This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.mft File: 2jWyfrUjtn-NaRyAYvM3DhSTAv0.mft (raw, json) Hash identifier: nk6nKinmTYU2PNxvoFJLolxoC6zHCiRahanIOW+c0dM= Subject key identifier: EE:4E:16:16:99:A3:36:F6:44:23:FC:53:13:CF:04:EA:5F:B2:2A:1D Authority key identifier: DA:35:B2:7E:B5:23:B6:7F:8D:69:1C:80:62:F3:37:0E:14:93:02:FD Certificate issuer: /CN=da35b27eb523b67f8d691c8062f3370e149302fd Certificate serial: 019B390F4841A013C2CE9BE0FA970D5DF174 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2jWyfrUjtn-NaRyAYvM3DhSTAv0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.mft Manifest number: 16E0 Signing time: Sat 20 Dec 2025 00:01:01 +0000 Manifest this update: Sat 20 Dec 2025 00:01:01 +0000 Manifest next update: Sun 21 Dec 2025 00:01:01 +0000 Files and hashes: 1: 2jWyfrUjtn-NaRyAYvM3DhSTAv0.crl (hash: w4GSs7hdOVDfg5U6T6M4zY7C5/Ff4nK3PubG01lG2cY=) 2: ryWVvW7NydfH0Lg55_MWvg1kBGg.roa (hash: PtmvLKXYoeUQyGlzTXT4GMeJ6VdsraUUI7+TJbIbgOw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.mft rsync://rpki.ripe.net/repository/DEFAULT/2jWyfrUjtn-NaRyAYvM3DhSTAv0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 00:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:0f:48:41:a0:13:c2:ce:9b:e0:fa:97:0d:5d:f1:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da35b27eb523b67f8d691c8062f3370e149302fd Validity Not Before: Dec 20 00:01:01 2025 GMT Not After : Dec 21 00:01:01 2025 GMT Subject: CN=ee4e161699a336f64423fc5313cf04ea5fb22a1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f8:1a:c0:0a:54:a7:0d:d3:e5:e3:88:6a:ae: 57:73:1e:61:5f:b4:28:ec:04:3c:b5:98:35:cb:ba: 83:0c:97:7a:83:bc:e3:14:de:39:fc:ce:15:37:35: 4e:40:db:a4:3f:d7:c8:07:7c:ab:0b:3c:d1:b7:36: 0d:ac:fc:68:b1:82:ba:cb:6b:a6:c2:3c:e3:87:1a: 0d:08:a1:e0:c9:e0:09:fa:96:6b:db:f3:6b:59:1e: 88:04:03:bb:a0:3f:b0:f2:c8:8f:c0:f7:9a:37:f4: 0b:57:1e:61:ba:4c:d0:f0:cd:6d:46:45:d2:c3:5b: c3:de:4f:5d:d4:dd:7d:91:6b:bb:46:d1:d4:f0:4c: 07:0d:8b:fc:4d:d9:dd:a8:43:53:3c:ab:74:50:6b: 65:7c:60:d6:0b:8d:50:5f:46:1f:06:1f:43:d4:56: 28:54:9a:fa:eb:57:fe:68:5f:28:f8:a0:cf:8b:25: c6:6b:1e:eb:b6:d6:e4:a4:05:e0:a3:b7:23:4e:1c: 96:01:f8:c0:38:32:99:65:a8:6e:55:97:72:ba:12: c8:03:36:69:94:bb:0b:cd:8e:7a:04:ee:37:c8:f3: 57:cc:44:79:eb:a6:32:f5:a7:f2:2d:c4:84:f9:7a: b7:0e:68:79:34:06:e7:89:cc:9a:b6:22:29:b1:3e: 87:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:4E:16:16:99:A3:36:F6:44:23:FC:53:13:CF:04:EA:5F:B2:2A:1D X509v3 Authority Key Identifier: