad:ba:fb:cc:9e:8d:4f: 1b:a8:db:44:4a:d3:09:43:5a:e0:44:27:bc:ac:93: e3:12:d2:05:72:5b:7e:b9:d5:ee:dc:83:25:1f:20: d8:5f:0c:bc:ab:5c:ff:aa:1e:b3:9e:ae:8b:47:37: 0a:be:1a:f4:37:e2:d3:5b:bc:87:39:0f:02:dd:a3: d6:e1:8b:15:b3:a2:60:47:32:0c:04:f7:73:6c:59: 75:32:3e:07:a2:59:c4:2e:b9:0f:a6:b2:d6:be:fa: 2d:12:6b:0b:a3:9b:f7:4f:a6:fa:56:6f:03:b4:25: 45:64:6c:f8:1c:e8:12:8b:40:46:2e:bc:d6:15:65: 0c:81:e1:1c:bc:49:c1:6d:67:43:24:f2:ea:14:f2: 0f:21:81:35:d3:06:21:7f:90:de:63:b4:78:05:da: 53:b2:4a:75:45:06:22:c9:14:7f:83:37:65:cc:61: 60:e7:d1:20:58:fd:bf:be:13:14:34:5a:d6:a3:8d: 77:1d:fd:76:eb:75:63:c4:cf:34:b1:91:24:7c:42: ea:6f:1a:1c:cf:97:ee:b7:ef:d5:d9:16:9d:9e:73: fa:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:27:ED:1F:A5:30:39:1E:B3:D2:AB:F5:34:A8:89:7E:48:EA:A8:4E X509v3 Authority Key Identifier: keyid:D8:07:3D:06:B5:86:52:F8:49:FA:8B:CF:3C:EC:6B:95:09:09:BD:68 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:c0:b9:4a:39:f1:82:da:56:d2:75:e0:7a:c6:e8:f4:e1:e7: 76:1f:d1:bc:85:97:e4:ec:ba:76:7f:63:5c:70:16:79:51:0b: ee:42:8a:bc:f5:99:ed:76:df:77:1f:6c:a7:79:74:35:b4:f8: 47:f4:66:a8:c8:55:73:3d:32:1e:27:96:9a:be:28:a7:a6:06: c7:51:6c:4e:f7:b7:40:24:5c:6a:f5:d9:a5:0a:75:3e:92:23: 32:02:0b:2c:0e:ca:d8:7e:47:85:b1:b4:3c:ab:78:ce:cc:36: 29:43:a7:cd:74:a8:00:c2:fe:e2:89:1a:f5:cc:86:ad:76:2d: 3a:06:10:42:30:95:25:98:94:fd:81:55:e2:7f:80:42:ea:9e: b6:1e:58:b6:c4:f9:91:17:18:fa:9c:07:7c:b0:f1:5a:84:eb: 24:4b:b8:89:bd:bc:91:0b:de:67:13:f3:a2:51:33:da:0e:82: c8:5d:ef:62:39:0e:ae:f6:1a:53:15:ff:86:70:b9:c5:c0:0d: 7f:53:5a:cf:33:6d:c7:64:8b:dd:c3:2a:93:03:19:87:fb:4e: d6:c1:5d:a1:28:07:db:55:96:ff:13:b8:75:b7:24:bd:20:79: c8:f2:da:b6:23:a7:13:01:26:57:70:cf:8d:87:ba:39:8c:77: 4b:c7:a9:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsY30CFh14ZF1j6Rxt1T39ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4MDczZDA2YjU4NjUyZjg0OWZhOGJjZjNjZWM2Yjk1MDkw OWJkNjgwHhcNMjUxMjEzMTgwMDQyWhcNMjUxMjE0MTgwMDQyWjAzMTEwLwYDVQQD EygwYjI3ZWQxZmE1MzAzOTFlYjNkMmFiZjUzNGE4ODk3ZTQ4ZWFhODRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx4cvTsNV8ny/CX3YVP54XwPRQGlt NHpULWa7anQeQ7PWyHTH6626+8yejU8bqNtEStMJQ1rgRCe8rJPjEtIFclt+udXu 3IMlHyDYXwy8q1z/qh6znq6LRzcKvhr0N+LTW7yHOQ8C3aPW4YsVs6JgRzIMBPdz bFl1Mj4HolnELrkPprLWvvotEmsLo5v3T6b6Vm8DtCVFZGz4HOgSi0BGLrzWFWUM geEcvEnBbWdDJPLqFPIPIYE10wYhf5DeY7R4BdpTskp1RQYiyRR/gzdlzGFg59Eg WP2/vhMUNFrWo413Hf1263VjxM80sZEkfELqbxocz5fut+/V2RadnnP6AQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAsn7R+lMDkes9Kr9TSoiX5I6qhOMB8GA1UdIwQY MBaAFNgHPQa1hlL4SfqLzzzsa5UJCb1oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkFjOUJyV0dVdmhKLW92UFBPeHJsUWtKdldnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy83MjE5MjAtOTM5Yi00MTJiLWEzYzUt MjMyOWQ3OWM0YWUzLzEvMkFjOUJyV0dVdmhKLW92UFBPeHJsUWtKdldnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy83MjE5MjAtOTM5Yi00MTJiLWEzYzUtMjMyOWQ3OWM0YWUz LzEvMkFjOUJyV0dVdmhKLW92UFBPeHJsUWtKdldnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP8C5Sjnx gtpW0nXgesbo9OHndh/RvIWX5Oy6dn9jXHAWeVEL7kKKvPWZ7Xbfdx9sp3l0NbT4 R/RmqMhVcz0yHieWmr4op6YGx1FsTve3QCRcavXZpQp1PpIjMgILLA7K2H5HhbG0 PKt4zsw2KUOnzXSoAML+4oka9cyGrXYtOgYQQjCVJZiU/YFV4n+AQuqeth5YtsT5 kRcY+pwHfLDxWoTrJEu4ib28kQveZxPzolEz2g6CyF3vYjkOrvYaUxX/hnC5xcAN f1NazzNtx2SL3cMqkwMZh/tO1sFdoSgH21WW/xO4dbckvSB5yPLatiOnEwEmV3DP jYe6OYx3S8epRA== -----END CERTIFICATE-----Generated at Sun Dec 14 01:04:28 2025 by rpki-client