This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft File: stlAHspsipMG0QCSu-DC4ZUA6X8.mft (raw, json) Hash identifier: 4ZMAjyEtBmKbHY/lFvHJWOh0GvZw9oqwBlUSsuUCTDU= Subject key identifier: 76:29:A4:91:53:06:94:64:CB:BD:C7:0C:AB:8D:DB:F0:B7:BA:0F:1E Authority key identifier: B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F Certificate issuer: /CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f Certificate serial: 019AF2ADD9F7418C39FD726FA36F677A78D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 08:01:11 +0000 Manifest this update: Sat 06 Dec 2025 08:01:11 +0000 Manifest next update: Sun 07 Dec 2025 08:01:11 +0000 Files and hashes: 1: soSBsLQYC7V6yaNpfJM8sFC7fR4.roa (hash: nF8wYjzOXAcieN8jO0uTIHBAl7NBBBuHSNIF4hRr2/A=) 2: stlAHspsipMG0QCSu-DC4ZUA6X8.crl (hash: PcjaGV/OHYOc//r+l4BTU1vgQjK5JhelISx4oKBjy5U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:d9:f7:41:8c:39:fd:72:6f:a3:6f:67:7a:78:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f Validity Not Before: Dec 6 08:01:11 2025 GMT Not After : Dec 7 08:01:11 2025 GMT Subject: CN=7629a49153069464cbbdc70cab8ddbf0b7ba0f1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:bc:48:73:ad:f1:b7:8c:87:6f:46:a3:03:23: 86:ed:60:d5:ff:66:32:85:7c:0a:5a:bc:97:c2:00: 19:6b:bb:ca:ab:00:54:2c:5c:8a:94:bc:49:b0:c5: c8:9b:e6:0d:4c:41:f9:fd:99:7a:56:8b:93:1d:11: 86:a9:e3:0e:16:57:b0:a4:0f:dc:7a:fd:24:bc:f9: e2:4e:0b:95:c6:6e:85:5f:00:75:f1:d5:7e:17:92: 6c:b7:05:01:dd:e0:fb:2b:db:fd:b5:f1:df:24:c3: d8:c0:40:c6:e1:9c:41:8f:6e:59:6b:ed:56:8e:a1: 30:45:f9:b1:e8:8b:69:cd:a5:c1:aa:ad:bd:6d:36: 2a:77:6a:7d:39:f7:a7:2f:b1:d7:20:5d:d2:84:ad: f3:f7:b9:ea:d3:d5:67:57:ff:c8:ce:16:ef:7c:c5: c9:22:55:1d:55:72:f2:6f:0b:f4:48:8e:c6:67:93: 1e:7d:0a:b6:de:2b:e6:65:bc:40:9d:61:2b:83:43: 23:11:a2:e5:b9:84:f1:c6:40:11:df:10:12:7e:e0: 24:50:6a:6b:30:1d:2a:6d:87:41:75:36:96:09:79: e9:82:d0:43:56:a7:54:aa:5a:4d:dd:fa:4f:04:14: b6:8b:f1:c1:76:da:c6:ea:8d:e2:cd:c9:45:cd:b6: 33:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:29:A4:91:53:06:94:64:CB:BD:C7:0C:AB:8D:DB:F0:B7:BA:0F:1E X509v3 Authority Key Identifier: keyid:B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:f8:d7:cc:f5:a4:72:ea:b2:6f:a1:d9:05:77:7f:a7:c5:f6: 58:36:94:8e:b3:f5:fb:d3:59:44:f5:91:da:b5:42:74:b9:93: 5b:2a:3c:98:a4:18:0b:e0:46:3a:6c:c2:1a:73:46:bb:8d:0e: 