keyid:DA:35:B2:7E:B5:23:B6:7F:8D:69:1C:80:62:F3:37:0E:14:93:02:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2jWyfrUjtn-NaRyAYvM3DhSTAv0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:5a:7d:32:c3:a9:5c:77:89:3a:ca:24:4f:41:11:78:61:08: 1e:ae:ea:74:59:ac:d7:b8:f4:5f:6a:b9:50:99:6c:dd:53:f5: e0:b2:79:6c:95:b0:be:9a:83:8b:c0:ef:d3:4f:95:50:2d:b0: 63:36:33:fb:c4:1d:f2:92:11:16:1d:c3:a1:89:85:75:45:a2: 76:81:47:50:25:90:07:51:9a:34:77:f7:a6:fd:ce:09:b3:27: e4:b8:5f:99:80:74:83:ab:a8:59:c4:dc:cc:1d:cc:14:f3:c5: f4:2f:69:f6:00:25:bc:03:7d:5f:c5:1d:9c:26:8e:21:bb:90: f8:f4:00:c4:cb:b1:92:e4:29:07:79:64:02:40:e2:7d:19:c7: ca:0e:58:79:9c:5e:c8:8b:53:f2:d6:48:6a:b8:6d:fe:73:7b: ca:e3:7d:3c:35:9f:f9:d5:25:e0:18:36:ba:bb:0d:b1:d3:87: 9f:93:91:9a:f5:86:4b:e5:7a:14:b6:86:4a:ee:fc:03:1f:2d: 00:c2:d2:bd:7a:3b:e7:28:de:8f:43:d7:66:e6:df:2c:c0:d7: 43:d5:9d:ec:ad:e6:61:08:34:21:e9:0e:09:05:67:8b:46:a0: fb:99:a9:fd:c9:96:fc:74:e7:1f:8f:56:4b:ab:cb:d6:42:ea: b8:9c:dc:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs5D0hBoBPCzpvg+pcNXfF0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhMzViMjdlYjUyM2I2N2Y4ZDY5MWM4MDYyZjMzNzBlMTQ5 MzAyZmQwHhcNMjUxMjIwMDAwMTAxWhcNMjUxMjIxMDAwMTAxWjAzMTEwLwYDVQQD EyhlZTRlMTYxNjk5YTMzNmY2NDQyM2ZjNTMxM2NmMDRlYTVmYjIyYTFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt/gawApUpw3T5eOIaq5Xcx5hX7Qo 7AQ8tZg1y7qDDJd6g7zjFN45/M4VNzVOQNukP9fIB3yrCzzRtzYNrPxosYK6y2um wjzjhxoNCKHgyeAJ+pZr2/NrWR6IBAO7oD+w8siPwPeaN/QLVx5hukzQ8M1tRkXS w1vD3k9d1N19kWu7RtHU8EwHDYv8TdndqENTPKt0UGtlfGDWC41QX0YfBh9D1FYo VJr661f+aF8o+KDPiyXGax7rttbkpAXgo7cjThyWAfjAODKZZahuVZdyuhLIAzZp lLsLzY56BO43yPNXzER566Yy9afyLcSE+Xq3Dmh5NAbnicyatiIpsT6HWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO5OFhaZozb2RCP8UxPPBOpfsiodMB8GA1UdIwQY MBaAFNo1sn61I7Z/jWkcgGLzNw4UkwL9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmpXeWZyVWp0bi1OYVJ5QVl2TTNEaFNUQXYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9mM2Y4YzQtMTliMC00ZjNiLTg4ZTMt Y2NlYWViNWQyZGI5LzEvMmpXeWZyVWp0bi1OYVJ5QVl2TTNEaFNUQXYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy9mM2Y4YzQtMTliMC00ZjNiLTg4ZTMtY2NlYWViNWQyZGI5 LzEvMmpXeWZyVWp0bi1OYVJ5QVl2TTNEaFNUQXYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZlp9MsOp XHeJOsokT0EReGEIHq7qdFms17j0X2q5UJls3VP14LJ5bJWwvpqDi8Dv00+VUC2w YzYz+8Qd8pIRFh3DoYmFdUWidoFHUCWQB1GaNHf3pv3OCbMn5LhfmYB0g6uoWcTc zB3MFPPF9C9p9gAlvAN9X8UdnCaOIbuQ+PQAxMuxkuQpB3lkAkDifRnHyg5YeZxe yItT8tZIarht/nN7yuN9PDWf+dUl4Bg2ursNsdOHn5ORmvWGS+V6FLaGSu78Ax8t AMLSvXo75yjej0PXZubfLMDXQ9Wd7K3mYQg0IekOCQVni0ag+5mp/cmW/HTnH49W S6vL1kLquJzc1A== -----END CERTIFICATE-----Generated at Sat Dec 20 09:30:22 2025 by rpki-client