This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft File: Us2aZRLb8lpfGbgn16LH4iou6N0.mft (raw, json) Hash identifier: A4ngoKyDN7jfyIx50GE1arsWzcF4i0GSN6jChsSQKF8= Subject key identifier: 21:78:19:4C:8D:08:8B:BE:0D:6B:88:A7:E0:26:EE:CC:39:45:7B:08 Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Certificate serial: 019B3AFDDDD673ADFCB2C15E42A2FD7DA117 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft Manifest number: 0A4A Signing time: Sat 20 Dec 2025 09:01:14 +0000 Manifest this update: Sat 20 Dec 2025 09:01:14 +0000 Manifest next update: Sun 21 Dec 2025 09:01:14 +0000 Files and hashes: 1: 1-fNwUFlO6fD6i3f_1SheL5UVW0g.roa (hash: 32fP/D02b4404J0+5cPNK59TuFMj1f7NhGygcv25yuI=) 2: 1FJeVgZId139knZgMTYZmAnwLDs.roa (hash: VPpFwlCkzXISful3TlM5ZgodfCcJYCCPoZqn50dkuRo=) 3: BaoLehfzYM1vkBF2LqjuxCVGppw.roa (hash: wk0ycjZln2vcCwTCcN83YoDpaabATIZRlFvsl/RZ67U=) 4: ONKzBcZlLaDvBXj0ChQkq0AcBAo.roa (hash: xt6U3+zGv+p5+qldoLqBIRpHRAbFRfEFMt0N2Y4HxPA=) 5: QBzq9SwT5Mj7Gipr9Se8Luh44tY.roa (hash: G8hbbzFis0gYCX0QYtBRD4Pqznb+xerkkNt98SZq2jU=) 6: Us2aZRLb8lpfGbgn16LH4iou6N0.crl (hash: X18pjn58zgeaI0jv5GNTpiKtIdJkBO97lOeZCQmUg5I=) 7: W8Ti_dXcYalIUeRHiuN7_Pq4Q6k.roa (hash: 4QiUW7JIueqmFCn96lHxs3k9V/e0E2VEpe0b6/Dk6p8=) 8: XmP5gd5RMoI2I-3CuFjmsoadU-A.roa (hash: yTuyaNUFHzFeSHibSr05GdVIbx2NHYDZL76zx1zzku8=) 9: dLmCIA0WBqPvZ0tgv6iuNeMWI4k.roa (hash: YicG4lKEA73qVApeIKJhpm23B3p/oY3KjALkj9qrn/g=) 10: dxXbgNQXIcZf-wRxxpxKbsjTAhQ.roa (hash: 7Q2urw+eTsZ+V/fuq0yE3c5anzy795+Z4CJRGjeU6Hk=) 11: fYtRnjgkdcOcs2OTSoOyF7XeMYQ.roa (hash: BGM9RaFK/cZe9M2jNupJdVSdkow5uJUKCy6zw6S9pgQ=) 12: irPx7LPWmaDBY-_AbmGw3WFEhaQ.roa (hash: jDb6rbhv8bZIGpVJLz4cPKbnagFjHpigNY2MzVPUyPM=) 13: obpj78Cj4h6AqPChG513fVXXoMs.roa (hash: xhWt95TQUSf4jmhliYXpfzfmunJAIuxitDmmO5ohsLY=) 14: peFNs9o1tsBGwnwboXKeedD2GlM.roa (hash: Dmic12i1kcUbMMXMNmS8BrjxjQvM2y0e2GWo+yQ4WH0=) 15: vQdExQLdiUm5HPW2ned19BID9dw.roa (hash: 8R/4iMjA1jkjQuW17H+B8/zEgk5IKMSv1XvcdZ37ua0=) 16: zAnPUHrCJSV18x-mMc7-hNiZjaY.roa (hash: LG3Y0utc8dwpuU3oGtbD8u6QKi2Bv7dHexHJeWNV5Hk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:fd:dd:d6:73:ad:fc:b2:c1:5e:42:a2:fd:7d:a1:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Validity Not Before: Dec 20 09:01:14 2025 GMT Not After : Dec 21 09:01:14 2025 GMT Subject: CN=2178194c8d088bbe0d6b88a7e026eecc39457b08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:41:23:21:c5:6f:4e:97:f2:1d:b8:1e:dd:b1: 3a:40:ee:c0:ba:8b:19:ec:8e:5c:22:5c:93:80:4c: df:4d:b0:67:3e:8d:bc:28:7d:68:21:ca:b3:9d:9b: 2c:36:65:a6:83:ac:32:05:6f:7b:98:6f:83:2f:46: 84:2d:92:62:c4:2c:30:12:e8:93:80:59:19:da:3b: 97:6b:08:d8:bd:a0:5d:fe:18:51:76:db:6a:c3:14: 76:91:1e:2e:07:6b:97:ac:fb:33:fc:1d:05:84:17: 1b:27:2b:4d:39:8a:dc:ce:3b:f1:44:ba:97:0b:5c: 74:64:97:f5:a3:03:df:20:5e:08:e2:ea:94:83:05: