This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft File: 2ChPGM1EYEvdbQj02HjcYUVsQP0.mft (raw, json) Hash identifier: igXcVn73KGZ/XdrR2Thm8FRNzGcXG2dOnqhZ7SPCZEw= Subject key identifier: 7B:E8:22:3D:76:F3:6D:D4:BC:6D:B7:AF:DE:BC:03:3B:86:8A:40:A9 Authority key identifier: D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD Certificate issuer: /CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd Certificate serial: 019B39467451B0A91E1AB5090FFD5212B402 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft Manifest number: 1797 Signing time: Sat 20 Dec 2025 01:01:17 +0000 Manifest this update: Sat 20 Dec 2025 01:01:17 +0000 Manifest next update: Sun 21 Dec 2025 01:01:17 +0000 Files and hashes: 1: 2ChPGM1EYEvdbQj02HjcYUVsQP0.crl (hash: HhZEXuuKHwImxMmu6PvN9uVY2MwkjTrLHu3eMGJ68l8=) 2: QwB_J4IBjr_kwpZ0DSZt7jLyFUw.roa (hash: xjQoVVO98cxf92eXukztlmvd0mAJHZVRoWG3GH3edIU=) 3: RZQ5y55NZ91q7qGueZI2kyy2lHI.roa (hash: s/DyWvu0J1swkDaWXLLyRdJ0euIh4+uqvas0DU4Xq7I=) 4: noQO1tLrNCKz3bIWnBbDMmvuYLg.roa (hash: hYTtEju7KkB6LYquIBvGjeZyYymRK8/pFRz4XyGZMT8=) 5: qWeBIgMT9yofaevmnsJv-k3J7gM.roa (hash: OVmNg3h2HayVISC+svzIkwU6u8HmPx4SN/OehOmAqgY=) 6: qq3OJ7E8FdGE4BJdu3ZOq4LInY8.roa (hash: jyVlOFzMs6a5a3ty01oIP3DwXzFAJhXu3CIHkhRdIo8=) 7: v5y-XO_c3BUL4I2vKl0yvM3sR48.roa (hash: job18wRUBRjomyukO0QxaFg1pEdwxYB+4rsX0iFAoJo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:46:74:51:b0:a9:1e:1a:b5:09:0f:fd:52:12:b4:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd Validity Not Before: Dec 20 01:01:17 2025 GMT Not After : Dec 21 01:01:17 2025 GMT Subject: CN=7be8223d76f36dd4bc6db7afdebc033b868a40a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:62:94:77:5f:fa:fb:9a:12:64:26:73:56:95: 7d:3e:91:13:52:b1:9c:d3:b2:6f:0e:54:ed:eb:c8: 92:ea:ef:78:b6:b0:77:ee:1b:9e:3f:ee:b5:a8:3f: 03:48:a7:1b:b1:e1:a5:26:61:cb:4d:cd:b5:e6:b0: 35:d8:fc:cf:19:3f:1d:ce:ee:e2:99:aa:c8:cf:14: 73:1c:9b:7d:97:f9:91:d1:bf:9f:27:1a:3d:67:6b: 2d:20:04:ae:ec:58:67:01:7c:ba:cb:d7:29:ff:b1: 6e:e0:1b:63:0a:e9:d7:21:f4:6e:90:e5:17:9c:6d: af:12:1c:c6:2d:1e:3c:10:e1:39:38:c0:2b:5b:24: 7c:aa:c5:22:21:38:bf:99:10:b4:54:b3:e2:ad:69: 31:bb:38:93:28:60:5d:76:11:8f:7a:ed:af:b9:fb: 05:31:03:ba:30:7b:27:fa:51:94:c2:f9:ec:06:06: ad:40:b8:9d:ce:11:90:29:9e:08:b1:a7:d8:b3:69: c8:5b:cc:b5:76:ad:73:35:c8:a4:b7:14:21:b2:40: 78:67:84:26:3e:ee:14:09:07:52:3d:87:70:8b:c4: ab:46:37:a5:bd:e8:e3:94:f4:1f:6c:8e:9c:93:51: 1d:43:a9:28:8d:12:41:89:3d:9a:df:68:eb:11:72: b1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:E8:22:3D:76:F3:6D:D4:BC:6D:B7:AF:DE:BC:03:3B:86:8A:40:A9 