This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft File: p2i77FqeEb-9rthKqNOqzaKYifk.mft (raw, json) Hash identifier: yNN/jBwzn7ld5zgpckAYFx1JSMBNGHOgVmJASOa29yo= Subject key identifier: 50:EE:18:3C:69:72:2F:5C:61:0F:56:96:3B:04:11:1E:5D:8C:F3:5C Authority key identifier: A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9 Certificate issuer: /CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9 Certificate serial: 019B3F11272A20880D8CAFE82E939D6398D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft Manifest number: 1789 Signing time: Sun 21 Dec 2025 04:00:47 +0000 Manifest this update: Sun 21 Dec 2025 04:00:47 +0000 Manifest next update: Mon 22 Dec 2025 04:00:47 +0000 Files and hashes: 1: OgYJc9A280CynujJhuzMa0BI-4Q.roa (hash: MiNQpI1WP7M4DChXTEl99hg+v/DrVYZq8o6Yc8vjTOw=) 2: p2i77FqeEb-9rthKqNOqzaKYifk.crl (hash: ZFFig5rw0FHT1v0dcHY190WWqkNPfbcZhh9QZTdEdMY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:11:27:2a:20:88:0d:8c:af:e8:2e:93:9d:63:98:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9 Validity Not Before: Dec 21 04:00:47 2025 GMT Not After : Dec 22 04:00:47 2025 GMT Subject: CN=50ee183c69722f5c610f56963b04111e5d8cf35c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:55:d1:2b:e3:4e:06:0f:bd:72:3f:d5:9e:13: 46:6f:65:00:60:f2:84:e8:70:1b:65:55:c9:24:4d: 8d:7c:92:63:9c:5b:0f:06:0e:7a:dd:ec:46:e0:43: 7a:c1:0f:0c:98:9d:96:92:da:39:d7:19:d1:df:b6: 24:4b:ef:68:7f:95:99:65:91:69:99:3c:2c:95:1f: 98:71:2d:44:d6:6b:11:a5:2f:37:ea:ea:9b:70:54: 2c:94:28:63:c2:86:14:e9:51:2f:d2:2d:6e:d3:51: 8b:43:db:8a:79:03:e6:88:a1:7f:05:29:7e:31:99: b8:ef:69:dd:1a:4e:51:af:72:79:6f:f2:af:c7:fc: 05:f6:c4:1d:2e:93:a3:28:a8:78:51:3e:bc:63:d0: 68:53:34:98:a2:e8:47:21:02:3f:fe:35:c3:a5:94: 5c:77:2e:42:04:fc:fa:3e:5d:ad:5c:ff:cc:19:35: 88:0b:c2:d6:c9:ff:86:5f:28:05:2e:18:b2:46:72: bc:c1:54:f5:a2:4b:63:a1:4f:b3:c7:9f:38:ef:7b: 26:c6:01:db:96:8d:7e:e3:3d:49:d5:1e:34:86:50: 72:79:25:00:1d:ef:ad:da:c6:6b:e4:e3:c7:c4:1c: 10:a1:ad:11:41:b0:6d:73:2e:5d:09:af:f8:99:c9: 46:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:EE:18:3C:69:72:2F:5C:61:0F:56:96:3B:04:11:1E:5D:8C:F3:5C X509v3 Authority Key Identifier: keyid:A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:02:fd:6d:1c:f0:61:36:14:10:a8:08:7b:8a:2f:9b:54:3a: 05:3e:22:07:3e:76:b0:a7:57:75:02:40:ba:bf:06:76:39:e9: 