This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft File: S2T4wOGznYqO-OjItaD_7itTtYc.mft (raw, json) Hash identifier: J/U8O6hhLEPDrCOqSEXqySnZ6qVPlk8FlvPVlRsW/mg= Subject key identifier: A8:D0:62:29:CE:6E:94:89:76:D0:D2:1C:D2:8F:73:BD:BA:0B:3B:D4 Authority key identifier: 4B:64:F8:C0:E1:B3:9D:8A:8E:F8:E8:C8:B5:A0:FF:EE:2B:53:B5:87 Certificate issuer: /CN=4b64f8c0e1b39d8a8ef8e8c8b5a0ffee2b53b587 Certificate serial: 019AF12EC1061F33E79519E0BB72FB0C22BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2T4wOGznYqO-OjItaD_7itTtYc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft Manifest number: 088B Signing time: Sat 06 Dec 2025 01:02:44 +0000 Manifest this update: Sat 06 Dec 2025 01:02:44 +0000 Manifest next update: Sun 07 Dec 2025 01:02:44 +0000 Files and hashes: 1: S2T4wOGznYqO-OjItaD_7itTtYc.crl (hash: 1tR31ycrsTJ1yy8Fw/CNraJvUWJi+UWZDKeyzMw82J4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.crl rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft rsync://rpki.ripe.net/repository/DEFAULT/S2T4wOGznYqO-OjItaD_7itTtYc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:c1:06:1f:33:e7:95:19:e0:bb:72:fb:0c:22:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b64f8c0e1b39d8a8ef8e8c8b5a0ffee2b53b587 Validity Not Before: Dec 6 01:02:44 2025 GMT Not After : Dec 7 01:02:44 2025 GMT Subject: CN=a8d06229ce6e948976d0d21cd28f73bdba0b3bd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d6:c4:0f:cb:b8:d3:5e:6c:e5:41:19:44:5f: 5c:fc:d4:7d:1b:95:6e:79:f8:f9:d1:66:8a:7b:bb: a0:2f:9e:1a:2f:f7:e5:dc:64:d9:1c:93:5f:c1:4e: 33:b6:3b:51:69:fc:0d:a1:56:c4:4e:56:ea:a3:b1: ea:dd:37:f8:66:a3:d5:06:78:4b:64:13:6a:14:19: ca:91:13:a2:96:27:e4:41:28:f3:d6:bb:7d:12:5f: cd:97:f3:da:de:51:e0:50:0c:23:64:f6:9c:bc:57: 13:13:e5:2c:7b:25:35:59:8c:a7:b1:40:b0:b2:97: d4:69:60:05:a4:ef:d0:01:05:56:25:05:c7:b1:90: 30:ff:fa:e9:20:f1:04:b9:6f:51:78:29:8a:2f:f3: ef:0a:fe:72:bc:15:9a:99:39:ff:23:28:cf:ff:0d: 68:2e:78:6c:07:0b:31:80:b4:6d:ba:dc:5a:4c:40: 48:a0:3e:99:01:e1:28:f2:0f:bb:9c:d2:39:38:2b: 3a:0a:bd:b7:2a:b3:2c:68:87:44:b7:74:5e:5a:de: a5:f8:f2:57:fb:f4:c7:44:97:53:c8:43:ab:ec:e7: 33:88:a4:01:84:42:0b:85:54:82:ed:b8:e5:fc:c9: da:0d:fa:5f:a2:a8:84:b3:a6:3a:01:f6:c4:eb:8b: 1f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:D0:62:29:CE:6E:94:89:76:D0:D2:1C:D2:8F:73:BD:BA:0B:3B:D4 X509v3 Authority Key Identifier: keyid:4B:64:F8:C0:E1:B3:9D:8A:8E:F8:E8:C8:B5:A0:FF:EE:2B:53:B5:87 