This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.mft File: 2yOWhUCfZLocOlSo7xQckk5x2JI.mft (raw, json) Hash identifier: lFyOfHtH7VgsAnS5WoaDBe/HtnUb2SOa+zc+D0LnFH4= Subject key identifier: B4:24:BE:26:86:D3:70:A7:08:B4:1F:5B:FB:C8:F9:1F:F3:FC:70:28 Authority key identifier: DB:23:96:85:40:9F:64:BA:1C:3A:54:A8:EF:14:1C:92:4E:71:D8:92 Certificate issuer: /CN=db239685409f64ba1c3a54a8ef141c924e71d892 Certificate serial: 019B0E2591F002F08DFFE806C116902D360F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2yOWhUCfZLocOlSo7xQckk5x2JI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.mft Manifest number: 177D Signing time: Thu 11 Dec 2025 16:01:41 +0000 Manifest this update: Thu 11 Dec 2025 16:01:41 +0000 Manifest next update: Fri 12 Dec 2025 16:01:41 +0000 Files and hashes: 1: 2yOWhUCfZLocOlSo7xQckk5x2JI.crl (hash: Koz1uycLmJKk/fIxyzFZTtYbPb/uiz1LXR9dYmFZ5jU=) 2: 9AJVL74Koo20QslQbsW5LgWmuN0.roa (hash: ywfcVkqztZIsa4yV5w7CN7DaKI/bsZeXQWa9VUzq1PU=) 3: J0YtvwjSdo7VUDjhuTN3dGHM7bY.roa (hash: 44Y8BMgB+sH5b8+axfLWpVcHTARgYoCnMt7xMsge5P8=) 4: _SYIhCf3pmsd3GO_bPZ9LmXX9yI.roa (hash: yLq+2S7VzCleP2MSt8WxD7vanT3ofV/BHsfwwfGB6uA=) 5: k8SmLkdRoGivF16GFM2hqIOouBo.roa (hash: Ktq3us91dVySgQu0CPwEqVesPVx0pk3gPFhcWjBn49E=) 6: qHajeM7KS0OkvXZ6gKIN6UcTzPg.roa (hash: 9Inme+UM24UQgsOmhNMhOS7m0XYuhceY/GRE7b5eI94=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.crl rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.mft rsync://rpki.ripe.net/repository/DEFAULT/2yOWhUCfZLocOlSo7xQckk5x2JI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:25:91:f0:02:f0:8d:ff:e8:06:c1:16:90:2d:36:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db239685409f64ba1c3a54a8ef141c924e71d892 Validity Not Before: Dec 11 16:01:41 2025 GMT Not After : Dec 12 16:01:41 2025 GMT Subject: CN=b424be2686d370a708b41f5bfbc8f91ff3fc7028 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:72:81:23:01:ed:e9:39:b5:90:5d:85:ff:70: cc:a1:a9:b3:0f:90:0e:85:46:7d:ca:9d:68:18:60: a0:49:25:99:fb:3e:c4:cc:50:36:bd:a0:b0:74:3b: 85:f0:1f:fd:ef:f1:b1:51:5e:d6:e2:9a:c4:ab:cc: 52:52:74:33:c1:b4:d4:d9:c5:58:63:9e:5d:42:cc: 17:45:06:e2:13:8f:22:e2:86:26:e5:b8:6b:0e:87: ec:c0:c7:4c:b1:75:8d:77:f2:ac:3a:b4:78:84:f1: 22:7e:7d:28:fd:3a:59:78:6e:7c:45:b5:bd:90:f9: d1:44:f2:9f:bc:e5:01:93:d8:9d:11:c9:bb:7d:c4: 52:64:f6:15:de:67:9c:3f:01:98:09:0e:49:7a:8a: 38:a7:c9:f0:5f:3e:42:25:cd:da:48:66:80:32:5e: 87:ef:1a:1f:dc:9d:46:83:9b:01:7e:28:15:83:5e: 63:e3:9f:79:00:79:a5:91:eb:2d:19:96:35:a0:5c: b7:3e:49:f3:45:68:da:56:f7:84:b7:b3:55:a0:02: 4e:8c:c9:13:2d:9b:5a:17:30:02:ce:1a:34:cb:56: 73:73:c9:37:f5:75:35:43:70:b0:f7:d1:a5:ed:06: 7d:8c:01:23:32:b6:93:0a:7c:a5:0d:43:32:de:83: d0:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:24:BE:26:86:D3:70:A7:08:B4:1F:5B:FB:C8:F9:1F:F3:FC:70:28 