This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft File: 2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft (raw, json) Hash identifier: AqylP7MgkqLUYAg986ucWInCFqPMsF+13HWV/Uu9WbQ= Subject key identifier: 70:9B:43:65:44:7D:EE:5C:79:30:AB:D7:A4:AB:BB:82:BE:DE:B1:4B Authority key identifier: D9:49:CA:BA:3D:43:15:60:7F:4A:6D:62:7E:CE:1E:CE:A8:CB:C3:19 Certificate issuer: /CN=d949caba3d4315607f4a6d627ece1ecea8cbc319 Certificate serial: 019B3C106126AD8259AB44CEDEE3F9EF29F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft Manifest number: 0CC5 Signing time: Sat 20 Dec 2025 14:01:04 +0000 Manifest this update: Sat 20 Dec 2025 14:01:04 +0000 Manifest next update: Sun 21 Dec 2025 14:01:04 +0000 Files and hashes: 1: 2UnKuj1DFWB_Sm1ifs4ezqjLwxk.crl (hash: ezgfwvGmm0xI0fp3EJQHGj5F5QiFGVs1yeDiPLubb08=) 2: 9QEKfiqhzH-bmQh5b6rMdNbStYc.roa (hash: MpYTZwjsTnNyFZWB4RSLKA3k60L/jvvVARMaXOoFY4M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft rsync://rpki.ripe.net/repository/DEFAULT/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:10:61:26:ad:82:59:ab:44:ce:de:e3:f9:ef:29:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d949caba3d4315607f4a6d627ece1ecea8cbc319 Validity Not Before: Dec 20 14:01:04 2025 GMT Not After : Dec 21 14:01:04 2025 GMT Subject: CN=709b4365447dee5c7930abd7a4abbb82bedeb14b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4d:b8:9f:1c:2a:2f:4e:88:bb:2c:28:fb:e4: 6d:28:97:bb:ab:3b:95:70:99:89:64:91:a2:15:b1: 0e:be:e2:f7:cc:67:b0:d3:d3:d9:ef:51:81:62:1d: 68:0e:2d:b1:78:9b:ef:8d:14:12:75:41:d7:8a:6f: dd:67:86:2e:16:01:d2:55:e5:42:59:e8:69:e4:12: 4f:10:6c:f6:30:6a:cf:55:d4:85:38:fe:75:0d:da: eb:61:a8:1d:6d:3f:96:03:61:53:45:b9:39:78:05: 5f:31:b9:b1:a8:0e:0b:42:74:1c:cb:5d:61:aa:b9: 27:68:40:1d:08:f0:60:5f:f8:af:74:63:e9:a5:1d: 50:70:fa:90:16:fb:26:2e:26:59:79:90:81:f8:0c: 2f:95:f3:c5:90:dd:d4:f4:1d:ba:33:a4:eb:14:0a: d5:87:bc:27:e8:03:55:8c:d2:0d:9d:94:c4:52:73: ee:aa:17:91:5b:66:64:79:5e:5e:e7:a3:68:b9:83: d2:d8:e0:2c:98:75:27:ba:fe:3e:2f:b4:60:f0:21: 8c:31:34:e0:47:06:26:e0:e2:55:5e:da:87:82:ea: 2b:52:37:2b:70:2a:27:54:e2:b2:a8:45:1f:b6:7f: f3:0e:2b:45:df:29:c3:a0:e0:50:d6:d5:ab:9d:80: 4f:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:9B:43:65:44:7D:EE:5C:79:30:AB:D7:A4:AB:BB:82:BE:DE:B1:4B X509v3 Authority Key Identifier: keyid:D9:49:CA:BA:3D:43:15:60:7F:4A:6D:62:7E:CE:1E:CE:A8:CB:C3:19 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:00:5c:ae:43:80:d1:99:2e:74:03:40:fb:72:37:47:9d:05: a7:a3:05:e0:cc:60:02:dc:71:28:4e:3a:cd:b7:35:bb:57:f7: c0:79:71:74:f2:78:0c:46:a4:15:ba:51:e8:b2:b4:1f:f4:5c: 77:f1:af:eb:d3:92:34:80:ef:25:de:92:62:5b:58:a0:0f:87: 5a:bb:38:a7:3f:4d:fa:54:31:cf:95:cc:be:74:c2:d7:e6:8d: 20:24:6b:64:6d:64:3d:24:ef:f3:2c:3f:a7:0f:ef:0d:0d:2f: 5d:61:af:47:73:61:5d:f6:05:0b:14:44:ff:54:5d:f3:8f:3f: 88:c7:d5:a6:1d:3b:37:f9:a5:7a:32:a4:4c:c3:8d:68:5f:9d: da:f0:0f:1d:5d:d3:43:ac:29:b0:51:3a:3b:5a:2a:3a:d1:de: c9:f3:ce:06:66:18:e4:6e:39:32:4d:65:99:a8:3d:85:b6:e0: b1:e5:ab:7a:6c:87:31:6d:67:c3:09:e8:d1:00:05:43:5b:2d: 1b:23:cb:fc:7c:fe:bd:fe:54:e8:48:c4:e2:e6:9a:0d:26:f6: d5:81:74:22:30:cd:c5:b2:c4:0e:30:1d:c7:75:01:8b:4c:0a: 12:f3:72:8a:9d:f2:eb:36:28:db:e1:1c:ca:37:66:6b:3c:80: 8c:49:aa:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8EGEmrYJZq0TO3uP57yn3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5NDljYWJhM2Q0MzE1NjA3ZjRhNmQ2MjdlY2UxZWNlYThj YmMzMTkwHhcNMjUxMjIwMTQwMTA0WhcNMjUxMjIxMTQwMTA0WjAzMTEwLwYDVQQD Eyg3MDliNDM2NTQ0N2RlZTVjNzkzMGFiZDdhNGFiYmI4MmJlZGViMTRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwE24nxwqL06Iuywo++RtKJe7qzuV cJmJZJGiFbEOvuL3zGew09PZ71GBYh1oDi2xeJvvjRQSdUHXim/dZ4YuFgHSVeVC Wehp5BJPEGz2MGrPVdSFOP51DdrrYagdbT+WA2FTRbk5eAVfMbmxqA4LQnQcy11h qrknaEAdCPBgX/ivdGPppR1QcPqQFvsmLiZZeZCB+AwvlfPFkN3U9B26M6TrFArV h7wn6ANVjNINnZTEUnPuqheRW2ZkeV5e56NouYPS2OAsmHUnuv4+L7Rg8CGMMTTg RwYm4OJVXtqHguorUjcrcConVOKyqEUftn/zDitF3ynDoOBQ1tWrnYBPJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHCbQ2VEfe5ceTCr16Sru4K+3rFLMB8GA1UdIwQY MBaAFNlJyro9QxVgf0ptYn7OHs6oy8MZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlVuS3VqMURGV0JfU20xaWZzNGV6cWpMd3hrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS9mZTY5MDQtZWI1Ni00NDkzLTkyOWMt MWE5ZGYzOGY1OTAxLzEvMlVuS3VqMURGV0JfU20xaWZzNGV6cWpMd3hrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS9mZTY5MDQtZWI1Ni00NDkzLTkyOWMtMWE5ZGYzOGY1OTAx LzEvMlVuS3VqMURGV0JfU20xaWZzNGV6cWpMd3hrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABgBcrkOA 0ZkudANA+3I3R50Fp6MF4MxgAtxxKE46zbc1u1f3wHlxdPJ4DEakFbpR6LK0H/Rc d/Gv69OSNIDvJd6SYltYoA+HWrs4pz9N+lQxz5XMvnTC1+aNICRrZG1kPSTv8yw/ pw/vDQ0vXWGvR3NhXfYFCxRE/1Rd848/iMfVph07N/mlejKkTMONaF+d2vAPHV3T Q6wpsFE6O1oqOtHeyfPOBmYY5G45Mk1lmag9hbbgseWremyHMW1nwwno0QAFQ1st GyPL/Hz+vf5U6EjE4uaaDSb21YF0IjDNxbLEDjAdx3UBi0wKEvNyip3y6zYo2+Ec yjdmazyAjEmqxw== -----END CERTIFICATE-----Generated at Sat Dec 20 18:51:09 2025 by rpki-client