This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft File: 2RTaVuGpNGSdoClkrBLro0xcuE8.mft (raw, json) Hash identifier: DbAKQcxZBzvSoOOq8JSvoA8dmrLFN4GvuOCVJQylEmo= Subject key identifier: CB:01:55:9C:B5:C3:84:4C:C7:28:D3:24:3C:1A:A3:CF:16:BA:5A:53 Authority key identifier: D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F Certificate issuer: /CN=d914da56e1a934649da02964ac12eba34c5cb84f Certificate serial: 019B3AFD7876D7ACFB4FD434462F33F06BB5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft Manifest number: 04E4 Signing time: Sat 20 Dec 2025 09:00:48 +0000 Manifest this update: Sat 20 Dec 2025 09:00:48 +0000 Manifest next update: Sun 21 Dec 2025 09:00:48 +0000 Files and hashes: 1: 2RTaVuGpNGSdoClkrBLro0xcuE8.crl (hash: ht6RPLw1UMcAYdT4pol6ZCM/rMsUN20BtaNHtrvkTsg=) 2: As7V6ZE1xBs1gl2SXAEbNIUHC00.roa (hash: kQVt6PxymkEnwafOS16jS1OEQiU/aYHOchiiJ14/rGk=) 3: PIhsP1al3YizxN861NowDoYoHI0.roa (hash: R9+qOpDwEb0Q5efJFh94SK/9P5J9FFbPDMd4Z1g9adY=) 4: TgC9SfoTorK7vBYwI8VYhLdYsAI.roa (hash: cX6b1ElbfxY+vtUnnUoBWdanxCq7AgtL2UTTxProihY=) 5: r6xJZWjtrwNhQith6PiqNcETkoY.roa (hash: 5M8HMFCPR3icG0A/hOYTkDnAzNiqaffro245jnASAHc=) 6: yP_dwUj9wkpGZraCJm3_QUlcxSc.roa (hash: PpcRyK/zlLSo8ZccoU5Ov6j3mDsKb8kB7dCU9P4KBZQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:fd:78:76:d7:ac:fb:4f:d4:34:46:2f:33:f0:6b:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d914da56e1a934649da02964ac12eba34c5cb84f Validity Not Before: Dec 20 09:00:48 2025 GMT Not After : Dec 21 09:00:48 2025 GMT Subject: CN=cb01559cb5c3844cc728d3243c1aa3cf16ba5a53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2b:86:ac:47:3e:8a:cc:d3:c0:50:e7:8f:eb: 1b:e1:44:88:fe:9a:e7:19:53:09:dd:2f:19:b8:1a: 4a:e4:dc:b6:78:09:15:31:9e:3d:fc:11:b8:5d:c6: 04:55:4a:ad:81:cf:a0:34:bf:7a:66:6a:c9:97:8f: 36:3d:5b:52:f3:aa:15:61:e0:c8:df:63:f4:86:69: 64:82:47:da:7f:9c:48:f1:53:c5:1a:92:26:57:a4: b2:ce:e8:3b:f2:06:4d:7f:1b:e6:65:3a:87:35:62: 4c:df:a5:d5:96:0c:23:3c:87:93:76:c4:f2:0c:cb: 76:86:1c:a0:4e:4a:be:39:a9:5b:4f:7f:ad:37:d3: 91:0c:27:f3:9c:7d:8b:4a:b9:ed:f8:1d:44:ae:73: 2b:b2:f5:7f:e0:53:2f:28:7f:ff:34:ce:17:c1:94: 60:26:de:ae:3b:86:6f:8c:24:c8:33:45:d6:67:7d: 9a:7a:92:58:aa:7c:9a:b9:d6:58:19:4d:8c:7d:18: d9:c1:90:82:28:e9:e1:88:12:c4:6d:0e:f0:5d:72: 65:47:00:1f:9d:37:1c:a4:7e:7f:04:b0:98:89:ed: 44:88:54:58:c8:14:87:b1:4a:69:78:06:c5:17:a7: 18:f4:db:f4:24:97:59:ba:00:b9:83:37:1d:84:da: 5d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:01:55:9C:B5:C3:84:4C:C7:28:D3:24:3C:1A:A3:CF:16:BA:5A:53 X509v3 Authority Key