This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft File: 2dYxVsGDbxbDtDDv-7cqxpky6ps.mft (raw, json) Hash identifier: BvOzvQwIrtwe7vwpAwH6sAJoNhrBkZDkPmrl19GTIQA= Subject key identifier: 5F:7A:DB:21:56:36:D4:BF:F9:FC:06:D6:A7:7E:CD:57:11:8C:34:14 Authority key identifier: D9:D6:31:56:C1:83:6F:16:C3:B4:30:EF:FB:B7:2A:C6:99:32:EA:9B Certificate issuer: /CN=d9d63156c1836f16c3b430effbb72ac69932ea9b Certificate serial: 019B41DB317D97DE0C8A16E4190A3EE7378D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft Manifest number: 1406 Signing time: Sun 21 Dec 2025 17:00:42 +0000 Manifest this update: Sun 21 Dec 2025 17:00:42 +0000 Manifest next update: Mon 22 Dec 2025 17:00:42 +0000 Files and hashes: 1: 2dYxVsGDbxbDtDDv-7cqxpky6ps.crl (hash: xcaYah9v3rUYIcodjwt6Me5w6Lyh1lx8KaYy1pF0fOg=) 2: Jfj9dSZw93m0LgWLC-5cHZtQPbI.roa (hash: oiCigciFJOGI1kCvszmmuaaLh0TPamcLgyxjc9J3FC4=) 3: bh26FSDEWHE7GM9y8WYKONSOSrY.roa (hash: Ila3oBxBNWBNEgBFCA9ys1NdnbH6OtXjqF11+XnaK9w=) 4: f_1g2Z_O5AiL3yW6mcyUEsXnVQ8.roa (hash: d0LuTF/iwiSUpGBh2NLV29ONLEQ7pXLVwvq/UHuDiNA=) 5: jRVI_eAINH0DHfSbrJ1Lb2a1J0M.roa (hash: 6aHi9LTwWzQ2J8HFQmZN9AhMvjpcOSiPnJAqVLKRvcg=) 6: m7iDzlCGf343P9LUMQ7CzCNMpq8.roa (hash: 25V4vL1hxRuT+EiKGjaMOxdCAH/Rao4IMyItMWn6Kn4=) 7: wuWM0Bqfn2DOTXAQfUUvKBidXpo.roa (hash: m6fPdbSddi0hJ1qwurB1jCC8tnof8GXCRJUIPf5vVWk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:db:31:7d:97:de:0c:8a:16:e4:19:0a:3e:e7:37:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9d63156c1836f16c3b430effbb72ac69932ea9b Validity Not Before: Dec 21 17:00:42 2025 GMT Not After : Dec 22 17:00:42 2025 GMT Subject: CN=5f7adb215636d4bff9fc06d6a77ecd57118c3414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d3:76:fb:71:d9:55:6c:f5:78:3c:11:72:64: 35:ef:cf:ef:9a:21:79:0d:03:97:2f:33:ae:f4:3c: b2:b5:27:50:09:91:8a:a4:2b:50:68:81:18:73:25: d4:8d:7e:58:18:f9:ef:11:8a:16:8c:7b:dc:2c:2b: 7e:a9:9c:54:b8:d9:de:13:8a:be:bd:17:4c:22:0d: 02:4d:85:07:73:0d:57:7a:fd:6e:01:f6:23:39:c2: b5:eb:75:ab:47:ce:18:5a:26:01:04:bc:2e:02:52: aa:35:7c:45:91:68:48:fe:12:c7:17:c7:82:1c:d9: 8b:7a:ca:54:25:67:39:c4:90:dc:cb:24:b9:34:43: b6:34:8e:d4:80:65:18:c4:60:02:0f:d3:7f:3a:da: cf:d9:cf:63:32:31:32:9c:48:d9:d6:39:65:f5:19: 51:c7:30:e8:9b:af:f8:b5:94:2d:bc:92:1e:05:b4: 78:a1:0f:04:9d:04:3a:52:b3:51:36:55:36:9a:72: 28:2d:1b:dd:b9:65:99:fa:17:82:da:ae:db:76:61: a8:29:f5:17:af:63:3e:9a:74:ec:f3:56:09:74:61: f5:1b:e2:52:27:8b:2a:7e:c4:87:47:2e:c6:1e:72: cf:e6:ef:29:01:c9:17:3b:a1:88:78:07:2a:65:71: 8a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:7A:DB:21:56:36:D4:BF:F9:FC:06:D6:A7:7E:CD:57:11:8C:34:14 