This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft File: M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft (raw, json) Hash identifier: 4fFvAsjRz6qO74CwyOzjs6ZdPRVJC7wCRql6HK0v4uc= Subject key identifier: 0C:9A:88:5C:50:5C:98:ED:2B:0F:33:C2:E0:0E:97:F9:EA:AB:45:36 Authority key identifier: 33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99 Certificate issuer: /CN=3363d72cdd93ab02fe3f788d621d715d9efd7699 Certificate serial: 019B405B83DB971A986663A6746BBD325487 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft Manifest number: 136F Signing time: Sun 21 Dec 2025 10:01:37 +0000 Manifest this update: Sun 21 Dec 2025 10:01:37 +0000 Manifest next update: Mon 22 Dec 2025 10:01:37 +0000 Files and hashes: 1: M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl (hash: w+S3J0Wjfe2zkABTBcXpA847Bc2TdWfpqzFrYPLzeCc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 10:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:5b:83:db:97:1a:98:66:63:a6:74:6b:bd:32:54:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3363d72cdd93ab02fe3f788d621d715d9efd7699 Validity Not Before: Dec 21 10:01:37 2025 GMT Not After : Dec 22 10:01:37 2025 GMT Subject: CN=0c9a885c505c98ed2b0f33c2e00e97f9eaab4536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:7d:1f:6c:0f:c9:8f:2e:45:67:43:f0:94:ab: 29:e0:e3:d0:cc:21:f7:2e:13:c8:c0:10:33:89:7d: 1c:9c:65:b2:c4:4b:54:b5:5c:39:91:c6:82:91:f3: 50:0c:93:41:fd:2d:58:b7:2b:57:a0:d9:6f:57:56: 49:3d:aa:8b:fb:e2:cd:b6:71:5e:93:36:fc:dc:30: f2:9f:81:a6:38:39:a3:1e:0f:49:b0:ad:00:03:ea: 2c:a0:c0:6f:64:69:62:e7:9b:b9:9f:c2:1f:5f:71: 7b:0b:57:f3:88:65:58:39:c0:5a:73:13:bc:68:04: a5:51:b8:33:42:00:0a:3d:89:76:8e:6a:9a:33:d9: 67:e4:70:73:15:92:3d:99:cc:42:00:0a:42:18:3d: e1:61:01:a3:b0:63:68:2e:b5:4d:46:10:dd:f3:13: c3:24:52:18:5c:de:fb:79:c8:bb:49:1e:7f:22:d6: b5:05:ad:2a:4d:20:5f:7d:b7:e5:d5:d5:27:3b:05: 69:81:2c:fc:e8:b2:61:0c:d2:8b:53:ea:5c:a2:a3: d4:cc:1f:4f:ff:02:71:2b:ee:2a:48:12:d1:6c:9c: 96:26:da:93:57:be:17:6a:27:a4:b8:12:f3:5b:79: d1:b3:53:14:5c:68:ee:28:66:e3:1e:86:ff:70:27: b9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:9A:88:5C:50:5C:98:ED:2B:0F:33:C2:E0:0E:97:F9:EA:AB:45:36 X509v3 Authority Key Identifier: keyid:33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:99:e2:3a:25:65:14:4f:16:de:37:ab:0c:fc:62:5e:76:39: ca:81:e2:2e:5c:35:b8:1a:60:b9:f2:f5:ad:ce:ea:5d:0e:fe: 