This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft File: shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft (raw, json) Hash identifier: SkM1hoUdFxWLbI9uG65Ga5otKDcjxk81TBGWiGsJS6Y= Subject key identifier: C5:00:46:8E:42:19:A4:86:8B:58:18:8F:C7:71:40:D2:81:B0:0C:62 Authority key identifier: B2:15:CD:8E:6D:B3:54:41:98:4D:9C:7D:FC:9A:FB:65:3E:55:DF:F1 Certificate issuer: /CN=b215cd8e6db35441984d9c7dfc9afb653e55dff1 Certificate serial: 019AF0F5D6C9D102BB63C65A72020966F9DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft Manifest number: 16C9 Signing time: Sat 06 Dec 2025 00:00:34 +0000 Manifest this update: Sat 06 Dec 2025 00:00:34 +0000 Manifest next update: Sun 07 Dec 2025 00:00:34 +0000 Files and hashes: 1: UkWKB7R6wSYKBpsuiwwV880UfCk.roa (hash: pQhrMKgkx/zqcMJYjMVoXY14ZtF5KkWfSepRK8YAXxs=) 2: shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl (hash: /5UJpxPE6ASWn1WTf/NigHomHXyq3pcK4Atb6V4eAVE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 00:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:f5:d6:c9:d1:02:bb:63:c6:5a:72:02:09:66:f9:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b215cd8e6db35441984d9c7dfc9afb653e55dff1 Validity Not Before: Dec 6 00:00:34 2025 GMT Not After : Dec 7 00:00:34 2025 GMT Subject: CN=c500468e4219a4868b58188fc77140d281b00c62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:8c:95:d4:67:88:70:4b:9d:61:0c:fc:51:bd: 0e:05:3c:74:0e:b1:65:a4:4e:19:3b:47:6c:32:8e: b3:39:5c:f8:b1:c9:7a:54:3b:8c:06:a7:69:c6:01: be:18:f6:12:b7:56:42:0a:e8:0f:a6:8b:34:8f:d0: 10:43:c2:16:ca:d4:f5:31:1f:8a:69:d1:1a:e6:46: b7:ac:30:5a:73:62:f1:c9:1a:7c:77:72:23:88:12: 20:28:f8:76:42:0c:e1:6b:53:1b:24:c2:3a:fb:80: 28:6d:d5:ea:d5:0e:63:46:ea:d6:09:5d:b5:47:15: 61:09:4a:c0:4e:62:63:03:6c:93:8c:5b:af:12:0c: c7:0e:8c:40:67:85:14:0b:81:3e:83:ca:5b:36:eb: 42:4a:41:bd:23:7e:0e:15:62:b1:0d:b4:87:d0:0e: a2:22:3f:96:cb:18:09:ce:b0:36:f9:13:0d:5c:20: a9:e7:c6:ae:e3:d6:7a:50:d1:72:a4:95:12:21:dd: 3f:38:dc:00:67:df:b8:a6:be:db:bd:ed:68:6b:ab: ad:c2:1b:7d:68:0d:bc:09:30:c9:a6:42:45:59:85: c3:a1:1c:f4:36:e2:35:f1:1b:1d:c2:e2:d4:eb:cb: 52:ef:72:b6:b1:ee:ad:36:ab:f8:e1:c7:d3:44:4b: e0:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:00:46:8E:42:19:A4:86:8B:58:18:8F:C7:71:40:D2:81:B0:0C:62 X509v3 Authority Key Identifier: keyid:B2:15:CD:8E:6D:B3:54:41:98:4D:9C:7D:FC:9A:FB:65:3E:55:DF:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:27:48:b8:f1:ab:07:84:a4:a6:a6:c0:5b:22:48:11:5e:7f: 