This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/soWZKSpjJCl-Av_zxRGb7gsxdUg.mft File: soWZKSpjJCl-Av_zxRGb7gsxdUg.mft (raw, json) Hash identifier: Q9iNZRKHS+MXTWuCZ7gtHJbSFvWU3wxedxSwwvdI/pg= Subject key identifier: DF:EA:4C:20:63:DE:41:9A:04:E2:B6:19:CF:1B:24:BD:AA:A2:7F:EE Authority key identifier: B2:85:99:29:2A:63:24:29:7E:02:FF:F3:C5:11:9B:EE:0B:31:75:48 Certificate issuer: /CN=b28599292a6324297e02fff3c5119bee0b317548 Certificate serial: 019AF0F5F1C91544DEBCF1B155DC207C5AD5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/soWZKSpjJCl-Av_zxRGb7gsxdUg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/soWZKSpjJCl-Av_zxRGb7gsxdUg.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 00:00:41 +0000 Manifest this update: Sat 06 Dec 2025 00:00:41 +0000 Manifest next update: Sun 07 Dec 2025 00:00:41 +0000 Files and hashes: 1: G4p3T3vKIJwpoVG087GbMaXF5PU.roa (hash: S1k3o+lhMdQMdnd1dbHX7NQg9XvE842LHxXNFh07jnY=) 2: soWZKSpjJCl-Av_zxRGb7gsxdUg.crl (hash: poiQJf+pDPr6RpO7MsoZm5GNEJQ/Twf7X+K6Nksb9ZQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/soWZKSpjJCl-Av_zxRGb7gsxdUg.crl rsync://rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/soWZKSpjJCl-Av_zxRGb7gsxdUg.mft rsync://rpki.ripe.net/repository/DEFAULT/soWZKSpjJCl-Av_zxRGb7gsxdUg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:f5:f1:c9:15:44:de:bc:f1:b1:55:dc:20:7c:5a:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b28599292a6324297e02fff3c5119bee0b317548 Validity Not Before: Dec 6 00:00:41 2025 GMT Not After : Dec 7 00:00:41 2025 GMT Subject: CN=dfea4c2063de419a04e2b619cf1b24bdaaa27fee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d8:5a:60:60:0a:51:81:0e:be:32:44:62:81: 78:57:0a:d6:9e:c3:83:31:d5:a5:cb:d1:1d:a6:45: 35:a8:95:bf:73:85:c7:aa:a6:33:b1:0f:a3:6f:29: 7e:5d:1e:e6:73:2a:1b:51:e3:21:e5:f7:56:be:f3: 44:c3:df:5d:72:60:30:7c:e8:f2:23:44:5f:23:7c: 02:1e:51:b7:17:5b:21:c1:76:8f:75:f7:27:8d:9a: cc:a9:bf:45:97:65:b8:12:92:f4:b1:ac:e1:0a:69: bf:e0:ac:2e:71:58:60:a3:c7:d7:c1:02:8d:b3:bc: 31:ef:38:3e:f6:d7:5d:0f:db:66:8a:46:b3:3b:49: 71:f4:77:a0:44:57:a3:2f:d3:a3:4c:df:b8:aa:84: b5:1b:68:e6:f0:84:a2:e1:c2:6f:9e:24:59:c3:f1: bb:02:10:3c:ae:61:26:90:c3:05:d8:7b:18:29:83: b9:45:32:5d:e3:b0:60:d6:70:51:27:97:2e:2e:fe: 66:2d:4a:68:19:79:be:6a:4e:eb:99:b6:ce:63:64: ba:c6:4a:49:00:c3:cb:c2:59:27:58:fa:d8:78:03: 14:7e:e5:4c:18:f7:b0:f4:92:33:a3:29:ea:65:d1: 46:a8:02:08:63:9f:3a:8c:da:b0:00:1d:6d:7a:a2: 32:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:EA:4C:20:63:DE:41:9A:04:E2:B6:19:CF:1B:24:BD:AA:A2:7F:EE X509v3 Authority Key Identifier: