This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft File: 2gszzdt5m3vPXT3OAE_bqMPoZP8.mft (raw, json) Hash identifier: /6Ag0j2L74Csx/Rl6vRX6ceIjuoHZrvcLEklFMVgw9w= Subject key identifier: A3:CD:DB:4F:6A:87:0C:27:7D:5D:EB:A9:57:C6:86:87:F4:0F:9C:3A Authority key identifier: DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF Certificate issuer: /CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff Certificate serial: 019B1A97ACB3CDDA4F9B06BF4E111F229AA1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft Manifest number: 0DE0 Signing time: Sun 14 Dec 2025 02:01:46 +0000 Manifest this update: Sun 14 Dec 2025 02:01:46 +0000 Manifest next update: Mon 15 Dec 2025 02:01:46 +0000 Files and hashes: 1: 17FLk26rZWNpnvEJucbEAG-7zqY.roa (hash: qMmpcRGKwOqOR5+GsVwNkgRbdBAdNorVpaMiale+nXI=) 2: 2gszzdt5m3vPXT3OAE_bqMPoZP8.crl (hash: Wub8IEyu00hgfYd1Tm+rlVG5kexGRAVFlXfUdvefBiE=) 3: bBGzNd5qGUUIPYH3-5zWMnwwyJg.roa (hash: 290Z2J6Jo9xanYpdqpciKr53wSmtU/PW4k3Qs+NnOTs=) 4: k29cbE30TGhu-1q8rRu7-jpqTg4.roa (hash: 9mQL8HUgIQzEZ7MXmoS/sUavd/K/UaaalJ5/ztoLSTk=) 5: s7mUu7WrVHVPJEBCCdi0H3bHpis.roa (hash: ExGJpFM76OJZURK1GFJNiBKKffY4pIrBrUBBm9tcC8g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1a:97:ac:b3:cd:da:4f:9b:06:bf:4e:11:1f:22:9a:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff Validity Not Before: Dec 14 02:01:46 2025 GMT Not After : Dec 15 02:01:46 2025 GMT Subject: CN=a3cddb4f6a870c277d5deba957c68687f40f9c3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:74:43:b1:eb:03:b8:c7:b2:d5:7a:81:73:ec: 19:aa:3d:27:ad:19:01:01:a3:dc:d6:3e:21:be:2a: 1e:70:88:4d:eb:19:3c:cc:33:83:9b:43:43:d3:ec: a3:99:14:3a:ab:26:e1:b5:7b:44:88:09:23:60:59: 4a:ff:7e:40:e7:4d:32:d9:ac:b3:bc:7c:7d:2f:b3: 97:a2:ee:7a:de:f2:36:4b:10:0f:bf:bd:65:f2:b5: 88:5e:0b:7f:0d:a5:6f:6e:e5:c3:da:ba:77:f1:23: 34:09:21:4d:c8:79:2a:96:56:72:ad:4c:d3:3e:64: 54:93:a5:64:2d:4c:a7:18:01:49:32:ac:16:4f:04: ea:34:7e:14:a5:62:39:e3:2f:89:15:f0:67:9f:01: c8:06:7a:fb:9e:5f:57:ff:5b:64:1e:1d:49:e8:1d: 10:04:04:0f:74:86:bb:d4:8c:06:3e:40:cb:81:29: a0:e3:21:e0:ae:e7:80:bf:36:d3:20:03:7e:15:5c: 7d:41:69:0d:c2:ce:54:a6:4f:e8:15:1b:22:81:27: 92:56:fb:1a:8d:9b:cc:cb:10:24:4d:67:b3:3a:3f: 78:c4:53:bd:ab:eb:fd:4b:bd:ff:02:d8:83:8f:b5: af:f6:8a:ad:33:43:0f:b2:42:03:cb:ad:58:7b:3b: 9d:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:CD:DB:4F:6A:87:0C:27:7D:5D:EB:A9:57:C6:86:87:F4:0F:9C:3A X509v3 Authority Key Identifier: keyid:DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:00:f9:7d:c1:ce:f5:66:06:18:2e:78:81:64:5a:81:85:6f: 42:c3:90:a4:b5:57:a5:ee:ac:c8:de:e5:c1:1b:f0:50:90:9c: 31:20:a9:0c:18:1c:ee:97:14:f4:c5:c1:19:e1:a4:e7:59:6d: 33:33:97:e6:d1:64:cf:69:ba:19:fd:24:6c:0b:35:b0:2c:c0: f0:a4:9e:c7:22:0f:f1:c9:b2:0b:0f:aa:c4:f7:c4:8f:94:cf: 4a:ff:b4:fb:5b:c0:d4:01:fe:bb:b0:d6:9b:91:87:05:da:0f: 73:aa:b8:c8:58:28:d3:e3:f1:17:4d:8a:b3:10:12:41:03:a0: b6:6c:9b:1f:8b:d8:76:98:b1:0d:9b:78:16:e5:80:c7:62:ff: 76:dd:f4:eb:69:0d:96:8b:fd:df:e6:0a:c4:92:d6:32:c5:99: 3f:c5:aa:b6:0f:cd:e6:0c:52:e8:a8:77:40:77:46:45:4f:57: 14:84:52:69:af:da:f6:1a:66:de:16:5d:c8:47:d4:6d:72:68: ae:d5:fb:e2:ea:af:c4:ec:42:f9:05:94:58:d1:63:88:e8:38: bb:1c:91:80:7a:37:04:a8:26:31:b8:45:c2:ff:f7:79:49:dc: 0d:0e:9b:ca:92:42:1f:e2:e1:a7:28:76:06:05:9d:83:73:93: 17:b6:a3:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsal6yzzdpPmwa/ThEfIpqhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhMGIzM2NkZGI3OTliN2JjZjVkM2RjZTAwNGZkYmE4YzNl ODY0ZmYwHhcNMjUxMjE0MDIwMTQ2WhcNMjUxMjE1MDIwMTQ2WjAzMTEwLwYDVQQD EyhhM2NkZGI0ZjZhODcwYzI3N2Q1ZGViYTk1N2M2ODY4N2Y0MGY5YzNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAinRDsesDuMey1XqBc+wZqj0nrRkB AaPc1j4hvioecIhN6xk8zDODm0ND0+yjmRQ6qybhtXtEiAkjYFlK/35A500y2ayz vHx9L7OXou563vI2SxAPv71l8rWIXgt/DaVvbuXD2rp38SM0CSFNyHkqllZyrUzT PmRUk6VkLUynGAFJMqwWTwTqNH4UpWI54y+JFfBnnwHIBnr7nl9X/1tkHh1J6B0Q BAQPdIa71IwGPkDLgSmg4yHgrueAvzbTIAN+FVx9QWkNws5Upk/oFRsigSeSVvsa jZvMyxAkTWezOj94xFO9q+v9S73/AtiDj7Wv9oqtM0MPskIDy61YezudDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKPN209qhwwnfV3rqVfGhof0D5w6MB8GA1UdIwQY MBaAFNoLM83beZt7z109zgBP26jD6GT/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmdzenpkdDVtM3ZQWFQzT0FFX2JxTVBvWlA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8wMzJkOGItNDg4MS00NmZhLWI2NzQt NzczM2JkODg4ZTI4LzEvMmdzenpkdDVtM3ZQWFQzT0FFX2JxTVBvWlA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS8wMzJkOGItNDg4MS00NmZhLWI2NzQtNzczM2JkODg4ZTI4 LzEvMmdzenpkdDVtM3ZQWFQzT0FFX2JxTVBvWlA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiQD5fcHO 9WYGGC54gWRagYVvQsOQpLVXpe6syN7lwRvwUJCcMSCpDBgc7pcU9MXBGeGk51lt MzOX5tFkz2m6Gf0kbAs1sCzA8KSexyIP8cmyCw+qxPfEj5TPSv+0+1vA1AH+u7DW m5GHBdoPc6q4yFgo0+PxF02KsxASQQOgtmybH4vYdpixDZt4FuWAx2L/dt3062kN lov93+YKxJLWMsWZP8Wqtg/N5gxS6Kh3QHdGRU9XFIRSaa/a9hpm3hZdyEfUbXJo rtX74uqvxOxC+QWUWNFjiOg4uxyRgHo3BKgmMbhFwv/3eUncDQ6bypJCH+Lhpyh2 BgWdg3OTF7ajGA== -----END CERTIFICATE-----Generated at Sun Dec 14 08:45:43 2025 by rpki-client