This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/2rU_myHRPgeOPoRNZF7qhYDxzOE.mft File: 2rU_myHRPgeOPoRNZF7qhYDxzOE.mft (raw, json) Hash identifier: TJm0f1SWj4OL2ou1J7fw5aTyi/3hbbdidHK/YC8r2M8= Subject key identifier: CC:50:EF:C8:4B:37:72:72:17:E1:03:75:26:CE:B0:1B:1E:5B:44:BC Authority key identifier: DA:B5:3F:9B:21:D1:3E:07:8E:3E:84:4D:64:5E:EA:85:80:F1:CC:E1 Certificate issuer: /CN=dab53f9b21d13e078e3e844d645eea8580f1cce1 Certificate serial: 019B3C46E7039C0CA4182EE884F929207E78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2rU_myHRPgeOPoRNZF7qhYDxzOE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/2rU_myHRPgeOPoRNZF7qhYDxzOE.mft Manifest number: 178C Signing time: Sat 20 Dec 2025 15:00:38 +0000 Manifest this update: Sat 20 Dec 2025 15:00:38 +0000 Manifest next update: Sun 21 Dec 2025 15:00:38 +0000 Files and hashes: 1: 2rU_myHRPgeOPoRNZF7qhYDxzOE.crl (hash: zWT9gDPjD5CbVDvne44ac+lYDoD3+ZMLLtvguU6lcZM=) 2: wNy3zbz6RfIK66Qb0xMdQ6SF6cM.roa (hash: v3MSVtcDWt9OZuJfHX3SY1kCxjbyzn9ti5kRZ/GXDyc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/2rU_myHRPgeOPoRNZF7qhYDxzOE.crl rsync://rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/2rU_myHRPgeOPoRNZF7qhYDxzOE.mft rsync://rpki.ripe.net/repository/DEFAULT/2rU_myHRPgeOPoRNZF7qhYDxzOE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:46:e7:03:9c:0c:a4:18:2e:e8:84:f9:29:20:7e:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dab53f9b21d13e078e3e844d645eea8580f1cce1 Validity Not Before: Dec 20 15:00:38 2025 GMT Not After : Dec 21 15:00:38 2025 GMT Subject: CN=cc50efc84b37727217e1037526ceb01b1e5b44bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e7:04:64:e6:f4:8b:ff:16:d2:3c:11:bc:ad: 09:72:22:bd:60:16:80:ed:12:f4:03:1c:30:43:c8: 5f:54:ec:ec:f8:db:88:99:f8:37:6a:27:42:23:53: 2b:ed:ad:62:a5:16:89:13:7e:9b:f2:ee:8d:66:09: 54:91:a3:ca:76:bf:a0:8b:4f:7d:55:59:51:03:97: 91:09:08:35:ee:38:af:ef:85:0b:11:a9:32:ba:0c: 58:41:ff:e0:a2:5a:4f:fe:cb:b7:fc:74:4b:0f:51: bf:97:6c:7b:51:34:a8:5a:41:88:62:24:d8:ae:6b: e5:5c:e0:db:3e:d3:9d:21:30:e7:b1:47:a0:2e:30: f5:21:00:38:c9:b3:7d:4a:e0:ec:d3:8a:90:ce:54: bc:8f:1e:62:15:fe:06:9c:7c:e3:a2:7b:cd:81:95: c4:06:ba:d3:d7:43:2c:e9:f8:d7:32:7b:98:32:d6: 05:08:64:0e:bc:9f:ec:9b:5c:fb:b9:1b:71:7e:34: 71:61:a9:3d:05:f3:08:5d:44:e9:e6:8f:13:54:c5: c2:88:23:89:40:4c:12:81:53:d1:e7:f1:b7:61:0d: a5:99:80:c1:84:d5:c5:d4:9f:a8:29:b7:f6:8c:a4: 0f:90:ca:aa:e5:0b:93:b0:38:45:4d:19:1f:e2:22: 4b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:50:EF:C8:4B:37:72:72:17:E1:03:75:26:CE:B0:1B:1E:5B:44:BC X509v3 Authority Key Identifier: keyid:DA:B5:3F:9B:21:D1:3E:07:8E:3E:84:4D:64:5E:EA:85:80:F1:CC:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2rU_myHRPgeOPoRNZF7qhYDxzOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/2rU_myHRPgeOPoRNZF7qhYDxzOE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/2rU_myHRPgeOPoRNZF7qhYDxzOE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:9f:cf:6b:ef:79:d4:33:37:6c:0a:bb:85:0c:8a:5a:44:50: 80:a9:79:fe:af:73:2c:4b:27:b5:00:76:a3:44:1d:81:63:77: 3f:36:5a:46:5e:5d:90:fd:dc:6f:6b:5a:f4:75:35:15:94:c9: df:66:5c:41:1c:b4:8a:3a:62:1e:ea:f4:13:4f:fa:ca:db:e1: ce:a2:49:59:73:d8:d5:3b:ad:3f:c7:eb:11:03:87:2a:3c:6c: 6e:82:37:64:59:46:32:19:2d:f0:8a:8f:5b:6e:17:92:3a:80: 7c:cd:5e:45:e9:04:df:d5:91:7f:cd:06:53:aa:39:fe:cf:ae: 29:54:f2:54:8e:ec:6f:96:85:34:13:d6:f9:be:cd:d2:85:3b: 1c:b8:8f:3a:54:d6:82:5e:11:26:40:4a:a0:4f:1c:ec:ed:ad: ae:c7:d1:d0:ba:97:60:5f:0a:2f:26:78:ab:d0:f2:a7:2b:44: 5c:ca:6e:4b:69:5d:41:0e:ec:48:1b:eb:3c:d9:fc:4b:c6:86: 2a:a0:2e:ea:a7:23:63:23:27:4d:f5:73:f4:8b:31:81:1f:83: cb:f8:32:38:f1:5b:f5:cc:ea:f2:57:99:1e:65:be:64:58:e2: 30:54:53:c7:c7:44:32:80:20:b5:9f:45:ec:64:51:4f:b9:95: 43:8f:40:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8RucDnAykGC7ohPkpIH54MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhYjUzZjliMjFkMTNlMDc4ZTNlODQ0ZDY0NWVlYTg1ODBm MWNjZTEwHhcNMjUxMjIwMTUwMDM4WhcNMjUxMjIxMTUwMDM4WjAzMTEwLwYDVQQD EyhjYzUwZWZjODRiMzc3MjcyMTdlMTAzNzUyNmNlYjAxYjFlNWI0NGJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoecEZOb0i/8W0jwRvK0JciK9YBaA 7RL0AxwwQ8hfVOzs+NuImfg3aidCI1Mr7a1ipRaJE36b8u6NZglUkaPKdr+gi099 VVlRA5eRCQg17jiv74ULEakyugxYQf/golpP/su3/HRLD1G/l2x7UTSoWkGIYiTY rmvlXODbPtOdITDnsUegLjD1IQA4ybN9SuDs04qQzlS8jx5iFf4GnHzjonvNgZXE BrrT10Ms6fjXMnuYMtYFCGQOvJ/sm1z7uRtxfjRxYak9BfMIXUTp5o8TVMXCiCOJ QEwSgVPR5/G3YQ2lmYDBhNXF1J+oKbf2jKQPkMqq5QuTsDhFTRkf4iJLmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMxQ78hLN3JyF+EDdSbOsBseW0S8MB8GA1UdIwQY MBaAFNq1P5sh0T4Hjj6ETWRe6oWA8czhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnJVX215SFJQZ2VPUG9STlpGN3FoWUR4ek9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi83ZjlhYjEtYmM3Yy00ZDBkLWE5NzAt NWI4YmM1OTBiMTk3LzEvMnJVX215SFJQZ2VPUG9STlpGN3FoWUR4ek9FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi83ZjlhYjEtYmM3Yy00ZDBkLWE5NzAtNWI4YmM1OTBiMTk3 LzEvMnJVX215SFJQZ2VPUG9STlpGN3FoWUR4ek9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATp/Pa+95 1DM3bAq7hQyKWkRQgKl5/q9zLEsntQB2o0QdgWN3PzZaRl5dkP3cb2ta9HU1FZTJ 32ZcQRy0ijpiHur0E0/6ytvhzqJJWXPY1TutP8frEQOHKjxsboI3ZFlGMhkt8IqP W24XkjqAfM1eRekE39WRf80GU6o5/s+uKVTyVI7sb5aFNBPW+b7N0oU7HLiPOlTW gl4RJkBKoE8c7O2trsfR0LqXYF8KLyZ4q9DypytEXMpuS2ldQQ7sSBvrPNn8S8aG KqAu6qcjYyMnTfVz9IsxgR+Dy/gyOPFb9czq8leZHmW+ZFjiMFRTx8dEMoAgtZ9F 7GRRT7mVQ49Acw== -----END CERTIFICATE-----Generated at Sun Dec 21 01:31:35 2025 by rpki-client