keyid:B2:85:99:29:2A:63:24:29:7E:02:FF:F3:C5:11:9B:EE:0B:31:75:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/soWZKSpjJCl-Av_zxRGb7gsxdUg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/soWZKSpjJCl-Av_zxRGb7gsxdUg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/soWZKSpjJCl-Av_zxRGb7gsxdUg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:96:d9:bd:f7:3a:26:64:41:6d:7e:c6:cc:16:71:b3:0d:74: dc:d4:79:d8:bd:10:0b:ec:40:5a:ff:65:72:5d:e4:1d:a5:38: 77:e0:b3:f5:ca:d3:34:d1:a3:c4:a3:11:56:c0:4d:0d:2f:04: e9:0a:5b:2a:f3:ce:31:a5:bd:3e:3f:6d:70:55:5e:5c:de:4c: 7c:2b:94:44:8e:be:f5:a3:89:9a:9f:d2:5a:13:64:91:75:92: ba:a8:3c:e5:ce:9e:f2:7e:db:b7:4c:1f:82:65:54:0e:6a:54: dc:06:3a:72:60:f4:e5:bf:ad:18:4a:5f:29:ae:ac:70:27:d2: eb:72:46:a3:ba:e9:98:28:61:67:9b:53:c6:1f:e0:77:64:7f: 5c:ab:d6:3b:d5:5b:b5:46:b6:68:2d:c6:45:e0:93:5e:bd:ef: 22:e0:4e:ac:c9:b2:77:83:c6:c9:e2:63:91:09:46:ab:04:c7: c0:ec:86:b4:3c:0b:b2:58:8e:92:4c:b4:50:63:cc:66:c7:f8: 95:cf:9a:84:e2:9c:f5:b5:24:10:95:0a:b0:df:61:af:02:2f: 44:59:b9:3d:8b:77:46:c9:72:6c:b7:92:cf:83:4f:26:11:24: 0c:9e:7d:7c:b3:1e:2f:14:9a:ad:ee:44:db:ee:72:99:3d:19: 5f:16:45:7b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrw9fHJFUTevPGxVdwgfFrVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyODU5OTI5MmE2MzI0Mjk3ZTAyZmZmM2M1MTE5YmVlMGIz MTc1NDgwHhcNMjUxMjA2MDAwMDQxWhcNMjUxMjA3MDAwMDQxWjAzMTEwLwYDVQQD EyhkZmVhNGMyMDYzZGU0MTlhMDRlMmI2MTljZjFiMjRiZGFhYTI3ZmVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1thaYGAKUYEOvjJEYoF4VwrWnsOD MdWly9EdpkU1qJW/c4XHqqYzsQ+jbyl+XR7mcyobUeMh5fdWvvNEw99dcmAwfOjy I0RfI3wCHlG3F1shwXaPdfcnjZrMqb9Fl2W4EpL0sazhCmm/4KwucVhgo8fXwQKN s7wx7zg+9tddD9tmikazO0lx9HegRFejL9OjTN+4qoS1G2jm8ISi4cJvniRZw/G7 AhA8rmEmkMMF2HsYKYO5RTJd47Bg1nBRJ5cuLv5mLUpoGXm+ak7rmbbOY2S6xkpJ AMPLwlknWPrYeAMUfuVMGPew9JIzoynqZdFGqAIIY586jNqwAB1teqIy4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN/qTCBj3kGaBOK2Gc8bJL2qon/uMB8GA1UdIwQY MBaAFLKFmSkqYyQpfgL/88URm+4LMXVIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc29XWktTcGpKQ2wtQXZfenhSR2I3Z3N4ZFVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS9lNTUyZjQtOTZjYS00MjU5LWE4MmEt ZTM1YTY3ZTVkOWUyLzEvc29XWktTcGpKQ2wtQXZfenhSR2I3Z3N4ZFVnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS9lNTUyZjQtOTZjYS00MjU5LWE4MmEtZTM1YTY3ZTVkOWUy LzEvc29XWktTcGpKQ2wtQXZfenhSR2I3Z3N4ZFVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARZbZvfc6 JmRBbX7GzBZxsw103NR52L0QC+xAWv9lcl3kHaU4d+Cz9crTNNGjxKMRVsBNDS8E 6QpbKvPOMaW9Pj9tcFVeXN5MfCuURI6+9aOJmp/SWhNkkXWSuqg85c6e8n7bt0wf gmVUDmpU3AY6cmD05b+tGEpfKa6scCfS63JGo7rpmChhZ5tTxh/gd2R/XKvWO9Vb tUa2aC3GReCTXr3vIuBOrMmyd4PGyeJjkQlGqwTHwOyGtDwLsliOkky0UGPMZsf4 lc+ahOKc9bUkEJUKsN9hrwIvRFm5PYt3RslybLeSz4NPJhEkDJ59fLMeLxSare5E 2+5ymT0ZXxZFew== -----END CERTIFICATE-----Generated at Sat Dec 6 08:19:42 2025 by rpki-client