This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft File: s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft (raw, json) Hash identifier: ha4uoZT9CJXGdXFw1NbcJ98haCLS3ZvK/Gt92CLwPco= Subject key identifier: 21:85:4A:70:F0:31:E5:3D:42:D5:9B:31:6F:22:DD:90:81:CE:37:ED Authority key identifier: B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 Certificate issuer: /CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Certificate serial: 019AF50A8B8E8B64F20E66F9F2313576A68D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft Manifest number: 1785 Signing time: Sat 06 Dec 2025 19:01:40 +0000 Manifest this update: Sat 06 Dec 2025 19:01:40 +0000 Manifest next update: Sun 07 Dec 2025 19:01:40 +0000 Files and hashes: 1: 8G17Uj9AIXGxXZ66yfJHOLsxPo8.roa (hash: qU/6T++9LyINzVzJ8CV6sT+MweAHyZF0SIUnm5bIRYg=) 2: Hrw24NCuWIUCpkj_ixSA3ykRPr4.roa (hash: EL86DxycBZAbHkapsC+FVYde7DJDbg6IvsLrlIhK4Mg=) 3: HzkqLbs1liYqOOnORyYsONDUWCk.roa (hash: uXYRvHJ6LJgN5jTlxHsTjXJyetqQoAXwubqH0//UAWg=) 4: N8YU9P6afQ3l1ax9yLIDe6D0fIk.roa (hash: EU77Dk5F7GrtkJ85p7yvIHvzXNj6aNgdhN+Tn5j+zs0=) 5: NxaezdRi3ofV0Ea6FtmKMCg4Xno.roa (hash: OxfdQ+cdMI49CYY0Q1jeMkKHuJPcs1w/NoTD4eAZ2MA=) 6: TO40FjbIwGNQNwtqPj8kwc1ZTTA.roa (hash: CxCIaev63Gqq5Rl8++kPvXMtj4T/C8ceRG4EudeHUmA=) 7: g0-0qeR0lc1LsLxknNYR3dnvEBA.roa (hash: EXsDcqkvYGuTEAGM2nI2WIcOnpMXlYj8og8Md2Id59Q=) 8: gG0DNUP64NYeP7QJN-nJ3HYb71o.roa (hash: TdYqV2WNRnqL2XDaa0pYRnVh8SMGr720PVd0f0ZigsI=) 9: jGaeQ05R3hLIsxNTb7dpc8FaO6w.roa (hash: 4TEbxdiinYCpm4mycPqOwDmBBxQQxUxqZfGO0t4kbOg=) 10: oRsHwl0lqDdQsW8I1c5igLUyNzs.roa (hash: 8g9A+Hdue1idAErOv1qWZKgEKPMgG/A4+RlDqNfgnkI=) 11: oreGjQwv74g6OpxObQTCv-MnU1M.roa (hash: d1IJwSRdqQjA5VA/VLC7+miffsmnB8Nxer6G7ClHfMc=) 12: p2_R78qfiRDhzvxPsVGCBtVmaJE.roa (hash: AfONkYdMNZkN9Er/D4pbys1uxPQQYlJm+sdpKa5QxNI=) 13: s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl (hash: JdyW17dUgQFjWUrYm+qLVEsHQkynlnMwPQk2hQqkeXA=) 14: wjy1-qmg6rYR0UilXbPOrktmKnc.roa (hash: OCHLZL4VOIDtWxajhki14b+EkeW6juZq6cOYKpzs8QI=) 15: xMcgE5el8x0M_rTEbVyhY3X3x1c.roa (hash: PGLJrZJLBXcLan5LC1jzJXTcMWQ+drrbyWZOiA3GgNU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0a:8b:8e:8b:64:f2:0e:66:f9:f2:31:35:76:a6:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Validity Not Before: Dec 6 19:01:40 2025 GMT Not After : Dec 7 19:01:40 2025 GMT Subject: CN=21854a70f031e53d42d59b316f22dd9081ce37ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d7:c2:84:27:ae:73:36:7d:9f:06:02:12:1c: 4e:7a:df:93:a1:0e:18:89:6d:a1:79:ce:0a:ca:73: e9:0b:c4:42:7c:2c:ab:ca:ae:a1:82:d6:5c:da:22: a9:73:08:92:6b:48:e0:06:d5:a4:4b:5c:69:a0:23: b3:4c:72:31:e0:9e:c5:c1:de:2c:a2:69:ed:db:06: 6c:82:83:53:ea:d1:47:62:06:95:1f:e9:a1:eb:43: 30:35:08:e4:71:2d:d7:98:b7:52:c3:17:a6:55:cf: b2:c6:39:de:c5:3d:61:88:b1:35:b7:37:b7:0c:ce: 44:a1:18:85:ab:8b:e4:2d:3d:64:c3:3c:82:09:d7: 