This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft File: sxk4vHICgkRLq9OyazSStFats5c.mft (raw, json) Hash identifier: vQWQWfi3SnrQ/p4vJMUCT+aA/fRGuEF/uwL+UGcew0U= Subject key identifier: 37:8E:C8:74:07:A8:A9:5C:90:C8:4C:6D:1F:A5:60:84:A5:9D:B0:71 Authority key identifier: B3:19:38:BC:72:02:82:44:4B:AB:D3:B2:6B:34:92:B4:56:AD:B3:97 Certificate issuer: /CN=b31938bc720282444babd3b26b3492b456adb397 Certificate serial: 019AF12DFA2836F0DF5090508F27BFA7775B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft Manifest number: 0A80 Signing time: Sat 06 Dec 2025 01:01:53 +0000 Manifest this update: Sat 06 Dec 2025 01:01:53 +0000 Manifest next update: Sun 07 Dec 2025 01:01:53 +0000 Files and hashes: 1: mMmymzplWMeJzzgdG7P3tHtpBaQ.roa (hash: /bqXbIc2T1Ug7GTSXeUaRuS3D15TA3H+LDCDm5yP2ts=) 2: sxk4vHICgkRLq9OyazSStFats5c.crl (hash: qRAktKnHLCHNz4kr5zBdPq4E8Lfy5dCfJKDboL4rmdM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.crl rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft rsync://rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:fa:28:36:f0:df:50:90:50:8f:27:bf:a7:77:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b31938bc720282444babd3b26b3492b456adb397 Validity Not Before: Dec 6 01:01:53 2025 GMT Not After : Dec 7 01:01:53 2025 GMT Subject: CN=378ec87407a8a95c90c84c6d1fa56084a59db071 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:bf:95:ae:01:48:b3:bc:98:99:9c:82:ee:68: 4d:70:f8:eb:1e:70:68:a2:e7:01:fc:09:4e:4b:af: 65:87:81:53:a8:5c:46:82:18:94:14:9c:73:56:4f: 65:23:f4:6d:88:9f:69:08:21:c4:67:82:a2:ca:77: 1a:25:8f:8e:b7:40:0a:41:93:9c:0b:28:24:24:31: c4:d0:6e:c5:ab:18:66:9c:32:0a:09:46:e8:12:ab: 7e:7f:04:c8:61:46:1b:47:78:4e:a6:d8:e8:03:99: da:ea:fa:b2:d8:66:b6:07:e2:4d:49:eb:2a:e4:17: a3:8d:0e:2f:ce:32:3b:ea:48:9a:85:a9:d0:50:4c: 3d:e8:e6:f1:51:18:17:dc:4e:f5:ba:00:2e:d4:49: 28:71:c7:24:eb:93:89:d6:e2:bc:11:9d:ff:ba:7d: c4:60:15:27:be:35:f1:9d:65:5e:b9:74:fd:1c:7c: 8b:0e:79:74:a9:e6:ea:8e:79:dc:76:26:21:36:46: 60:55:fb:35:69:ee:c0:0f:e4:7b:60:e0:35:ef:6d: 0d:43:20:eb:98:cc:5c:9f:6a:15:66:63:30:f9:a8: b4:29:b9:09:41:ae:fb:92:34:3f:46:ed:24:1f:1d: 17:a6:45:42:fc:b1:e8:7f:0b:63:bd:70:2f:45:aa: fe:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:8E:C8:74:07:A8:A9:5C:90:C8:4C:6D:1F:A5:60:84:A5:9D:B0:71 X509v3 Authority Key Identifier: keyid:B3:19:38:BC:72:02:82:44:4B:AB:D3:B2:6B:34:92:B4:56:AD:B3:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:24:61:13:e9:c7:55:d4:8d:80:9c:95:af:08:b6:52:26:55: 