This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft File: S2MqdYtZMJ6GEInWVTruBnprNT8.mft (raw, json) Hash identifier: gHQSV/FN53SDyco06u86hdG7ehp5EMQ450F9z9P+VsY= Subject key identifier: B4:64:B5:29:58:E6:42:D3:C3:AA:9D:C7:A3:FF:BF:A3:4E:10:10:0E Authority key identifier: 4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F Certificate issuer: /CN=4b632a758b59309e861089d6553aee067a6b353f Certificate serial: 019AF46530934CF650F624268AAA3C102BE9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 16:01:03 +0000 Manifest this update: Sat 06 Dec 2025 16:01:03 +0000 Manifest next update: Sun 07 Dec 2025 16:01:03 +0000 Files and hashes: 1: BFmKhRFnCi2AJyutOk-Yxml708c.roa (hash: 30fgE+QkDlz/nOmXI9WzL3BXCW8rLDMyhnps4H9jCSs=) 2: S2MqdYtZMJ6GEInWVTruBnprNT8.crl (hash: lfRbR7ijSWgRuBndoAv/27PG5JDn9PkdUQyVSEs5rKI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:65:30:93:4c:f6:50:f6:24:26:8a:aa:3c:10:2b:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b632a758b59309e861089d6553aee067a6b353f Validity Not Before: Dec 6 16:01:03 2025 GMT Not After : Dec 7 16:01:03 2025 GMT Subject: CN=b464b52958e642d3c3aa9dc7a3ffbfa34e10100e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:19:02:b6:0f:57:8c:fc:5e:ee:0c:1b:b4:58: f0:72:75:eb:92:8d:03:a5:b8:a7:b8:7f:33:c2:17: e5:5a:a5:3f:1c:8d:64:99:d8:fe:51:cc:49:d6:92: 82:32:42:be:45:9b:c5:27:c1:2b:69:3f:77:b8:f2: b1:70:dc:f8:b0:37:7f:a5:b9:b4:32:37:6d:34:93: 16:34:da:81:5c:c7:12:e3:01:28:d7:1c:25:af:d6: 1a:98:85:5b:bc:70:c0:04:4a:89:40:83:16:c1:c2: 1f:57:29:d5:01:17:d9:8e:a4:bb:34:c8:7d:f7:88: 17:24:c3:cf:12:c4:27:ed:9c:e4:a4:11:eb:2c:a9: 2f:1e:d2:7e:6e:cb:5e:91:a2:66:71:e4:bf:04:ec: d4:cc:ca:d7:92:7d:c2:67:28:23:ad:3e:73:0f:b4: de:86:2e:56:23:6c:e2:1d:0e:d6:7a:f9:0d:31:53: 86:f7:c9:68:b7:c6:be:93:d3:e9:10:d4:01:23:df: 24:5e:42:1d:fe:82:fc:a6:3e:c8:87:c2:78:fa:98: 22:fd:c5:53:8d:8d:90:fa:f2:ec:fc:5b:4b:37:9b: e3:da:6e:f5:2f:a7:82:ed:6e:51:80:ca:61:57:5a: 58:c4:87:10:b1:19:67:2e:fe:90:ee:3e:f9:b0:19: 01:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:64:B5:29:58:E6:42:D3:C3:AA:9D:C7:A3:FF:BF:A3:4E:10:10:0E X509v3 Authority Key Identifier: keyid:4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:3f:8d:15:ea:34:5a:f4:b0:84:3a:2e:d3:c9:1a:69:95:73: 0c:36:d7:5b:f2:c0:42:09:49:57:5a:c6:fc:79:e3:f3:cb:47: f5:62:6a:94:f8:ce:b4:60:da:88:6d:10:10:fe:5c:5a:76:10: 00:d6:a5:1f:0c:b3:b3:68:69:a8:28:b3:41:dd:2a:f5:82:b4: df:a0:bc:e6:a4:9c:4f:08:c0:a5:48:17:f0:0f:d9:30:d4:0c: 05:5b:5f:f7:1c:eb:46:12:ef:0f:62:d9:5e:bc:67:4f:57:1a: 1a:67:12:37:a1:00:a3:6a:f3:46:64:b9:ad:2e:bc:8b:57:42: c6:b3:28:47:33:9d:6e:34:1d:00:b8:31:15:e2:00:5a:02:20: 91:29:ea:2e:4e:d4:ed:6e:c3:41:89:3b:e0:17:4d:d3:40:dc: 55:80:3e:75:23:c4:95:da:56:45:31:6e:24:c4:e4:d3:33:5e: 4f:01:88:c3:82:ff:5f:cc:22:f8:0e:1d:3c:a3:3d:1d:e7:c3: 6d:a2:a5:06:79:44:bf:f0:90:78:24:e6:75:7c:2c:c9:bf:63: c8:18:e9:41:a3:04:2d:3d:f0:e5:52:98:01:d2:0e:d8:39:eb: 28:3e:af:84:5a:ae:08:d6:5c:f3:bc:57:5e:99:b2:b2:f5:58: 1d:bd:6d:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0ZTCTTPZQ9iQmiqo8ECvpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiNjMyYTc1OGI1OTMwOWU4NjEwODlkNjU1M2FlZTA2N2E2 YjM1M2YwHhcNMjUxMjA2MTYwMTAzWhcNMjUxMjA3MTYwMTAzWjAzMTEwLwYDVQQD EyhiNDY0YjUyOTU4ZTY0MmQzYzNhYTlkYzdhM2ZmYmZhMzRlMTAxMDBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6BkCtg9XjPxe7gwbtFjwcnXrko0D pbinuH8zwhflWqU/HI1kmdj+UcxJ1pKCMkK+RZvFJ8EraT93uPKxcNz4sDd/pbm0 MjdtNJMWNNqBXMcS4wEo1xwlr9YamIVbvHDABEqJQIMWwcIfVynVARfZjqS7NMh9 94gXJMPPEsQn7ZzkpBHrLKkvHtJ+bstekaJmceS/BOzUzMrXkn3CZygjrT5zD7Te hi5WI2ziHQ7WevkNMVOG98lot8a+k9PpENQBI98kXkId/oL8pj7Ih8J4+pgi/cVT jY2Q+vLs/FtLN5vj2m71L6eC7W5RgMphV1pYxIcQsRlnLv6Q7j75sBkBxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLRktSlY5kLTw6qdx6P/v6NOEBAOMB8GA1UdIwQY MBaAFEtjKnWLWTCehhCJ1lU67gZ6azU/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzJNcWRZdFpNSjZHRUluV1ZUcnVCbnByTlQ4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS8yMTNhOTUtYWFjZi00MGE5LTk3NTMt OTRjMGIwYjc2MDI5LzEvUzJNcWRZdFpNSjZHRUluV1ZUcnVCbnByTlQ4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS8yMTNhOTUtYWFjZi00MGE5LTk3NTMtOTRjMGIwYjc2MDI5 LzEvUzJNcWRZdFpNSjZHRUluV1ZUcnVCbnByTlQ4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAz+NFeo0 WvSwhDou08kaaZVzDDbXW/LAQglJV1rG/Hnj88tH9WJqlPjOtGDaiG0QEP5cWnYQ ANalHwyzs2hpqCizQd0q9YK036C85qScTwjApUgX8A/ZMNQMBVtf9xzrRhLvD2LZ XrxnT1caGmcSN6EAo2rzRmS5rS68i1dCxrMoRzOdbjQdALgxFeIAWgIgkSnqLk7U 7W7DQYk74BdN00DcVYA+dSPEldpWRTFuJMTk0zNeTwGIw4L/X8wi+A4dPKM9HefD baKlBnlEv/CQeCTmdXwsyb9jyBjpQaMELT3w5VKYAdIO2DnrKD6vhFquCNZc87xX XpmysvVYHb1tZA== -----END CERTIFICATE-----Generated at Sat Dec 6 20:00:51 2025 by rpki-client