This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.mft File: sxwNSGRgtxY3A-X_TYre2XiIx00.mft (raw, json) Hash identifier: vQc1IjnoCe4IYVzHWxbJHe/UuoqACVejHp/Y4pwbecI= Subject key identifier: C6:B8:46:ED:63:05:2B:6B:59:50:1D:93:E8:37:98:B7:6B:E6:77:52 Authority key identifier: B3:1C:0D:48:64:60:B7:16:37:03:E5:FF:4D:8A:DE:D9:78:88:C7:4D Certificate issuer: /CN=b31c0d486460b7163703e5ff4d8aded97888c74d Certificate serial: 019AF08853C8530C8B8137DA5D4C6991911F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxwNSGRgtxY3A-X_TYre2XiIx00.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.mft Manifest number: 0915 Signing time: Fri 05 Dec 2025 22:00:57 +0000 Manifest this update: Fri 05 Dec 2025 22:00:57 +0000 Manifest next update: Sat 06 Dec 2025 22:00:57 +0000 Files and hashes: 1: sxwNSGRgtxY3A-X_TYre2XiIx00.crl (hash: Vdr+7WFo+F3z9ojIm0xLbXtEaAy5CHQY5e/lIsECvAI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.mft rsync://rpki.ripe.net/repository/DEFAULT/sxwNSGRgtxY3A-X_TYre2XiIx00.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 22:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:88:53:c8:53:0c:8b:81:37:da:5d:4c:69:91:91:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b31c0d486460b7163703e5ff4d8aded97888c74d Validity Not Before: Dec 5 22:00:57 2025 GMT Not After : Dec 6 22:00:57 2025 GMT Subject: CN=c6b846ed63052b6b59501d93e83798b76be67752 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7d:bb:7f:b2:e5:84:50:7c:29:48:d6:4a:34: 44:af:6e:d5:0c:cd:df:0a:0a:39:4f:c2:c0:c0:d1: f5:1f:84:c2:a8:66:51:52:01:81:ed:57:86:12:f5: e7:db:6c:e3:38:e8:33:6d:54:10:ea:0b:2c:ba:f7: a2:f8:5c:46:08:22:57:74:d3:58:fc:fe:ee:29:87: ba:01:ab:30:a0:a8:75:78:4d:e8:c7:cc:b3:32:ff: 1b:36:9b:2c:81:d2:44:1e:66:d8:00:b6:0d:3e:50: 33:66:e3:c8:bd:23:59:23:0e:04:ea:b1:b9:30:3c: 48:49:80:b5:7d:6e:48:3f:7a:8a:9a:cb:55:e6:b4: 81:2d:23:64:ae:5a:cb:a2:7f:e5:00:5d:d2:6a:4e: df:6c:47:b6:51:60:ea:24:c1:0a:36:2d:e6:a1:6b: 95:c0:9e:63:e4:10:fd:45:eb:d7:c1:75:6d:c7:cc: a8:6c:02:d0:df:82:3b:7d:56:86:97:b1:ac:c0:14: 9b:c5:09:36:03:13:4c:fd:a7:2d:a8:39:0b:84:45: 48:71:ab:9b:de:ad:7b:ec:76:ee:07:86:d9:85:b1: f5:07:13:60:b0:28:3c:3a:9d:4f:bd:7b:f1:23:f4: b2:ed:02:02:d3:75:d9:41:b7:6e:9c:2b:08:ed:dd: a5:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:B8:46:ED:63:05:2B:6B:59:50:1D:93:E8:37:98:B7:6B:E6:77:52 X509v3 Authority Key Identifier: keyid:B3:1C:0D:48:64:60:B7:16:37:03:E5:FF:4D:8A:DE:D9:78:88:C7:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxwNSGRgtxY3A-X_TYre2XiIx00.