This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft File: mk2qT2rA5rwQK2iECirGu1QbQPw.mft (raw, json) Hash identifier: Xo/pqQcxHIVaSriqszR8GiOpFHQc1POliumKQ4yumKM= Subject key identifier: EC:0D:E2:B8:EC:54:E4:D5:8D:CD:E4:D6:B8:50:FC:3E:A4:91:AE:4A Authority key identifier: 9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC Certificate issuer: /CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc Certificate serial: 019B3E6D1657B26B82616295201F5554DD73 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft Manifest number: 077F Signing time: Sun 21 Dec 2025 01:01:34 +0000 Manifest this update: Sun 21 Dec 2025 01:01:34 +0000 Manifest next update: Mon 22 Dec 2025 01:01:34 +0000 Files and hashes: 1: j0Asbb5ngsOWlyvv7kth_3yoBYM.roa (hash: O/JfF/netiv5OyRHt3hhhICYzLbMzCW+fJQdQl7HVfM=) 2: mk2qT2rA5rwQK2iECirGu1QbQPw.crl (hash: k/Q2XAuFH3h920QPnJMBIBCSQynBptFNF0uRzYdTsIU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:6d:16:57:b2:6b:82:61:62:95:20:1f:55:54:dd:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc Validity Not Before: Dec 21 01:01:34 2025 GMT Not After : Dec 22 01:01:34 2025 GMT Subject: CN=ec0de2b8ec54e4d58dcde4d6b850fc3ea491ae4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8b:46:e4:c0:6d:a0:df:e9:bd:c1:7a:c3:43: b1:75:b2:3d:02:07:39:a7:27:0f:18:a1:03:69:7f: b6:89:01:e8:ba:23:84:46:0c:66:88:8a:79:c6:cf: d0:c5:06:3e:38:c4:63:93:53:7b:a1:a8:9c:92:ac: de:26:7f:65:7b:ff:0d:e4:c2:ca:e7:12:a8:49:60: a3:7a:04:2e:3f:e7:67:d2:20:49:8c:6c:30:16:61: f5:2c:19:95:05:14:af:6c:e7:ee:7d:f5:9f:b6:3a: 06:5a:ed:4b:f6:f7:84:81:42:d7:2f:cc:0e:22:40: 3d:61:1c:4a:36:be:ec:f4:f2:0b:fc:5c:27:5d:0b: 56:c8:42:af:bd:49:32:37:87:77:84:7c:80:36:d2: a2:6a:d9:5c:65:ad:3e:87:17:d1:28:d9:7e:a8:30: 45:60:9e:b5:db:8a:48:50:ac:8a:33:7e:a8:40:65: c0:04:3c:89:9e:7b:11:aa:40:95:22:c7:70:1d:e5: c7:b5:c3:0d:d9:b1:e7:31:4a:0c:d3:5b:b8:01:de: af:94:f6:13:a7:2d:53:28:62:7f:23:36:92:dc:03: bf:20:22:3a:6c:b5:e8:86:d4:44:b8:7c:e6:7a:d4: ed:b6:f8:96:7f:d4:a7:dd:5b:7b:90:90:82:a6:a1: bd:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:0D:E2:B8:EC:54:E4:D5:8D:CD:E4:D6:B8:50:FC:3E:A4:91:AE:4A X509v3 Authority Key Identifier: keyid:9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:36:37:eb:c9:46:8a:57:17:c0:1f:1e:02:8f:a7:c8:ab:d3: f6:5d:81:e9:39:ac:59:fc:a1:9b:29:4e:7e:ca:b0:e9:bd:99: 