This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.mft File: 02jCohY2GiT97Jfx838uHRIHEIc.mft (raw, json) Hash identifier: 7chQnmzpiBg/Gx8wdVbvK6U9So8sb+1vehwNnC9Vfts= Subject key identifier: B0:E2:74:1D:F5:9B:08:B5:D8:AD:8E:B4:4B:D5:AA:56:FA:88:B5:9D Authority key identifier: D3:68:C2:A2:16:36:1A:24:FD:EC:97:F1:F3:7F:2E:1D:12:07:10:87 Certificate issuer: /CN=d368c2a216361a24fdec97f1f37f2e1d12071087 Certificate serial: 019B3BD977D0420BEEA022960BC396B1B36C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02jCohY2GiT97Jfx838uHRIHEIc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.mft Manifest number: 1784 Signing time: Sat 20 Dec 2025 13:01:06 +0000 Manifest this update: Sat 20 Dec 2025 13:01:06 +0000 Manifest next update: Sun 21 Dec 2025 13:01:06 +0000 Files and hashes: 1: 02jCohY2GiT97Jfx838uHRIHEIc.crl (hash: Ul6m0Ls19K9SaLBWM2AiO3YSN+v+d8UxluskYlzTToU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.crl rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.mft rsync://rpki.ripe.net/repository/DEFAULT/02jCohY2GiT97Jfx838uHRIHEIc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 13:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:d9:77:d0:42:0b:ee:a0:22:96:0b:c3:96:b1:b3:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d368c2a216361a24fdec97f1f37f2e1d12071087 Validity Not Before: Dec 20 13:01:06 2025 GMT Not After : Dec 21 13:01:06 2025 GMT Subject: CN=b0e2741df59b08b5d8ad8eb44bd5aa56fa88b59d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3b:b5:81:7b:fd:b8:46:99:a9:e9:c7:86:0c: 64:4b:9b:fb:15:27:c9:f7:27:ac:9d:a5:5f:1e:fd: f2:09:ff:f2:02:f9:2f:45:4a:82:67:5a:b3:98:ce: 9b:50:61:0b:f3:ed:c0:0e:7d:a6:c3:ae:2d:c2:03: ff:37:94:1a:47:79:0f:20:73:22:00:67:1c:60:e6: 2f:81:dc:52:3d:15:cd:df:8a:32:30:d4:16:e6:2d: 1f:79:d0:e5:ab:e4:42:fa:c9:8b:51:b9:8b:f6:7b: 1b:a5:97:89:4c:32:8a:94:8b:be:7a:d6:66:5d:9d: 13:56:c8:96:ee:65:5f:99:9e:e1:2b:0f:62:9a:3d: 0a:bc:4b:03:a9:74:bd:eb:ad:e8:00:6b:9f:f4:d2: 1f:21:2b:79:25:32:87:e2:f2:1d:b6:e1:c3:00:7a: 3c:73:7b:0f:24:28:83:43:1c:d6:9c:ba:41:b1:9a: 66:21:53:01:1e:e5:7e:3f:b2:d1:38:2c:85:cd:8b: fe:d9:cc:31:cd:9b:e9:5b:95:98:c8:7d:d6:fb:df: 57:51:88:40:48:6f:24:48:94:86:49:b8:df:60:39: 10:48:d9:0b:5b:24:5d:44:87:1b:f6:bb:0c:50:b4: f0:f0:c5:b9:c7:a0:3a:ff:f4:5e:76:e0:ba:08:d0: 70:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:E2:74:1D:F5:9B:08:B5:D8:AD:8E:B4:4B:D5:AA:56:FA:88:B5:9D X509v3 Authority Key Identifier: keyid:D3:68:C2:A2:16:36:1A:24:FD:EC:97:F1:F3:7F:2E:1D:12:07:10:87 