This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft File: sho_SvlKWA6557WFQqAISyHCsJs.mft (raw, json) Hash identifier: dBd2btqUyA9FbLlE9tZMx/7B7oDXMrQ+6+SdbTQVUNc= Subject key identifier: EF:BC:73:08:2B:EC:B9:8D:46:F1:43:16:6A:E7:13:1D:7F:13:5C:AA Authority key identifier: B2:1A:3F:4A:F9:4A:58:0E:B9:E7:B5:85:42:A0:08:4B:21:C2:B0:9B Certificate issuer: /CN=b21a3f4af94a580eb9e7b58542a0084b21c2b09b Certificate serial: 019AF12ED92807A25467021363813079F151 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sho_SvlKWA6557WFQqAISyHCsJs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft Manifest number: 0842 Signing time: Sat 06 Dec 2025 01:02:50 +0000 Manifest this update: Sat 06 Dec 2025 01:02:50 +0000 Manifest next update: Sun 07 Dec 2025 01:02:50 +0000 Files and hashes: 1: 1hp0FN2Zg5pDjgoZFlg4J_guib0.roa (hash: Q0hgLFUWzZKKVmCPawFvjEl4SPCELVdqx/7++z9jxEg=) 2: sho_SvlKWA6557WFQqAISyHCsJs.crl (hash: XKgtGDM6ViFCA2TxVywhsHsE8HqauW9jVvqzN28SCmo=) 3: ygg1jPU11rM4AgPA_fHJm1HIbDA.roa (hash: bQEdp6E9utyQGzeJGQwHEXnTvCFMaSrhkRZ3o6gqExk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft rsync://rpki.ripe.net/repository/DEFAULT/sho_SvlKWA6557WFQqAISyHCsJs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:d9:28:07:a2:54:67:02:13:63:81:30:79:f1:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b21a3f4af94a580eb9e7b58542a0084b21c2b09b Validity Not Before: Dec 6 01:02:50 2025 GMT Not After : Dec 7 01:02:50 2025 GMT Subject: CN=efbc73082becb98d46f143166ae7131d7f135caa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ec:10:41:54:61:18:a3:96:c7:32:a7:5b:53: 7f:d8:e6:46:c1:ab:68:27:05:20:16:83:02:f0:a8: a5:31:54:12:69:b3:e7:77:98:dd:dd:61:67:bc:ab: ff:93:01:79:f5:f3:b4:42:ee:ad:d7:be:61:2c:f2: b9:ed:17:8f:53:a4:71:73:ff:50:d7:a8:19:fa:eb: a2:b1:e5:e7:f2:94:cc:4a:e7:b6:83:95:1b:dc:ca: 69:e3:c8:de:f3:ab:83:95:6e:56:6b:5c:12:8a:81: d5:33:59:5a:d7:29:0d:5a:5a:eb:10:ef:4c:ad:cc: 38:19:5e:16:1c:29:74:55:7f:fb:6a:03:8a:1a:1c: f8:86:65:ec:1f:11:33:2f:57:55:6c:d1:c7:70:fc: da:a2:fc:73:51:94:8d:9d:a6:b9:74:4f:65:0f:b1: df:94:98:c6:4d:e1:c4:66:ed:21:65:d2:30:79:e3: 2b:1b:24:f0:0f:21:a2:71:97:e6:59:85:25:8d:f6: cb:0f:1d:1a:cd:74:e9:07:53:67:1d:13:5a:b4:a9: 58:be:28:9a:50:8b:c9:40:ab:2f:35:fe:59:1f:37: 62:42:dd:80:d7:bf:ce:89:97:92:a7:2f:e1:c7:53: fb:bc:0a:ae:5b:7b:cc:d2:7c:3a:04:49:1b:8b:55: 48:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:BC:73:08:2B:EC:B9:8D:46:F1:43:16:6A:E7:13:1D:7F:13:5C:AA X509v3 Authority Key Identifier: keyid:B2:1A:3F:4A:F9:4A:58:0E:B9:E7:B5:85:42:A0:08:4B:21:C2:B0:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sho_SvlKWA6557WFQqAISyHCsJs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e8:7a:2e:ed:46:75:67:04:ee:07:ab:0d:f0:f4:e2:75:4c:f9: f9:5b:8e:7a:9f:55:63:3f:fb:5c:26:c0:bf:15:0d:24:5c:08: c1:10:13:d4:d6:c1:0d:60:34:5a:80:a7:4d:b7:e1:ca:83:30: 7e:67:62:70:a8:02:d0:bc:18:eb:73:13:57:72:14:0f:60:7e: 1c:ef:fa:e7:b7:13:a5:58:51:c1:11:95:91:5e:a2:bf:2a:1c: 5a:02:42:1e:13:ab:e7:5b:3a:83:a1:23:ec:36:93:e6:df:fb: 50:41:9e:24:11:84:50:53:a1:e8:be:02:64:ca:24:4d:d4:d2: ab:07:b2:f2:b8:0e:1a:cf:6c:44:a9:cb:fc:1e:fd:b0:7d:38: 6b:0e:17:06:36:b5:ce:b5:d5:89:85:aa:db:d6:8f:23:2b:a3: 17:54:7c:1a:ce:2c:43:84:d7:f7:3a:e0:ed:3a:4c:a8:d9:1f: 92:c0:80:37:e3:ae:3d:10:48:ce:c5:b5:76:89:80:b2:f5:9a: 61:0e:22:e6:2b:05:3d:41:75:9f:95:5a:2a:96:e5:ec:8a:b1: b5:0e:2a:4b:85:07:82:ca:c5:23:96:f8:c7:6a:58:91:0e:c7: 7d:b2:04:9e:4b:8d:c6:39:c3:a7:a8:6b:60:cc:87:7f:8c:0d: c6:e6:5f:68 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLtkoB6JUZwITY4EwefFRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyMWEzZjRhZjk0YTU4MGViOWU3YjU4NTQyYTAwODRiMjFj MmIwOWIwHhcNMjUxMjA2MDEwMjUwWhcNMjUxMjA3MDEwMjUwWjAzMTEwLwYDVQQD EyhlZmJjNzMwODJiZWNiOThkNDZmMTQzMTY2YWU3MTMxZDdmMTM1Y2FhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvuwQQVRhGKOWxzKnW1N/2OZGwato JwUgFoMC8KilMVQSabPnd5jd3WFnvKv/kwF59fO0Qu6t175hLPK57RePU6Rxc/9Q 16gZ+uuiseXn8pTMSue2g5Ub3Mpp48je86uDlW5Wa1wSioHVM1la1ykNWlrrEO9M rcw4GV4WHCl0VX/7agOKGhz4hmXsHxEzL1dVbNHHcPzaovxzUZSNnaa5dE9lD7Hf lJjGTeHEZu0hZdIweeMrGyTwDyGicZfmWYUljfbLDx0azXTpB1NnHRNatKlYviia UIvJQKsvNf5ZHzdiQt2A17/OiZeSpy/hx1P7vAquW3vM0nw6BEkbi1VIBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO+8cwgr7LmNRvFDFmrnEx1/E1yqMB8GA1UdIwQY MBaAFLIaP0r5SlgOuee1hUKgCEshwrCbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2hvX1N2bEtXQTY1NTdXRlFxQUlTeUhDc0pzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS85OTFmMWMtOTk5Yi00Zjc1LWIwYmYt NTEyOTE3MmI2OTY2LzEvc2hvX1N2bEtXQTY1NTdXRlFxQUlTeUhDc0pzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS85OTFmMWMtOTk5Yi00Zjc1LWIwYmYtNTEyOTE3MmI2OTY2 LzEvc2hvX1N2bEtXQTY1NTdXRlFxQUlTeUhDc0pzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA6Hou7UZ1 ZwTuB6sN8PTidUz5+VuOep9VYz/7XCbAvxUNJFwIwRAT1NbBDWA0WoCnTbfhyoMw fmdicKgC0LwY63MTV3IUD2B+HO/657cTpVhRwRGVkV6ivyocWgJCHhOr51s6g6Ej 7DaT5t/7UEGeJBGEUFOh6L4CZMokTdTSqwey8rgOGs9sRKnL/B79sH04aw4XBja1 zrXViYWq29aPIyujF1R8Gs4sQ4TX9zrg7TpMqNkfksCAN+OuPRBIzsW1domAsvWa YQ4i5isFPUF1n5VaKpbl7IqxtQ4qS4UHgsrFI5b4x2pYkQ7HfbIEnkuNxjnDp6hr YMyHf4wNxuZfaA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:30:35 2025 by rpki-client