This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3b1cb4-96a9-4ed2-bd93-c38669b37b9e/1/StHpGF6qi1xxyJ-r5vvirPfqmCQ.mft File: StHpGF6qi1xxyJ-r5vvirPfqmCQ.mft (raw, json) Hash identifier: T42k7MPxwb6si/QApp14O46HcxO7QYE2y7ozFuWBuk4= Subject key identifier: 38:43:19:AB:AE:6F:FD:E2:2D:29:B6:0B:24:42:C7:07:D1:7A:19:DD Authority key identifier: 4A:D1:E9:18:5E:AA:8B:5C:71:C8:9F:AB:E6:FB:E2:AC:F7:EA:98:24 Certificate issuer: /CN=4ad1e9185eaa8b5c71c89fabe6fbe2acf7ea9824 Certificate serial: 019AF2AD968DBB3A4BC690B2F20420235DF1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StHpGF6qi1xxyJ-r5vvirPfqmCQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3b1cb4-96a9-4ed2-bd93-c38669b37b9e/1/StHpGF6qi1xxyJ-r5vvirPfqmCQ.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 08:00:53 +0000 Manifest this update: Sat 06 Dec 2025 08:00:53 +0000 Manifest next update: Sun 07 Dec 2025 08:00:53 +0000 Files and hashes: 1: StHpGF6qi1xxyJ-r5vvirPfqmCQ.crl (hash: /4d6ga5ftAISF9qV36CIZhMF5hFYztO2gILIZ63P7GI=) 2: aRNIY9aPisPsPJEyhtJc_m061Zk.roa (hash: ah5G0cArNKCIsOUw2/tpkDwad97MIaUDok+u/s4pKjw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/3b1cb4-96a9-4ed2-bd93-c38669b37b9e/1/StHpGF6qi1xxyJ-r5vvirPfqmCQ.crl rsync://rpki.ripe.net/repository/DEFAULT/22/3b1cb4-96a9-4ed2-bd93-c38669b37b9e/1/StHpGF6qi1xxyJ-r5vvirPfqmCQ.mft rsync://rpki.ripe.net/repository/DEFAULT/StHpGF6qi1xxyJ-r5vvirPfqmCQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:96:8d:bb:3a:4b:c6:90:b2:f2:04:20:23:5d:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ad1e9185eaa8b5c71c89fabe6fbe2acf7ea9824 Validity Not Before: Dec 6 08:00:53 2025 GMT Not After : Dec 7 08:00:53 2025 GMT Subject: CN=384319abae6ffde22d29b60b2442c707d17a19dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0f:20:be:ce:aa:bd:1b:4b:a3:8f:ac:71:09: d6:9f:83:11:6b:cd:63:aa:11:e1:79:7b:87:cf:1c: 29:9b:7f:1d:ab:ac:a2:19:82:3d:e6:dc:a6:1a:6c: d6:19:bf:a1:e5:c5:51:c1:e4:59:47:6e:34:d1:44: 36:23:80:44:79:3f:78:ce:41:de:dd:dd:75:16:d6: a4:c4:f0:b6:7e:c8:2e:7c:f3:90:db:24:41:3b:00: 56:0b:e5:5c:c1:80:97:53:6b:d0:17:aa:3b:61:bb: c7:4c:65:6b:d6:af:5b:e0:44:89:c5:b0:e8:f0:50: 37:7a:5f:a8:75:88:98:58:18:6f:82:c6:72:78:15: a5:85:34:f7:ae:f2:db:7d:11:db:bd:88:b3:52:4a: 33:01:d2:d2:e9:73:e3:75:77:09:14:68:1d:ed:ac: 9c:52:ec:65:09:15:f7:bd:d7:37:88:de:9a:7d:71: 7c:fc:63:b7:58:3d:13:05:2f:85:c8:f0:c8:cf:1f: c4:b4:09:07:99:99:df:1a:2c:79:c5:cb:7c:76:01: 8c:72:4d:ca:ee:72:bf:c8:05:b0:84:7f:f0:37:6a: 73:af:08:39:a8:f3:25:b1:3e:32:d0:33:fe:40:d6: 05:43:a9:bc:c9:0c:47:de:14:c1:fd:41:9f:44:3d: ff:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:43:19:AB:AE:6F:FD:E2:2D:29:B6:0B:24:42:C7:07:D1:7A:19:DD X509v3 Authority Key Identifier: