This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.mft File: 2VSrlORZUZTSw5sdP-aokfHrkrw.mft (raw, json) Hash identifier: syFQb0iN1vvrQuZgT06BJjeL9UIQNlWCHXAsRvhWUSM= Subject key identifier: D7:BE:E8:13:32:98:31:80:09:FE:CB:F1:69:AA:A2:DE:73:DC:00:40 Authority key identifier: D9:54:AB:94:E4:59:51:94:D2:C3:9B:1D:3F:E6:A8:91:F1:EB:92:BC Certificate issuer: /CN=d954ab94e4595194d2c39b1d3fe6a891f1eb92bc Certificate serial: 019B40C90D57AB445DD0409044211B98821E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2VSrlORZUZTSw5sdP-aokfHrkrw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.mft Manifest number: 08E9 Signing time: Sun 21 Dec 2025 12:01:16 +0000 Manifest this update: Sun 21 Dec 2025 12:01:16 +0000 Manifest next update: Mon 22 Dec 2025 12:01:16 +0000 Files and hashes: 1: 2VSrlORZUZTSw5sdP-aokfHrkrw.crl (hash: RvnOMSQmIULAI2nGbfWI/1Lz5y4H0JrsJKxsVr5m8Ac=) 2: ExuO0wU2-ClJDZRwWSRuAs7W0gk.roa (hash: 2j3+sZIfGB/S0w3o+OLoSghT+pM132gfjkW2EjpJ9JQ=) 3: aedVSgDzPN8NSNc0AWT5LWxB0ME.roa (hash: dpDe6aIbJvexkIC5o0dZBz+eF8xcPh7l66sRiS3ImZY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.mft rsync://rpki.ripe.net/repository/DEFAULT/2VSrlORZUZTSw5sdP-aokfHrkrw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 12:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:c9:0d:57:ab:44:5d:d0:40:90:44:21:1b:98:82:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d954ab94e4595194d2c39b1d3fe6a891f1eb92bc Validity Not Before: Dec 21 12:01:16 2025 GMT Not After : Dec 22 12:01:16 2025 GMT Subject: CN=d7bee8133298318009fecbf169aaa2de73dc0040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:3e:d9:bc:66:8e:b9:1a:39:4f:25:0e:72:46: 8d:b6:d6:d5:bf:d7:e5:51:2d:fc:0c:7c:b9:90:4d: 2f:e7:74:5c:f0:8f:26:cf:4f:1d:a0:c7:60:9f:75: cf:10:ff:65:77:07:aa:44:6d:f6:08:19:cf:49:6b: 40:29:09:fc:8d:8e:67:8c:c0:72:25:98:45:1d:3c: 52:e8:c1:41:8e:02:c6:86:eb:fe:1b:d1:b1:79:e8: b4:5c:f9:52:27:aa:e6:c2:ce:88:b7:b1:26:38:af: ff:a8:4c:de:70:db:96:d4:f6:24:d8:56:a7:6e:a5: f0:08:ca:be:8d:7a:d1:ad:b2:de:b3:90:1d:11:93: 06:bd:6f:19:9b:6a:42:27:24:3e:18:14:ca:f8:0b: 1b:3a:f7:08:ed:d5:f6:d2:83:70:8f:5a:66:15:2b: 6f:79:a2:51:a9:63:fa:6d:c8:16:b7:f3:f8:90:fc: ae:ab:55:b0:c9:80:34:9b:60:6c:e2:3f:48:b8:e8: a4:06:25:8e:06:3a:c8:5f:d8:cb:c9:22:bd:67:a2: 23:32:4a:b7:7e:fe:23:cc:03:51:7a:d3:72:2b:d8: 73:c9:2e:24:72:9d:fd:e8:24:80:e9:ed:82:0a:ae: 3d:64:36:bd:5e:6f:fc:a4:eb:9a:70:f5:63:53:15: 55:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:BE:E8:13:32:98:31:80:09:FE:CB:F1:69:AA:A2:DE:73:DC:00:40 X509v3 Authority Key Identifier: keyid:D9:54:AB:94:E4:59:51:94:D2:C3:9B:1D:3F:E6:A8:91:F1:EB:92:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2VSrlORZUZTSw5sdP-aokfHrkrw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:19:6f:17:b6:92:ed:a3:ac:9b:68:94:b4:2e:43:62:9d:f4: 79:bd:45:eb:07:d7:ff:ac:13:b5:7a:17:57:37:14:fb:bf:7a: e8:3e:b0:70:4f:26:fc:7a:60:34:e9:df:7e:1e:cb:69:e6:8f: 72:a5:79:80:fb:ed:30:05:c7:ed:f4:88:2d:a2:c8:4b:96:7e: 0e:00:26:46:f4:2a:6b:21:8d:1d:06:85:9f:51:aa:6d:15:f6: a1:28:ce:f8:17:18:e5:ad:f4:b4:ce:83:02:a1:50:a8:61:ca: 42:fb:cf:fb:27:62:2d:42:d7:5e:89:54:33:29:f2:e0:e4:8d: 57:c8:c1:dd:57:1a:93:f6:1a:75:20:94:26:1e:e9:fb:29:8a: 58:b7:72:31:3d:93:1f:cd:5f:3d:5b:5a:52:db:ae:bc:e1:54: 58:88:75:52:45:3d:20:bf:fe:46:bc:a8:f9:69:3c:ab:30:ac: 17:9b:3f:a6:1c:e0:a1:2e:e2:2c:cc:54:c2:6e:33:34:c6:09: e0:c9:f3:e7:f5:2a:86:8c:a8:e0:c1:51:a7:9a:05:3c:6d:27: c7:d3:41:ed:3f:f6:20:e2:88:6d:20:c4:57:e9:71:ce:1d:93: da:0e:0c:73:c9:e6:d7:08:ae:ac:9c:2b:b9:1e:ee:7f:79:e4: 3a:7a:22:34 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtAyQ1Xq0Rd0ECQRCEbmIIeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5NTRhYjk0ZTQ1OTUxOTRkMmMzOWIxZDNmZTZhODkxZjFl YjkyYmMwHhcNMjUxMjIxMTIwMTE2WhcNMjUxMjIyMTIwMTE2WjAzMTEwLwYDVQQD EyhkN2JlZTgxMzMyOTgzMTgwMDlmZWNiZjE2OWFhYTJkZTczZGMwMDQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnz7ZvGaOuRo5TyUOckaNttbVv9fl US38DHy5kE0v53Rc8I8mz08doMdgn3XPEP9ldweqRG32CBnPSWtAKQn8jY5njMBy JZhFHTxS6MFBjgLGhuv+G9Gxeei0XPlSJ6rmws6It7EmOK//qEzecNuW1PYk2Fan bqXwCMq+jXrRrbLes5AdEZMGvW8Zm2pCJyQ+GBTK+AsbOvcI7dX20oNwj1pmFStv eaJRqWP6bcgWt/P4kPyuq1WwyYA0m2Bs4j9IuOikBiWOBjrIX9jLySK9Z6IjMkq3 fv4jzANRetNyK9hzyS4kcp396CSA6e2CCq49ZDa9Xm/8pOuacPVjUxVV4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNe+6BMymDGACf7L8Wmqot5z3ABAMB8GA1UdIwQY MBaAFNlUq5TkWVGU0sObHT/mqJHx65K8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlZTcmxPUlpVWlRTdzVzZFAtYW9rZkhya3J3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC82NDc0ODUtNjM1ZS00YWM2LWIwYjkt MzM1MWM1NzdiNDMyLzEvMlZTcmxPUlpVWlRTdzVzZFAtYW9rZkhya3J3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC82NDc0ODUtNjM1ZS00YWM2LWIwYjktMzM1MWM1NzdiNDMy LzEvMlZTcmxPUlpVWlRTdzVzZFAtYW9rZkhya3J3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFxlvF7aS 7aOsm2iUtC5DYp30eb1F6wfX/6wTtXoXVzcU+7966D6wcE8m/HpgNOnffh7LaeaP cqV5gPvtMAXH7fSILaLIS5Z+DgAmRvQqayGNHQaFn1GqbRX2oSjO+BcY5a30tM6D AqFQqGHKQvvP+ydiLULXXolUMyny4OSNV8jB3Vcak/YadSCUJh7p+ymKWLdyMT2T H81fPVtaUtuuvOFUWIh1UkU9IL/+Rryo+Wk8qzCsF5s/phzgoS7iLMxUwm4zNMYJ 4Mnz5/Uqhoyo4MFRp5oFPG0nx9NB7T/2IOKIbSDEV+lxzh2T2g4Mc8nm1wiurJwr uR7uf3nkOnoiNA== -----END CERTIFICATE-----Generated at Sun Dec 21 16:14:45 2025 by rpki-client