This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft File: s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft (raw, json) Hash identifier: ThQPb428yXW/O2XKAmy+n6NY05PgMlOtRosuiLtDK6A= Subject key identifier: 94:E4:F3:60:15:EF:F8:8F:56:24:83:81:AA:4A:5E:A6:D9:E0:DC:95 Authority key identifier: B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 Certificate issuer: /CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Certificate serial: 019AF31D44DDD8BE30D24079E8189F4CFE41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft Manifest number: 1784 Signing time: Sat 06 Dec 2025 10:02:52 +0000 Manifest this update: Sat 06 Dec 2025 10:02:52 +0000 Manifest next update: Sun 07 Dec 2025 10:02:52 +0000 Files and hashes: 1: 8G17Uj9AIXGxXZ66yfJHOLsxPo8.roa (hash: qU/6T++9LyINzVzJ8CV6sT+MweAHyZF0SIUnm5bIRYg=) 2: Hrw24NCuWIUCpkj_ixSA3ykRPr4.roa (hash: EL86DxycBZAbHkapsC+FVYde7DJDbg6IvsLrlIhK4Mg=) 3: HzkqLbs1liYqOOnORyYsONDUWCk.roa (hash: uXYRvHJ6LJgN5jTlxHsTjXJyetqQoAXwubqH0//UAWg=) 4: N8YU9P6afQ3l1ax9yLIDe6D0fIk.roa (hash: EU77Dk5F7GrtkJ85p7yvIHvzXNj6aNgdhN+Tn5j+zs0=) 5: NxaezdRi3ofV0Ea6FtmKMCg4Xno.roa (hash: OxfdQ+cdMI49CYY0Q1jeMkKHuJPcs1w/NoTD4eAZ2MA=) 6: TO40FjbIwGNQNwtqPj8kwc1ZTTA.roa (hash: CxCIaev63Gqq5Rl8++kPvXMtj4T/C8ceRG4EudeHUmA=) 7: g0-0qeR0lc1LsLxknNYR3dnvEBA.roa (hash: EXsDcqkvYGuTEAGM2nI2WIcOnpMXlYj8og8Md2Id59Q=) 8: gG0DNUP64NYeP7QJN-nJ3HYb71o.roa (hash: TdYqV2WNRnqL2XDaa0pYRnVh8SMGr720PVd0f0ZigsI=) 9: jGaeQ05R3hLIsxNTb7dpc8FaO6w.roa (hash: 4TEbxdiinYCpm4mycPqOwDmBBxQQxUxqZfGO0t4kbOg=) 10: oRsHwl0lqDdQsW8I1c5igLUyNzs.roa (hash: 8g9A+Hdue1idAErOv1qWZKgEKPMgG/A4+RlDqNfgnkI=) 11: oreGjQwv74g6OpxObQTCv-MnU1M.roa (hash: d1IJwSRdqQjA5VA/VLC7+miffsmnB8Nxer6G7ClHfMc=) 12: p2_R78qfiRDhzvxPsVGCBtVmaJE.roa (hash: AfONkYdMNZkN9Er/D4pbys1uxPQQYlJm+sdpKa5QxNI=) 13: s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl (hash: Gb6fLhLCz/R9HyY4qQSJu9S6B57TXc3qoI/U69a7pnw=) 14: wjy1-qmg6rYR0UilXbPOrktmKnc.roa (hash: OCHLZL4VOIDtWxajhki14b+EkeW6juZq6cOYKpzs8QI=) 15: xMcgE5el8x0M_rTEbVyhY3X3x1c.roa (hash: PGLJrZJLBXcLan5LC1jzJXTcMWQ+drrbyWZOiA3GgNU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:02:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1d:44:dd:d8:be:30:d2:40:79:e8:18:9f:4c:fe:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Validity Not Before: Dec 6 10:02:52 2025 GMT Not After : Dec 7 10:02:52 2025 GMT Subject: CN=94e4f36015eff88f56248381aa4a5ea6d9e0dc95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:00:b2:ad:e7:e0:3e:a9:78:e4:54:20:c4:14: 92:17:56:24:1e:10:bc:7d:05:be:f8:55:24:ea:db: 0f:44:4f:8e:f7:01:69:f8:f9:7b:24:ca:be:39:86: d1:ed:32:f8:ee:27:cd:f6:8d:51:7a:e7:09:0f:7f: 21:c0:6a:30:14:4a:78:44:61:ef:5e:83:89:18:d1: f7:37:33:9e:91:b4:0a:db:1b:cf:95:12:4c:d3:f9: ba:1f:21:c1:17:ec:84:db:dc:ad:6d:b8:62:5a:99: 01:3e:3c:af:f0:76:75:e4:78:8a:cd:44:61:e9:7e: 