This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft File: sG9AQEkaZW_3Um0vF2EbDWisvQw.mft (raw, json) Hash identifier: +va9FRk+85WNnQxNzmKXK6kA3zlYy7vMDMMU94IGN/k= Subject key identifier: 84:AE:E4:E5:9B:0C:FB:BF:1F:B2:F7:91:3C:27:91:A6:DD:8D:7B:7B Authority key identifier: B0:6F:40:40:49:1A:65:6F:F7:52:6D:2F:17:61:1B:0D:68:AC:BD:0C Certificate issuer: /CN=b06f4040491a656ff7526d2f17611b0d68acbd0c Certificate serial: 019AF0BF1E3D834CB6AFE62446B8ED37F333 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft Manifest number: 1762 Signing time: Fri 05 Dec 2025 23:00:48 +0000 Manifest this update: Fri 05 Dec 2025 23:00:48 +0000 Manifest next update: Sat 06 Dec 2025 23:00:48 +0000 Files and hashes: 1: Llrtrof0_CXG6g_18Oyw968ZWEI.roa (hash: X1zaGRl51EQ/u9kK0U1WmdFcDajifODFmk55LESlUmM=) 2: sG9AQEkaZW_3Um0vF2EbDWisvQw.crl (hash: EE7Ln095qRtMai8shl4lpnZaX5oShuQ3EzqhSoCe2WA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.crl rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:1e:3d:83:4c:b6:af:e6:24:46:b8:ed:37:f3:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b06f4040491a656ff7526d2f17611b0d68acbd0c Validity Not Before: Dec 5 23:00:48 2025 GMT Not After : Dec 6 23:00:48 2025 GMT Subject: CN=84aee4e59b0cfbbf1fb2f7913c2791a6dd8d7b7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:0c:59:19:38:a8:5f:fc:f3:31:10:13:96:27: ad:0f:35:20:30:97:c1:3d:b7:78:e5:f2:44:1b:cb: b0:a2:c8:55:db:88:b7:e5:09:20:e3:4a:92:00:9d: 69:c5:6b:45:d7:87:fc:b3:63:07:2b:20:ad:d5:cc: df:9a:30:17:27:d0:1f:47:8f:0d:56:4c:b8:11:da: 36:93:d0:19:e2:3a:df:f8:93:ce:da:53:6c:83:0a: 5d:c3:45:f5:32:c0:69:13:41:59:cc:9d:b7:de:cc: ac:34:84:8e:83:9e:4b:93:46:c5:9d:fd:c7:b1:ea: 34:ad:3c:5c:5b:b7:16:d4:57:43:56:49:9e:20:c3: bc:37:02:4c:74:8b:03:23:0f:cd:26:dc:2c:92:34: 48:e7:4f:3d:1a:44:63:77:5b:6e:fb:b6:1e:57:92: 1f:e6:95:51:8b:ad:1e:a7:a3:b3:b9:43:17:cf:4b: 99:5e:2b:fa:58:91:89:1d:62:0d:43:31:c1:24:11: b0:f4:00:6f:27:78:be:c8:d1:8c:88:d7:f5:6d:02: c6:c5:f4:68:19:29:83:2f:c9:c3:12:ec:ef:52:6f: d9:42:cd:19:43:1a:5c:71:b8:23:af:2a:f4:58:29: 05:8d:50:a9:4d:4c:a7:d8:b1:63:df:66:51:96:c3: 10:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:AE:E4:E5:9B:0C:FB:BF:1F:B2:F7:91:3C:27:91:A6:DD:8D:7B:7B X509v3 Authority Key Identifier: keyid:B0:6F:40:40:49:1A:65:6F:F7:52:6D:2F:17:61:1B:0D:68:AC:BD:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:a6:23:76:33:89:d7:af:26:c6:5f:17:84:5e:61:22:a3:6c: f2:3f:ee:f5:78:b4:ac:78:56:33:3c:32:07:9f:8d:5e:7c:46: 17:6a:ad:42:c4:67:95:71:be:f6:0f:1b:44:3c:b4:4e:1b:4b: c2:b5:4c:80:b8:19:ba:d7:0e:bf:1a:3a:21:52:c9:5d:75:53: f0:e2:f0:c4:1e:b3:39:7e:18:c5:50:5e:72:11:03:75:14:29: 42:bc:2a:02:b4:53:37:7f:fc:ae:62:ed:98:1f:e6:a1:14:cf: 04:ad:10:ae:2a:c5:a3:c2:72:b6:c0:d7:94:c2:5e:10:e6:56: 64:ff:ca:6a:0b:30:13:8a:4c:90:fa:8b:2f:24:15:3e:3b:a6: 7f:2d:f7:5e:3b:3d:b0:16:99:19:4c:d8:ed:51:b1:86:2c:a5: a8:df:47:d8:4f:63:ae:c5:47:34:43:19:80:d9:b8:13:13:d9: 77:1a:cf:0e:f8:14:16:d4:5d:23:96:48:ea:18:66:57:1a:b1: 23:1b:90:91:57:04:fa:7b:9c:26:06:72:30:81:95:1b:be:87: 6b:6f:31:20:6e:51:a9:9d:61:75:47:87:a3:ee:96:a9:55:4f: 71:bd:4f:cf:29:3f:12:4b:17:ce:1d:b3:ab:9c:84:cc:6b:67: 38:91:df:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwvx49g0y2r+YkRrjtN/MzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwNmY0MDQwNDkxYTY1NmZmNzUyNmQyZjE3NjExYjBkNjhh Y2JkMGMwHhcNMjUxMjA1MjMwMDQ4WhcNMjUxMjA2MjMwMDQ4WjAzMTEwLwYDVQQD Eyg4NGFlZTRlNTliMGNmYmJmMWZiMmY3OTEzYzI3OTFhNmRkOGQ3YjdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4gxZGTioX/zzMRATlietDzUgMJfB Pbd45fJEG8uwoshV24i35Qkg40qSAJ1pxWtF14f8s2MHKyCt1czfmjAXJ9AfR48N Vky4Edo2k9AZ4jrf+JPO2lNsgwpdw0X1MsBpE0FZzJ233sysNISOg55Lk0bFnf3H seo0rTxcW7cW1FdDVkmeIMO8NwJMdIsDIw/NJtwskjRI5089GkRjd1tu+7YeV5If 5pVRi60ep6OzuUMXz0uZXiv6WJGJHWINQzHBJBGw9ABvJ3i+yNGMiNf1bQLGxfRo GSmDL8nDEuzvUm/ZQs0ZQxpccbgjryr0WCkFjVCpTUyn2LFj32ZRlsMQCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFISu5OWbDPu/H7L3kTwnkabdjXt7MB8GA1UdIwQY MBaAFLBvQEBJGmVv91JtLxdhGw1orL0MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0c5QVFFa2FaV18zVW0wdkYyRWJEV2lzdlF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9jZTBiMjEtZDY1Yy00MmU2LTg3NGIt ZjRjYjg2N2Y5MGQ4LzEvc0c5QVFFa2FaV18zVW0wdkYyRWJEV2lzdlF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC9jZTBiMjEtZDY1Yy00MmU2LTg3NGItZjRjYjg2N2Y5MGQ4 LzEvc0c5QVFFa2FaV18zVW0wdkYyRWJEV2lzdlF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMaYjdjOJ 168mxl8XhF5hIqNs8j/u9Xi0rHhWMzwyB5+NXnxGF2qtQsRnlXG+9g8bRDy0ThtL wrVMgLgZutcOvxo6IVLJXXVT8OLwxB6zOX4YxVBechEDdRQpQrwqArRTN3/8rmLt mB/moRTPBK0QrirFo8JytsDXlMJeEOZWZP/KagswE4pMkPqLLyQVPjumfy33Xjs9 sBaZGUzY7VGxhiylqN9H2E9jrsVHNEMZgNm4ExPZdxrPDvgUFtRdI5ZI6hhmVxqx IxuQkVcE+nucJgZyMIGVG76Ha28xIG5RqZ1hdUeHo+6WqVVPcb1Pzyk/EksXzh2z q5yEzGtnOJHftw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:50:30 2025 by rpki-client