60:01:b2:70:09:f6:4d:92:16:e6:71:a3:f3:72:97:99:82:17: 40:15:46:2f:d4:a9:7d:17:cc:ed:bf:df:ad:42:d5:59:98:b8: 5d:2f:d3:10:13:e2:f6:ef:2c:48:5e:6c:49:f7:07:5e:9d:e1: 31:4d:d9:01:29:7b:ff:e8:6a:54:83:f0:82:3b:88:4e:2c:0a: c0:b3:84:0a:69:ff:81:68:ce:9a:c8:db:94:e4:b0:13:43:b3: bf:b5:36:10:8f:f7:f4:79:ac:9f:9e:00:7b:1e:74:17:1d:5e: 27:8f:fe:ad:ce:a4:50:46:77:42:19:aa:06:a1:57:68:1f:64: 4f:20:8a:87:10:e4:1f:54:52:b7:b0:61:43:44:ea:0d:84:31: 07:86:a3:eb:01:0e:d4:d3:fd:df:42:1d:46:97:be:c1:df:4b: 2a:97:8a:fe:e9:4a:8d:09:23:85:16:ad:45:3b:c2:58:43:7a: 29:5a:1a:90:ad:78:6a:31:44:8f:e1:d3:46:0e:b4:7e:03:95: d7:63:f4:10:3e:f1:d1:96:5c:bc:38:b3:8d:19:83:53:fd:7c: bc:e9:e8:8e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+bRZXsmuCYWKVIB9VVN1zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhNGRhYTRmNmFjMGU2YmMxMDJiNjg4NDBhMmFjNmJiNTQx YjQwZmMwHhcNMjUxMjIxMDEwMTM0WhcNMjUxMjIyMDEwMTM0WjAzMTEwLwYDVQQD EyhlYzBkZTJiOGVjNTRlNGQ1OGRjZGU0ZDZiODUwZmMzZWE0OTFhZTRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt4tG5MBtoN/pvcF6w0OxdbI9Agc5 pycPGKEDaX+2iQHouiOERgxmiIp5xs/QxQY+OMRjk1N7oaickqzeJn9le/8N5MLK 5xKoSWCjegQuP+dn0iBJjGwwFmH1LBmVBRSvbOfuffWftjoGWu1L9veEgULXL8wO IkA9YRxKNr7s9PIL/FwnXQtWyEKvvUkyN4d3hHyANtKiatlcZa0+hxfRKNl+qDBF YJ6124pIUKyKM36oQGXABDyJnnsRqkCVIsdwHeXHtcMN2bHnMUoM01u4Ad6vlPYT py1TKGJ/IzaS3AO/ICI6bLXohtREuHzmetTttviWf9Sn3Vt7kJCCpqG92QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOwN4rjsVOTVjc3k1rhQ/D6kka5KMB8GA1UdIwQY MBaAFJpNqk9qwOa8ECtohAoqxrtUG0D8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWsycVQyckE1cndRSzJpRUNpckd1MVFiUVB3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9jZDQ2MjQtNjIwYS00Y2IyLWE0MTYt NmJlOTJiMWFhOGIzLzEvbWsycVQyckE1cndRSzJpRUNpckd1MVFiUVB3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny9jZDQ2MjQtNjIwYS00Y2IyLWE0MTYtNmJlOTJiMWFhOGIz LzEvbWsycVQyckE1cndRSzJpRUNpckd1MVFiUVB3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXzY368lG ilcXwB8eAo+nyKvT9l2B6TmsWfyhmylOfsqw6b2ZYAGycAn2TZIW5nGj83KXmYIX QBVGL9SpfRfM7b/frULVWZi4XS/TEBPi9u8sSF5sSfcHXp3hMU3ZASl7/+hqVIPw gjuITiwKwLOECmn/gWjOmsjblOSwE0Ozv7U2EI/39Hmsn54Aex50Fx1eJ4/+rc6k UEZ3QhmqBqFXaB9kTyCKhxDkH1RSt7BhQ0TqDYQxB4aj6wEO1NP930IdRpe+wd9L KpeK/ulKjQkjhRatRTvCWEN6KVoakK14ajFEj+HTRg60fgOV12P0ED7x0ZZcvDiz jRmDU/18vOnojg== -----END CERTIFICATE-----Generated at Sun Dec 21 04:24:45 2025 by rpki-client