This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft File: 2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft (raw, json) Hash identifier: mPdDCa/01ArAoPgedj4e6oc3t4G8tBaCgY0+1z5lgMs= Subject key identifier: CF:FF:A5:63:2F:DB:A0:4F:68:B8:D6:C3:1D:35:EB:DF:E2:65:BC:D9 Authority key identifier: D8:D3:CA:2C:23:1A:FD:F3:B0:35:5C:77:A7:CB:B2:26:F8:1B:74:DE Certificate issuer: /CN=d8d3ca2c231afdf3b0355c77a7cbb226f81b74de Certificate serial: 019B3BD90567389C04AD1C3E90C459874FA5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft Manifest number: 036C Signing time: Sat 20 Dec 2025 13:00:37 +0000 Manifest this update: Sat 20 Dec 2025 13:00:37 +0000 Manifest next update: Sun 21 Dec 2025 13:00:37 +0000 Files and hashes: 1: 2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl (hash: aleE0+58Z1cgWEhLamBnLEvw2ED460IlC46yFMSvXkg=) 2: 7YxrmczVFpaeBMBQOkdecPyU13g.roa (hash: ldyrR2pk0wwrAcATlluvhy35oOBdxvxckCQpFcLrUa0=) 3: IK6BLrV0EEpKCWmR8y07wOSk68U.roa (hash: 2f+csqFlNzMlLrmcJAwXYvsvPfVBQ0wkksbKjz0lRi0=) 4: Z7zYg0UKWOu3I7v4pemSPhkT-8Q.roa (hash: 2HDljRveeQxMYwclc1swW9g1JCkhHlo1eeNjxRkdL8I=) 5: xb1c81OFtbINdLQq-ZwRav9UWoI.roa (hash: XHYFd0tSE5d2fh7X6gspcN3JIn/ONDCV3VHTC+ocClI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:d9:05:67:38:9c:04:ad:1c:3e:90:c4:59:87:4f:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8d3ca2c231afdf3b0355c77a7cbb226f81b74de Validity Not Before: Dec 20 13:00:37 2025 GMT Not After : Dec 21 13:00:37 2025 GMT Subject: CN=cfffa5632fdba04f68b8d6c31d35ebdfe265bcd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c6:07:82:47:f3:0f:e0:a3:24:4d:51:a0:24: 8f:19:21:d7:5c:44:67:11:3b:26:cc:ef:cc:3d:11: 62:04:b2:11:91:e4:c9:9a:02:b5:8b:9f:bc:42:5f: 0b:9b:01:99:c2:54:4a:81:28:75:b5:1e:02:4e:f1: 04:20:3a:24:34:47:72:4c:30:36:cf:97:15:c3:16: 85:b6:b0:1c:bc:7f:2b:8e:2f:52:eb:7b:b0:69:ea: c4:d0:ee:19:b3:9d:04:d2:bd:44:d5:86:28:83:31: e7:69:28:7d:d2:ae:51:c6:2f:c1:d3:50:b6:00:44: 42:a8:03:9b:18:d7:0b:87:9e:2b:0a:b8:1e:82:ec: 4b:e7:a6:41:25:33:ed:c8:b5:83:76:23:54:a4:39: 65:b5:c6:b0:5a:3e:e2:98:a9:8c:74:4a:25:cb:b5: 5f:62:ab:a0:78:ee:ff:2c:d9:e6:62:01:c0:47:33: 66:ae:85:51:c0:c0:8c:22:20:f7:52:de:32:e6:f6: 68:f6:77:9c:20:d0:ac:13:ce:96:18:a6:82:a5:f1: 6a:d6:43:99:68:de:b2:ec:bd:0e:5f:bd:59:0a:eb: 9f:d1:9d:4c:4e:da:e5:d4:23:08:f9:18:0b:0d:8d: 73:4f:3c:82:c9:31:d7:1d:ea:02:ae:cb:6f:a1:c6: 26:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:FF:A5:63:2F:DB:A0:4F:68:B8:D6:C3:1D:35:EB:DF:E2:65:BC:D9 X509v3 Authority Key Identifier: keyid:D8:D3:CA:2C:23:1A:FD:F3:B0:35:5C:77:A7:CB:B2:26:F8:1B:74:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:3c:3d:a2:af:a3:70:ab:a7:65:6d:97:a9:bc:b1:d6:06:f6: ff:e8:9f:5e:df:7f:52:24:7a:52:87:1a:76:5a:71:1d:36:c7: 6d:29:61:a7:d6:fd:92:66:b4:c9:8d:04:10:e6:3e:f9:89:21: ee:a2:1c:eb:36:6b:44:e9:51:28:3e:5d:c8:1b:7f:23:dd:de: 97:45:fd:99:8e:07:06:d1:6a:67:58:49:4a:e4:4e:44:ce:e7: 66:ee:40:f0:9b:97:0d:10:fe:58:8d:43:9e:78:c5:bb:bc:1a: 7b:01:98:29:ea:e9:03:6c:4f:5b:95:39:0a:a2:da:79:31:f8: c9:9d:16:c9:df:b0:f9:72:ea:19:4f:4d:6c:eb:50:bb:77:86: a4:e6:9a:5a:ee:8a:26:e4:31:93:4e:73:4d:e7:bb:c2:3e:ba: 7f:d6:8f:5f:f0:20:5c:1d:0a:93:4a:15:26:56:61:cf:3e:9a: 02:cd:38:38:c9:be:25:59:d8:18:9d:3f:e8:ca:b5:a2:b6:2c: 8a:f9:93:d4:58:d5:47:fd:39:9e:02:b4:4b:2e:b3:d5:2f:2a: 22:aa:36:70:fa:1e:cd:b5:82:db:d6:b7:70:de:8f:8d:dd:97: e0:b8:ef:4b:9a:4e:a3:5b:06:75:07:e9:f7:85:6b:91:88:db: 86:5d:ac:de -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs72QVnOJwErRw+kMRZh0+lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4ZDNjYTJjMjMxYWZkZjNiMDM1NWM3N2E3Y2JiMjI2Zjgx Yjc0ZGUwHhcNMjUxMjIwMTMwMDM3WhcNMjUxMjIxMTMwMDM3WjAzMTEwLwYDVQQD EyhjZmZmYTU2MzJmZGJhMDRmNjhiOGQ2YzMxZDM1ZWJkZmUyNjViY2Q5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxsYHgkfzD+CjJE1RoCSPGSHXXERn ETsmzO/MPRFiBLIRkeTJmgK1i5+8Ql8LmwGZwlRKgSh1tR4CTvEEIDokNEdyTDA2 z5cVwxaFtrAcvH8rji9S63uwaerE0O4Zs50E0r1E1YYogzHnaSh90q5Rxi/B01C2 AERCqAObGNcLh54rCrgeguxL56ZBJTPtyLWDdiNUpDlltcawWj7imKmMdEoly7Vf YqugeO7/LNnmYgHARzNmroVRwMCMIiD3Ut4y5vZo9necINCsE86WGKaCpfFq1kOZ aN6y7L0OX71ZCuuf0Z1MTtrl1CMI+RgLDY1zTzyCyTHXHeoCrstvocYmGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM//pWMv26BPaLjWwx0169/iZbzZMB8GA1UdIwQY MBaAFNjTyiwjGv3zsDVcd6fLsib4G3TeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMk5QS0xDTWFfZk93TlZ4M3A4dXlKdmdiZE40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS8zYzA3NmItYWVhMS00YTMzLWE5ZTkt OTkxMjhiZjZhODQxLzEvMk5QS0xDTWFfZk93TlZ4M3A4dXlKdmdiZE40Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOS8zYzA3NmItYWVhMS00YTMzLWE5ZTktOTkxMjhiZjZhODQx LzEvMk5QS0xDTWFfZk93TlZ4M3A4dXlKdmdiZE40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArjw9oq+j cKunZW2Xqbyx1gb2/+ifXt9/UiR6UocadlpxHTbHbSlhp9b9kma0yY0EEOY++Ykh 7qIc6zZrROlRKD5dyBt/I93el0X9mY4HBtFqZ1hJSuRORM7nZu5A8JuXDRD+WI1D nnjFu7waewGYKerpA2xPW5U5CqLaeTH4yZ0Wyd+w+XLqGU9NbOtQu3eGpOaaWu6K JuQxk05zTee7wj66f9aPX/AgXB0Kk0oVJlZhzz6aAs04OMm+JVnYGJ0/6Mq1orYs ivmT1FjVR/05ngK0Sy6z1S8qIqo2cPoezbWC29a3cN6Pjd2X4LjvS5pOo1sGdQfp 94VrkYjbhl2s3g== -----END CERTIFICATE-----Generated at Sat Dec 20 15:05:34 2025 by rpki-client