52:31:3c:45:20:94:2a:ec:52:13:80:34:5a:c1:be:0e:03:c7: a9:17:2f:a2:b1:07:58:1f:54:ad:5e:08:05:3a:f3:ec:82:fb: c7:d4:13:0c:b8:69:a0:6f:e0:e4:07:ea:53:d0:87:65:15:fa: 96:4c:8a:7c:3a:90:4a:11:b4:21:cf:36:72:09:b0:5d:08:b4: 59:f0:89:f1:5e:41:c0:fb:d4:23:eb:4c:84:4a:91:4c:f3:16: e5:9f:34:3c:87:14:8d:a5:7d:81:16:1a:48:02:76:e0:52:cc: 23:b1:44:c4:16:ab:61:84:e0:d7:1d:f8:6a:bb:7c:66:71:3a: 0f:d4:d3:2e:02:a4:a5:d0:15:4b:6f:a2:3f:c8:b0:c4:ce:26: 91:7c:de:d1:40:0a:7c:eb:1b:19:e2:2d:57:01:e0:c3:9d:e9: 5d:ad:82:3f:d6:67:b7:cb:b6:d1:57:fc:a8:26:8c:2c:cc:c9: b4:45:f9:9e:27:f6:5f:18:c9:37:0c:2b:77:8d:38:d1:05:96: 8e:4d:dc:04 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrdn3QYw5/XJvo29nenjQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyZDk0MDFlY2E2YzhhOTMwNmQxMDA5MmJiZTBjMmUxOTUw MGU5N2YwHhcNMjUxMjA2MDgwMTExWhcNMjUxMjA3MDgwMTExWjAzMTEwLwYDVQQD Eyg3NjI5YTQ5MTUzMDY5NDY0Y2JiZGM3MGNhYjhkZGJmMGI3YmEwZjFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApbxIc63xt4yHb0ajAyOG7WDV/2Yy hXwKWryXwgAZa7vKqwBULFyKlLxJsMXIm+YNTEH5/Zl6VouTHRGGqeMOFlewpA/c ev0kvPniTguVxm6FXwB18dV+F5JstwUB3eD7K9v9tfHfJMPYwEDG4ZxBj25Za+1W jqEwRfmx6ItpzaXBqq29bTYqd2p9OfenL7HXIF3ShK3z97nq09VnV//IzhbvfMXJ IlUdVXLybwv0SI7GZ5MefQq23ivmZbxAnWErg0MjEaLluYTxxkAR3xASfuAkUGpr MB0qbYdBdTaWCXnpgtBDVqdUqlpN3fpPBBS2i/HBdtrG6o3izclFzbYzSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHYppJFTBpRky73HDKuN2/C3ug8eMB8GA1UdIwQY MBaAFLLZQB7KbIqTBtEAkrvgwuGVAOl/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3RsQUhzcHNpcE1HMFFDU3UtREM0WlVBNlg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS85MjIwZGEtMGZkNS00YTIyLWExMWIt ZTEzMzJlN2YwNmZjLzEvc3RsQUhzcHNpcE1HMFFDU3UtREM0WlVBNlg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS85MjIwZGEtMGZkNS00YTIyLWExMWItZTEzMzJlN2YwNmZj LzEvc3RsQUhzcHNpcE1HMFFDU3UtREM0WlVBNlg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgPjXzPWk cuqyb6HZBXd/p8X2WDaUjrP1+9NZRPWR2rVCdLmTWyo8mKQYC+BGOmzCGnNGu40O UjE8RSCUKuxSE4A0WsG+DgPHqRcvorEHWB9UrV4IBTrz7IL7x9QTDLhpoG/g5Afq U9CHZRX6lkyKfDqQShG0Ic82cgmwXQi0WfCJ8V5BwPvUI+tMhEqRTPMW5Z80PIcU jaV9gRYaSAJ24FLMI7FExBarYYTg1x34art8ZnE6D9TTLgKkpdAVS2+iP8iwxM4m kXze0UAKfOsbGeItVwHgw53pXa2CP9Znt8u20Vf8qCaMLMzJtEX5nif2XxjJNwwr d4040QWWjk3cBA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:32:11 2025 by rpki-client