keyid:4A:D1:E9:18:5E:AA:8B:5C:71:C8:9F:AB:E6:FB:E2:AC:F7:EA:98:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StHpGF6qi1xxyJ-r5vvirPfqmCQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b1cb4-96a9-4ed2-bd93-c38669b37b9e/1/StHpGF6qi1xxyJ-r5vvirPfqmCQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b1cb4-96a9-4ed2-bd93-c38669b37b9e/1/StHpGF6qi1xxyJ-r5vvirPfqmCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:89:06:f5:fe:e0:48:ab:32:c6:16:a8:ee:14:a1:e5:03:b8: ab:62:33:82:e1:e6:18:c8:1d:a8:fb:b5:ee:7d:5c:8a:4a:03: ec:05:38:ff:91:3a:9b:04:d3:af:af:24:ed:e9:c6:a5:82:d8: 25:91:75:e1:78:05:91:e7:c7:71:5d:aa:1e:43:95:b6:0b:bd: 26:97:f1:f4:57:0d:30:e4:df:d8:93:f0:a5:8f:91:d1:66:4c: 9f:cf:1d:3c:a3:9a:dc:66:ce:89:69:34:37:be:b7:c0:2a:d5: e2:6d:af:cc:87:94:1b:2b:09:3e:1e:16:37:e3:75:3c:84:b3: fc:a8:44:a9:21:7e:a8:2e:eb:dc:0d:77:e0:4c:fe:b7:28:dc: 27:df:90:08:45:1f:2d:83:91:d8:ce:a8:70:c9:bf:30:f5:5f: 6d:de:cb:b6:fa:66:98:f2:f4:d0:39:8f:38:6f:85:3d:d5:e0: 0e:7e:47:a3:08:7b:03:fe:76:1d:d6:91:b9:53:de:fa:aa:ed: 4a:2c:78:8e:fe:db:94:1a:d0:1c:9b:f6:54:43:70:5c:87:dd: c4:50:0c:6e:34:e7:aa:82:54:02:ba:1e:3d:33:d7:57:21:28: ce:81:34:95:0b:7d:64:6f:df:99:76:0e:a6:df:7e:36:ec:21: e4:86:07:99 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrZaNuzpLxpCy8gQgI13xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhZDFlOTE4NWVhYThiNWM3MWM4OWZhYmU2ZmJlMmFjZjdl YTk4MjQwHhcNMjUxMjA2MDgwMDUzWhcNMjUxMjA3MDgwMDUzWjAzMTEwLwYDVQQD EygzODQzMTlhYmFlNmZmZGUyMmQyOWI2MGIyNDQyYzcwN2QxN2ExOWRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqQ8gvs6qvRtLo4+scQnWn4MRa81j qhHheXuHzxwpm38dq6yiGYI95tymGmzWGb+h5cVRweRZR2400UQ2I4BEeT94zkHe 3d11FtakxPC2fsgufPOQ2yRBOwBWC+VcwYCXU2vQF6o7YbvHTGVr1q9b4ESJxbDo 8FA3el+odYiYWBhvgsZyeBWlhTT3rvLbfRHbvYizUkozAdLS6XPjdXcJFGgd7ayc UuxlCRX3vdc3iN6afXF8/GO3WD0TBS+FyPDIzx/EtAkHmZnfGix5xct8dgGMck3K 7nK/yAWwhH/wN2pzrwg5qPMlsT4y0DP+QNYFQ6m8yQxH3hTB/UGfRD3/aQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDhDGauub/3iLSm2CyRCxwfRehndMB8GA1UdIwQY MBaAFErR6Rheqotcccifq+b74qz36pgkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU3RIcEdGNnFpMXh4eUotcjV2dmlyUGZxbUNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8zYjFjYjQtOTZhOS00ZWQyLWJkOTMt YzM4NjY5YjM3YjllLzEvU3RIcEdGNnFpMXh4eUotcjV2dmlyUGZxbUNRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi8zYjFjYjQtOTZhOS00ZWQyLWJkOTMtYzM4NjY5YjM3Yjll LzEvU3RIcEdGNnFpMXh4eUotcjV2dmlyUGZxbUNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcYkG9f7g SKsyxhao7hSh5QO4q2IzguHmGMgdqPu17n1cikoD7AU4/5E6mwTTr68k7enGpYLY JZF14XgFkefHcV2qHkOVtgu9Jpfx9FcNMOTf2JPwpY+R0WZMn88dPKOa3GbOiWk0 N763wCrV4m2vzIeUGysJPh4WN+N1PISz/KhEqSF+qC7r3A134Ez+tyjcJ9+QCEUf LYOR2M6ocMm/MPVfbd7LtvpmmPL00DmPOG+FPdXgDn5Howh7A/52HdaRuVPe+qrt Six4jv7blBrQHJv2VENwXIfdxFAMbjTnqoJUAroePTPXVyEozoE0lQt9ZG/fmXYO pt9+Nuwh5IYHmQ== -----END CERTIFICATE-----Generated at Sat Dec 6 13:03:29 2025 by rpki-client