X509v3 Authority Key Identifier: keyid:D9:D6:31:56:C1:83:6F:16:C3:B4:30:EF:FB:B7:2A:C6:99:32:EA:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:0c:66:59:0d:77:61:7a:70:32:a2:54:6e:7e:b0:c9:57:c8: 98:e9:3e:4f:ea:25:1f:09:db:70:08:2e:ee:9b:5f:75:5c:6d: 11:09:3a:52:44:c1:43:80:8b:b0:de:d9:48:a8:a5:c8:18:07: 44:bc:21:29:18:41:10:e6:19:d0:60:aa:f3:26:ac:79:74:8a: 61:d7:97:cd:94:76:24:a7:e5:1a:b1:38:f0:e5:7f:e0:2d:0d: bd:62:64:25:9d:91:00:24:27:54:76:a6:a5:fd:24:41:5b:53: 40:1d:e4:c2:1d:89:91:c7:6b:46:34:81:79:1a:fc:d1:48:8e: d4:9f:2f:0a:a8:7f:70:05:5a:fd:15:79:20:38:85:94:59:3e: db:32:75:fc:62:3b:f4:9f:fe:1c:37:8f:37:8b:7a:e0:73:6a: 0c:61:1f:46:b8:a2:d5:20:fb:8d:0f:e6:2d:e0:ca:46:10:54: b2:a2:bb:f1:5b:c4:0f:f2:dc:74:43:ee:63:8a:02:ba:44:d8: c2:11:b7:49:35:15:b9:06:aa:26:44:cb:1f:b7:b8:52:ba:36: 2d:91:e0:66:0e:b5:3e:7f:e9:2a:ec:e4:47:99:58:88:78:4c: 72:23:49:9a:a9:5c:c6:a2:1d:1d:d5:e1:b1:f1:f9:ff:01:72: b4:9a:eb:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtB2zF9l94MihbkGQo+5zeNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5ZDYzMTU2YzE4MzZmMTZjM2I0MzBlZmZiYjcyYWM2OTkz MmVhOWIwHhcNMjUxMjIxMTcwMDQyWhcNMjUxMjIyMTcwMDQyWjAzMTEwLwYDVQQD Eyg1ZjdhZGIyMTU2MzZkNGJmZjlmYzA2ZDZhNzdlY2Q1NzExOGMzNDE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5dN2+3HZVWz1eDwRcmQ178/vmiF5 DQOXLzOu9DyytSdQCZGKpCtQaIEYcyXUjX5YGPnvEYoWjHvcLCt+qZxUuNneE4q+ vRdMIg0CTYUHcw1Xev1uAfYjOcK163WrR84YWiYBBLwuAlKqNXxFkWhI/hLHF8eC HNmLespUJWc5xJDcyyS5NEO2NI7UgGUYxGACD9N/OtrP2c9jMjEynEjZ1jll9RlR xzDom6/4tZQtvJIeBbR4oQ8EnQQ6UrNRNlU2mnIoLRvduWWZ+heC2q7bdmGoKfUX r2M+mnTs81YJdGH1G+JSJ4sqfsSHRy7GHnLP5u8pAckXO6GIeAcqZXGKowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF962yFWNtS/+fwG1qd+zVcRjDQUMB8GA1UdIwQY MBaAFNnWMVbBg28Ww7Qw7/u3KsaZMuqbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmRZeFZzR0RieGJEdEREdi03Y3F4cGt5NnBzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy84ZjQ2YmUtMDI4Yi00ZDAzLWE5NzMt ZmRhMDExZTVjOTcyLzEvMmRZeFZzR0RieGJEdEREdi03Y3F4cGt5NnBzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy84ZjQ2YmUtMDI4Yi00ZDAzLWE5NzMtZmRhMDExZTVjOTcy LzEvMmRZeFZzR0RieGJEdEREdi03Y3F4cGt5NnBzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMQxmWQ13 YXpwMqJUbn6wyVfImOk+T+olHwnbcAgu7ptfdVxtEQk6UkTBQ4CLsN7ZSKilyBgH RLwhKRhBEOYZ0GCq8yaseXSKYdeXzZR2JKflGrE48OV/4C0NvWJkJZ2RACQnVHam pf0kQVtTQB3kwh2JkcdrRjSBeRr80UiO1J8vCqh/cAVa/RV5IDiFlFk+2zJ1/GI7 9J/+HDePN4t64HNqDGEfRrii1SD7jQ/mLeDKRhBUsqK78VvED/LcdEPuY4oCukTY whG3STUVuQaqJkTLH7e4Uro2LZHgZg61Pn/pKuzkR5lYiHhMciNJmqlcxqIdHdXh sfH5/wFytJrrZA== -----END CERTIFICATE-----Generated at Sun Dec 21 21:12:21 2025 by rpki-client