X509v3 Authority Key Identifier: keyid:D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:ce:6a:e2:82:91:43:06:d5:9e:a1:8d:cd:ed:e6:e3:21:38: a4:6c:78:07:e0:f4:cf:be:0e:6c:81:fb:c8:cc:1c:ca:eb:99: 4f:a0:2b:32:ed:54:22:a4:b0:56:06:f1:f5:76:9c:7a:ec:64: f1:df:a4:13:3b:63:43:0e:24:03:bd:70:d4:6d:66:2e:39:f2: 77:c2:0a:38:40:0b:a7:81:bb:bf:77:4c:f5:1d:05:a1:b3:ed: 56:07:76:52:f0:63:0c:ac:35:c5:44:f8:90:f7:3e:d6:14:eb: b7:b2:41:f8:79:55:6b:c3:d4:83:80:67:47:ff:c2:6d:e9:b0: 8c:79:e6:fa:93:4b:3a:20:71:da:df:ac:76:1a:97:2c:1d:a0: 5d:4b:3b:60:aa:7e:62:de:90:8c:81:c2:ce:7a:27:8f:12:ec: 5f:1b:4e:04:88:9a:8e:7b:81:69:97:7e:ad:29:0f:a0:79:f5: 70:81:47:64:f5:40:c1:bb:50:27:6d:ae:1c:88:d2:74:e1:4f: e3:95:77:78:21:b1:0f:40:8d:86:08:df:27:d7:e6:a9:e6:63: e5:c3:30:2c:2e:39:7c:fb:1b:fd:d0:55:ff:8f:97:b5:75:1d: c6:d3:62:41:f5:8a:4d:7e:1a:84:f3:d6:31:7a:57:fe:ad:7f: 64:6c:e7:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs5RnRRsKkeGrUJD/1SErQCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4Mjg0ZjE4Y2Q0NDYwNGJkZDZkMDhmNGQ4NzhkYzYxNDU2 YzQwZmQwHhcNMjUxMjIwMDEwMTE3WhcNMjUxMjIxMDEwMTE3WjAzMTEwLwYDVQQD Eyg3YmU4MjIzZDc2ZjM2ZGQ0YmM2ZGI3YWZkZWJjMDMzYjg2OGE0MGE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlmKUd1/6+5oSZCZzVpV9PpETUrGc 07JvDlTt68iS6u94trB37hueP+61qD8DSKcbseGlJmHLTc215rA12PzPGT8dzu7i marIzxRzHJt9l/mR0b+fJxo9Z2stIASu7FhnAXy6y9cp/7Fu4BtjCunXIfRukOUX nG2vEhzGLR48EOE5OMArWyR8qsUiITi/mRC0VLPirWkxuziTKGBddhGPeu2vufsF MQO6MHsn+lGUwvnsBgatQLidzhGQKZ4IsafYs2nIW8y1dq1zNciktxQhskB4Z4Qm Pu4UCQdSPYdwi8SrRjelvejjlPQfbI6ck1EdQ6kojRJBiT2a32jrEXKxSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHvoIj12823UvG23r968AzuGikCpMB8GA1UdIwQY MBaAFNgoTxjNRGBL3W0I9Nh43GFFbED9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkNoUEdNMUVZRXZkYlFqMDJIamNZVVZzUVAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8yNjUyY2QtN2VjZi00OWU4LWE0Zjgt Yzc4NjkxMjg1ODJjLzEvMkNoUEdNMUVZRXZkYlFqMDJIamNZVVZzUVAwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi8yNjUyY2QtN2VjZi00OWU4LWE0ZjgtYzc4NjkxMjg1ODJj LzEvMkNoUEdNMUVZRXZkYlFqMDJIamNZVVZzUVAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq85q4oKR QwbVnqGNze3m4yE4pGx4B+D0z74ObIH7yMwcyuuZT6ArMu1UIqSwVgbx9Xaceuxk 8d+kEztjQw4kA71w1G1mLjnyd8IKOEALp4G7v3dM9R0FobPtVgd2UvBjDKw1xUT4 kPc+1hTrt7JB+HlVa8PUg4BnR//CbemwjHnm+pNLOiBx2t+sdhqXLB2gXUs7YKp+ Yt6QjIHCznonjxLsXxtOBIiajnuBaZd+rSkPoHn1cIFHZPVAwbtQJ22uHIjSdOFP 45V3eCGxD0CNhgjfJ9fmqeZj5cMwLC45fPsb/dBV/4+XtXUdxtNiQfWKTX4ahPPW MXpX/q1/ZGznzg== -----END CERTIFICATE-----Generated at Sat Dec 20 07:31:08 2025 by rpki-client