This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft File: stLBGv8HK-w3pYJiEU4cBr7bSUI.mft (raw, json) Hash identifier: 8LaRmqTW3pRtfdZuvxScDu2tMPacm6uyG6GDUqahWA4= Subject key identifier: 0E:89:42:78:C1:44:3D:B7:E3:C3:B9:35:08:16:82:B1:58:43:5D:D2 Authority key identifier: B2:D2:C1:1A:FF:07:2B:EC:37:A5:82:62:11:4E:1C:06:BE:DB:49:42 Certificate issuer: /CN=b2d2c11aff072bec37a58262114e1c06bedb4942 Certificate serial: 019AF1D2564A6708134654288E07932748C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft Manifest number: FC Signing time: Sat 06 Dec 2025 04:01:24 +0000 Manifest this update: Sat 06 Dec 2025 04:01:24 +0000 Manifest next update: Sun 07 Dec 2025 04:01:24 +0000 Files and hashes: 1: stLBGv8HK-w3pYJiEU4cBr7bSUI.crl (hash: 1e+bgnj3Arr3pmIw0MKY0+Ko04ZnVtB/O4UnGh1ppso=) 2: u0k0ZcdUu0HWts_QzMnRtt7idjE.roa (hash: gQ41j+zd/N93xs0pAJ6I2F+Zc4DvWJ1HscP8bcl0MW8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.crl rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:56:4a:67:08:13:46:54:28:8e:07:93:27:48:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2d2c11aff072bec37a58262114e1c06bedb4942 Validity Not Before: Dec 6 04:01:24 2025 GMT Not After : Dec 7 04:01:24 2025 GMT Subject: CN=0e894278c1443db7e3c3b935081682b158435dd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a4:ec:b8:83:94:25:c5:9f:27:d2:82:10:1f: b4:8f:b1:34:29:c7:03:27:d8:0c:60:e5:06:e0:aa: 2c:07:b4:5a:20:96:2b:48:11:ad:13:85:b6:a1:a2: 5c:53:70:b3:07:f2:12:a9:5d:03:64:ce:95:f1:34: 29:62:ae:e4:13:b9:36:d6:4e:03:37:a8:99:82:3a: ec:ff:77:aa:94:38:fb:a4:55:11:2a:84:98:86:a2: 8a:c6:e5:dc:a4:8a:aa:19:58:1a:4b:fb:29:76:88: 48:92:2e:7d:70:43:99:c4:16:44:42:99:ac:e9:6c: 81:13:f4:15:6e:96:ca:94:8a:53:f9:8e:e9:fe:d4: 07:87:ea:8f:0a:d4:c5:5b:3d:98:73:4b:77:ee:c6: ce:54:c5:84:5a:0e:4c:e1:fe:5d:f6:58:ea:fe:07: 1a:e2:94:c5:d9:63:9c:b4:9e:f2:7d:61:8e:4c:3e: c1:dc:fc:9a:0f:20:88:e6:05:cf:f2:bf:c4:fa:fc: 39:41:6b:c4:ac:d3:7f:9b:43:d6:27:cf:61:7c:35: d7:61:99:32:b9:7a:16:81:12:85:73:70:c4:43:69: e8:23:23:86:e3:cc:5d:a8:c9:8b:38:d2:a2:b5:9b: 69:9f:29:fc:49:11:72:fd:5a:0b:81:45:9f:d0:3f: ec:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:89:42:78:C1:44:3D:B7:E3:C3:B9:35:08:16:82:B1:58:43:5D:D2 X509v3 Authority Key Identifier: keyid:B2:D2:C1:1A:FF:07:2B:EC:37:A5:82:62:11:4E:1C:06:BE:DB:49:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:ac:89:1f:79:8e:cb:c4:44:ad:c4:65:44:45:45:74:99:ba: 