76:8d:7f:04:3f:31:10:85:e6:7c:6f:bc:ad:aa:90:b8:94:a5: 5f:68:71:9a:41:1d:1d:93:01:1f:ef:86:bf:4b:26:fe:a7:89: 27:98:1a:19:90:ea:e9:5d:ea:23:f0:ee:00:cd:e7:05:38:1a: f4:48:ca:22:ad:be:6e:ab:6a:d6:f0:dd:d1:2e:f6:3e:6a:02: 12:38:54:0b:6b:e7:3e:69:0d:04:d9:00:b2:b1:d5:00:87:5b: 40:b3:36:76:1d:0c:3b:8b:46:5b:d9:93:aa:d0:3d:bd:26:59: d3:94:06:6f:5a:35:44:d0:f9:c8:1e:2a:d7:97:10:47:46:7b: 94:4e:35:c4:07:15:74:2e:29:e9:3e:9b:4e:56:f1:da:38:65: 5c:8b:6e:f1:b4:89:3b:9d:b2:8d:e4:ce:45:73:a7:13:83:bf: d6:12:25:c6:94:85:1d:6a:cf:16:e8:b5:75:2e:d3:fd:3a:89: bc:e9:57:a2:fb:72:0f:f8:fd:9a:2a:08:1f:44:c6:a3:65:88: 0e:3a:17:fe:57:6c:7f:be:21:f1:4c:d7:2c:df:3c:6e:06:14: 0c:22:e8:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtAW4PblxqYZmOmdGu9MlSHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzNjNkNzJjZGQ5M2FiMDJmZTNmNzg4ZDYyMWQ3MTVkOWVm ZDc2OTkwHhcNMjUxMjIxMTAwMTM3WhcNMjUxMjIyMTAwMTM3WjAzMTEwLwYDVQQD EygwYzlhODg1YzUwNWM5OGVkMmIwZjMzYzJlMDBlOTdmOWVhYWI0NTM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmn0fbA/Jjy5FZ0PwlKsp4OPQzCH3 LhPIwBAziX0cnGWyxEtUtVw5kcaCkfNQDJNB/S1YtytXoNlvV1ZJPaqL++LNtnFe kzb83DDyn4GmODmjHg9JsK0AA+osoMBvZGli55u5n8IfX3F7C1fziGVYOcBacxO8 aASlUbgzQgAKPYl2jmqaM9ln5HBzFZI9mcxCAApCGD3hYQGjsGNoLrVNRhDd8xPD JFIYXN77eci7SR5/Ita1Ba0qTSBffbfl1dUnOwVpgSz86LJhDNKLU+pcoqPUzB9P /wJxK+4qSBLRbJyWJtqTV74XaiekuBLzW3nRs1MUXGjuKGbjHob/cCe5SwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAyaiFxQXJjtKw8zwuAOl/nqq0U2MB8GA1UdIwQY MBaAFDNj1yzdk6sC/j94jWIdcV2e/XaZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTTJQWExOMlRxd0wtUDNpTlloMXhYWjc5ZHBrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS9jOWMwZDgtNzAxMy00NmMzLTljMjgt NDM0ZjllMGQ3NTBjLzEvTTJQWExOMlRxd0wtUDNpTlloMXhYWjc5ZHBrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS9jOWMwZDgtNzAxMy00NmMzLTljMjgtNDM0ZjllMGQ3NTBj LzEvTTJQWExOMlRxd0wtUDNpTlloMXhYWjc5ZHBrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARpniOiVl FE8W3jerDPxiXnY5yoHiLlw1uBpgufL1rc7qXQ7+do1/BD8xEIXmfG+8raqQuJSl X2hxmkEdHZMBH++Gv0sm/qeJJ5gaGZDq6V3qI/DuAM3nBTga9EjKIq2+bqtq1vDd 0S72PmoCEjhUC2vnPmkNBNkAsrHVAIdbQLM2dh0MO4tGW9mTqtA9vSZZ05QGb1o1 RND5yB4q15cQR0Z7lE41xAcVdC4p6T6bTlbx2jhlXItu8bSJO52yjeTORXOnE4O/ 1hIlxpSFHWrPFui1dS7T/TqJvOlXovtyD/j9mioIH0TGo2WIDjoX/ldsf74h8UzX LN88bgYUDCLoyw== -----END CERTIFICATE-----Generated at Sun Dec 21 17:21:13 2025 by rpki-client