01:34:52:35:95:6c:62:24:14:2c:6c:e5:92:cb:18: 99:a1:46:5b:bc:40:a9:35:bd:30:22:89:46:dd:37: a9:fa:50:d3:e4:53:8d:70:73:99:6c:be:67:e6:d3: d1:32:52:be:90:eb:b6:e1:54:ff:73:bf:70:d9:45: 4d:50:a7:d4:06:e4:12:01:42:90:1d:37:bd:b2:82: 73:da:98:0b:75:5b:6d:0e:7a:47:b6:a4:fd:a6:c7: b9:89:09:90:9c:61:52:15:bd:14:c0:42:95:10:92: 89:fd:b4:b5:bd:8b:f8:d8:ba:e0:c3:81:b8:ac:3c: c0:19:ce:77:71:e5:f0:75:fd:62:b3:aa:d1:82:8b: ab:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:E4:F3:60:15:EF:F8:8F:56:24:83:81:AA:4A:5E:A6:D9:E0:DC:95 X509v3 Authority Key Identifier: keyid:B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:93:3f:d1:0d:98:4e:15:ce:15:2e:81:94:b4:de:96:b6:81: 70:4e:c0:bc:21:de:78:6d:fe:df:1c:38:37:ad:c7:ce:a9:2c: de:37:fc:21:c1:72:7d:03:a9:8a:33:02:1a:4f:6b:0e:64:67: 30:ee:42:d0:81:2d:11:f1:63:78:54:7c:0c:34:27:29:be:95: 6b:5b:8d:65:e2:da:8a:da:e9:60:97:ad:77:46:c5:e2:db:99: 8d:cc:cd:a5:b9:20:1e:c5:69:55:a1:7f:7b:d2:1c:01:28:32: 5c:7d:63:c3:f1:e6:c0:35:19:62:d6:19:40:2e:e4:e5:69:d6: 43:78:b7:46:fe:13:67:9a:37:13:48:8c:21:8a:93:d8:b1:c6: b1:7c:0f:41:f7:52:ba:c0:ca:67:3f:5a:46:15:45:9f:77:0a: d5:d8:b7:24:6d:5b:d5:90:29:d4:bf:8a:57:8f:43:a1:c2:05: 0e:e0:63:04:0c:40:e4:a6:e3:07:bf:2c:63:d3:f4:ac:ac:a3: d7:73:f9:db:33:1a:41:4e:0b:49:08:ba:d3:ed:70:86:b7:40: e8:5b:ce:8c:ff:34:e2:40:a0:f7:92:dc:61:32:87:ab:41:0e: 50:6d:68:07:f6:9d:e6:11:ee:51:5f:1d:d1:39:1d:d4:99:fe: 03:06:d6:f2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHUTd2L4w0kB56BifTP5BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzYTVkOTk4NjNkYjJlNDliNDRmNmMzMjRlYjA0Mzg4ZmM3 NTE1ZDIwHhcNMjUxMjA2MTAwMjUyWhcNMjUxMjA3MTAwMjUyWjAzMTEwLwYDVQQD Eyg5NGU0ZjM2MDE1ZWZmODhmNTYyNDgzODFhYTRhNWVhNmQ5ZTBkYzk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjgCyrefgPql45FQgxBSSF1YkHhC8 fQW++FUk6tsPRE+O9wFp+Pl7JMq+OYbR7TL47ifN9o1ReucJD38hwGowFEp4RGHv XoOJGNH3NzOekbQK2xvPlRJM0/m6HyHBF+yE29ytbbhiWpkBPjyv8HZ15HiKzURh 6X4BNFI1lWxiJBQsbOWSyxiZoUZbvECpNb0wIolG3Tep+lDT5FONcHOZbL5n5tPR MlK+kOu24VT/c79w2UVNUKfUBuQSAUKQHTe9soJz2pgLdVttDnpHtqT9pse5iQmQ nGFSFb0UwEKVEJKJ/bS1vYv42Lrgw4G4rDzAGc53ceXwdf1is6rRgourbwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJTk82AV7/iPViSDgapKXqbZ4NyVMB8GA1UdIwQY MBaAFLOl2Zhj2y5JtE9sMk6wQ4j8dRXSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAt ZWVjNWQ1MGVmYTk0LzEvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAtZWVjNWQ1MGVmYTk0 LzEvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT5M/0Q2Y ThXOFS6BlLTelraBcE7AvCHeeG3+3xw4N63Hzqks3jf8IcFyfQOpijMCGk9rDmRn MO5C0IEtEfFjeFR8DDQnKb6Va1uNZeLaitrpYJetd0bF4tuZjczNpbkgHsVpVaF/ e9IcASgyXH1jw/HmwDUZYtYZQC7k5WnWQ3i3Rv4TZ5o3E0iMIYqT2LHGsXwPQfdS usDKZz9aRhVFn3cK1di3JG1b1ZAp1L+KV49DocIFDuBjBAxA5KbjB78sY9P0rKyj 13P52zMaQU4LSQi60+1whrdA6FvOjP804kCg95LcYTKHq0EOUG1oB/ad5hHuUV8d 0Tkd1Jn+AwbW8g== -----END CERTIFICATE-----Generated at Sat Dec 6 20:05:41 2025 by rpki-client