06:e3:b0:f6:89:4e:e5:30:09:db:d7:43:09:bb:be:51:21:9e: 35:11:73:bc:03:d4:ec:6e:39:60:1f:e3:fa:0b:35:d0:76:7d: f5:95:00:75:e0:d9:8d:a4:d3:46:ce:96:7b:32:34:d4:3d:da: 99:17:1a:8d:23:5a:86:1d:9a:fa:46:c0:88:97:e7:28:91:8a: 01:c1:f0:bb:22:09:3c:ef:b5:b4:97:bf:38:4a:5c:c7:6d:6b: e5:87:13:16:e2:6d:53:63:be:6f:07:f9:6e:5a:63:56:02:f3: 04:cf:23:53:48:71:b7:66:50:d3:d6:b0:04:d8:92:09:63:8f: a7:0d:f2:9b:5d:38:fa:57:5b:ff:29:8a:18:3d:6b:cb:39:43: cc:03:a0:ce:9f:22:34:df:30:68:a1:42:43:61:06:7f:9d:e0: 83:41:0c:19:5d:7a:e4:fb:c8:58:91:b8:13:11:97:c8:cb:39: d2:b6:50:5e:c0:4d:ad:63:fb:df:1c:e5:30:05:8f:b4:18:94: cb:25:b7:52:6a:79:63:ba:ae:17:3d:cb:80:46:9d:44:e7:92: 56:ba:12:5e:82:12:c3:bd:2a:46:ef:db:fa:48:ae:ed:e0:15: ad:76:af:54 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrw9dbJ0QK7Y8ZacgIJZvnbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyMTVjZDhlNmRiMzU0NDE5ODRkOWM3ZGZjOWFmYjY1M2U1 NWRmZjEwHhcNMjUxMjA2MDAwMDM0WhcNMjUxMjA3MDAwMDM0WjAzMTEwLwYDVQQD EyhjNTAwNDY4ZTQyMTlhNDg2OGI1ODE4OGZjNzcxNDBkMjgxYjAwYzYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo4yV1GeIcEudYQz8Ub0OBTx0DrFl pE4ZO0dsMo6zOVz4scl6VDuMBqdpxgG+GPYSt1ZCCugPpos0j9AQQ8IWytT1MR+K adEa5ka3rDBac2LxyRp8d3IjiBIgKPh2Qgzha1MbJMI6+4AobdXq1Q5jRurWCV21 RxVhCUrATmJjA2yTjFuvEgzHDoxAZ4UUC4E+g8pbNutCSkG9I34OFWKxDbSH0A6i Ij+WyxgJzrA2+RMNXCCp58au49Z6UNFypJUSId0/ONwAZ9+4pr7bve1oa6utwht9 aA28CTDJpkJFWYXDoRz0NuI18RsdwuLU68tS73K2se6tNqv44cfTREvgzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMUARo5CGaSGi1gYj8dxQNKBsAxiMB8GA1UdIwQY MBaAFLIVzY5ts1RBmE2cffya+2U+Vd/xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2hYTmptMnpWRUdZVFp4OV9KcjdaVDVWM19FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zOGI3OTItMThmYi00YmVkLTk5MGMt ZTk1MGQ4N2Y4ZTI1LzEvc2hYTmptMnpWRUdZVFp4OV9KcjdaVDVWM19FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS8zOGI3OTItMThmYi00YmVkLTk5MGMtZTk1MGQ4N2Y4ZTI1 LzEvc2hYTmptMnpWRUdZVFp4OV9KcjdaVDVWM19FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdydIuPGr B4SkpqbAWyJIEV5/BuOw9olO5TAJ29dDCbu+USGeNRFzvAPU7G45YB/j+gs10HZ9 9ZUAdeDZjaTTRs6WezI01D3amRcajSNahh2a+kbAiJfnKJGKAcHwuyIJPO+1tJe/ OEpcx21r5YcTFuJtU2O+bwf5blpjVgLzBM8jU0hxt2ZQ09awBNiSCWOPpw3ym104 +ldb/ymKGD1ryzlDzAOgzp8iNN8waKFCQ2EGf53gg0EMGV165PvIWJG4ExGXyMs5 0rZQXsBNrWP73xzlMAWPtBiUyyW3Ump5Y7quFz3LgEadROeSVroSXoISw70qRu/b +kiu7eAVrXavVA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:20:07 2025 by rpki-client