This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft File: 2dYxVsGDbxbDtDDv-7cqxpky6ps.mft (raw, json) Hash identifier: gOaxBW1ygCQdnp1Zkn+Vb78O2c2++UdpfYwo+Xj0Zfs= Subject key identifier: 0E:99:9E:A6:7B:88:12:3B:42:0B:3F:8B:E1:20:DD:58:00:9A:F8:01 Authority key identifier: D9:D6:31:56:C1:83:6F:16:C3:B4:30:EF:FB:B7:2A:C6:99:32:EA:9B Certificate issuer: /CN=d9d63156c1836f16c3b430effbb72ac69932ea9b Certificate serial: 019B383345750CF012BFC9FCCA9A56F149BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft Manifest number: 1401 Signing time: Fri 19 Dec 2025 20:00:42 +0000 Manifest this update: Fri 19 Dec 2025 20:00:42 +0000 Manifest next update: Sat 20 Dec 2025 20:00:42 +0000 Files and hashes: 1: 2dYxVsGDbxbDtDDv-7cqxpky6ps.crl (hash: Bnu9thFY2AC1aGdhCoYyFJIVGz/Ab853KMoC+o1sVbA=) 2: Jfj9dSZw93m0LgWLC-5cHZtQPbI.roa (hash: oiCigciFJOGI1kCvszmmuaaLh0TPamcLgyxjc9J3FC4=) 3: bh26FSDEWHE7GM9y8WYKONSOSrY.roa (hash: Ila3oBxBNWBNEgBFCA9ys1NdnbH6OtXjqF11+XnaK9w=) 4: f_1g2Z_O5AiL3yW6mcyUEsXnVQ8.roa (hash: d0LuTF/iwiSUpGBh2NLV29ONLEQ7pXLVwvq/UHuDiNA=) 5: jRVI_eAINH0DHfSbrJ1Lb2a1J0M.roa (hash: 6aHi9LTwWzQ2J8HFQmZN9AhMvjpcOSiPnJAqVLKRvcg=) 6: m7iDzlCGf343P9LUMQ7CzCNMpq8.roa (hash: 25V4vL1hxRuT+EiKGjaMOxdCAH/Rao4IMyItMWn6Kn4=) 7: wuWM0Bqfn2DOTXAQfUUvKBidXpo.roa (hash: m6fPdbSddi0hJ1qwurB1jCC8tnof8GXCRJUIPf5vVWk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 20:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:38:33:45:75:0c:f0:12:bf:c9:fc:ca:9a:56:f1:49:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9d63156c1836f16c3b430effbb72ac69932ea9b Validity Not Before: Dec 19 20:00:42 2025 GMT Not After : Dec 20 20:00:42 2025 GMT Subject: CN=0e999ea67b88123b420b3f8be120dd58009af801 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:94:af:72:4f:29:83:e5:c8:23:1c:d8:63:21: ec:9a:0f:54:fb:cc:a6:39:0e:97:85:74:0f:86:6a: a7:52:c7:84:d5:95:e6:d6:db:b9:7f:81:72:c6:ef: 3e:87:29:1d:d6:a5:77:15:12:57:16:96:4d:72:63: 0f:51:b7:bc:44:8f:ee:40:04:31:4a:b0:ec:fe:7c: db:fd:dd:c3:25:64:fe:3f:27:f8:f9:66:70:ca:88: d6:83:48:6d:04:17:32:a1:83:12:da:01:26:3f:3d: 34:55:f3:79:00:ca:20:2d:91:1c:c8:7b:8d:b6:1f: f2:71:bd:15:01:67:77:d8:f6:0f:de:97:d1:a4:bc: 28:5c:ce:8a:ec:70:6b:69:5d:ad:36:3f:fb:a2:8f: b6:23:00:6f:8a:b3:d0:0a:1e:a9:90:d4:f6:50:3d: 38:f1:49:b4:97:45:f2:35:02:5d:2c:06:c2:df:ba: ae:6f:57:08:99:a5:0c:4c:2f:7e:ae:48:cd:f6:51: 67:eb:18:d1:38:4e:de:5d:71:21:f3:d1:8d:2e:55: e9:b9:71:6f:fc:37:de:87:bf:bd:44:4d:46:36:64: d4:04:92:e8:35:37:4a:e5:15:60:dd:dc:d8:56:62: fa:05:36:9e:de:1a:a7:ee:95:63:8d:e9:5d:b6:4b: e0:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:99:9E:A6:7B:88:12:3B:42:0B:3F:8B:E1:20:DD:58:00:9A:F8:01 