This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft File: 2sTLURUIAqQBjMJWrSn1RyBnXtU.mft (raw, json) Hash identifier: WKONRpACeHVsqB2ucEPzH86NrcE9YFIIdcBoq7xliTE= Subject key identifier: B8:BA:93:CC:8F:7E:13:0C:FC:B7:2B:11:5F:A1:F7:5C:0D:2D:22:6F Authority key identifier: DA:C4:CB:51:15:08:02:A4:01:8C:C2:56:AD:29:F5:47:20:67:5E:D5 Certificate issuer: /CN=dac4cb51150802a4018cc256ad29f54720675ed5 Certificate serial: 019B51BCEBC36D3A409CC9403CFE365D747E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sTLURUIAqQBjMJWrSn1RyBnXtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft Manifest number: 12A6 Signing time: Wed 24 Dec 2025 19:01:34 +0000 Manifest this update: Wed 24 Dec 2025 19:01:34 +0000 Manifest next update: Thu 25 Dec 2025 19:01:34 +0000 Files and hashes: 1: 2sTLURUIAqQBjMJWrSn1RyBnXtU.crl (hash: zq1hnXDekZIGChSfA6sVzTTjflsZyqGKbwha2dgRwZ8=) 2: 49hgdGQLZzb2UEr0v1DR3B_4G88.roa (hash: ieB3PoGbaENiV1L+4PpT2lhh7W1Z3Cv1HFM+GYljVmg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft rsync://rpki.ripe.net/repository/DEFAULT/2sTLURUIAqQBjMJWrSn1RyBnXtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:51:bc:eb:c3:6d:3a:40:9c:c9:40:3c:fe:36:5d:74:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dac4cb51150802a4018cc256ad29f54720675ed5 Validity Not Before: Dec 24 19:01:34 2025 GMT Not After : Dec 25 19:01:34 2025 GMT Subject: CN=b8ba93cc8f7e130cfcb72b115fa1f75c0d2d226f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:44:58:7a:78:1a:33:81:0e:6b:af:6a:6a:f8: c1:9a:e0:ad:e7:09:7c:e9:38:e4:55:d7:8d:68:06: 26:d0:11:64:08:36:f6:b3:6b:72:92:1c:a9:27:33: 28:74:f4:78:f0:00:bd:2a:d2:e0:2c:55:57:af:86: 24:65:c2:34:43:75:37:96:84:1a:1c:2d:35:9e:9c: 56:99:cf:29:df:ec:5e:32:e8:17:5d:4e:20:f1:b5: b3:41:33:3c:e3:63:28:21:4a:08:2c:e9:87:ff:42: 85:21:f5:2f:5d:f4:da:1b:42:cb:57:3e:6c:eb:1c: 64:3f:39:11:36:31:a3:54:b6:00:0b:00:7f:1f:ce: aa:5d:7c:96:0b:9d:39:8d:e3:15:ed:93:3e:d8:12: ad:8b:6b:00:81:93:b5:2a:31:75:db:c0:1e:5c:b4: e8:4c:a1:59:c7:30:e2:d6:70:b5:bb:bb:45:c8:8b: a5:7d:c2:b2:1f:70:53:d7:c6:b0:25:33:51:62:c9: 57:aa:18:da:9b:de:9b:5a:d9:f7:5f:a3:97:dd:56: 3d:25:99:9e:2a:3f:a4:c6:29:a9:74:42:f1:86:c8: ab:5c:ce:45:ac:af:9f:dd:5e:c1:55:d0:de:2d:d3: 61:f3:f9:5a:26:a2:cc:bd:08:10:1e:8f:28:36:55: 8d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:BA:93:CC:8F:7E:13:0C:FC:B7:2B:11:5F:A1:F7:5C:0D:2D:22:6F X509v3 Authority Key Identifier: keyid:DA:C4:CB:51:15:08:02:A4:01:8C:C2:56:AD:29:F5:47:20:67:5E:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sTLURUIAqQBjMJWrSn1RyBnXtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:90:1e:ed:6d:6d:70:9e:ba:96:16:62:76:22:3e:f5:f8:f3: da:00:3d:67:82:8a:2a:1f:8a:ed:9e:e6:64:de:af:c3:50:6d: 33:0c:a3:c5:9d:e1:6d:05:8c:7d:23:ae:d4:f5:91:d2:40:8b: e6:8e:8a:dc:a2:2b:1f:71:1a:77:42:84:da:de:e0:a6:96:05: 3a:f5:fa:05:54:11:62:70:78:47:3e:de:c4:91:77:6a:71:5e: bd:6f:5b:bd:27:ff:66:a9:de:c9:be:62:24:77:df:b3:e0:b7: 09:51:1e:65:74:a8:df:7c:74:0a:5c:91:35:c3:44:85:c2:f8: 3f:61:c5:45:0a:f8:c1:b0:ca:62:9e:11:b6:d3:4d:4c:15:23: 23:97:f4:5f:56:2b:27:f3:ac:c5:89:3e:28:73:ee:cd:40:2f: 7b:9d:c2:1e:4e:dd:97:11:2d:64:92:8b:d7:b7:f1:10:36:69: e4:4d:8d:90:d4:d8:1b:d7:00:41:fd:b4:75:58:e7:54:f1:68: ba:60:97:d1:97:b8:01:96:73:18:95:de:eb:62:cc:59:19:3f: 9f:be:61:81:af:69:b9:a1:94:48:af:84:0c:9e:e6:b6:b1:68: ed:f0:2b:43:e5:c1:a1:4e:bd:25:fa:58:7f:bc:e4:26:3d:e4: 5b:59:2c:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtRvOvDbTpAnMlAPP42XXR+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhYzRjYjUxMTUwODAyYTQwMThjYzI1NmFkMjlmNTQ3MjA2 NzVlZDUwHhcNMjUxMjI0MTkwMTM0WhcNMjUxMjI1MTkwMTM0WjAzMTEwLwYDVQQD EyhiOGJhOTNjYzhmN2UxMzBjZmNiNzJiMTE1ZmExZjc1YzBkMmQyMjZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsERYengaM4EOa69qavjBmuCt5wl8 6TjkVdeNaAYm0BFkCDb2s2tykhypJzModPR48AC9KtLgLFVXr4YkZcI0Q3U3loQa HC01npxWmc8p3+xeMugXXU4g8bWzQTM842MoIUoILOmH/0KFIfUvXfTaG0LLVz5s 6xxkPzkRNjGjVLYACwB/H86qXXyWC505jeMV7ZM+2BKti2sAgZO1KjF128AeXLTo TKFZxzDi1nC1u7tFyIulfcKyH3BT18awJTNRYslXqhjam96bWtn3X6OX3VY9JZme Kj+kximpdELxhsirXM5FrK+f3V7BVdDeLdNh8/laJqLMvQgQHo8oNlWNPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLi6k8yPfhMM/LcrEV+h91wNLSJvMB8GA1UdIwQY MBaAFNrEy1EVCAKkAYzCVq0p9UcgZ17VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnNUTFVSVUlBcVFCak1KV3JTbjFSeUJuWHRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8zNmU4MzgtMWJiZi00Y2MwLWI1ZGEt NDE4MGY5ZTMwOTQ1LzEvMnNUTFVSVUlBcVFCak1KV3JTbjFSeUJuWHRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS8zNmU4MzgtMWJiZi00Y2MwLWI1ZGEtNDE4MGY5ZTMwOTQ1 LzEvMnNUTFVSVUlBcVFCak1KV3JTbjFSeUJuWHRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn5Ae7W1t cJ66lhZidiI+9fjz2gA9Z4KKKh+K7Z7mZN6vw1BtMwyjxZ3hbQWMfSOu1PWR0kCL 5o6K3KIrH3Ead0KE2t7gppYFOvX6BVQRYnB4Rz7exJF3anFevW9bvSf/Zqneyb5i JHffs+C3CVEeZXSo33x0ClyRNcNEhcL4P2HFRQr4wbDKYp4RttNNTBUjI5f0X1Yr J/OsxYk+KHPuzUAve53CHk7dlxEtZJKL17fxEDZp5E2NkNTYG9cAQf20dVjnVPFo umCX0Ze4AZZzGJXe62LMWRk/n75hga9puaGUSK+EDJ7mtrFo7fArQ+XBoU69JfpY f7zkJj3kW1ksFA== -----END CERTIFICATE-----Generated at Thu Dec 25 01:22:18 2025 by rpki-client