This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft File: S2HMijZcxAOCox2tVPbLcj9YdYo.mft (raw, json) Hash identifier: nIDoTttepeLix3ecCKZTd6jUtWqcU6JxTqPWy9xV6Vo= Subject key identifier: 6C:48:F6:18:63:DC:BE:52:2A:27:AA:2A:81:1B:54:3B:3F:90:94:8C Authority key identifier: 4B:61:CC:8A:36:5C:C4:03:82:A3:1D:AD:54:F6:CB:72:3F:58:75:8A Certificate issuer: /CN=4b61cc8a365cc40382a31dad54f6cb723f58758a Certificate serial: 019B638B68F7400622E385985461BF834864 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2HMijZcxAOCox2tVPbLcj9YdYo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft Manifest number: 179D Signing time: Sun 28 Dec 2025 06:00:39 +0000 Manifest this update: Sun 28 Dec 2025 06:00:39 +0000 Manifest next update: Mon 29 Dec 2025 06:00:39 +0000 Files and hashes: 1: 5dOeHmReGHpglp9CPLficnPxbRA.roa (hash: u/adm8/lzLOzXE337fHeCi8QttPIgGUNVZ/GPwCUh0o=) 2: S2HMijZcxAOCox2tVPbLcj9YdYo.crl (hash: se9prP+mXrtcAmI2Fqg+0H1LWoNF2dIdu/+ziRm94KA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft rsync://rpki.ripe.net/repository/DEFAULT/S2HMijZcxAOCox2tVPbLcj9YdYo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 03:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:63:8b:68:f7:40:06:22:e3:85:98:54:61:bf:83:48:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b61cc8a365cc40382a31dad54f6cb723f58758a Validity Not Before: Dec 28 06:00:39 2025 GMT Not After : Dec 29 06:00:39 2025 GMT Subject: CN=6c48f61863dcbe522a27aa2a811b543b3f90948c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:f8:43:88:26:74:98:0f:3a:8f:11:fe:91:75: bb:19:e0:40:a3:d7:db:a4:23:1a:8c:93:d3:35:ea: 5c:f5:f3:f7:72:93:9a:ca:76:17:44:93:ad:1f:f0: 95:dc:79:41:ab:49:e6:d9:b7:ea:c0:2e:78:8a:45: 49:14:88:cb:84:4c:b0:57:47:a2:99:23:d2:7e:ba: e1:e4:c8:f4:c0:09:65:27:7b:b6:e0:f4:da:3c:27: 46:cf:0a:69:f9:80:50:44:00:df:09:5f:a2:68:ff: 51:f3:f6:63:b0:31:bd:3c:16:84:4a:29:2d:df:50: 90:e1:7c:ae:66:0f:ad:e2:3d:4f:db:e5:b0:af:ca: a3:3a:dc:5c:bd:2f:75:17:6c:f4:1f:6e:38:e0:01: 03:f8:f6:46:c2:2e:bc:d5:78:bb:f5:04:ba:4c:59: 97:bb:64:a4:45:c9:89:49:78:4e:df:00:30:fc:36: 40:29:c3:3d:25:eb:ba:45:ef:32:30:af:e1:d9:c6: c5:3e:5f:7c:3d:cf:a6:cf:69:56:06:6b:13:f7:46: ac:de:32:2e:fd:74:21:19:46:31:5d:76:de:d8:05: 22:f3:6f:57:d5:d0:16:60:d4:b0:e3:ba:c2:96:54: 32:68:e3:d2:b6:88:67:f2:7a:06:e5:36:8b:e2:f9: 69:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:48:F6:18:63:DC:BE:52:2A:27:AA:2A:81:1B:54:3B:3F:90:94:8C X509v3 Authority Key Identifier: keyid:4B:61:CC:8A:36:5C:C4:03:82:A3:1D:AD:54:F6:CB:72:3F:58:75:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2HMijZcxAOCox2tVPbLcj9YdYo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:e3:3d:b1:2f:90:90:84:23:af:ed:82:ab:98:81:85:c6:0e: 55:d5:cf:d5:64:17:b4:a9:ae:fe:12:d3:8e:c2:7c:89:e7:f3: b7:46:4f:14:b2:90:0d:69:ee:cc:07:d7:0d:29:73:d3:a7:b9: fd:3c:5d:0f:6b:9c:10:25:7d:bb:d2:df:b1:d0:25:07:86:1a: 52:65:9b:1b:d1:1a:d7:3c:a1:bc:f9:48:86:c9:e3:9d:22:c4: 1e:15:3a:8e:44:e0:6a:5e:20:d5:ff:cb:d2:38:e8:6d:1c:7b: ea:ad:bd:f7:ac:4c:8d:b9:b5:7a:40:e9:2c:1a:88:a4:79:95: b8:13:a1:2f:45:c6:44:09:ca:e3:83:52:41:b3:0d:06:fc:ac: ec:9b:29:1c:8c:59:27:bf:6e:db:d8:1b:27:f8:82:c2:1a:14: f3:81:8d:7d:47:4f:e5:66:36:23:c4:52:b9:e9:e6:12:ae:55: 3f:9f:fa:ad:1e:05:e3:ee:41:57:a2:d6:42:c8:eb:25:96:c0: 38:6c:5a:40:51:ff:67:fb:71:18:88:dc:00:f9:f6:80:0a:6e: 96:c8:be:fc:c9:b9:b4:09:c3:39:35:85:3e:9c:68:b5:e4:da: bb:67:4a:46:ec:65:e8:c1:33:8e:a9:f0:cc:bd:8e:1f:c3:41: c3:33:01:6f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtji2j3QAYi44WYVGG/g0hkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiNjFjYzhhMzY1Y2M0MDM4MmEzMWRhZDU0ZjZjYjcyM2Y1 ODc1OGEwHhcNMjUxMjI4MDYwMDM5WhcNMjUxMjI5MDYwMDM5WjAzMTEwLwYDVQQD Eyg2YzQ4ZjYxODYzZGNiZTUyMmEyN2FhMmE4MTFiNTQzYjNmOTA5NDhjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl/hDiCZ0mA86jxH+kXW7GeBAo9fb pCMajJPTNepc9fP3cpOaynYXRJOtH/CV3HlBq0nm2bfqwC54ikVJFIjLhEywV0ei mSPSfrrh5Mj0wAllJ3u24PTaPCdGzwpp+YBQRADfCV+iaP9R8/ZjsDG9PBaESikt 31CQ4XyuZg+t4j1P2+Wwr8qjOtxcvS91F2z0H2444AED+PZGwi681Xi79QS6TFmX u2SkRcmJSXhO3wAw/DZAKcM9Jeu6Re8yMK/h2cbFPl98Pc+mz2lWBmsT90as3jIu /XQhGUYxXXbe2AUi829X1dAWYNSw47rCllQyaOPStohn8noG5TaL4vlptQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGxI9hhj3L5SKieqKoEbVDs/kJSMMB8GA1UdIwQY MBaAFEthzIo2XMQDgqMdrVT2y3I/WHWKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzJITWlqWmN4QU9Db3gydFZQYkxjajlZZFlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi82YjllYzAtOWIxMC00NDQzLWI1ZTYt YzRmZDUzZWJlYjY3LzEvUzJITWlqWmN4QU9Db3gydFZQYkxjajlZZFlvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi82YjllYzAtOWIxMC00NDQzLWI1ZTYtYzRmZDUzZWJlYjY3 LzEvUzJITWlqWmN4QU9Db3gydFZQYkxjajlZZFlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR+M9sS+Q kIQjr+2Cq5iBhcYOVdXP1WQXtKmu/hLTjsJ8iefzt0ZPFLKQDWnuzAfXDSlz06e5 /TxdD2ucECV9u9LfsdAlB4YaUmWbG9Ea1zyhvPlIhsnjnSLEHhU6jkTgal4g1f/L 0jjobRx76q2996xMjbm1ekDpLBqIpHmVuBOhL0XGRAnK44NSQbMNBvys7JspHIxZ J79u29gbJ/iCwhoU84GNfUdP5WY2I8RSuenmEq5VP5/6rR4F4+5BV6LWQsjrJZbA OGxaQFH/Z/txGIjcAPn2gApulsi+/Mm5tAnDOTWFPpxoteTau2dKRuxl6MEzjqnw zL2OH8NBwzMBbw== -----END CERTIFICATE-----Generated at Sun Dec 28 11:23:29 2025 by rpki-client