This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft File: cnS17iqgd4rxMENYIlrGflUXCog.mft (raw, json) Hash identifier: Wl3q4+07I+8aN2As68I6sAnbFSA58qWwnAtkhCtjVBk= Subject key identifier: F9:9F:63:C1:93:F5:6D:95:06:D7:FD:92:97:5A:B8:7A:FF:D6:5A:20 Authority key identifier: 72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88 Certificate issuer: /CN=7274b5ee2aa0778af1304358225ac67e55170a88 Certificate serial: 019AF208BF31D320263E28D836D42F3894AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft Manifest number: 0A8D Signing time: Sat 06 Dec 2025 05:00:50 +0000 Manifest this update: Sat 06 Dec 2025 05:00:50 +0000 Manifest next update: Sun 07 Dec 2025 05:00:50 +0000 Files and hashes: 1: Ck9V105I1WzILyho--HhjxtMhOo.roa (hash: n/nSiTnqvWrHsmL1agIClZLa+JDSNKpvkkGREC8GFbY=) 2: cnS17iqgd4rxMENYIlrGflUXCog.crl (hash: 2suL8OlcSvkFLJwCZgrC7Bvfx0MaVA/fK2jiGan3Nd0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:bf:31:d3:20:26:3e:28:d8:36:d4:2f:38:94:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7274b5ee2aa0778af1304358225ac67e55170a88 Validity Not Before: Dec 6 05:00:50 2025 GMT Not After : Dec 7 05:00:50 2025 GMT Subject: CN=f99f63c193f56d9506d7fd92975ab87affd65a20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:1b:ec:6f:97:68:9c:f5:ac:a9:e9:36:d2:d4: 99:07:ed:38:82:19:81:24:38:f3:db:d9:49:2c:99: e6:5b:13:aa:4a:2b:18:00:9d:12:e3:be:f9:0b:41: 23:db:a3:f1:c3:15:e1:87:79:b1:1e:e2:5f:56:dc: 0c:1b:7f:05:00:59:be:dd:67:e7:f3:5e:9c:e9:89: 1d:b4:d0:60:5f:e1:e7:55:fc:d4:20:dd:39:ab:ce: 42:d1:66:09:8b:30:d3:98:a6:1f:3a:c2:b2:b5:88: 55:23:54:fb:28:84:f1:7a:6a:33:39:47:68:66:0d: 91:2e:77:63:9d:df:4b:48:64:60:07:b4:cc:43:67: 18:7e:be:13:10:b3:18:13:ff:79:4d:76:4b:9c:f7: 56:fb:b3:aa:f2:a1:a5:6b:16:06:bf:fe:11:f5:e1: b8:cb:f3:b9:28:d9:57:d1:62:09:78:70:c0:ed:a4: 1c:e4:f6:45:e6:d4:f8:69:0f:42:27:31:c8:8b:7c: fd:0c:d2:65:22:0e:b5:97:a6:ed:4b:c3:82:94:24: 29:f1:d8:e8:8d:b0:58:03:82:c1:f2:8b:51:78:6c: 26:00:2d:a7:2b:c8:62:62:83:70:a6:84:91:f0:33: 81:25:fd:00:83:35:c4:a4:0c:d2:73:c2:49:b2:8b: 74:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:9F:63:C1:93:F5:6D:95:06:D7:FD:92:97:5A:B8:7A:FF:D6:5A:20 X509v3 Authority Key Identifier: keyid:72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:9d:b9:d2:67:31:1e:25:77:ce:5b:39:9f:94:bc:77:a8:3f: 10:5e:eb:45:0c:b3:b4:e0:0e:18:a2:10:8f:2b:b0:dd:df:b3: b2:7d:47:a5:c7:e6:67:89:24:56:b0:58:44:7e:48:e2:7b:78: 07:97:d9:fb:5e:b8:67:6e:80:67:0a:89:35:f3:db:ec:e6:e7: 43:78:a5:6f:b6:e9:e5:2d:5b:e0:0c:f3:e6:0b:f3:65:42:0d: cb:a1:ba:a2:15:7a:7a:55:59:8a:d3:ea:c9:15:d7:8e:9f:da: fb:78:4b:c0:b2:80:dc:f8:75:ea:ba:60:1e:e3:64:da:1c:4c: 3e:a9:49:69:ae:1d:9d:4a:38:09:d2:a3:ff:be:6f:ab:c8:53: 04:ef:0e:ce:ca:aa:a0:6e:34:3c:b7:ca:76:1e:a0:96:67:14: e3:1c:b0:f8:2f:3c:d4:64:d7:3f:f7:9f:fb:8e:1d:36:42:07: 23:a9:54:2e:05:ad:08:1e:27:cf:4e:81:9a:a9:8d:9e:5f:a9: da:ba:ac:b0:7a:cf:01:d2:c0:59:fa:ba:6a:0e:2e:09:50:9a: 8f:ab:f1:06:33:a4:5c:36:a4:94:15:f1:e5:1f:9e:58:28:97: c4:a7:2f:d5:0c:4f:29:59:8f:91:9e:fd:93:78:52:f9:c5:74: 82:30:e6:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCL8x0yAmPijYNtQvOJSrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyNzRiNWVlMmFhMDc3OGFmMTMwNDM1ODIyNWFjNjdlNTUx NzBhODgwHhcNMjUxMjA2MDUwMDUwWhcNMjUxMjA3MDUwMDUwWjAzMTEwLwYDVQQD EyhmOTlmNjNjMTkzZjU2ZDk1MDZkN2ZkOTI5NzVhYjg3YWZmZDY1YTIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzxvsb5donPWsqek20tSZB+04ghmB JDjz29lJLJnmWxOqSisYAJ0S4775C0Ej26PxwxXhh3mxHuJfVtwMG38FAFm+3Wfn 816c6YkdtNBgX+HnVfzUIN05q85C0WYJizDTmKYfOsKytYhVI1T7KITxemozOUdo Zg2RLndjnd9LSGRgB7TMQ2cYfr4TELMYE/95TXZLnPdW+7Oq8qGlaxYGv/4R9eG4 y/O5KNlX0WIJeHDA7aQc5PZF5tT4aQ9CJzHIi3z9DNJlIg61l6btS8OClCQp8djo jbBYA4LB8otReGwmAC2nK8hiYoNwpoSR8DOBJf0AgzXEpAzSc8JJsot0rwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPmfY8GT9W2VBtf9kpdauHr/1logMB8GA1UdIwQY MBaAFHJ0te4qoHeK8TBDWCJaxn5VFwqIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY25TMTdpcWdkNHJ4TUVOWUlsckdmbFVYQ29nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi84MTA2YzYtOTZlMy00ODU2LThlNTMt NjllYmVkMTc4MTRhLzEvY25TMTdpcWdkNHJ4TUVOWUlsckdmbFVYQ29nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi84MTA2YzYtOTZlMy00ODU2LThlNTMtNjllYmVkMTc4MTRh LzEvY25TMTdpcWdkNHJ4TUVOWUlsckdmbFVYQ29nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASJ250mcx HiV3zls5n5S8d6g/EF7rRQyztOAOGKIQjyuw3d+zsn1HpcfmZ4kkVrBYRH5I4nt4 B5fZ+164Z26AZwqJNfPb7ObnQ3ilb7bp5S1b4Azz5gvzZUINy6G6ohV6elVZitPq yRXXjp/a+3hLwLKA3Ph16rpgHuNk2hxMPqlJaa4dnUo4CdKj/75vq8hTBO8Ozsqq oG40PLfKdh6glmcU4xyw+C881GTXP/ef+44dNkIHI6lULgWtCB4nz06BmqmNnl+p 2rqssHrPAdLAWfq6ag4uCVCaj6vxBjOkXDaklBXx5R+eWCiXxKcv1QxPKVmPkZ79 k3hS+cV0gjDmHg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:38:01 2025 by rpki-client