6b:a9:d9:d2:e4:4c:c2:37:bf:e4:d2:91:68:31:ea: d1:ea:55:1d:63:49:20:0d:8f:43:cf:e2:f8:aa:df: b9:0e:a9:db:45:54:87:21:5a:c3:16:98:f1:0c:3b: aa:55:68:66:de:8d:16:6f:87:4a:76:b0:a9:62:5a: d5:78:69:0d:61:96:49:08:b3:f2:51:ad:75:08:a3: a6:32:ff:47:1b:9e:3c:16:b2:96:80:e0:7f:06:52: c6:79:27:34:88:71:e0:eb:92:99:ea:2d:e9:fe:47: 23:7d:6c:21:d6:dc:c7:54:a4:04:71:69:9d:d0:9d: 0a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:85:4A:70:F0:31:E5:3D:42:D5:9B:31:6F:22:DD:90:81:CE:37:ED X509v3 Authority Key Identifier: keyid:B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:a5:0d:6d:d1:7a:a7:fc:fe:dc:76:2c:75:da:5e:a9:57:07: 07:7a:47:72:8e:68:6c:a2:a2:d0:89:93:33:29:00:c5:df:92: 4e:1e:a5:89:58:b4:f3:82:6d:ca:e4:62:d6:41:d5:13:84:cb: 20:59:82:dc:79:f7:3d:cb:08:9c:35:25:d1:be:e9:ec:9b:bf: c9:a9:a5:ee:de:f0:f9:e4:2e:2d:5a:1b:fc:e3:6f:26:a7:18: 18:09:e8:c0:94:97:2e:b2:aa:8f:6b:50:50:ba:dd:6d:1e:27: e0:2f:2c:d8:ac:00:e0:b8:5b:69:2b:b8:73:76:c2:49:a5:f1: f5:76:1e:b3:66:ee:34:f1:9a:48:ec:c5:f6:93:cf:8c:e1:9a: 91:b7:a9:29:74:58:00:c9:3d:78:9f:46:43:eb:bd:0c:07:c7: a2:86:78:e7:ec:16:97:66:f9:d7:ac:51:a5:6a:38:2c:54:39: e7:4d:48:2a:38:ce:d1:02:5e:14:9a:92:db:1e:b7:07:af:00: bf:52:7a:03:f5:4f:07:f9:e8:52:34:ac:88:32:2b:57:6d:e8: bd:9f:64:36:5c:e7:c4:27:d7:a2:50:19:85:91:f9:2a:cb:52: d3:6e:7c:73:a9:8c:8e:a9:7e:1b:58:56:b0:43:d6:e0:8a:20: a5:0c:46:7e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CouOi2TyDmb58jE1dqaNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzYTVkOTk4NjNkYjJlNDliNDRmNmMzMjRlYjA0Mzg4ZmM3 NTE1ZDIwHhcNMjUxMjA2MTkwMTQwWhcNMjUxMjA3MTkwMTQwWjAzMTEwLwYDVQQD EygyMTg1NGE3MGYwMzFlNTNkNDJkNTliMzE2ZjIyZGQ5MDgxY2UzN2VkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAstfChCeuczZ9nwYCEhxOet+ToQ4Y iW2hec4KynPpC8RCfCyryq6hgtZc2iKpcwiSa0jgBtWkS1xpoCOzTHIx4J7Fwd4s omnt2wZsgoNT6tFHYgaVH+mh60MwNQjkcS3XmLdSwxemVc+yxjnexT1hiLE1tze3 DM5EoRiFq4vkLT1kwzyCCddrqdnS5EzCN7/k0pFoMerR6lUdY0kgDY9Dz+L4qt+5 DqnbRVSHIVrDFpjxDDuqVWhm3o0Wb4dKdrCpYlrVeGkNYZZJCLPyUa11CKOmMv9H G548FrKWgOB/BlLGeSc0iHHg65KZ6i3p/kcjfWwh1tzHVKQEcWmd0J0K6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCGFSnDwMeU9QtWbMW8i3ZCBzjftMB8GA1UdIwQY MBaAFLOl2Zhj2y5JtE9sMk6wQ4j8dRXSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAt ZWVjNWQ1MGVmYTk0LzEvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAtZWVjNWQ1MGVmYTk0 LzEvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL6UNbdF6 p/z+3HYsddpeqVcHB3pHco5obKKi0ImTMykAxd+STh6liVi084JtyuRi1kHVE4TL IFmC3Hn3PcsInDUl0b7p7Ju/yaml7t7w+eQuLVob/ONvJqcYGAnowJSXLrKqj2tQ ULrdbR4n4C8s2KwA4LhbaSu4c3bCSaXx9XYes2buNPGaSOzF9pPPjOGakbepKXRY AMk9eJ9GQ+u9DAfHooZ45+wWl2b516xRpWo4LFQ5501IKjjO0QJeFJqS2x63B68A v1J6A/VPB/noUjSsiDIrV23ovZ9kNlznxCfXolAZhZH5KstS0258c6mMjql+G1hW sEPW4IogpQxGfg== -----END CERTIFICATE-----Generated at Sat Dec 6 21:06:02 2025 by rpki-client