7d:4d:dd:fe:28:7c:d1:19:da:1c:73:c0:39:70:c9:86:2a:52: f4:d3:1a:ec:f7:6f:1f:dc:44:2b:91:75:f9:de:98:86:3b:c9: d0:af:35:33:51:0f:53:6b:23:7f:97:d4:b3:c5:be:2c:3a:00: cf:34:af:03:1b:93:17:02:1e:fa:ee:7b:74:69:34:ea:13:8b: d0:7f:6a:9b:21:9f:8f:3a:87:ee:e4:2d:b1:02:0e:08:6c:eb: 58:c0:b2:01:3e:72:b1:0f:65:44:67:da:3d:0f:20:4c:8f:82: 26:22:05:81:22:b8:a0:03:55:1c:bb:d5:3c:7b:76:ca:52:2f: 6d:53:29:5f:fc:fe:dd:06:d5:6d:ca:ec:89:83:7a:ed:60:ba: e6:09:5c:87:2f:f9:22:47:29:68:fc:15:7b:54:6e:c0:df:cf: bf:8a:5f:1e:0f:f5:49:c7:03:10:eb:23:ea:63:02:39:14:92: fa:ad:6d:07:11:76:2a:27:96:2c:4c:cd:90:df:d7:ac:3d:99: b6:b4:6b:5d:b2:29:1e:9a:85:ce:a9:fe:48:a0:6f:3e:8e:00: b8:f8:25:82:e3:06:2d:b3:6c:5c:61:6e:b6:86:7b:7d:dc:5c: 77:b8:f2:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLfooNvDfUJBQjye/p3dbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzMTkzOGJjNzIwMjgyNDQ0YmFiZDNiMjZiMzQ5MmI0NTZh ZGIzOTcwHhcNMjUxMjA2MDEwMTUzWhcNMjUxMjA3MDEwMTUzWjAzMTEwLwYDVQQD EygzNzhlYzg3NDA3YThhOTVjOTBjODRjNmQxZmE1NjA4NGE1OWRiMDcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6b+VrgFIs7yYmZyC7mhNcPjrHnBo oucB/AlOS69lh4FTqFxGghiUFJxzVk9lI/RtiJ9pCCHEZ4KiyncaJY+Ot0AKQZOc CygkJDHE0G7FqxhmnDIKCUboEqt+fwTIYUYbR3hOptjoA5na6vqy2Ga2B+JNSesq 5BejjQ4vzjI76kiahanQUEw96ObxURgX3E71ugAu1Ekoccck65OJ1uK8EZ3/un3E YBUnvjXxnWVeuXT9HHyLDnl0qebqjnncdiYhNkZgVfs1ae7AD+R7YOA1720NQyDr mMxcn2oVZmMw+ai0KbkJQa77kjQ/Ru0kHx0XpkVC/LHofwtjvXAvRar+ZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDeOyHQHqKlckMhMbR+lYISlnbBxMB8GA1UdIwQY MBaAFLMZOLxyAoJES6vTsms0krRWrbOXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3hrNHZISUNna1JMcTlPeWF6U1N0RmF0czVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC83NWRlZGUtNTQ0OS00ZDQ3LTliNTEt OWI1ZGY4NWMxMTQwLzEvc3hrNHZISUNna1JMcTlPeWF6U1N0RmF0czVjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC83NWRlZGUtNTQ0OS00ZDQ3LTliNTEtOWI1ZGY4NWMxMTQw LzEvc3hrNHZISUNna1JMcTlPeWF6U1N0RmF0czVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADyRhE+nH VdSNgJyVrwi2UiZVfU3d/ih80RnaHHPAOXDJhipS9NMa7PdvH9xEK5F1+d6YhjvJ 0K81M1EPU2sjf5fUs8W+LDoAzzSvAxuTFwIe+u57dGk06hOL0H9qmyGfjzqH7uQt sQIOCGzrWMCyAT5ysQ9lRGfaPQ8gTI+CJiIFgSK4oANVHLvVPHt2ylIvbVMpX/z+ 3QbVbcrsiYN67WC65glchy/5IkcpaPwVe1RuwN/Pv4pfHg/1SccDEOsj6mMCORSS +q1tBxF2KieWLEzNkN/XrD2ZtrRrXbIpHpqFzqn+SKBvPo4AuPglguMGLbNsXGFu toZ7fdxcd7jysg== -----END CERTIFICATE-----Generated at Sat Dec 6 11:01:06 2025 by rpki-client