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02jCohY2GiT97Jfx838uHRIHEIc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:bc:87:d4:76:c1:90:b6:14:2c:36:44:e4:2f:19:3a:8e:e1: bd:4b:8b:75:56:8d:a4:f8:91:12:92:5d:b9:1d:c0:11:75:c4: 05:51:e4:23:64:08:36:34:69:3e:74:df:da:7d:27:29:df:14: 52:83:fc:14:e4:1a:61:bf:1c:e8:d5:23:14:60:b7:80:d0:b8: f9:7f:9d:51:8a:35:69:38:2e:f1:30:05:c6:0a:c1:3e:34:40: a2:b9:38:c3:01:31:a5:9b:8f:6d:4e:84:e4:ba:64:5e:7b:c9: 30:d5:45:4e:de:53:6c:8a:c2:f3:0c:49:8e:36:ba:88:c6:c0: 39:49:08:88:14:5b:04:91:14:93:9b:c1:ab:60:1b:59:b6:81: af:76:20:f7:71:14:90:51:22:a6:54:b0:75:71:69:c0:17:93: 3b:eb:12:a9:38:76:91:55:46:3d:e9:a5:d4:0c:92:10:ce:81: b1:4a:d5:09:e6:15:3f:a8:cf:4f:bd:be:cd:6d:a4:62:3d:48: 8a:59:63:74:5f:42:12:b5:85:39:da:c3:6e:50:aa:d6:55:04: 43:f8:22:43:8a:4d:08:e4:77:2d:94:3e:77:24:15:77:38:5e: 32:3e:80:a7:21:64:4a:b8:17:1a:70:c6:c5:dc:64:96:96:74: 54:d4:e8:82 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs72XfQQgvuoCKWC8OWsbNsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzNjhjMmEyMTYzNjFhMjRmZGVjOTdmMWYzN2YyZTFkMTIw NzEwODcwHhcNMjUxMjIwMTMwMTA2WhcNMjUxMjIxMTMwMTA2WjAzMTEwLwYDVQQD EyhiMGUyNzQxZGY1OWIwOGI1ZDhhZDhlYjQ0YmQ1YWE1NmZhODhiNTlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtju1gXv9uEaZqenHhgxkS5v7FSfJ 9yesnaVfHv3yCf/yAvkvRUqCZ1qzmM6bUGEL8+3ADn2mw64twgP/N5QaR3kPIHMi AGccYOYvgdxSPRXN34oyMNQW5i0fedDlq+RC+smLUbmL9nsbpZeJTDKKlIu+etZm XZ0TVsiW7mVfmZ7hKw9imj0KvEsDqXS9663oAGuf9NIfISt5JTKH4vIdtuHDAHo8 c3sPJCiDQxzWnLpBsZpmIVMBHuV+P7LROCyFzYv+2cwxzZvpW5WYyH3W+99XUYhA SG8kSJSGSbjfYDkQSNkLWyRdRIcb9rsMULTw8MW5x6A6//ReduC6CNBwbwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLDidB31mwi12K2OtEvVqlb6iLWdMB8GA1UdIwQY MBaAFNNowqIWNhok/eyX8fN/Lh0SBxCHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMDJqQ29oWTJHaVQ5N0pmeDgzOHVIUklIRUljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9kMjJlZGYtZmI0OS00ZTAxLThmZDQt OTAyMDhlMWYzZGU2LzEvMDJqQ29oWTJHaVQ5N0pmeDgzOHVIUklIRUljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9kMjJlZGYtZmI0OS00ZTAxLThmZDQtOTAyMDhlMWYzZGU2 LzEvMDJqQ29oWTJHaVQ5N0pmeDgzOHVIUklIRUljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAibyH1HbB kLYULDZE5C8ZOo7hvUuLdVaNpPiREpJduR3AEXXEBVHkI2QINjRpPnTf2n0nKd8U UoP8FOQaYb8c6NUjFGC3gNC4+X+dUYo1aTgu8TAFxgrBPjRAork4wwExpZuPbU6E 5LpkXnvJMNVFTt5TbIrC8wxJjja6iMbAOUkIiBRbBJEUk5vBq2AbWbaBr3Yg93EU kFEiplSwdXFpwBeTO+sSqTh2kVVGPeml1AySEM6BsUrVCeYVP6jPT72+zW2kYj1I illjdF9CErWFOdrDblCq1lUEQ/giQ4pNCOR3LZQ+dyQVdzheMj6ApyFkSrgXGnDG xdxklpZ0VNTogg== -----END CERTIFICATE-----Generated at Sat Dec 20 22:04:57 2025 by rpki-client