This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.mft File: 2AtJfVG9n0e4T2k9aH--jPbP-3U.mft (raw, json) Hash identifier: H++aDjgByFor4AbKYC79sUTF3u3g2Fe2I0ky3BTidZs= Subject key identifier: E6:65:B9:62:7C:87:30:BE:26:07:BB:10:C4:84:49:56:39:72:EE:D6 Authority key identifier: D8:0B:49:7D:51:BD:9F:47:B8:4F:69:3D:68:7F:BE:8C:F6:CF:FB:75 Certificate issuer: /CN=d80b497d51bd9f47b84f693d687fbe8cf6cffb75 Certificate serial: 019B3079B2982FF9307CB46A5D9A5CB53BFB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2AtJfVG9n0e4T2k9aH--jPbP-3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.mft Manifest number: 0891 Signing time: Thu 18 Dec 2025 08:00:40 +0000 Manifest this update: Thu 18 Dec 2025 08:00:40 +0000 Manifest next update: Fri 19 Dec 2025 08:00:40 +0000 Files and hashes: 1: 2AtJfVG9n0e4T2k9aH--jPbP-3U.crl (hash: FQZx7F5u+epMRLpf070jl64BAW988kOkNFG+LFlC7a8=) 2: hdAMTn4jDkrD2hHAq0_eM98drDA.roa (hash: tBnX0T05qx7IyB4+d81WJZpMceoIZZmZdpDJiqlpcEo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.crl rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.mft rsync://rpki.ripe.net/repository/DEFAULT/2AtJfVG9n0e4T2k9aH--jPbP-3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:30:79:b2:98:2f:f9:30:7c:b4:6a:5d:9a:5c:b5:3b:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d80b497d51bd9f47b84f693d687fbe8cf6cffb75 Validity Not Before: Dec 18 08:00:40 2025 GMT Not After : Dec 19 08:00:40 2025 GMT Subject: CN=e665b9627c8730be2607bb10c48449563972eed6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f6:93:49:0d:b7:98:5e:98:91:12:a0:36:5a: 04:3c:77:cb:75:ad:f8:e6:c7:13:af:2f:64:d9:3b: 2e:2b:51:f3:26:97:2f:ec:bb:04:d2:d5:08:6e:4c: 82:a3:1f:52:94:96:48:2c:52:40:e3:9e:45:98:fc: 87:ed:64:ef:af:c7:cf:20:e1:c6:04:54:48:34:50: 80:5a:d9:7a:c7:a8:94:df:fe:8f:cd:64:43:24:a8: 97:9c:b9:c5:a5:4b:7f:02:2f:5f:6a:82:23:8e:cb: fe:4d:e6:32:37:9e:ca:c9:5a:f6:27:8f:21:c7:0f: 7c:f7:1a:61:87:ea:d2:db:f6:ce:33:6c:99:16:65: dd:fc:90:e3:0a:ee:72:3b:9f:73:bc:8f:a8:f0:62: 3c:7c:be:eb:85:86:24:fa:fc:25:73:1a:ca:57:6a: 08:94:2a:e2:3d:c3:f0:99:62:86:a4:c9:7f:00:3d: f7:46:bf:c7:35:04:8e:bb:23:a9:2f:05:90:c2:cc: dc:2b:0d:eb:d8:11:f6:87:e5:83:97:4d:38:f9:82: 66:46:11:da:57:0b:aa:40:2c:40:67:cb:64:51:9f: b9:37:8d:91:27:c3:e4:c2:c8:fd:4e:5f:2e:93:d2: 1b:3a:2b:c9:89:c0:bf:4c:98:29:4c:4d:4a:bf:2f: 34:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:65:B9:62:7C:87:30:BE:26:07:BB:10:C4:84:49:56:39:72:EE:D6 X509v3 Authority Key Identifier: keyid:D8:0B:49:7D:51:BD:9F:47:B8:4F:69:3D:68:7F:BE:8C:F6:CF:FB:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2AtJfVG9n0e4T2k9aH--jPbP-3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:2e:01:42:6b:12:ba:0d:28:52:57:04:e1:a8:7f:1a:eb:96: 1d:88:4f:6a:ab:07:db:49:29:71:e9:c6:34:17:b6:d0:0a:82: 6e:73:fa:39:18:57:04:2c:02:5f:be:34:ca:0c:ac:a9:21:63: ed:0c:3a:25:b7:18:b5:0e:f8:96:6b:d1:98:1a:5a:cf:5c:44: 99:9b:3f:c2:94:19:3a:92:e2:55:9c:71:6d:bc:7e:4a:7e:87: a8:00:b3:41:ac:9f:f0:56:af:f8:16:f8:9b:18:c7:9f:20:14: c3:12:97:a0:38:05:44:63:5c:63:af:32:24:51:75:7b:2c:36: 2c:f7:3d:ba:2f:7c:91:0a:29:87:f9:98:90:70:9c:95:8c:ea: 08:a6:fc:74:02:8e:72:6d:73:51:83:98:e0:5d:bc:d9:0a:cc: 6c:63:11:46:0f:73:b8:9b:01:bf:00:3d:92:e7:fa:f7:da:f5: c1:75:a3:db:8a:be:8f:d0:da:15:a7:fc:22:04:85:aa:67:9f: e0:cf:43:c1:75:6e:af:c9:6d:84:29:02:1e:8e:0a:98:33:ca: 6d:26:5e:f5:99:21:10:8f:19:c4:8f:f8:1d:13:cb:94:7c:bf: 55:85:40:90:21:fc:d4:16:bd:31:4f:19:d5:bb:fb:86:f8:20: 54:a3:4c:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZswebKYL/kwfLRqXZpctTv7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4MGI0OTdkNTFiZDlmNDdiODRmNjkzZDY4N2ZiZThjZjZj ZmZiNzUwHhcNMjUxMjE4MDgwMDQwWhcNMjUxMjE5MDgwMDQwWjAzMTEwLwYDVQQD EyhlNjY1Yjk2MjdjODczMGJlMjYwN2JiMTBjNDg0NDk1NjM5NzJlZWQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyfaTSQ23mF6YkRKgNloEPHfLda34 5scTry9k2TsuK1HzJpcv7LsE0tUIbkyCox9SlJZILFJA455FmPyH7WTvr8fPIOHG BFRINFCAWtl6x6iU3/6PzWRDJKiXnLnFpUt/Ai9faoIjjsv+TeYyN57KyVr2J48h xw989xphh+rS2/bOM2yZFmXd/JDjCu5yO59zvI+o8GI8fL7rhYYk+vwlcxrKV2oI lCriPcPwmWKGpMl/AD33Rr/HNQSOuyOpLwWQwszcKw3r2BH2h+WDl004+YJmRhHa VwuqQCxAZ8tkUZ+5N42RJ8Pkwsj9Tl8uk9IbOivJicC/TJgpTE1Kvy80HwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOZluWJ8hzC+Jge7EMSESVY5cu7WMB8GA1UdIwQY MBaAFNgLSX1RvZ9HuE9pPWh/voz2z/t1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkF0SmZWRzluMGU0VDJrOWFILS1qUGJQLTNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy85MjBkYzQtY2QzYy00Y2FjLWFjZmMt NGM4NTQ0NWEwMzZhLzEvMkF0SmZWRzluMGU0VDJrOWFILS1qUGJQLTNVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy85MjBkYzQtY2QzYy00Y2FjLWFjZmMtNGM4NTQ0NWEwMzZh LzEvMkF0SmZWRzluMGU0VDJrOWFILS1qUGJQLTNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPy4BQmsS ug0oUlcE4ah/GuuWHYhPaqsH20kpcenGNBe20AqCbnP6ORhXBCwCX740ygysqSFj 7Qw6JbcYtQ74lmvRmBpaz1xEmZs/wpQZOpLiVZxxbbx+Sn6HqACzQayf8Fav+Bb4 mxjHnyAUwxKXoDgFRGNcY68yJFF1eyw2LPc9ui98kQoph/mYkHCclYzqCKb8dAKO cm1zUYOY4F282QrMbGMRRg9zuJsBvwA9kuf699r1wXWj24q+j9DaFaf8IgSFqmef 4M9DwXVur8lthCkCHo4KmDPKbSZe9ZkhEI8ZxI/4HRPLlHy/VYVAkCH81Ba9MU8Z 1bv7hvggVKNMVQ== -----END CERTIFICATE-----Generated at Thu Dec 18 11:33:30 2025 by rpki-client