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2T4wOGznYqO-OjItaD_7itTtYc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:89:98:0f:f4:f0:cc:6b:74:1a:a8:e5:4e:56:79:f4:21:50: 30:b9:78:e8:00:c0:80:bd:7c:b2:40:70:8f:da:e9:81:fd:40: 54:5f:7b:11:04:e9:1b:7d:99:51:ac:d4:a9:76:5f:a0:4b:da: 2d:00:e1:85:24:80:57:77:ad:a8:28:a4:7d:b9:05:ed:69:4c: 47:37:ae:8b:aa:dd:aa:fe:db:1d:95:9b:f8:c1:05:b3:a1:7b: 40:31:85:fb:cd:56:86:77:d0:7f:c6:43:de:a3:77:ec:e3:84: 43:ff:fc:ce:60:4a:b8:e0:b4:2a:6b:07:75:74:45:fe:fb:d1: 45:7c:f0:2a:1e:18:a9:c0:cb:cf:1a:bf:5f:3d:91:26:f4:ae: 5f:13:10:37:c7:34:5b:fd:08:59:46:8a:e8:a0:9b:62:ea:ea: 82:37:0a:f0:83:1a:e3:63:ea:f9:b6:c6:63:c4:fd:df:00:10: 2a:dc:6a:63:d7:55:6d:53:16:c3:c9:0f:b6:ba:f2:7a:7f:78: 5f:02:04:7e:fe:18:14:c1:05:51:83:12:7c:e6:3b:bc:cf:eb: 7e:f6:13:61:d5:de:5a:b5:b2:f8:82:9c:c0:af:c9:f1:5f:13: 91:3d:88:b6:03:38:e3:bb:7f:fd:08:68:0d:8a:db:ac:f9:ed: 81:fe:1d:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLsEGHzPnlRngu3L7DCK+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiNjRmOGMwZTFiMzlkOGE4ZWY4ZThjOGI1YTBmZmVlMmI1 M2I1ODcwHhcNMjUxMjA2MDEwMjQ0WhcNMjUxMjA3MDEwMjQ0WjAzMTEwLwYDVQQD EyhhOGQwNjIyOWNlNmU5NDg5NzZkMGQyMWNkMjhmNzNiZGJhMGIzYmQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAudbED8u4015s5UEZRF9c/NR9G5Vu efj50WaKe7ugL54aL/fl3GTZHJNfwU4ztjtRafwNoVbETlbqo7Hq3Tf4ZqPVBnhL ZBNqFBnKkROilifkQSjz1rt9El/Nl/Pa3lHgUAwjZPacvFcTE+UseyU1WYynsUCw spfUaWAFpO/QAQVWJQXHsZAw//rpIPEEuW9ReCmKL/PvCv5yvBWamTn/IyjP/w1o LnhsBwsxgLRtutxaTEBIoD6ZAeEo8g+7nNI5OCs6Cr23KrMsaIdEt3ReWt6l+PJX +/THRJdTyEOr7OcziKQBhEILhVSC7bjl/MnaDfpfoqiEs6Y6AfbE64sfwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKjQYinObpSJdtDSHNKPc726CzvUMB8GA1UdIwQY MBaAFEtk+MDhs52KjvjoyLWg/+4rU7WHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzJUNHdPR3puWXFPLU9qSXRhRF83aXRUdFljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9jNDk3YmUtZjNiMS00YzliLTg1OWUt OTVkNWUxNmNkZGVmLzEvUzJUNHdPR3puWXFPLU9qSXRhRF83aXRUdFljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZi9jNDk3YmUtZjNiMS00YzliLTg1OWUtOTVkNWUxNmNkZGVm LzEvUzJUNHdPR3puWXFPLU9qSXRhRF83aXRUdFljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL4mYD/Tw zGt0GqjlTlZ59CFQMLl46ADAgL18skBwj9rpgf1AVF97EQTpG32ZUazUqXZfoEva LQDhhSSAV3etqCikfbkF7WlMRzeui6rdqv7bHZWb+MEFs6F7QDGF+81WhnfQf8ZD 3qN37OOEQ//8zmBKuOC0KmsHdXRF/vvRRXzwKh4YqcDLzxq/Xz2RJvSuXxMQN8c0 W/0IWUaK6KCbYurqgjcK8IMa42Pq+bbGY8T93wAQKtxqY9dVbVMWw8kPtrryen94 XwIEfv4YFMEFUYMSfOY7vM/rfvYTYdXeWrWy+IKcwK/J8V8TkT2ItgM447t//Qho DYrbrPntgf4d9w== -----END CERTIFICATE-----Generated at Sat Dec 6 09:19:58 2025 by rpki-client