This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/94aab2-b41e-460e-9fcb-242b58140e37/1/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.mft File: 2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.mft (raw, json) Hash identifier: LAyCSkQBdqVV3oELkxdzBLmBbDcbSkJTQJKnP7i0dtY= Subject key identifier: CC:32:DB:A9:CB:DB:1B:03:4E:2E:55:EA:31:5E:DF:41:C0:46:5B:C9 Authority key identifier: D9:9B:EC:D0:88:79:4B:11:DA:F3:4C:7F:54:E5:9F:69:39:FE:98:64 Certificate issuer: /CN=d99becd088794b11daf34c7f54e59f6939fe9864 Certificate serial: 019B5A883A771AD787F97C4DDB0844D832B6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/94aab2-b41e-460e-9fcb-242b58140e37/1/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.mft Manifest number: 04B5 Signing time: Fri 26 Dec 2025 12:00:35 +0000 Manifest this update: Fri 26 Dec 2025 12:00:35 +0000 Manifest next update: Sat 27 Dec 2025 12:00:35 +0000 Files and hashes: 1: 2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.crl (hash: /GmRppUzqEq9+OC2rh0QDls9NuPzX6jJvp0RiULgjuc=) 2: P6mLuYTWcn0KuLmD43cJ982GF44.roa (hash: lthkyf0qk/Tj3D6L/66lHDSOVo0evf5q6TD/uKiHGiM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/94aab2-b41e-460e-9fcb-242b58140e37/1/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/94aab2-b41e-460e-9fcb-242b58140e37/1/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.mft rsync://rpki.ripe.net/repository/DEFAULT/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 11:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:88:3a:77:1a:d7:87:f9:7c:4d:db:08:44:d8:32:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d99becd088794b11daf34c7f54e59f6939fe9864 Validity Not Before: Dec 26 12:00:35 2025 GMT Not After : Dec 27 12:00:35 2025 GMT Subject: CN=cc32dba9cbdb1b034e2e55ea315edf41c0465bc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c5:06:01:ed:99:b1:2a:0d:4f:57:cf:c7:26: 59:80:8c:92:63:c0:fc:c8:70:94:71:57:b6:c3:cd: b4:7e:d5:a2:83:46:a2:fa:bb:bf:e3:c7:a4:c3:9c: 72:b7:9f:15:63:15:b0:ac:39:48:a9:9d:d4:e5:47: 27:4c:ad:b3:5d:a6:2d:b6:4e:63:ef:c3:dd:e1:e1: 40:10:d3:bc:98:6a:13:7c:25:86:a6:e5:9f:1d:e5: 8f:06:3b:88:79:82:20:98:39:b1:88:60:35:2e:ff: ed:d7:45:89:64:c3:dd:3f:18:0e:00:d2:8d:db:0d: 34:4d:b7:ad:b9:b0:f4:fe:84:69:f6:c2:98:86:09: 61:85:00:aa:e6:c7:48:60:fc:bf:42:fd:3c:69:3a: 65:fb:cb:bb:6a:a3:ce:8e:34:02:c2:2f:56:92:4c: 73:1a:79:c6:16:ac:31:32:53:64:5c:ab:ad:62:d3: 6c:a6:d7:72:4d:e0:35:2b:b6:2b:bf:5c:3f:64:16: 74:d5:ec:29:6f:8d:b0:60:7a:1c:db:01:2f:16:53: 73:12:10:2a:1e:28:a9:3c:45:da:85:c1:28:c2:fe: 14:38:0e:77:08:2e:c6:a5:0c:96:4a:9c:9a:6e:45: 80:37:e5:6c:20:b7:ee:28:0f:68:1f:6e:f0:fc:d3: 10:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:32:DB:A9:CB:DB:1B:03:4E:2E:55:EA:31:5E:DF:41:C0:46:5B:C9 X509v3 Authority Key