This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft File: 2fwL7GDQus4YiWd72buQGQzE_SI.mft (raw, json) Hash identifier: vkNIr6Selg74auYXkLurK/8dMMdWj0eRjNnfAeopImE= Subject key identifier: C5:D2:B4:72:75:F1:BA:8C:1A:26:4A:3D:53:BE:36:20:DE:D8:E0:46 Authority key identifier: D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22 Certificate issuer: /CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22 Certificate serial: 019AAB6FF6B53033C873376EDC21DCDF6D3D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft Manifest number: 1742 Signing time: Sat 22 Nov 2025 12:00:32 +0000 Manifest this update: Sat 22 Nov 2025 12:00:32 +0000 Manifest next update: Sun 23 Nov 2025 12:00:32 +0000 Files and hashes: 1: 0I8Tv0UylD63i4vV2xwB6rppwxI.roa (hash: QA7YvKS+a4NHe+cVmaIAaBQvm5w2dBSibTU49pm5mxM=) 2: 2fwL7GDQus4YiWd72buQGQzE_SI.crl (hash: 1+hU+BiSqmvoQCypXx9diP7rtShjptdrj/1pHFGMFWU=) 3: 8Dt0TuVJVMCN6RnRhXhKGlf_lII.roa (hash: sSGLTETKxbNSq3MrBGV2DgOI7we1i0Q8mkHNa5K3SUY=) 4: BvWnnBlWW44V8sVOxm98LqahBBA.roa (hash: 6mRHK+yOMdXINEIp3lFBzgdVlSN/9ntwMd5HVLaTroY=) 5: GSlFodh40GWtFXJ0cvtNrC5QQZs.roa (hash: OLiyxfNtsv2LTCfXCwftWJpdQJ+N0fnXvmkjqgnZmno=) 6: S-JnIhmXL5e2DsjQFgno_k2Vz8E.roa (hash: /YQsaxBTg9/GiAQu4cI2KHBUoCqKcZjkOS7l2+NOeWg=) 7: pVnXYoxQriC-WtOLcwsA6Za2gDI.roa (hash: 1qcQ0hH+Vk55dAqX/63+B6qLf3cPHgQEfJdfgWLNx0w=) 8: q_VxYTNksLn-A2DiKrfsqvcSMaw.roa (hash: 9v/49noAVbeRiYCi+xkrBzJwESjZSadJSkvsw1PN9x8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 23 Nov 2025 12:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:ab:6f:f6:b5:30:33:c8:73:37:6e:dc:21:dc:df:6d:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22 Validity Not Before: Nov 22 12:00:32 2025 GMT Not After : Nov 23 12:00:32 2025 GMT Subject: CN=c5d2b47275f1ba8c1a264a3d53be3620ded8e046 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:e9:a9:7d:91:a7:1d:c4:3a:86:ec:8a:9a:7e: 5f:f2:f6:7a:8b:c4:99:1f:e1:03:0f:7a:fe:cf:2b: b4:b5:a2:77:dc:33:10:2d:11:e5:54:52:d5:ca:e7: a9:d7:57:cb:54:e1:12:c0:cb:15:98:b0:54:11:61: ff:95:8a:ba:ef:a9:d3:a7:a3:8c:f2:b3:ae:d5:74: 63:3c:66:17:b5:dc:be:9e:0b:7f:17:48:5d:2a:55: 74:cd:c6:6f:84:51:75:eb:f0:13:fc:11:92:e9:34: 5f:66:fe:96:f2:15:3d:b0:55:8b:75:1d:da:41:c7: 9e:53:77:0b:c7:7d:34:1e:8d:db:d6:fc:04:0e:e9: 1f:b8:e7:ec:57:9b:17:76:47:16:fd:69:fc:06:12: 46:c9:8e:61:f1:be:3e:18:a6:ba:ca:91:7b:78:e6: dd:44:98:65:7e:25:8a:a7:b1:50:bb:ca:7e:a8:74: 21:b1:87:62:d9:9a:3a:23:71:a6:ad:b2:d3:9b:7d: 31:0f:3f:5c:9c:0d:17:3b:96:68:3d:7e:fc:c0:e3: 4f:64:90:be:a8:da:73:bb:a9:04:27:e6:2c:6b:fe: 12:df:2f:19:37:ae:48:bc:96:57:bb:08:1f:3d:6e: aa:2d:f0:ca:40:18:0b:78:da:0a:f9:9c:cb:3c:7e: b5:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:D2:B4:72:75:F1:BA:8C:1A:26:4A:3D:53:BE:36:20:DE:D8:E0:46 X509v3 Authority Key Identifier: keyid:D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:67:eb:0d:40:93:1d:0b:d0:9a:10:cd:8b:76:b8:e1:dd:78: 66:d3:30:5b:e2:dd:cb:d1:9f:72:66:61:19:61:6a:eb:08:75: 0d:ea:72:7c:4d:56:79:9b:85:4d:db:ac:b0:24:88:88:13:fd: a8:9b:f0:0c:c5:72:fc:59:1f:e8:20:28:8a:cb:b3:23:10:58: 0f:e8:37:61:f9:40:cf:bb:78:1d:bc:fb:da:07:6e:cd:1c:4a: 66:2f:7f:bc:96:90:66:a3:f2:7b:cd:aa:14:3f:e3:e7:d3:2f: 6f:31:5f:4b:4d:5e:3c:34:03:89:6d:1f:73:03:5d:4a:79:0e: 50:4a:84:47:4b:6b:33:b2:92:d9:ce:72:b7:6c:ac:4e:10:4d: ad:44:89:20:33:95:37:6d:cf:50:68:9b:6e:b1:22:63:30:51: 5f:a0:7c:36:ba:aa:7a:05:1c:b8:41:a7:8a:1a:1b:66:65:89: 56:2f:50:c9:2d:54:7b:8a:3c:b7:23:44:01:18:0d:bc:54:85: 1f:ad:39:0b:65:72:e8:d5:65:1c:3e:21:25:c0:1c:ef:e7:8d: 06:e5:3e:2a:23:e7:4f:ff:cf:1f:9d:2f:bd:c9:66:95:b2:a1: 86:92:1c:11:c4:bb:e4:e0:e7:36:d2:3e:33:64:ca:ab:a0:9d: 9d:0b:ba:c9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZqrb/a1MDPIczdu3CHc3209MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5ZmMwYmVjNjBkMGJhY2UxODg5Njc3YmQ5YmI5MDE5MGNj NGZkMjIwHhcNMjUxMTIyMTIwMDMyWhcNMjUxMTIzMTIwMDMyWjAzMTEwLwYDVQQD EyhjNWQyYjQ3Mjc1ZjFiYThjMWEyNjRhM2Q1M2JlMzYyMGRlZDhlMDQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlumpfZGnHcQ6huyKmn5f8vZ6i8SZ H+EDD3r+zyu0taJ33DMQLRHlVFLVyuep11fLVOESwMsVmLBUEWH/lYq676nTp6OM 8rOu1XRjPGYXtdy+ngt/F0hdKlV0zcZvhFF16/AT/BGS6TRfZv6W8hU9sFWLdR3a QceeU3cLx300Ho3b1vwEDukfuOfsV5sXdkcW/Wn8BhJGyY5h8b4+GKa6ypF7eObd RJhlfiWKp7FQu8p+qHQhsYdi2Zo6I3GmrbLTm30xDz9cnA0XO5ZoPX78wONPZJC+ qNpzu6kEJ+Ysa/4S3y8ZN65IvJZXuwgfPW6qLfDKQBgLeNoK+ZzLPH61rwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMXStHJ18bqMGiZKPVO+NiDe2OBGMB8GA1UdIwQY MBaAFNn8C+xg0LrOGIlne9m7kBkMxP0iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmZ3TDdHRFF1czRZaVdkNzJidVFHUXpFX1NJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS9iMGQ2ZTYtMmVkNy00OTI4LWFkNjkt MzQ2OTAzNGZhNDQxLzEvMmZ3TDdHRFF1czRZaVdkNzJidVFHUXpFX1NJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS9iMGQ2ZTYtMmVkNy00OTI4LWFkNjktMzQ2OTAzNGZhNDQx LzEvMmZ3TDdHRFF1czRZaVdkNzJidVFHUXpFX1NJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXmfrDUCT HQvQmhDNi3a44d14ZtMwW+Ldy9GfcmZhGWFq6wh1DepyfE1WeZuFTdussCSIiBP9 qJvwDMVy/Fkf6CAoisuzIxBYD+g3YflAz7t4Hbz72gduzRxKZi9/vJaQZqPye82q FD/j59MvbzFfS01ePDQDiW0fcwNdSnkOUEqER0trM7KS2c5yt2ysThBNrUSJIDOV N23PUGibbrEiYzBRX6B8NrqqegUcuEGnihobZmWJVi9QyS1Ue4o8tyNEARgNvFSF H605C2Vy6NVlHD4hJcAc7+eNBuU+KiPnT//PH50vvclmlbKhhpIcEcS75ODnNtI+ M2TKq6CdnQu6yQ== -----END CERTIFICATE-----Generated at Sat Nov 22 21:43:56 2025 by rpki-client