X509v3 Authority Key Identifier: keyid:DB:23:96:85:40:9F:64:BA:1C:3A:54:A8:EF:14:1C:92:4E:71:D8:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2yOWhUCfZLocOlSo7xQckk5x2JI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:84:7d:a5:6c:6d:4e:f4:6a:d3:06:d6:f0:78:e2:6e:f3:8c: 64:07:83:c4:b7:a2:92:11:f1:c0:c3:d3:5d:d9:f3:33:3e:c4: 5f:bd:8f:aa:12:c6:1f:a8:76:84:e6:0b:b8:0a:1f:19:02:24: 60:1f:e6:eb:a0:a0:fa:7b:e7:07:ba:7f:34:35:7c:a9:15:c9: ff:4e:1c:8c:3d:0c:5f:78:5d:73:fd:2f:3c:eb:87:91:6f:c1: 56:d6:c1:4f:65:37:64:a1:48:8b:81:8f:16:07:eb:94:3b:45: ed:70:3b:a9:26:9e:dd:3d:8f:51:ae:f8:f1:8a:b8:24:7f:c8: 25:60:7a:1f:44:66:bb:fd:64:ac:e1:1f:93:33:5a:da:3b:b2: 01:b8:a2:75:3e:6e:28:1c:15:02:ba:53:04:f9:d4:96:db:43: 51:8d:5d:02:3a:bf:e6:c7:7e:03:eb:cf:14:61:ff:79:66:c4: 24:a4:83:c2:4d:23:39:26:ed:78:a8:63:64:fd:6f:2f:af:7a: b2:d8:3d:45:33:76:da:8d:81:fc:56:7e:8e:a1:d0:e8:c1:a2: ec:62:31:13:20:22:b4:55:74:f4:9b:2f:5c:14:7e:4f:95:c5: 1f:d3:e3:64:97:6d:ce:8f:01:6c:d2:08:4a:b1:f2:c0:92:37: 81:a9:7b:bd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOJZHwAvCN/+gGwRaQLTYPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiMjM5Njg1NDA5ZjY0YmExYzNhNTRhOGVmMTQxYzkyNGU3 MWQ4OTIwHhcNMjUxMjExMTYwMTQxWhcNMjUxMjEyMTYwMTQxWjAzMTEwLwYDVQQD EyhiNDI0YmUyNjg2ZDM3MGE3MDhiNDFmNWJmYmM4ZjkxZmYzZmM3MDI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0XKBIwHt6Tm1kF2F/3DMoamzD5AO hUZ9yp1oGGCgSSWZ+z7EzFA2vaCwdDuF8B/97/GxUV7W4prEq8xSUnQzwbTU2cVY Y55dQswXRQbiE48i4oYm5bhrDofswMdMsXWNd/KsOrR4hPEifn0o/TpZeG58RbW9 kPnRRPKfvOUBk9idEcm7fcRSZPYV3mecPwGYCQ5Jeoo4p8nwXz5CJc3aSGaAMl6H 7xof3J1Gg5sBfigVg15j4595AHmlkestGZY1oFy3PknzRWjaVveEt7NVoAJOjMkT LZtaFzACzho0y1Zzc8k39XU1Q3Cw99Gl7QZ9jAEjMraTCnylDUMy3oPQswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLQkviaG03CnCLQfW/vI+R/z/HAoMB8GA1UdIwQY MBaAFNsjloVAn2S6HDpUqO8UHJJOcdiSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnlPV2hVQ2ZaTG9jT2xTbzd4UWNrazV4MkpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC84ZDZmZDctMWNiMy00MTNjLWEzMmIt MmVmNDQ3ZTFiMDhjLzEvMnlPV2hVQ2ZaTG9jT2xTbzd4UWNrazV4MkpJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMC84ZDZmZDctMWNiMy00MTNjLWEzMmItMmVmNDQ3ZTFiMDhj LzEvMnlPV2hVQ2ZaTG9jT2xTbzd4UWNrazV4MkpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU4R9pWxt TvRq0wbW8HjibvOMZAeDxLeikhHxwMPTXdnzMz7EX72PqhLGH6h2hOYLuAofGQIk YB/m66Cg+nvnB7p/NDV8qRXJ/04cjD0MX3hdc/0vPOuHkW/BVtbBT2U3ZKFIi4GP FgfrlDtF7XA7qSae3T2PUa748Yq4JH/IJWB6H0Rmu/1krOEfkzNa2juyAbiidT5u KBwVArpTBPnUlttDUY1dAjq/5sd+A+vPFGH/eWbEJKSDwk0jOSbteKhjZP1vL696 stg9RTN22o2B/FZ+jqHQ6MGi7GIxEyAitFV09JsvXBR+T5XFH9PjZJdtzo8BbNII SrHywJI3gal7vQ== -----END CERTIFICATE-----Generated at Fri Dec 12 00:31:01 2025 by rpki-client