40:22:29:2b:65:6e:cd:05:32:3b:2f:53:16:24:c7:40:81:67: 3e:e7:6b:09:b5:10:6c:26:f8:8f:eb:47:0e:25:1d:9f:dc:96: 3b:61:1b:6b:16:7c:a7:21:33:22:d4:70:28:1a:ab:3f:50:53: 77:79:56:03:c8:b8:fb:48:14:43:fd:e4:67:90:76:3b:40:77: 75:e2:5b:82:ab:62:7b:45:ab:b9:10:09:b1:a2:ea:cb:d1:2f: 96:85:13:d5:32:5d:2f:70:15:cf:9a:76:9f:5c:97:99:44:31: 97:00:00:0a:29:a8:3c:7a:2a:b1:27:d7:c0:a3:96:c7:16:9d: 87:11:8b:df:9e:65:59:19:2a:3f:81:e7:a0:11:6b:7b:94:aa: 20:e8:00:9c:64:b6:bb:5c:cc:ca:2f:41:1f:45:d8:9e:49:27: 1b:b8:7f:15:82:08:62:a7:9c:ae:13:58:d2:56:0c:9d:94:27: 15:63:a0:77:cd:a8:d3:d1:14:f0:6b:6c:47:ee:44:c9:ac:3f: 8c:e9:89:37:ca:3e:2f:11:ee:d7:99:8e:98:3f:48:42:90:04: e7:f1:1a:f5:ae:73:be:c5:8b:6d:55:9b:28:09:47:ec:b5:d5: 93:74:ce:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0lZKZwgTRlQojgeTJ0jBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyZDJjMTFhZmYwNzJiZWMzN2E1ODI2MjExNGUxYzA2YmVk YjQ5NDIwHhcNMjUxMjA2MDQwMTI0WhcNMjUxMjA3MDQwMTI0WjAzMTEwLwYDVQQD EygwZTg5NDI3OGMxNDQzZGI3ZTNjM2I5MzUwODE2ODJiMTU4NDM1ZGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1qTsuIOUJcWfJ9KCEB+0j7E0KccD J9gMYOUG4KosB7RaIJYrSBGtE4W2oaJcU3CzB/ISqV0DZM6V8TQpYq7kE7k21k4D N6iZgjrs/3eqlDj7pFURKoSYhqKKxuXcpIqqGVgaS/spdohIki59cEOZxBZEQpms 6WyBE/QVbpbKlIpT+Y7p/tQHh+qPCtTFWz2Yc0t37sbOVMWEWg5M4f5d9ljq/gca 4pTF2WOctJ7yfWGOTD7B3PyaDyCI5gXP8r/E+vw5QWvErNN/m0PWJ89hfDXXYZky uXoWgRKFc3DEQ2noIyOG48xdqMmLONKitZtpnyn8SRFy/VoLgUWf0D/sxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA6JQnjBRD2348O5NQgWgrFYQ13SMB8GA1UdIwQY MBaAFLLSwRr/ByvsN6WCYhFOHAa+20lCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3RMQkd2OEhLLXczcFlKaUVVNGNCcjdiU1VJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8yODNkMzItMzgwYS00ZTZlLWE5NTct YzViYWVhM2YxNzI5LzEvc3RMQkd2OEhLLXczcFlKaUVVNGNCcjdiU1VJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi8yODNkMzItMzgwYS00ZTZlLWE5NTctYzViYWVhM2YxNzI5 LzEvc3RMQkd2OEhLLXczcFlKaUVVNGNCcjdiU1VJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGayJH3mO y8RErcRlREVFdJm6QCIpK2VuzQUyOy9TFiTHQIFnPudrCbUQbCb4j+tHDiUdn9yW O2EbaxZ8pyEzItRwKBqrP1BTd3lWA8i4+0gUQ/3kZ5B2O0B3deJbgqtie0WruRAJ saLqy9EvloUT1TJdL3AVz5p2n1yXmUQxlwAACimoPHoqsSfXwKOWxxadhxGL355l WRkqP4HnoBFre5SqIOgAnGS2u1zMyi9BH0XYnkknG7h/FYIIYqecrhNY0lYMnZQn FWOgd82o09EU8GtsR+5Eyaw/jOmJN8o+LxHu15mOmD9IQpAE5/Ea9a5zvsWLbVWb KAlH7LXVk3TOCw== -----END CERTIFICATE-----Generated at Sat Dec 6 12:49:30 2025 by rpki-client