Identifier: keyid:D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b0:8a:47:c5:92:89:db:16:7c:97:6a:91:39:89:0b:67:6a:20: 9b:43:a2:8d:15:8c:ba:54:5b:bb:8f:62:89:6b:f6:c9:62:7e: 8a:5b:4e:51:a9:a5:3d:1c:89:77:c3:90:5e:a0:80:ce:12:ad: 64:f4:7a:a7:61:51:ae:a7:dd:44:db:ed:fc:e4:4a:51:81:43: ad:be:e5:8a:5e:43:54:1d:05:cc:50:85:39:74:a4:17:05:3c: a2:59:bf:49:28:32:6b:5d:87:db:9c:46:9a:6b:4c:55:bf:6c: 02:1d:49:85:b7:78:9f:b6:d7:3e:8e:4b:30:78:41:f9:21:8c: 30:6b:52:f3:c5:d1:3f:40:b2:04:08:91:35:4c:4c:ea:80:09: 93:f9:16:6a:01:11:dc:d7:68:60:66:53:96:e4:cc:6e:2f:b6: d5:b0:d5:97:19:10:6a:e8:8e:2f:64:32:94:74:eb:39:29:8a: 37:88:83:4c:69:aa:4d:9b:a0:fe:35:b1:7c:89:ba:fb:94:ee: 85:01:24:20:7c:ec:49:46:fb:3f:be:b6:40:7c:94:c1:08:21: a0:0b:20:35:46:7a:f0:c8:93:46:d3:59:1f:1d:b5:e8:44:8d: bf:7d:a8:29:20:d5:16:c9:d8:61:1b:1a:2f:e8:9b:1e:d4:04: ea:39:bb:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6/Xh216z7T9Q0Ri8z8Gu1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5MTRkYTU2ZTFhOTM0NjQ5ZGEwMjk2NGFjMTJlYmEzNGM1 Y2I4NGYwHhcNMjUxMjIwMDkwMDQ4WhcNMjUxMjIxMDkwMDQ4WjAzMTEwLwYDVQQD EyhjYjAxNTU5Y2I1YzM4NDRjYzcyOGQzMjQzYzFhYTNjZjE2YmE1YTUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCuGrEc+iszTwFDnj+sb4USI/prn GVMJ3S8ZuBpK5Ny2eAkVMZ49/BG4XcYEVUqtgc+gNL96ZmrJl482PVtS86oVYeDI 32P0hmlkgkfaf5xI8VPFGpImV6Syzug78gZNfxvmZTqHNWJM36XVlgwjPIeTdsTy DMt2hhygTkq+OalbT3+tN9ORDCfznH2LSrnt+B1ErnMrsvV/4FMvKH//NM4XwZRg Jt6uO4ZvjCTIM0XWZ32aepJYqnyaudZYGU2MfRjZwZCCKOnhiBLEbQ7wXXJlRwAf nTccpH5/BLCYie1EiFRYyBSHsUppeAbFF6cY9Nv0JJdZugC5gzcdhNpd/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMsBVZy1w4RMxyjTJDwao88WulpTMB8GA1UdIwQY MBaAFNkU2lbhqTRknaApZKwS66NMXLhPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlJUYVZ1R3BOR1Nkb0Nsa3JCTHJvMHhjdUU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS83YTExYjUtYTQwNS00MWNiLTgxY2It ZjZiY2NmMWU1MzFmLzEvMlJUYVZ1R3BOR1Nkb0Nsa3JCTHJvMHhjdUU4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS83YTExYjUtYTQwNS00MWNiLTgxY2ItZjZiY2NmMWU1MzFm LzEvMlJUYVZ1R3BOR1Nkb0Nsa3JCTHJvMHhjdUU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsIpHxZKJ 2xZ8l2qROYkLZ2ogm0OijRWMulRbu49iiWv2yWJ+iltOUamlPRyJd8OQXqCAzhKt ZPR6p2FRrqfdRNvt/ORKUYFDrb7lil5DVB0FzFCFOXSkFwU8olm/SSgya12H25xG mmtMVb9sAh1Jhbd4n7bXPo5LMHhB+SGMMGtS88XRP0CyBAiRNUxM6oAJk/kWagER 3NdoYGZTluTMbi+21bDVlxkQauiOL2QylHTrOSmKN4iDTGmqTZug/jWxfIm6+5Tu hQEkIHzsSUb7P762QHyUwQghoAsgNUZ68MiTRtNZHx216ESNv32oKSDVFsnYYRsa L+ibHtQE6jm76g== -----END CERTIFICATE-----Generated at Sat Dec 20 10:31:43 2025 by rpki-client