This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft File: 2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft (raw, json) Hash identifier: /AF3OC3W64byy/9YcPVM9/dRkPvOWwNjAuk3OpLShLc= Subject key identifier: D3:C3:47:80:EE:CA:C5:48:0B:5D:E5:C4:2D:C9:8E:6F:4E:E1:7D:4D Authority key identifier: D9:9A:47:CD:C8:9F:46:34:2F:90:B0:DA:3C:30:D9:EC:5F:D6:32:38 Certificate issuer: /CN=d99a47cdc89f46342f90b0da3c30d9ec5fd63238 Certificate serial: 019B108158E3B1832897AFA4D444196FF970 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft Manifest number: 0826 Signing time: Fri 12 Dec 2025 03:01:10 +0000 Manifest this update: Fri 12 Dec 2025 03:01:10 +0000 Manifest next update: Sat 13 Dec 2025 03:01:10 +0000 Files and hashes: 1: 20Dw3EtRjT0VsUf9XJsc0R3Ci-Y.roa (hash: eYk/5sRuyCDN9GA+BHkMTQtHbaoi0rArz9DpKNEObWk=) 2: 2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl (hash: /V6rePH6gH8U4832EgZRhlV22I27pT40fFUV6zvUWXI=) 3: 4syStsiJ4_nkcJBvU4Ns9Pjm0oQ.roa (hash: 2p6GX7iVYhsRkTJt8jEU86F9xE4rex2UzZbhNm8D8D0=) 4: N_GpQaNWWGxkbuDZ3ulfH-r64tk.roa (hash: IM2SiURjMxHWXsFqFI4woiJ2ADSr+qZUIrRaSOqm3m0=) 5: oHg8th2m-6lkqpucCywGnTPw2Y8.roa (hash: fBPsGM2/mDx5oeAlhLVhusnxHUP4XIwFmPZfB6dTzC0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:81:58:e3:b1:83:28:97:af:a4:d4:44:19:6f:f9:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d99a47cdc89f46342f90b0da3c30d9ec5fd63238 Validity Not Before: Dec 12 03:01:10 2025 GMT Not After : Dec 13 03:01:10 2025 GMT Subject: CN=d3c34780eecac5480b5de5c42dc98e6f4ee17d4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b0:19:ae:33:d4:5a:e9:01:63:d1:86:3d:99: ee:0e:69:d4:a0:59:78:61:eb:03:1e:94:53:d1:13: 58:cf:29:d2:63:74:da:68:20:3e:39:16:dd:c2:ac: 36:9d:55:c9:35:73:e7:37:78:a8:1c:8d:fa:be:ed: 20:49:9a:b4:2e:2c:91:7a:b1:35:ba:b6:1a:00:03: 42:11:30:55:3d:d4:73:33:de:0c:3b:e7:20:63:4b: 9a:5f:29:3a:8d:3d:d5:29:e0:ce:47:58:7d:5d:30: d1:03:c0:9f:d7:91:c5:56:91:19:7e:a7:5f:71:6d: a4:4b:10:f8:d9:51:d1:6c:0d:fc:12:96:1d:e0:7c: 28:d0:f8:7f:4c:cb:ca:6e:3f:3d:2d:af:36:0d:e5: 82:ee:40:66:e9:a0:0e:c4:00:5a:be:3d:8c:e5:15: 70:b0:fe:b1:a8:00:74:bc:4a:9f:69:a8:35:47:53: 6a:52:58:63:d0:05:6f:66:d6:5d:a1:1f:1d:22:a5: b6:d5:65:91:2a:21:c5:6c:de:49:d5:a9:63:9a:8c: 75:03:15:3b:d0:9d:53:7c:48:f5:c2:03:d1:b9:98: e0:fc:ca:2e:04:5d:7f:16:68:9b:da:08:c0:df:e5: 8e:52:57:e2:0c:f8:c1:50:7a:4f:b2:07:8c:f5:61: b9:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:C3:47:80:EE:CA:C5:48:0B:5D:E5:C4:2D:C9:8E:6F:4E:E1:7D:4D X509v3 Authority Key Identifier: keyid:D9:9A:47:CD:C8:9F:46:34:2F:90:B0:DA:3C:30:D9:EC:5F:D6:32:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:6b:ce:30:0b:f2:dd:f0:f3:5b:22:f0:a6:75:bc:cc:73:b4: 28:6e:bf:4a:31:3a:6f:67:d9:1a:c0:d7:22:9e:ca:c4:f9:0b: 45:af:c3:b0:81:7b:a9:ad:ad:a2:2e:8b:b3:1d:88:ba:78:01: 8f:f1:3d:4f:75:64:be:71:d1:a4:2a:a6:bb:a0:4e:08:0d:20: 28:bc:c5:72:cd:85:81:57:77:b9:25:58:dc:3b:d5:46:1e:e7: f4:c2:05:73:1c:04:35:08:cf:68:c1:63:5c:ec:25:70:01:0d: 50:35:df:58:f8:b6:9a:df:90:2a:1c:50:be:10:02:3f:0b:b0: e7:51:ca:e4:c7:e7:85:71:db:ed:08:82:1f:d3:15:05:2f:74: b8:0e:44:73:70:32:c9:49:07:c9:70:67:9a:78:36:d9:56:5d: 2d:87:ee:b0:90:65:c1:e8:f0:fe:89:68:40:75:b0:1d:73:89: ab:ef:79:8e:82:7f:58:a9:f4:d6:93:2d:ca:78:87:da:c6:0f: 7e:7c:75:34:e4:30:ab:e0:29:00:35:b2:ef:f9:c1:bd:2f:e2: f8:a7:2a:51:cb:16:a7:dd:e6:32:f7:d1:e5:a5:23:62:04:6a: ba:cd:d7:4b:68:c9:1b:b3:28:68:bf:44:76:05:39:0e:e8:a8: 78:a8:3a:15 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQgVjjsYMol6+k1EQZb/lwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5OWE0N2NkYzg5ZjQ2MzQyZjkwYjBkYTNjMzBkOWVjNWZk NjMyMzgwHhcNMjUxMjEyMDMwMTEwWhcNMjUxMjEzMDMwMTEwWjAzMTEwLwYDVQQD EyhkM2MzNDc4MGVlY2FjNTQ4MGI1ZGU1YzQyZGM5OGU2ZjRlZTE3ZDRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAorAZrjPUWukBY9GGPZnuDmnUoFl4 YesDHpRT0RNYzynSY3TaaCA+ORbdwqw2nVXJNXPnN3ioHI36vu0gSZq0LiyRerE1 urYaAANCETBVPdRzM94MO+cgY0uaXyk6jT3VKeDOR1h9XTDRA8Cf15HFVpEZfqdf cW2kSxD42VHRbA38EpYd4Hwo0Ph/TMvKbj89La82DeWC7kBm6aAOxABavj2M5RVw sP6xqAB0vEqfaag1R1NqUlhj0AVvZtZdoR8dIqW21WWRKiHFbN5J1aljmox1AxU7 0J1TfEj1wgPRuZjg/MouBF1/Fmib2gjA3+WOUlfiDPjBUHpPsgeM9WG5UQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNPDR4DuysVIC13lxC3Jjm9O4X1NMB8GA1UdIwQY MBaAFNmaR83In0Y0L5Cw2jww2exf1jI4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlpwSHpjaWZSalF2a0xEYVBERFo3Rl9XTWpnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9kMzBlZWYtNDk1ZS00M2JkLTkxOWMt YTJhMGUyZGI0OWQwLzEvMlpwSHpjaWZSalF2a0xEYVBERFo3Rl9XTWpnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC9kMzBlZWYtNDk1ZS00M2JkLTkxOWMtYTJhMGUyZGI0OWQw LzEvMlpwSHpjaWZSalF2a0xEYVBERFo3Rl9XTWpnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEGvOMAvy 3fDzWyLwpnW8zHO0KG6/SjE6b2fZGsDXIp7KxPkLRa/DsIF7qa2toi6Lsx2IungB j/E9T3VkvnHRpCqmu6BOCA0gKLzFcs2FgVd3uSVY3DvVRh7n9MIFcxwENQjPaMFj XOwlcAENUDXfWPi2mt+QKhxQvhACPwuw51HK5MfnhXHb7QiCH9MVBS90uA5Ec3Ay yUkHyXBnmng22VZdLYfusJBlwejw/oloQHWwHXOJq+95joJ/WKn01pMtyniH2sYP fnx1NOQwq+ApADWy7/nBvS/i+KcqUcsWp93mMvfR5aUjYgRqus3XS2jJG7MoaL9E dgU5DuioeKg6FQ== -----END CERTIFICATE-----Generated at Fri Dec 12 08:33:38 2025 by rpki-client