X509v3 Authority Key Identifier: keyid:D9:D6:31:56:C1:83:6F:16:C3:B4:30:EF:FB:B7:2A:C6:99:32:EA:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:fc:5b:52:22:fa:9e:e6:05:93:03:3a:8b:5f:c3:63:56:16: 93:f7:cf:19:69:b1:e9:6c:0f:68:33:82:70:50:f2:05:df:fd: a7:84:c6:3c:06:0f:fd:91:3c:9b:2b:b4:02:03:70:fd:1e:c6: 5e:cf:04:e4:4f:89:8f:87:07:de:45:6e:a3:14:d9:1c:85:4e: de:0f:f4:a5:23:5f:3f:06:f6:d3:88:8d:a6:c0:4a:c8:5a:17: d8:04:48:10:c6:e6:a1:d7:32:bc:6f:b3:b5:38:a8:87:17:b0: 22:88:7e:16:ae:68:91:02:20:18:e5:2b:06:ec:c4:a9:fd:24: 69:70:3e:31:bf:e5:6a:58:5e:c7:d3:aa:ef:1c:15:a7:e5:2d: bf:55:7f:ea:5a:60:50:ec:be:93:25:90:62:87:d8:64:0a:c1: ae:3f:07:4c:ac:f4:c4:bd:e0:5b:b0:1b:b2:11:3c:b6:d0:cd: 3a:99:e0:6e:3d:f8:25:21:cc:b8:2d:03:ed:13:58:ea:5b:f4: 11:d8:9b:d5:d4:ca:9b:8b:08:dc:b2:83:f2:b2:55:f8:42:2e: 31:63:7d:18:43:88:ae:fb:4e:e1:51:13:9b:30:8b:27:08:f5: 7c:31:0d:b5:12:9a:d9:14:c8:92:01:45:eb:d4:3a:16:5a:71: 7d:41:73:f2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs4M0V1DPASv8n8yppW8Um8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5ZDYzMTU2YzE4MzZmMTZjM2I0MzBlZmZiYjcyYWM2OTkz MmVhOWIwHhcNMjUxMjE5MjAwMDQyWhcNMjUxMjIwMjAwMDQyWjAzMTEwLwYDVQQD EygwZTk5OWVhNjdiODgxMjNiNDIwYjNmOGJlMTIwZGQ1ODAwOWFmODAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3pSvck8pg+XIIxzYYyHsmg9U+8ym OQ6XhXQPhmqnUseE1ZXm1tu5f4Fyxu8+hykd1qV3FRJXFpZNcmMPUbe8RI/uQAQx SrDs/nzb/d3DJWT+Pyf4+WZwyojWg0htBBcyoYMS2gEmPz00VfN5AMogLZEcyHuN th/ycb0VAWd32PYP3pfRpLwoXM6K7HBraV2tNj/7oo+2IwBvirPQCh6pkNT2UD04 8Um0l0XyNQJdLAbC37qub1cImaUMTC9+rkjN9lFn6xjROE7eXXEh89GNLlXpuXFv /Dfeh7+9RE1GNmTUBJLoNTdK5RVg3dzYVmL6BTae3hqn7pVjjeldtkvgdwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA6ZnqZ7iBI7Qgs/i+Eg3VgAmvgBMB8GA1UdIwQY MBaAFNnWMVbBg28Ww7Qw7/u3KsaZMuqbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmRZeFZzR0RieGJEdEREdi03Y3F4cGt5NnBzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy84ZjQ2YmUtMDI4Yi00ZDAzLWE5NzMt ZmRhMDExZTVjOTcyLzEvMmRZeFZzR0RieGJEdEREdi03Y3F4cGt5NnBzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy84ZjQ2YmUtMDI4Yi00ZDAzLWE5NzMtZmRhMDExZTVjOTcy LzEvMmRZeFZzR0RieGJEdEREdi03Y3F4cGt5NnBzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKfxbUiL6 nuYFkwM6i1/DY1YWk/fPGWmx6WwPaDOCcFDyBd/9p4TGPAYP/ZE8myu0AgNw/R7G Xs8E5E+Jj4cH3kVuoxTZHIVO3g/0pSNfPwb204iNpsBKyFoX2ARIEMbmodcyvG+z tTiohxewIoh+Fq5okQIgGOUrBuzEqf0kaXA+Mb/lalhex9Oq7xwVp+Utv1V/6lpg UOy+kyWQYofYZArBrj8HTKz0xL3gW7AbshE8ttDNOpngbj34JSHMuC0D7RNY6lv0 Edib1dTKm4sI3LKD8rJV+EIuMWN9GEOIrvtO4VETmzCLJwj1fDENtRKa2RTIkgFF 69Q6FlpxfUFz8g== -----END CERTIFICATE-----Generated at Sat Dec 20 06:04:19 2025 by rpki-client