This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.mft File: S-iWpBlThdS5S3KVmIzPv6ismcU.mft (raw, json) Hash identifier: oFFMrDeRvP1tTIGDLYQ8tnW6PNhDcskbwQtJla1/sXU= Subject key identifier: 01:6B:7C:D8:78:A0:C0:5D:1F:A0:60:C9:EF:7D:E7:49:43:3A:C6:43 Authority key identifier: 4B:E8:96:A4:19:53:85:D4:B9:4B:72:95:98:8C:CF:BF:A8:AC:99:C5 Certificate issuer: /CN=4be896a4195385d4b94b7295988ccfbfa8ac99c5 Certificate serial: 019AF1641F201ADC1DF717A9B57A5C34C794 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S-iWpBlThdS5S3KVmIzPv6ismcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.mft Manifest number: 0DF5 Signing time: Sat 06 Dec 2025 02:01:01 +0000 Manifest this update: Sat 06 Dec 2025 02:01:01 +0000 Manifest next update: Sun 07 Dec 2025 02:01:01 +0000 Files and hashes: 1: 6KASjwCz7ilKa_zbYR8rA5RUBrc.roa (hash: T4+QVQXXLI7KFzCBe08m6pD6fADi9vWJFsV+O2tzwnA=) 2: S-iWpBlThdS5S3KVmIzPv6ismcU.crl (hash: MtTqJd1DTjWJDpfurOkJhfgTU0OJSWan3QQRfMHokNo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.crl rsync://rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.mft rsync://rpki.ripe.net/repository/DEFAULT/S-iWpBlThdS5S3KVmIzPv6ismcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:1f:20:1a:dc:1d:f7:17:a9:b5:7a:5c:34:c7:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4be896a4195385d4b94b7295988ccfbfa8ac99c5 Validity Not Before: Dec 6 02:01:01 2025 GMT Not After : Dec 7 02:01:01 2025 GMT Subject: CN=016b7cd878a0c05d1fa060c9ef7de749433ac643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:0e:c0:78:2b:4b:d0:d0:c4:df:5b:76:9d:cb: 9b:89:39:bb:58:9f:50:2d:fa:58:15:86:87:ab:45: e2:53:63:2a:d1:94:de:ef:4c:08:12:51:ef:a0:de: 6c:1d:4d:f9:e1:aa:ec:2c:81:a8:c8:77:32:3f:33: f8:5b:33:12:8f:48:d2:62:e6:fc:c7:3a:fb:56:1e: 87:a0:b6:02:85:64:36:10:6b:44:70:7f:fb:cd:e1: 16:10:a4:58:6d:cf:db:b1:1a:51:ce:c9:59:57:e3: 1b:39:bb:8b:44:50:3b:d8:e2:03:19:35:d5:b3:0d: ba:c2:32:22:17:15:e6:f9:29:fb:b2:70:e7:ac:f6: 6a:fc:b7:37:b7:fd:e4:f0:08:f8:15:e9:75:c9:cf: c3:87:6d:d6:bf:65:23:1f:67:aa:cc:e7:82:e6:e9: 1a:38:9d:7f:14:36:9a:f9:0b:2a:ff:fc:a1:21:38: ff:82:70:a7:39:76:44:c9:a9:c2:ea:57:bb:56:f4: 69:d5:6c:6e:c7:fd:00:91:9e:8c:13:b4:a2:48:85: b0:8f:1b:3f:31:2e:ae:eb:87:22:e3:16:c2:ff:28: 0a:85:44:1e:ab:a2:32:a9:24:b0:4c:0c:d5:52:17: c5:aa:f5:b9:50:b9:95:b8:31:48:b0:1d:a2:49:d7: 72:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:6B:7C:D8:78:A0:C0:5D:1F:A0:60:C9:EF:7D:E7:49:43:3A:C6:43 X509v3 Authority Key Identifier: keyid:4B:E8:96:A4:19:53:85:D4:B9:4B:72:95:98:8C:CF:BF:A8:AC:99:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S-iWpBlThdS5S3KVmIzPv6ismcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:6f:75:7c:a8:80:6c:46:9b:b2:31:1e:50:b9:52:5d:05:fb: e6:37:5b:fc:d2:70:f3:97:bc:45:6c:31:f4:1b:43:26:8e:fc: 28:c0:e7:8e:0d:9b:87:2a:ea:4b:05:aa:5d:f6:56:6a:50:0f: 1e:54:7a:4f:1b:e1:d8:58:8a:aa:6b:3f:6e:a4:b8:b7:e4:c0: cf:9c:18:ae:ec:26:4b:64:fd:35:37:aa:a9:91:d4:f6:22:67: 22:19:0f:e7:3c:dc:91:09:19:02:a0:15:f1:8c:ec:d2:e3:75: fa:8c:4d:08:59:2f:1b:81:36:1a:5a:b3:5c:97:c9:c4:7a:3c: a7:b8:e9:40:5e:ec:67:d8:67:71:ac:39:55:1f:ad:1b:c2:58: 41:bf:64:a0:38:44:d7:36:82:29:f2:84:08:c9:4d:0e:dd:b3: 9a:f1:67:23:00:b4:37:f8:7a:cd:f5:d0:34:88:0d:9f:3d:fc: 40:5c:99:ff:bf:31:42:f9:8b:66:10:97:7b:ad:e4:d1:23:17: b6:1b:90:cb:69:a4:57:ef:0a:40:96:30:44:d7:99:ef:fc:6c: 85:69:27:cd:85:3f:1c:d0:3f:8a:2a:2e:a5:cd:83:c2:75:fe: d9:41:4f:f2:01:7a:ed:a0:99:16:7d:d6:69:89:11:a9:04:34: 4b:8d:47:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZB8gGtwd9xeptXpcNMeUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiZTg5NmE0MTk1Mzg1ZDRiOTRiNzI5NTk4OGNjZmJmYThh Yzk5YzUwHhcNMjUxMjA2MDIwMTAxWhcNMjUxMjA3MDIwMTAxWjAzMTEwLwYDVQQD EygwMTZiN2NkODc4YTBjMDVkMWZhMDYwYzllZjdkZTc0OTQzM2FjNjQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkw7AeCtL0NDE31t2ncubiTm7WJ9Q LfpYFYaHq0XiU2Mq0ZTe70wIElHvoN5sHU354arsLIGoyHcyPzP4WzMSj0jSYub8 xzr7Vh6HoLYChWQ2EGtEcH/7zeEWEKRYbc/bsRpRzslZV+MbObuLRFA72OIDGTXV sw26wjIiFxXm+Sn7snDnrPZq/Lc3t/3k8Aj4Fel1yc/Dh23Wv2UjH2eqzOeC5uka OJ1/FDaa+Qsq//yhITj/gnCnOXZEyanC6le7VvRp1Wxux/0AkZ6ME7SiSIWwjxs/ MS6u64ci4xbC/ygKhUQeq6IyqSSwTAzVUhfFqvW5ULmVuDFIsB2iSddyzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAFrfNh4oMBdH6Bgye9950lDOsZDMB8GA1UdIwQY MBaAFEvolqQZU4XUuUtylZiMz7+orJnFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUy1pV3BCbFRoZFM1UzNLVm1JelB2NmlzbWNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS83YTEzZWUtYjczMS00ZmY5LWJlZjAt NGIxNTgxZjA5ZDNiLzEvUy1pV3BCbFRoZFM1UzNLVm1JelB2NmlzbWNVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS83YTEzZWUtYjczMS00ZmY5LWJlZjAtNGIxNTgxZjA5ZDNi LzEvUy1pV3BCbFRoZFM1UzNLVm1JelB2NmlzbWNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATW91fKiA bEabsjEeULlSXQX75jdb/NJw85e8RWwx9BtDJo78KMDnjg2bhyrqSwWqXfZWalAP HlR6Txvh2FiKqms/bqS4t+TAz5wYruwmS2T9NTeqqZHU9iJnIhkP5zzckQkZAqAV 8Yzs0uN1+oxNCFkvG4E2GlqzXJfJxHo8p7jpQF7sZ9hncaw5VR+tG8JYQb9koDhE 1zaCKfKECMlNDt2zmvFnIwC0N/h6zfXQNIgNnz38QFyZ/78xQvmLZhCXe63k0SMX thuQy2mkV+8KQJYwRNeZ7/xshWknzYU/HNA/iioupc2DwnX+2UFP8gF67aCZFn3W aYkRqQQ0S41HoA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:59:14 2025 by rpki-client