This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft File: 2CsoRvCTvJQWBBvmiix4MWHrBN8.mft (raw, json) Hash identifier: m4kFVkpmOWnVyJcVPaYD7lxf6pWlpMg9jhexqIT/iKQ= Subject key identifier: 9C:13:11:26:55:E0:19:98:B2:7E:D5:08:B1:0F:5A:C2:1A:D2:63:95 Authority key identifier: D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF Certificate issuer: /CN=d82b2846f093bc9416041be68a2c783161eb04df Certificate serial: 019B74ECA22499A2A02A7168D84CC62BC78C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft Manifest number: 094D Signing time: Wed 31 Dec 2025 15:00:23 +0000 Manifest this update: Wed 31 Dec 2025 15:00:23 +0000 Manifest next update: Thu 01 Jan 2026 15:00:23 +0000 Files and hashes: 1: 2CsoRvCTvJQWBBvmiix4MWHrBN8.crl (hash: jZBXDkas1XAoL3O8TaZnzJ+7Ts1S69zsSy2knPCVyxo=) 2: hTfKaocG3Hu8jZISH8wxDZSDFQU.roa (hash: SPxEv0NQloEq4rpI+CK4+O5Rga0a1/KsmAnYz63xRLM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 01 Jan 2026 15:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:74:ec:a2:24:99:a2:a0:2a:71:68:d8:4c:c6:2b:c7:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d82b2846f093bc9416041be68a2c783161eb04df Validity Not Before: Dec 31 15:00:23 2025 GMT Not After : Jan 1 15:00:23 2026 GMT Subject: CN=9c13112655e01998b27ed508b10f5ac21ad26395 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:aa:c7:4f:9a:62:a4:9f:e9:f7:68:a3:92:cd: cb:e0:be:00:e4:84:d0:92:d7:a4:56:3e:a0:97:2e: f8:2f:3e:28:91:fb:fe:35:4d:d1:2a:11:1e:d7:95: f7:31:3d:9b:58:ec:fd:b7:68:5d:9c:74:2b:d0:14: 80:05:ae:18:86:5e:25:6f:95:e6:3d:e2:cb:6c:61: 6e:65:fd:64:9c:19:7c:1a:48:e9:26:19:da:d3:b1: 0c:88:4b:9e:11:d5:15:a9:52:64:ba:38:0d:87:bf: 81:d8:e8:61:a4:98:1c:ce:0d:37:37:1b:ab:d1:f9: 77:74:33:c9:be:ae:9e:d7:cc:76:d7:e5:53:ad:c1: f7:29:8d:ac:69:2c:39:6b:0e:43:06:db:b6:68:33: b3:dc:84:76:3f:9b:72:91:f4:14:7a:e1:38:58:3a: cc:a8:88:18:8a:53:99:97:81:d0:04:95:4d:87:37: c5:ad:3e:f9:64:ba:8e:8d:ef:e8:90:a9:f2:ce:e6: ac:6a:ae:a1:cf:02:63:37:75:9f:a4:0a:2f:b5:ea: a3:51:0d:5f:ee:18:58:e1:df:77:df:0f:cb:33:42: 14:aa:2d:8f:f9:d9:7e:39:81:36:af:31:a9:ae:1b: 10:a8:f4:e6:76:7e:00:da:7f:8b:e1:d2:a7:60:0d: dd:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:13:11:26:55:E0:19:98:B2:7E:D5:08:B1:0F:5A:C2:1A:D2:63:95 X509v3 Authority Key Identifier: keyid:D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:3f:7b:83:cc:dc:ef:05:2c:1a:fe:62:79:7d:f1:5f:e8:66: b8:da:43:85:4a:48:fc:61:1b:a0:29:38:d0:7d:75:82:0f:36: c4:ac:ef:42:bf:d5:3d:8f:ea:58:d5:38:62:f0:b0:db:19:24: 2e:3d:22:73:f7:94:c9:59:f3:44:2c:4c:b7:f8:5a:c9:f9:14: fb:47:7b:6a:0a:84:e9:e3:64:43:97:66:e4:24:cb:13:4d:f0: 63:48:77:0f:4b:12:0e:1c:27:80:a4:a2:cd:7b:7a:86:7d:66: e5:ef:70:6a:12:d4:70:e8:9d:5e:dd:52:76:b4:aa:f2:5a:9d: 18:42:ba:6d:1b:f9:77:2e:e3:3a:18:79:01:d6:19:0f:78:e1: f5:94:72:09:ca:20:a0:a6:1d:0a:e2:26:3c:94:bf:5d:22:b9: 56:e3:77:6c:db:18:15:68:bd:ba:de:88:00:bb:91:b7:3b:a5: 65:d3:6b:36:bb:cf:f0:51:5c:51:8c:88:73:39:25:64:a6:72: 26:09:9f:e5:63:21:0f:9c:86:d8:4b:5b:b7:ce:03:ed:3d:88: 80:34:4d:fb:d8:db:52:39:ae:1b:50:44:8a:79:1c:62:99:b8: 3f:43:dd:cd:79:cf:24:ff:3e:89:d5:c3:4c:32:4b:01:92:98: 10:49:0d:cd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt07KIkmaKgKnFo2EzGK8eMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4MmIyODQ2ZjA5M2JjOTQxNjA0MWJlNjhhMmM3ODMxNjFl YjA0ZGYwHhcNMjUxMjMxMTUwMDIzWhcNMjYwMTAxMTUwMDIzWjAzMTEwLwYDVQQD Eyg5YzEzMTEyNjU1ZTAxOTk4YjI3ZWQ1MDhiMTBmNWFjMjFhZDI2Mzk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArarHT5pipJ/p92ijks3L4L4A5ITQ ktekVj6gly74Lz4okfv+NU3RKhEe15X3MT2bWOz9t2hdnHQr0BSABa4Yhl4lb5Xm PeLLbGFuZf1knBl8GkjpJhna07EMiEueEdUVqVJkujgNh7+B2OhhpJgczg03Nxur 0fl3dDPJvq6e18x21+VTrcH3KY2saSw5aw5DBtu2aDOz3IR2P5tykfQUeuE4WDrM qIgYilOZl4HQBJVNhzfFrT75ZLqOje/okKnyzuasaq6hzwJjN3WfpAovteqjUQ1f 7hhY4d933w/LM0IUqi2P+dl+OYE2rzGprhsQqPTmdn4A2n+L4dKnYA3d7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJwTESZV4BmYsn7VCLEPWsIa0mOVMB8GA1UdIwQY MBaAFNgrKEbwk7yUFgQb5ooseDFh6wTfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkNzb1J2Q1R2SlFXQkJ2bWlpeDRNV0hyQk44LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy81YjJkNmUtODI0Ny00NDhmLWEzNTgt NTQ3M2VlMWRhYTliLzEvMkNzb1J2Q1R2SlFXQkJ2bWlpeDRNV0hyQk44Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy81YjJkNmUtODI0Ny00NDhmLWEzNTgtNTQ3M2VlMWRhYTli LzEvMkNzb1J2Q1R2SlFXQkJ2bWlpeDRNV0hyQk44LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACz97g8zc 7wUsGv5ieX3xX+hmuNpDhUpI/GEboCk40H11gg82xKzvQr/VPY/qWNU4YvCw2xkk Lj0ic/eUyVnzRCxMt/hayfkU+0d7agqE6eNkQ5dm5CTLE03wY0h3D0sSDhwngKSi zXt6hn1m5e9wahLUcOidXt1SdrSq8lqdGEK6bRv5dy7jOhh5AdYZD3jh9ZRyCcog oKYdCuImPJS/XSK5VuN3bNsYFWi9ut6IALuRtzulZdNrNrvP8FFcUYyIczklZKZy Jgmf5WMhD5yG2Etbt84D7T2IgDRN+9jbUjmuG1BEinkcYpm4P0PdzXnPJP8+idXD TDJLAZKYEEkNzQ== -----END CERTIFICATE-----Generated at Wed Dec 31 22:50:31 2025 by rpki-client