Identifier: keyid:D9:9B:EC:D0:88:79:4B:11:DA:F3:4C:7F:54:E5:9F:69:39:FE:98:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/94aab2-b41e-460e-9fcb-242b58140e37/1/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/94aab2-b41e-460e-9fcb-242b58140e37/1/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:01:74:48:3e:17:1e:60:6b:83:50:06:c9:b2:50:af:ad:fe: ae:97:b8:bc:01:98:63:0e:0c:b4:d5:42:6c:46:dc:34:72:82: 48:c9:18:51:2a:49:9b:0a:a2:d5:1c:3b:ba:6d:0b:fa:e1:23: 42:0d:f0:bc:33:b6:ae:7f:fe:b9:d3:73:ee:32:8b:88:2e:f6: 55:ae:29:49:0e:37:96:51:13:b1:83:32:1e:75:10:41:c6:63: 15:ba:19:15:b6:fd:a7:c1:bf:0e:77:4f:dc:ca:26:40:7f:9d: 61:bf:98:e6:d5:54:9b:14:05:06:e8:61:3f:83:37:0f:58:b1: 4e:f0:4b:43:8b:f3:21:a2:76:3c:2f:a5:83:11:33:b3:77:fa: db:8b:62:98:b2:bb:52:86:11:c1:4d:00:4d:60:49:0b:32:d5: 40:15:92:3f:1c:73:6a:52:29:a1:f1:2a:14:1c:38:8b:ab:2c: c6:ba:4e:75:52:93:9e:5b:f2:4e:8a:d2:bc:a1:b0:16:30:0d: c1:1e:78:f7:2a:e8:45:fd:eb:2e:97:4b:c5:e9:58:a1:29:2a: 97:9e:ea:22:3e:e5:6a:bf:1f:c6:b7:22:a4:51:b9:f0:e5:63: ff:f6:8c:d4:98:29:1e:1a:25:7c:e5:e4:b7:7a:35:4c:06:b4: c3:de:f2:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaiDp3GteH+XxN2whE2DK2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5OWJlY2QwODg3OTRiMTFkYWYzNGM3ZjU0ZTU5ZjY5Mzlm ZTk4NjQwHhcNMjUxMjI2MTIwMDM1WhcNMjUxMjI3MTIwMDM1WjAzMTEwLwYDVQQD EyhjYzMyZGJhOWNiZGIxYjAzNGUyZTU1ZWEzMTVlZGY0MWMwNDY1YmM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8UGAe2ZsSoNT1fPxyZZgIySY8D8 yHCUcVe2w820ftWig0ai+ru/48ekw5xyt58VYxWwrDlIqZ3U5UcnTK2zXaYttk5j 78Pd4eFAENO8mGoTfCWGpuWfHeWPBjuIeYIgmDmxiGA1Lv/t10WJZMPdPxgOANKN 2w00TbetubD0/oRp9sKYhglhhQCq5sdIYPy/Qv08aTpl+8u7aqPOjjQCwi9Wkkxz GnnGFqwxMlNkXKutYtNsptdyTeA1K7Yrv1w/ZBZ01ewpb42wYHoc2wEvFlNzEhAq HiipPEXahcEowv4UOA53CC7GpQyWSpyabkWAN+VsILfuKA9oH27w/NMQlwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMwy26nL2xsDTi5V6jFe30HARlvJMB8GA1UdIwQY MBaAFNmb7NCIeUsR2vNMf1Tln2k5/phkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlp2czBJaDVTeEhhODB4X1ZPV2ZhVG4tbUdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS85NGFhYjItYjQxZS00NjBlLTlmY2It MjQyYjU4MTQwZTM3LzEvMlp2czBJaDVTeEhhODB4X1ZPV2ZhVG4tbUdRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS85NGFhYjItYjQxZS00NjBlLTlmY2ItMjQyYjU4MTQwZTM3 LzEvMlp2czBJaDVTeEhhODB4X1ZPV2ZhVG4tbUdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmwF0SD4X HmBrg1AGybJQr63+rpe4vAGYYw4MtNVCbEbcNHKCSMkYUSpJmwqi1Rw7um0L+uEj Qg3wvDO2rn/+udNz7jKLiC72Va4pSQ43llETsYMyHnUQQcZjFboZFbb9p8G/DndP 3MomQH+dYb+Y5tVUmxQFBuhhP4M3D1ixTvBLQ4vzIaJ2PC+lgxEzs3f624timLK7 UoYRwU0ATWBJCzLVQBWSPxxzalIpofEqFBw4i6ssxrpOdVKTnlvyTorSvKGwFjAN wR549yroRf3rLpdLxelYoSkql57qIj7lar8fxrcipFG58OVj//aM1JgpHholfOXk t3o1TAa0w97yoA== -----END CERTIFICATE-----Generated at Fri Dec 26 16:05:49 2025 by rpki-client