This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft File: r2A0bQgbHFyBCzlMZuEFErv02Mk.mft (raw, json) Hash identifier: VaUNX1BlhAMXPK+adioKP2rx0N5nqDItSrQNC5lPWcI= Subject key identifier: 69:26:85:22:72:59:DD:89:9E:0F:3B:18:2E:5D:1D:29:FE:72:E4:2B Authority key identifier: AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9 Certificate issuer: /CN=af60346d081b1c5c810b394c66e10512bbf4d8c9 Certificate serial: 019B59080B1BB837D29A795196C867432367 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft Manifest number: 04B0 Signing time: Fri 26 Dec 2025 05:00:57 +0000 Manifest this update: Fri 26 Dec 2025 05:00:57 +0000 Manifest next update: Sat 27 Dec 2025 05:00:57 +0000 Files and hashes: 1: j5QtHlhxEZZOM5CvXJMLssoxGGc.roa (hash: 8L3ZEU7bcEWssZWSFVojRb4D5wALELFNA26f5J8ZxnI=) 2: r2A0bQgbHFyBCzlMZuEFErv02Mk.crl (hash: zTLzCWvlG3jTfDqbhLQnwQdtsbgHr8DPa3PzHz1K2KE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:08:0b:1b:b8:37:d2:9a:79:51:96:c8:67:43:23:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af60346d081b1c5c810b394c66e10512bbf4d8c9 Validity Not Before: Dec 26 05:00:57 2025 GMT Not After : Dec 27 05:00:57 2025 GMT Subject: CN=692685227259dd899e0f3b182e5d1d29fe72e42b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:88:82:65:c0:fa:90:40:d8:38:3a:d7:58:04: 90:a9:66:69:e4:b9:f5:ae:4b:ae:2f:ea:55:39:65: bd:49:9e:9a:67:57:20:fd:ba:ca:e6:51:cd:20:24: 38:8e:3a:80:dd:41:dd:41:28:56:a7:0d:99:d4:83: 28:5a:e6:ef:a2:82:2e:c5:7f:d7:ab:2c:19:c7:d8: 0c:51:87:96:f0:4d:52:9e:f6:a6:fa:56:02:f4:55: 3b:2f:0c:f8:27:32:a9:38:95:f7:f4:7c:ee:92:c6: f8:23:0f:a5:f4:cb:64:92:a2:cb:e2:36:08:40:8e: f6:49:59:bd:9f:60:ac:61:aa:ab:ea:0a:97:aa:c9: 1e:4b:4b:72:3e:ec:07:ac:6b:be:73:54:72:31:c6: 57:b8:c0:73:7c:86:16:30:80:c7:0f:7d:d5:04:0c: 31:0b:b0:4b:6e:fe:64:42:4a:a0:d6:34:ad:53:16: 11:29:97:e4:83:f6:6f:c1:6c:7c:a8:b1:55:ab:dd: bc:14:b0:e5:2e:b1:59:46:4d:32:e5:20:0f:3a:0c: 50:23:45:69:db:a3:1c:af:18:78:aa:6d:d1:0d:d7: e2:8b:fd:96:ba:b1:84:e1:4a:7d:68:14:7e:a3:29: 9a:a6:16:8c:fa:d9:39:32:7c:52:96:52:d8:1b:96: 44:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:26:85:22:72:59:DD:89:9E:0F:3B:18:2E:5D:1D:29:FE:72:E4:2B X509v3 Authority Key Identifier: keyid:AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:60:52:9e:68:5a:ae:de:ad:45:2b:cf:e7:80:8a:79:1f:ab: e8:df:45:fd:bf:f3:d0:cf:f0:1d:8f:f7:b2:ea:7f:79:dc:96: e6:68:f1:80:ee:2d:a5:6c:31:b1:72:75:7c:12:49:b2:21:1c: f1:8f:98:36:fe:f2:a6:8b:61:49:00:22:7c:05:cc:d0:5a:ce: 61:a3:7e:70:fe:85:cc:68:a2:1e:b0:65:63:19:8a:ce:29:79: 61:1a:6c:78:99:6d:f3:5b:d2:1e:09:56:c3:1c:e8:7f:b0:7c: a9:7a:9e:21:f7:ca:3e:d5:1a:78:f4:91:1a:6d:d9:a4:c6:2c: d1:2e:82:58:88:92:42:c4:b1:7c:94:4f:2a:d4:b6:28:16:7d: 88:c4:69:49:d5:a8:28:e9:f9:46:b2:8f:d7:2f:4e:e4:11:b3: fa:25:1a:96:c3:8d:af:ac:fa:72:67:6c:bd:38:6f:d1:cc:92: 17:2c:ec:29:24:fc:97:f2:20:9f:f2:f4:3d:b1:73:3e:69:9d: d1:92:52:42:7b:c9:ae:1c:ce:fa:f3:25:63:3f:a9:28:a7:14: 77:80:94:65:73:24:ce:3a:8a:d9:a2:ff:48:0a:55:17:5b:3a: 64:80:91:23:2e:f0:2b:81:7b:72:e7:dc:8d:58:a9:6f:3c:4c: f0:6f:ae:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZCAsbuDfSmnlRlshnQyNnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmNjAzNDZkMDgxYjFjNWM4MTBiMzk0YzY2ZTEwNTEyYmJm NGQ4YzkwHhcNMjUxMjI2MDUwMDU3WhcNMjUxMjI3MDUwMDU3WjAzMTEwLwYDVQQD Eyg2OTI2ODUyMjcyNTlkZDg5OWUwZjNiMTgyZTVkMWQyOWZlNzJlNDJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmIiCZcD6kEDYODrXWASQqWZp5Ln1 rkuuL+pVOWW9SZ6aZ1cg/brK5lHNICQ4jjqA3UHdQShWpw2Z1IMoWubvooIuxX/X qywZx9gMUYeW8E1Snvam+lYC9FU7Lwz4JzKpOJX39Hzuksb4Iw+l9MtkkqLL4jYI QI72SVm9n2CsYaqr6gqXqskeS0tyPuwHrGu+c1RyMcZXuMBzfIYWMIDHD33VBAwx C7BLbv5kQkqg1jStUxYRKZfkg/ZvwWx8qLFVq928FLDlLrFZRk0y5SAPOgxQI0Vp 26Mcrxh4qm3RDdfii/2WurGE4Up9aBR+oymaphaM+tk5MnxSllLYG5ZEtQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGkmhSJyWd2Jng87GC5dHSn+cuQrMB8GA1UdIwQY MBaAFK9gNG0IGxxcgQs5TGbhBRK79NjJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjJBMGJRZ2JIRnlCQ3psTVp1RUZFcnYwMk1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9iNjYwZjQtODhjYi00NWYzLWE3MWEt MjYzOTgzOWY4MjhkLzEvcjJBMGJRZ2JIRnlCQ3psTVp1RUZFcnYwMk1rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC9iNjYwZjQtODhjYi00NWYzLWE3MWEtMjYzOTgzOWY4Mjhk LzEvcjJBMGJRZ2JIRnlCQ3psTVp1RUZFcnYwMk1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU2BSnmha rt6tRSvP54CKeR+r6N9F/b/z0M/wHY/3sup/edyW5mjxgO4tpWwxsXJ1fBJJsiEc 8Y+YNv7ypothSQAifAXM0FrOYaN+cP6FzGiiHrBlYxmKzil5YRpseJlt81vSHglW wxzof7B8qXqeIffKPtUaePSRGm3ZpMYs0S6CWIiSQsSxfJRPKtS2KBZ9iMRpSdWo KOn5RrKP1y9O5BGz+iUalsONr6z6cmdsvThv0cySFyzsKST8l/Ign/L0PbFzPmmd 0ZJSQnvJrhzO+vMlYz+pKKcUd4CUZXMkzjqK2aL/SApVF1s6ZICRIy7wK4F7cufc jVipbzxM8G+uSw== -----END CERTIFICATE-----Generated at Fri Dec 26 09:37:54 2025 by rpki-client