This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft
File: 2dYxVsGDbxbDtDDv-7cqxpky6ps.mft (raw, json)
Hash identifier: gOaxBW1ygCQdnp1Zkn+Vb78O2c2++UdpfYwo+Xj0Zfs=
Subject key identifier: 0E:99:9E:A6:7B:88:12:3B:42:0B:3F:8B:E1:20:DD:58:00:9A:F8:01
Authority key identifier: D9:D6:31:56:C1:83:6F:16:C3:B4:30:EF:FB:B7:2A:C6:99:32:EA:9B
Certificate issuer: /CN=d9d63156c1836f16c3b430effbb72ac69932ea9b
Certificate serial: 019B383345750CF012BFC9FCCA9A56F149BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft
Manifest number: 1401
Signing time: Fri 19 Dec 2025 20:00:42 +0000
Manifest this update: Fri 19 Dec 2025 20:00:42 +0000
Manifest next update: Sat 20 Dec 2025 20:00:42 +0000
Files and hashes: 1: 2dYxVsGDbxbDtDDv-7cqxpky6ps.crl (hash: Bnu9thFY2AC1aGdhCoYyFJIVGz/Ab853KMoC+o1sVbA=)
2: Jfj9dSZw93m0LgWLC-5cHZtQPbI.roa (hash: oiCigciFJOGI1kCvszmmuaaLh0TPamcLgyxjc9J3FC4=)
3: bh26FSDEWHE7GM9y8WYKONSOSrY.roa (hash: Ila3oBxBNWBNEgBFCA9ys1NdnbH6OtXjqF11+XnaK9w=)
4: f_1g2Z_O5AiL3yW6mcyUEsXnVQ8.roa (hash: d0LuTF/iwiSUpGBh2NLV29ONLEQ7pXLVwvq/UHuDiNA=)
5: jRVI_eAINH0DHfSbrJ1Lb2a1J0M.roa (hash: 6aHi9LTwWzQ2J8HFQmZN9AhMvjpcOSiPnJAqVLKRvcg=)
6: m7iDzlCGf343P9LUMQ7CzCNMpq8.roa (hash: 25V4vL1hxRuT+EiKGjaMOxdCAH/Rao4IMyItMWn6Kn4=)
7: wuWM0Bqfn2DOTXAQfUUvKBidXpo.roa (hash: m6fPdbSddi0hJ1qwurB1jCC8tnof8GXCRJUIPf5vVWk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft
rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Dec 2025 20:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:38:33:45:75:0c:f0:12:bf:c9:fc:ca:9a:56:f1:49:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9d63156c1836f16c3b430effbb72ac69932ea9b
Validity
Not Before: Dec 19 20:00:42 2025 GMT
Not After : Dec 20 20:00:42 2025 GMT
Subject: CN=0e999ea67b88123b420b3f8be120dd58009af801
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:94:af:72:4f:29:83:e5:c8:23:1c:d8:63:21:
ec:9a:0f:54:fb:cc:a6:39:0e:97:85:74:0f:86:6a:
a7:52:c7:84:d5:95:e6:d6:db:b9:7f:81:72:c6:ef:
3e:87:29:1d:d6:a5:77:15:12:57:16:96:4d:72:63:
0f:51:b7:bc:44:8f:ee:40:04:31:4a:b0:ec:fe:7c:
db:fd:dd:c3:25:64:fe:3f:27:f8:f9:66:70:ca:88:
d6:83:48:6d:04:17:32:a1:83:12:da:01:26:3f:3d:
34:55:f3:79:00:ca:20:2d:91:1c:c8:7b:8d:b6:1f:
f2:71:bd:15:01:67:77:d8:f6:0f:de:97:d1:a4:bc:
28:5c:ce:8a:ec:70:6b:69:5d:ad:36:3f:fb:a2:8f:
b6:23:00:6f:8a:b3:d0:0a:1e:a9:90:d4:f6:50:3d:
38:f1:49:b4:97:45:f2:35:02:5d:2c:06:c2:df:ba:
ae:6f:57:08:99:a5:0c:4c:2f:7e:ae:48:cd:f6:51:
67:eb:18:d1:38:4e:de:5d:71:21:f3:d1:8d:2e:55:
e9:b9:71:6f:fc:37:de:87:bf:bd:44:4d:46:36:64:
d4:04:92:e8:35:37:4a:e5:15:60:dd:dc:d8:56:62:
fa:05:36:9e:de:1a:a7:ee:95:63:8d:e9:5d:b6:4b:
e0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:99:9E:A6:7B:88:12:3B:42:0B:3F:8B:E1:20:DD:58:00:9A:F8:01
X509v3 Authority Key Identifier:
keyid:D9:D6:31:56:C1:83:6F:16:C3:B4:30:EF:FB:B7:2A:C6:99:32:EA:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:fc:5b:52:22:fa:9e:e6:05:93:03:3a:8b:5f:c3:63:56:16:
93:f7:cf:19:69:b1:e9:6c:0f:68:33:82:70:50:f2:05:df:fd:
a7:84:c6:3c:06:0f:fd:91:3c:9b:2b:b4:02:03:70:fd:1e:c6:
5e:cf:04:e4:4f:89:8f:87:07:de:45:6e:a3:14:d9:1c:85:4e:
de:0f:f4:a5:23:5f:3f:06:f6:d3:88:8d:a6:c0:4a:c8:5a:17:
d8:04:48:10:c6:e6:a1:d7:32:bc:6f:b3:b5:38:a8:87:17:b0:
22:88:7e:16:ae:68:91:02:20:18:e5:2b:06:ec:c4:a9:fd:24:
69:70:3e:31:bf:e5:6a:58:5e:c7:d3:aa:ef:1c:15:a7:e5:2d:
bf:55:7f:ea:5a:60:50:ec:be:93:25:90:62:87:d8:64:0a:c1:
ae:3f:07:4c:ac:f4:c4:bd:e0:5b:b0:1b:b2:11:3c:b6:d0:cd:
3a:99:e0:6e:3d:f8:25:21:cc:b8:2d:03:ed:13:58:ea:5b:f4:
11:d8:9b:d5:d4:ca:9b:8b:08:dc:b2:83:f2:b2:55:f8:42:2e:
31:63:7d:18:43:88:ae:fb:4e:e1:51:13:9b:30:8b:27:08:f5:
7c:31:0d:b5:12:9a:d9:14:c8:92:01:45:eb:d4:3a:16:5a:71:
7d:41:73:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Dec 20 06:04:19 2025 by rpki-client