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:cf:44:8a:d0:2d:1d:e9:ea:76:1c:e1:96:6c:34:32:6a:d1: f6:17:94:3f:34:83:12:a8:57:54:18:83:39:07:5f:e3:01:c8: 3d:f7:ce:fb:5d:f1:75:d7:a6:c5:32:84:b7:ad:50:12:0d:08: 42:33:f7:b8:62:50:87:04:f1:f2:99:34:2a:80:ed:09:fd:91: d9:e9:8d:cf:c4:e0:32:45:41:94:10:fb:d8:35:5f:28:20:9d: ae:72:27:98:f3:b2:a4:6e:1a:03:e7:3d:87:50:32:81:1a:c1: 1f:92:e6:bd:40:66:2b:fe:9a:0e:54:27:8c:9d:c3:a8:de:2e: 4f:50:65:cc:fb:b2:22:8b:6e:b1:81:5d:11:08:eb:cf:5c:e0: fc:2f:85:88:2b:29:50:8e:bf:b9:b7:5e:c8:48:e6:5d:c0:ba: b6:33:b0:2c:40:b2:cb:3e:8d:c9:5f:34:2c:0a:81:de:4a:fc: 7a:4b:33:72:be:81:1c:59:29:5d:39:04:11:4c:5e:a3:c8:10: a6:cc:26:63:01:d9:ba:08:fb:f6:10:7d:2f:c5:57:b2:68:39: ca:cc:90:3f:73:8a:b3:52:c6:e3:96:a0:05:04:a7:1e:63:78: e1:bd:0f:1f:6c:65:5d:dd:2e:45:c8:34:47:98:d5:f2:53:c3: 04:17:c6:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwiFPIUwyLgTfaXUxpkZEfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzMWMwZDQ4NjQ2MGI3MTYzNzAzZTVmZjRkOGFkZWQ5Nzg4 OGM3NGQwHhcNMjUxMjA1MjIwMDU3WhcNMjUxMjA2MjIwMDU3WjAzMTEwLwYDVQQD EyhjNmI4NDZlZDYzMDUyYjZiNTk1MDFkOTNlODM3OThiNzZiZTY3NzUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsX27f7LlhFB8KUjWSjREr27VDM3f Cgo5T8LAwNH1H4TCqGZRUgGB7VeGEvXn22zjOOgzbVQQ6gssuvei+FxGCCJXdNNY /P7uKYe6AaswoKh1eE3ox8yzMv8bNpssgdJEHmbYALYNPlAzZuPIvSNZIw4E6rG5 MDxISYC1fW5IP3qKmstV5rSBLSNkrlrLon/lAF3Sak7fbEe2UWDqJMEKNi3moWuV wJ5j5BD9RevXwXVtx8yobALQ34I7fVaGl7GswBSbxQk2AxNM/actqDkLhEVIcaub 3q177HbuB4bZhbH1BxNgsCg8Op1PvXvxI/Sy7QIC03XZQbdunCsI7d2l9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMa4Ru1jBStrWVAdk+g3mLdr5ndSMB8GA1UdIwQY MBaAFLMcDUhkYLcWNwPl/02K3tl4iMdNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3h3TlNHUmd0eFkzQS1YX1RZcmUyWGlJeDAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC8yOTQ0MWMtMjgxYy00ZTAyLTlhOTEt ODI0M2I3ZGIxMDVlLzEvc3h3TlNHUmd0eFkzQS1YX1RZcmUyWGlJeDAwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC8yOTQ0MWMtMjgxYy00ZTAyLTlhOTEtODI0M2I3ZGIxMDVl LzEvc3h3TlNHUmd0eFkzQS1YX1RZcmUyWGlJeDAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKs9EitAt Henqdhzhlmw0MmrR9heUPzSDEqhXVBiDOQdf4wHIPffO+13xddemxTKEt61QEg0I QjP3uGJQhwTx8pk0KoDtCf2R2emNz8TgMkVBlBD72DVfKCCdrnInmPOypG4aA+c9 h1AygRrBH5LmvUBmK/6aDlQnjJ3DqN4uT1BlzPuyIotusYFdEQjrz1zg/C+FiCsp UI6/ubdeyEjmXcC6tjOwLECyyz6NyV80LAqB3kr8ekszcr6BHFkpXTkEEUxeo8gQ pswmYwHZugj79hB9L8VXsmg5ysyQP3OKs1LG45agBQSnHmN44b0PH2xlXd0uRcg0 R5jV8lPDBBfGZw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:20:04 2025 by rpki-client