This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft File: AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft (raw, json) Hash identifier: fh4/HgR5EE2v9ed0a59hGo8h4AX/XqtAu3MhEyopNfo= Subject key identifier: 83:F1:69:9E:E9:14:AA:9D:AF:C0:A5:08:EF:81:A0:B8:DC:C7:1E:FF Authority key identifier: 01:1D:88:24:6A:B5:7E:20:4D:EA:51:E9:24:3C:67:25:2D:CB:A5:85 Certificate issuer: /CN=011d88246ab57e204dea51e9243c67252dcba585 Certificate serial: 019B5A514B88F03D8A5CEA5FDFDD481E6715 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AR2IJGq1fiBN6lHpJDxnJS3LpYU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft Manifest number: 0BDF Signing time: Fri 26 Dec 2025 11:00:35 +0000 Manifest this update: Fri 26 Dec 2025 11:00:35 +0000 Manifest next update: Sat 27 Dec 2025 11:00:35 +0000 Files and hashes: 1: AR2IJGq1fiBN6lHpJDxnJS3LpYU.crl (hash: QaQuTScxi+3cWO+5PUvFj4B2HM0XJOBFgcs548whC/k=) 2: Pg2SMjH2JbUsvVVMZE_VQhr2wAM.roa (hash: Ty3UWb4K9/+Q0Fy9Hogc3ux1omBtFmBjEcK12mnGt2s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft rsync://rpki.ripe.net/repository/DEFAULT/AR2IJGq1fiBN6lHpJDxnJS3LpYU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:51:4b:88:f0:3d:8a:5c:ea:5f:df:dd:48:1e:67:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=011d88246ab57e204dea51e9243c67252dcba585 Validity Not Before: Dec 26 11:00:35 2025 GMT Not After : Dec 27 11:00:35 2025 GMT Subject: CN=83f1699ee914aa9dafc0a508ef81a0b8dcc71eff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1e:bf:72:26:f0:66:99:92:36:8b:18:5a:2a: 91:fb:f6:0f:87:b7:73:21:31:8f:45:1d:a5:a5:2e: 3b:38:86:a3:6a:b4:e9:1c:d3:93:bd:c5:dc:f7:9f: 0f:2a:7c:53:22:a1:a1:d2:82:c2:79:c6:c6:e0:e4: 8c:65:15:1c:14:a1:d6:f1:00:32:18:d0:93:a3:96: 5e:47:93:3a:cb:bc:49:a8:62:73:90:31:79:f8:0b: 77:2c:af:c8:3a:6b:b7:8d:23:5e:4b:5e:6f:48:85: 3d:bc:a4:cd:88:c6:42:f8:58:07:1d:40:a0:90:d9: 7c:c8:08:79:dc:d3:23:42:17:55:17:88:c7:75:f8: 24:2c:69:2a:52:5e:c1:56:f4:fe:e9:e0:81:fe:2b: 27:0a:b1:37:05:90:22:21:8c:7e:55:14:0c:54:df: e7:f1:85:5b:b6:9c:c4:73:cb:98:b9:e5:39:cd:c3: f3:d2:98:a4:f2:3f:40:65:ef:a5:1a:d7:c6:48:0f: 23:90:15:73:cd:4d:e5:c8:98:bf:da:95:9a:1e:e8: 2e:e6:75:e7:31:11:7e:42:88:ed:eb:12:71:bb:2e: 6d:32:fe:a6:3a:08:bd:5f:b9:de:4d:84:8c:b1:37: cd:d8:e6:ea:ba:d2:b8:ea:37:40:30:4f:15:e0:86: 02:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:F1:69:9E:E9:14:AA:9D:AF:C0:A5:08:EF:81:A0:B8:DC:C7:1E:FF X509v3 Authority Key Identifier: keyid:01:1D:88:24:6A:B5:7E:20:4D:EA:51:E9:24:3C:67:25:2D:CB:A5:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AR2IJGq1fiBN6lHpJDxnJS3LpYU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:c3:e4:e1:5a:6d:e8:84:3f:3a:b0:65:65:09:fc:43:e6:ce: 94:00:ed:52:79:e3:88:68:8e:e7:85:fd:9c:13:3e:5b:4f:67: 73:96:84:da:bf:5a:3f:11:c3:b8:08:f3:cb:54:30:08:7d:de: b2:1d:86:fc:20:14:32:30:55:4a:f0:17:cf:bc:46:32:55:0d: 9a:b0:ed:e4:63:90:56:8a:7f:a4:9d:21:c2:0b:84:2b:4c:08: b4:5f:47:5e:cd:53:b7:04:a1:88:d4:cf:15:25:ba:91:60:96: 2d:26:d4:70:e5:23:f9:bd:a6:af:c1:d9:b3:16:2d:f9:01:9e: db:4d:b7:f9:e0:44:ea:6c:9d:8d:22:17:9f:42:36:99:07:01: 77:36:12:cf:4e:9a:e5:c9:e0:ef:b7:ba:ed:8b:d7:57:82:96: 62:bb:03:cd:23:13:a3:f1:43:b8:23:0e:8f:f8:93:72:00:6c: ee:c1:dc:cf:b3:ba:1b:76:a7:70:03:06:41:be:9a:3a:14:c2: 36:eb:96:71:c8:dd:ad:83:0a:16:22:ae:a6:a0:77:f9:9f:7d: 52:ea:3e:3d:e1:c7:99:bf:69:4d:0c:2c:79:49:e3:74:db:a4: 1b:56:7d:2e:b1:74:48:7d:c7:79:46:0a:27:cc:63:de:c7:a2: 32:09:77:54 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaUUuI8D2KXOpf391IHmcVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxMWQ4ODI0NmFiNTdlMjA0ZGVhNTFlOTI0M2M2NzI1MmRj YmE1ODUwHhcNMjUxMjI2MTEwMDM1WhcNMjUxMjI3MTEwMDM1WjAzMTEwLwYDVQQD Eyg4M2YxNjk5ZWU5MTRhYTlkYWZjMGE1MDhlZjgxYTBiOGRjYzcxZWZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAth6/cibwZpmSNosYWiqR+/YPh7dz ITGPRR2lpS47OIajarTpHNOTvcXc958PKnxTIqGh0oLCecbG4OSMZRUcFKHW8QAy GNCTo5ZeR5M6y7xJqGJzkDF5+At3LK/IOmu3jSNeS15vSIU9vKTNiMZC+FgHHUCg kNl8yAh53NMjQhdVF4jHdfgkLGkqUl7BVvT+6eCB/isnCrE3BZAiIYx+VRQMVN/n 8YVbtpzEc8uYueU5zcPz0pik8j9AZe+lGtfGSA8jkBVzzU3lyJi/2pWaHugu5nXn MRF+Qojt6xJxuy5tMv6mOgi9X7neTYSMsTfN2ObqutK46jdAME8V4IYC5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIPxaZ7pFKqdr8ClCO+BoLjcxx7/MB8GA1UdIwQY MBaAFAEdiCRqtX4gTepR6SQ8ZyUty6WFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVIySUpHcTFmaUJONmxIcEpEeG5KUzNMcFlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC9jZDk5NzYtMmNkMi00NjZmLWFiZTct MDA4YTgwZjZmZjExLzEvQVIySUpHcTFmaUJONmxIcEpEeG5KUzNMcFlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC9jZDk5NzYtMmNkMi00NjZmLWFiZTctMDA4YTgwZjZmZjEx LzEvQVIySUpHcTFmaUJONmxIcEpEeG5KUzNMcFlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlsPk4Vpt 6IQ/OrBlZQn8Q+bOlADtUnnjiGiO54X9nBM+W09nc5aE2r9aPxHDuAjzy1QwCH3e sh2G/CAUMjBVSvAXz7xGMlUNmrDt5GOQVop/pJ0hwguEK0wItF9HXs1TtwShiNTP FSW6kWCWLSbUcOUj+b2mr8HZsxYt+QGe2023+eBE6mydjSIXn0I2mQcBdzYSz06a 5cng77e67YvXV4KWYrsDzSMTo/FDuCMOj/iTcgBs7sHcz7O6G3ancAMGQb6aOhTC NuuWccjdrYMKFiKupqB3+Z99Uuo+PeHHmb9pTQwseUnjdNukG1Z9LrF0SH3HeUYK J8xj3seiMgl3VA== -----END CERTIFICATE-----Generated at Fri Dec 26 14:16:00 2025 by rpki-client