This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft File: 2sMmMqqRVCU8bc0jMemtaSC2vcw.mft (raw, json) Hash identifier: Y6rItx5FAqAC0D5Ld2C9y8l/mAE67z/N4i0BNszRr+Q= Subject key identifier: 82:38:90:78:9A:8F:2D:A7:0D:1F:14:E7:FA:AE:07:E5:FB:F3:4D:13 Authority key identifier: DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC Certificate issuer: /CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc Certificate serial: 019B2C2FA3D1C39AD0E7D31210727C9F2EEC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft Manifest number: 0F14 Signing time: Wed 17 Dec 2025 12:01:18 +0000 Manifest this update: Wed 17 Dec 2025 12:01:18 +0000 Manifest next update: Thu 18 Dec 2025 12:01:18 +0000 Files and hashes: 1: 2sMmMqqRVCU8bc0jMemtaSC2vcw.crl (hash: Zf7GL0q1BCMcHLojQw/x3xMNMfV0rWNuTJGavnFAQWo=) 2: CW5XXGbSHLy5qht82EbGk600atQ.roa (hash: 8xLLW0wHU24TMYAN26pfip52tQpmGJnJ6m5zJ2CIta8=) 3: WB4VFJtMdRQ8LPD-pPSCHzrXGms.roa (hash: cwVGAvm4ISTc3hrZPIqP9LBQXHGGf2V0XCAeWNsC/Qc=) 4: teW-DT8zdzN4G6q3ot7ZU_q2aDU.roa (hash: vMh/kxEkmKzqOFqR68vsoiN3gzaKBX7vYAgPza9p9cw=) 5: xHovsWco0FWia8DWR-GvNsYSrNI.roa (hash: tby+FFpFl1LGlp9XQyXnHjYmVkeUGYGKTrQzTYqHrLE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 12:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2c:2f:a3:d1:c3:9a:d0:e7:d3:12:10:72:7c:9f:2e:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc Validity Not Before: Dec 17 12:01:18 2025 GMT Not After : Dec 18 12:01:18 2025 GMT Subject: CN=823890789a8f2da70d1f14e7faae07e5fbf34d13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:04:fe:49:5d:01:30:c2:ce:ff:69:14:8e:77: 49:3c:1d:ca:1d:2f:86:e3:14:08:7e:ce:0f:bc:7a: aa:e8:0a:bc:25:b8:91:02:68:61:c7:0d:80:28:0c: c0:7f:23:6f:57:b1:f4:3a:0f:46:00:6c:dd:07:c3: 2d:da:96:26:a3:f7:87:9f:b5:75:8c:d5:87:63:58: 08:a6:65:81:42:52:6f:32:15:83:b6:f7:27:48:99: 90:3f:72:ea:19:3f:31:de:bb:06:60:e5:b9:f1:d2: 6b:69:6b:91:00:1d:86:2d:69:d0:39:1c:24:b1:6d: 06:45:1a:eb:cc:04:c2:ca:6d:65:e5:42:3a:f0:78: 83:2d:c7:b1:ba:9e:5d:1c:21:dd:39:4d:a9:73:ca: 3a:e0:aa:66:cf:a7:80:d8:9a:e4:e4:36:46:ef:6c: 3b:87:54:7b:b4:6c:89:63:76:17:76:05:c7:d9:9c: e0:d5:af:8d:d6:61:8d:34:21:1b:47:68:77:c6:53: 50:90:09:19:4a:01:91:9b:90:b7:6f:9d:a1:96:2e: 95:84:0d:03:cd:a9:2f:9c:dd:d8:66:51:a0:2f:30: 99:55:88:65:8e:30:c7:b5:d7:64:59:2d:48:ba:28: c7:4f:58:14:ea:1e:d9:d9:75:c1:fd:b0:a4:72:67: e4:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:38:90:78:9A:8F:2D:A7:0D:1F:14:E7:FA:AE:07:E5:FB:F3:4D:13 X509v3 Authority Key Identifier: keyid:DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bb:ac:76:ce:7d:c5:77:7a:59:87:b5:a5:8f:42:73:d8:bf:bf: a6:ac:9d:5f:af:32:d5:a1:ee:c1:93:30:32:c0:b2:e4:24:4a: b5:2f:49:4c:5e:f9:85:f9:75:e7:64:a2:03:7a:a5:7b:5e:53: 1b:73:80:e4:95:0a:30:8a:25:18:bf:60:83:4b:0e:d4:c9:7b: 30:50:41:3f:99:e3:a9:8a:3d:e7:30:a9:83:c0:5d:58:5d:7c: 53:a4:bc:da:66:b5:0e:f4:b3:76:9e:e2:7f:f8:4f:a4:86:c8: 40:ee:48:32:a0:eb:ab:e0:6e:66:5f:7f:73:ae:9a:8e:7c:20: 1b:9a:50:00:21:26:c2:10:55:f6:d6:9f:09:2a:2b:d5:3a:f4: 66:a7:ca:fd:f8:a4:14:0b:bb:40:1a:0b:f1:8b:48:26:49:6c: 29:1c:7b:e6:71:45:f8:4f:b5:04:92:e4:21:d7:f3:e6:4c:c4: 00:05:25:e6:ef:d2:2c:6d:c1:9f:ac:45:81:09:f6:ea:ee:d9: d5:16:2e:f8:61:eb:12:cf:0f:03:95:c1:70:7e:7c:56:4a:f8: a3:e8:d0:2c:a8:90:44:a5:db:0f:c8:83:df:1d:49:cd:72:cb: 89:78:69:d3:01:bb:48:ef:33:40:32:ad:08:d5:5e:73:10:10: 7a:0d:1d:7e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZssL6PRw5rQ59MSEHJ8ny7sMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhYzMyNjMyYWE5MTU0MjUzYzZkY2QyMzMxZTlhZDY5MjBi NmJkY2MwHhcNMjUxMjE3MTIwMTE4WhcNMjUxMjE4MTIwMTE4WjAzMTEwLwYDVQQD Eyg4MjM4OTA3ODlhOGYyZGE3MGQxZjE0ZTdmYWFlMDdlNWZiZjM0ZDEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqQT+SV0BMMLO/2kUjndJPB3KHS+G 4xQIfs4PvHqq6Aq8JbiRAmhhxw2AKAzAfyNvV7H0Og9GAGzdB8Mt2pYmo/eHn7V1 jNWHY1gIpmWBQlJvMhWDtvcnSJmQP3LqGT8x3rsGYOW58dJraWuRAB2GLWnQORwk sW0GRRrrzATCym1l5UI68HiDLcexup5dHCHdOU2pc8o64Kpmz6eA2Jrk5DZG72w7 h1R7tGyJY3YXdgXH2Zzg1a+N1mGNNCEbR2h3xlNQkAkZSgGRm5C3b52hli6VhA0D zakvnN3YZlGgLzCZVYhljjDHtddkWS1IuijHT1gU6h7Z2XXB/bCkcmfkAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFII4kHiajy2nDR8U5/quB+X7800TMB8GA1UdIwQY MBaAFNrDJjKqkVQlPG3NIzHprWkgtr3MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnNNbU1xcVJWQ1U4YmMwak1lbXRhU0MydmN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi80OTQyNGEtYWE1Zi00YjlmLWE2Mjct MjQ2NTRlOTQxYzEyLzEvMnNNbU1xcVJWQ1U4YmMwak1lbXRhU0MydmN3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi80OTQyNGEtYWE1Zi00YjlmLWE2MjctMjQ2NTRlOTQxYzEy LzEvMnNNbU1xcVJWQ1U4YmMwak1lbXRhU0MydmN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAu6x2zn3F d3pZh7Wlj0Jz2L+/pqydX68y1aHuwZMwMsCy5CRKtS9JTF75hfl152SiA3qle15T G3OA5JUKMIolGL9gg0sO1Ml7MFBBP5njqYo95zCpg8BdWF18U6S82ma1DvSzdp7i f/hPpIbIQO5IMqDrq+BuZl9/c66ajnwgG5pQACEmwhBV9tafCSor1Tr0ZqfK/fik FAu7QBoL8YtIJklsKRx75nFF+E+1BJLkIdfz5kzEAAUl5u/SLG3Bn6xFgQn26u7Z 1RYu+GHrEs8PA5XBcH58Vkr4o+jQLKiQRKXbD8iD3x1JzXLLiXhp0wG7SO8zQDKt CNVecxAQeg0dfg== -----END CERTIFICATE-----Generated at Wed Dec 17 20:49:44 2025 by rpki-client