e6:94:c1:3b:5e:f1:76:fd:f1:6e:93:0f:d9:f9:b2: c0:c5:71:43:a7:49:2e:53:13:95:06:47:d6:64:05: aa:a1:df:d9:04:0e:a6:64:6a:0b:61:91:98:15:c6: 99:98:ea:7a:c0:a6:c8:ea:4a:3f:5b:05:03:b3:0d: 57:79:a9:b1:69:90:b5:f9:4d:c8:59:0a:50:54:03: 6f:0c:b1:f3:64:55:d8:42:f7:4b:39:f5:aa:53:35: c9:26:ee:59:cf:4d:09:16:1c:86:d3:c3:68:81:13: db:e5:71:43:6d:06:26:a7:d3:c5:80:68:30:67:4b: 81:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:78:19:4C:8D:08:8B:BE:0D:6B:88:A7:E0:26:EE:CC:39:45:7B:08 X509v3 Authority Key Identifier: keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:f6:17:d0:dc:ac:26:94:6c:46:d6:03:0e:96:1e:ad:3b:1b: 30:97:4d:a7:f1:4c:72:18:d7:e3:ad:bd:0d:a5:e7:02:63:11: cb:7f:12:ad:57:65:25:d6:ab:8f:8e:1b:00:7d:9f:a8:5e:0a: 08:89:fe:6b:c5:f4:e6:b8:3d:95:d9:78:12:5f:c0:42:32:c0: 10:6c:76:1d:dd:3c:15:86:d0:0f:4f:6e:cd:47:c7:41:bb:aa: 03:67:0d:53:de:26:da:2d:e8:e9:1e:cd:80:da:f4:42:47:fb: 7e:6e:88:54:fc:cd:9f:41:f3:65:33:d1:0e:dc:13:ec:1f:4e: 00:f0:66:5a:76:4a:eb:ce:a6:b3:02:2d:8f:86:07:ef:17:fc: ae:f8:3e:da:c9:52:49:04:38:c6:e2:2c:50:72:b7:93:db:97: 0b:75:e1:31:78:3a:bb:70:e1:1b:45:fa:99:ff:14:b1:f1:bc: 4a:7e:ff:ff:b6:82:2a:98:ca:72:af:0e:d1:de:dd:7e:b3:7a: 09:f6:b3:37:ab:83:dc:07:85:e8:7c:b2:4d:39:1b:81:20:dc: 2f:00:6a:9c:3e:52:a9:c7:7a:4b:ff:d6:9f:58:52:60:50:3a: 74:74:30:81:63:3e:ee:e0:cb:6d:07:2a:5a:17:36:3b:40:24: 16:e1:46:f1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6/d3Wc638ssFeQqL9faEXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyY2Q5YTY1MTJkYmYyNWE1ZjE5YjgyN2Q3YTJjN2UyMmEy ZWU4ZGQwHhcNMjUxMjIwMDkwMTE0WhcNMjUxMjIxMDkwMTE0WjAzMTEwLwYDVQQD EygyMTc4MTk0YzhkMDg4YmJlMGQ2Yjg4YTdlMDI2ZWVjYzM5NDU3YjA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtEEjIcVvTpfyHbge3bE6QO7AuosZ 7I5cIlyTgEzfTbBnPo28KH1oIcqznZssNmWmg6wyBW97mG+DL0aELZJixCwwEuiT gFkZ2juXawjYvaBd/hhRdttqwxR2kR4uB2uXrPsz/B0FhBcbJytNOYrczjvxRLqX C1x0ZJf1owPfIF4I4uqUgwXmlME7XvF2/fFukw/Z+bLAxXFDp0kuUxOVBkfWZAWq od/ZBA6mZGoLYZGYFcaZmOp6wKbI6ko/WwUDsw1XeamxaZC1+U3IWQpQVANvDLHz ZFXYQvdLOfWqUzXJJu5Zz00JFhyG08NogRPb5XFDbQYmp9PFgGgwZ0uBgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCF4GUyNCIu+DWuIp+Am7sw5RXsIMB8GA1UdIwQY MBaAFFLNmmUS2/JaXxm4J9eix+IqLujdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUt Y2NhMzc2MDZiZjE4LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUtY2NhMzc2MDZiZjE4 LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlPYX0Nys JpRsRtYDDpYerTsbMJdNp/FMchjX4629DaXnAmMRy38SrVdlJdarj44bAH2fqF4K CIn+a8X05rg9ldl4El/AQjLAEGx2Hd08FYbQD09uzUfHQbuqA2cNU94m2i3o6R7N gNr0Qkf7fm6IVPzNn0HzZTPRDtwT7B9OAPBmWnZK686mswItj4YH7xf8rvg+2slS SQQ4xuIsUHK3k9uXC3XhMXg6u3DhG0X6mf8UsfG8Sn7//7aCKpjKcq8O0d7dfrN6 CfazN6uD3AeF6HyyTTkbgSDcLwBqnD5Sqcd6S//Wn1hSYFA6dHQwgWM+7uDLbQcq Whc2O0AkFuFG8Q== -----END CERTIFICATE-----Generated at Sat Dec 20 18:27:10 2025 by rpki-client