45:be:5a:ef:d9:df:df:cd:15:36:5a:73:4a:81:1e:7a:bd:04: ed:ae:62:86:18:9a:37:c2:f2:49:6a:2d:f3:72:01:ae:45:65: 72:0b:2d:46:56:2c:a0:cc:b3:f6:0c:d9:a0:5d:06:af:d0:ef: d9:64:7b:50:89:44:21:9b:9a:3a:b6:2b:c5:94:c3:2d:7b:c1: 85:80:ea:c0:79:07:d2:f4:0a:50:1c:ad:33:dd:36:35:17:1a: 79:c0:42:5f:33:e6:13:a4:4d:73:8a:e9:51:c2:9b:61:bf:d4: 7e:e4:a6:e3:f5:6f:62:c9:94:c9:76:d0:cd:da:9e:02:7a:14: 51:6b:8c:71:37:8f:73:cc:89:82:82:98:7b:31:61:16:b5:28: 13:38:00:82:59:1f:0a:45:66:34:4e:6b:14:a4:d7:09:9f:a5: 33:ce:22:5f:9b:5c:a8:a7:b4:0f:3e:02:e6:48:3d:a8:e6:32: 16:14:0b:99:25:af:9a:02:ac:c9:4e:70:30:d3:3c:68:03:33: e9:a8:0b:ce:4c:bf:23:7f:23:33:1c:43:9e:65:82:7b:b0:b5: 9e:65:4d:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/EScqIIgNjK/oLpOdY5jQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3NjhiYmVjNWE5ZTExYmZiZGFlZDg0YWE4ZDNhYWNkYTI5 ODg5ZjkwHhcNMjUxMjIxMDQwMDQ3WhcNMjUxMjIyMDQwMDQ3WjAzMTEwLwYDVQQD Eyg1MGVlMTgzYzY5NzIyZjVjNjEwZjU2OTYzYjA0MTExZTVkOGNmMzVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA11XRK+NOBg+9cj/VnhNGb2UAYPKE 6HAbZVXJJE2NfJJjnFsPBg563exG4EN6wQ8MmJ2Wkto51xnR37YkS+9of5WZZZFp mTwslR+YcS1E1msRpS836uqbcFQslChjwoYU6VEv0i1u01GLQ9uKeQPmiKF/BSl+ MZm472ndGk5Rr3J5b/Kvx/wF9sQdLpOjKKh4UT68Y9BoUzSYouhHIQI//jXDpZRc dy5CBPz6Pl2tXP/MGTWIC8LWyf+GXygFLhiyRnK8wVT1oktjoU+zx58473smxgHb lo1+4z1J1R40hlByeSUAHe+t2sZr5OPHxBwQoa0RQbBtcy5dCa/4mclGRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFDuGDxpci9cYQ9WljsEER5djPNcMB8GA1UdIwQY MBaAFKdou+xanhG/va7YSqjTqs2imIn5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcDJpNzdGcWVFYi05cnRoS3FOT3F6YUtZaWZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9lYWMxZjQtYWNlMS00Y2UxLWExODEt Y2ZjYWJiMTlmOTg5LzEvcDJpNzdGcWVFYi05cnRoS3FOT3F6YUtZaWZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy9lYWMxZjQtYWNlMS00Y2UxLWExODEtY2ZjYWJiMTlmOTg5 LzEvcDJpNzdGcWVFYi05cnRoS3FOT3F6YUtZaWZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAogL9bRzw YTYUEKgIe4ovm1Q6BT4iBz52sKdXdQJAur8GdjnpRb5a79nf380VNlpzSoEeer0E 7a5ihhiaN8LySWot83IBrkVlcgstRlYsoMyz9gzZoF0Gr9Dv2WR7UIlEIZuaOrYr xZTDLXvBhYDqwHkH0vQKUBytM902NRcaecBCXzPmE6RNc4rpUcKbYb/UfuSm4/Vv YsmUyXbQzdqeAnoUUWuMcTePc8yJgoKYezFhFrUoEzgAglkfCkVmNE5rFKTXCZ+l M84iX5tcqKe0Dz4C5kg9qOYyFhQLmSWvmgKsyU5wMNM8aAMz6agLzky/I38jMxxD nmWCe7C1nmVNtw== -----END CERTIFICATE-----Generated at Sun Dec 21 11:41:08 2025 by rpki-client