This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.mft File: SanokeBtQid9xPtfvWnpq9jimIM.mft (raw, json) Hash identifier: YE5GREz/WNNZuFbrfS92UYEtRoL8BoKYtqX4nCiXT+Y= Subject key identifier: 69:18:FF:20:6D:98:4A:5E:D7:A4:A2:D6:47:6F:72:EB:95:F4:E6:9D Authority key identifier: 49:A9:E8:91:E0:6D:42:27:7D:C4:FB:5F:BD:69:E9:AB:D8:E2:98:83 Certificate issuer: /CN=49a9e891e06d42277dc4fb5fbd69e9abd8e29883 Certificate serial: 019B2BC1F0FB160290DE737CF8CCA583D883 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SanokeBtQid9xPtfvWnpq9jimIM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.mft Manifest number: 1782 Signing time: Wed 17 Dec 2025 10:01:28 +0000 Manifest this update: Wed 17 Dec 2025 10:01:28 +0000 Manifest next update: Thu 18 Dec 2025 10:01:28 +0000 Files and hashes: 1: SanokeBtQid9xPtfvWnpq9jimIM.crl (hash: 1nW+8w90Vop0bVPCC7k4rRqvD7h06CEE9hNRecu8PIY=) 2: V8zD_fceDFK7bKm0UJWlvFSbGqc.roa (hash: Le4LPJ6tIhm6aij63pajwkdMuW6+ZunlQYJepBMOhII=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.mft rsync://rpki.ripe.net/repository/DEFAULT/SanokeBtQid9xPtfvWnpq9jimIM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:c1:f0:fb:16:02:90:de:73:7c:f8:cc:a5:83:d8:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49a9e891e06d42277dc4fb5fbd69e9abd8e29883 Validity Not Before: Dec 17 10:01:28 2025 GMT Not After : Dec 18 10:01:28 2025 GMT Subject: CN=6918ff206d984a5ed7a4a2d6476f72eb95f4e69d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:b0:4f:0e:49:15:05:f8:27:57:ad:dc:7a:79: 47:29:57:0f:b5:96:83:aa:3c:8e:8a:52:87:b2:14: 44:ac:d7:41:1b:6a:02:79:1e:ae:c3:fc:e1:92:39: 65:13:60:f7:3c:ce:5d:01:f7:ad:cb:df:a5:a2:39: 26:48:e9:f9:5e:1f:42:a8:58:9d:f1:2c:2f:ab:3f: 21:6a:2c:d6:85:d7:bf:2c:0b:8c:e2:6f:bf:4e:1b: 56:64:60:2a:c3:92:aa:37:da:91:3f:a7:03:83:a5: e7:26:2c:a8:96:8a:7e:f4:a1:36:17:68:16:e8:6a: d5:53:50:3d:b1:06:82:bf:08:3e:00:94:38:67:c1: a9:ce:06:0a:bd:b4:8f:f3:5d:61:64:f9:e1:02:27: 27:96:68:51:72:60:82:d8:59:21:34:46:ed:92:76: d4:bd:23:cd:7a:9b:72:f5:ac:2c:45:b6:e1:8a:be: bd:d8:33:96:49:9b:bb:17:55:43:eb:36:b8:64:05: 53:fe:1c:29:26:41:c5:57:83:2d:01:c9:e3:e6:18: dd:7c:c9:a5:3f:8e:a9:19:6c:34:72:7e:a6:36:03: d9:10:84:12:d6:c8:48:7d:45:d6:f4:9e:24:49:93: df:38:fc:e3:02:ac:17:31:da:6d:02:ee:27:a7:78: 81:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:18:FF:20:6D:98:4A:5E:D7:A4:A2:D6:47:6F:72:EB:95:F4:E6:9D X509v3 Authority Key Identifier: keyid:49:A9:E8:91:E0:6D:42:27:7D:C4:FB:5F:BD:69:E9:AB:D8:E2:98:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SanokeBtQid9xPtfvWnpq9jimIM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:c1:2f:71:71:e0:97:bb:de:d8:e1:f2:8d:be:9f:78:fc:f6: 8c:49:f8:ab:a9:1a:6c:b5:dd:9e:54:19:08:92:5b:34:b1:09: e6:ce:21:b5:fe:74:31:d1:44:1d:5f:d5:3b:7a:78:22:fd:0f: 10:b1:2e:2b:bf:2e:34:d4:46:a0:9f:af:32:fc:5b:92:0d:b7: 2f:af:97:8a:97:39:f1:ad:ed:8f:05:f5:48:fa:5a:d8:b4:81: e1:8f:bd:3a:c6:4a:58:1a:fd:de:b1:da:74:5f:25:c8:fe:30: 53:b0:45:53:52:41:cf:8a:b9:54:88:ee:8d:50:6b:e7:a0:fd: 9c:12:4a:d9:11:4d:60:6d:61:ee:1c:88:c4:89:e7:27:6e:f3: bd:c8:3c:d0:78:7b:9c:bd:e8:eb:1b:5e:20:ba:d4:ba:4c:71: e6:ec:f3:8e:c7:7d:af:9f:53:5c:eb:e5:fe:75:cb:f8:c0:e3: b5:ac:b2:99:8f:02:5e:76:6f:59:e5:be:3a:7c:58:0c:19:3e: ae:de:e7:5a:07:79:b3:2c:d1:f5:b2:1c:fd:07:65:45:97:b3: b7:45:1d:43:cd:73:61:f7:05:ca:84:f6:bf:18:fe:c2:cb:aa: 1f:e4:8e:ed:6f:19:b3:15:d2:a5:27:5e:6d:4a:c6:e1:c7:1b: f9:78:a3:6d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsrwfD7FgKQ3nN8+Mylg9iDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5YTllODkxZTA2ZDQyMjc3ZGM0ZmI1ZmJkNjllOWFiZDhl Mjk4ODMwHhcNMjUxMjE3MTAwMTI4WhcNMjUxMjE4MTAwMTI4WjAzMTEwLwYDVQQD Eyg2OTE4ZmYyMDZkOTg0YTVlZDdhNGEyZDY0NzZmNzJlYjk1ZjRlNjlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkbBPDkkVBfgnV63cenlHKVcPtZaD qjyOilKHshRErNdBG2oCeR6uw/zhkjllE2D3PM5dAfety9+lojkmSOn5Xh9CqFid 8Swvqz8haizWhde/LAuM4m+/ThtWZGAqw5KqN9qRP6cDg6XnJiyolop+9KE2F2gW 6GrVU1A9sQaCvwg+AJQ4Z8GpzgYKvbSP811hZPnhAicnlmhRcmCC2FkhNEbtknbU vSPNepty9awsRbbhir692DOWSZu7F1VD6za4ZAVT/hwpJkHFV4MtAcnj5hjdfMml P46pGWw0cn6mNgPZEIQS1shIfUXW9J4kSZPfOPzjAqwXMdptAu4np3iBrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGkY/yBtmEpe16Si1kdvcuuV9OadMB8GA1UdIwQY MBaAFEmp6JHgbUInfcT7X71p6avY4piDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU2Fub2tlQnRRaWQ5eFB0ZnZXbnBxOWppbUlNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi81MzY5NmYtZjk3My00N2ZiLThkNzkt YWRkYzZkNGJiMmU3LzEvU2Fub2tlQnRRaWQ5eFB0ZnZXbnBxOWppbUlNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi81MzY5NmYtZjk3My00N2ZiLThkNzktYWRkYzZkNGJiMmU3 LzEvU2Fub2tlQnRRaWQ5eFB0ZnZXbnBxOWppbUlNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAesEvcXHg l7ve2OHyjb6fePz2jEn4q6kabLXdnlQZCJJbNLEJ5s4htf50MdFEHV/VO3p4Iv0P ELEuK78uNNRGoJ+vMvxbkg23L6+Xipc58a3tjwX1SPpa2LSB4Y+9OsZKWBr93rHa dF8lyP4wU7BFU1JBz4q5VIjujVBr56D9nBJK2RFNYG1h7hyIxInnJ27zvcg80Hh7 nL3o6xteILrUukxx5uzzjsd9r59TXOvl/nXL+MDjtayymY8CXnZvWeW+OnxYDBk+ rt7nWgd5syzR9bIc/QdlRZezt0UdQ81zYfcFyoT2vxj+wsuqH+SO7W8ZsxXSpSde bUrG4ccb+XijbQ== -----END CERTIFICATE-----Generated at Wed Dec 17 13:43:58 2025 by rpki-client