This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.mft File: sh47KsUJcPsSbL3xnX-zFdzBxF0.mft (raw, json) Hash identifier: K0oet0bwEaW76MX097QpdgvjUuPMeRNxZvOwf0Et0ds= Subject key identifier: D9:B0:1C:67:7A:7A:49:55:41:8A:0E:D9:FB:4A:7E:DB:6E:1E:8B:94 Authority key identifier: B2:1E:3B:2A:C5:09:70:FB:12:6C:BD:F1:9D:7F:B3:15:DC:C1:C4:5D Certificate issuer: /CN=b21e3b2ac50970fb126cbdf19d7fb315dcc1c45d Certificate serial: 019AF12D2CD644878AC32F051776431219E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sh47KsUJcPsSbL3xnX-zFdzBxF0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.mft Manifest number: 01EE Signing time: Sat 06 Dec 2025 01:01:00 +0000 Manifest this update: Sat 06 Dec 2025 01:01:00 +0000 Manifest next update: Sun 07 Dec 2025 01:01:00 +0000 Files and hashes: 1: 5wrNYPlSCkVTpZCOkOfJiVfHH1s.roa (hash: vV52rVETrxDxRFyAGhG26EED/lJXHQxzwHDXgoc8s8o=) 2: sh47KsUJcPsSbL3xnX-zFdzBxF0.crl (hash: IYGMN/QFkfKjv1YjQ30uY/eJ9+r+iM+d4Rksq7uzx84=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.mft rsync://rpki.ripe.net/repository/DEFAULT/sh47KsUJcPsSbL3xnX-zFdzBxF0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:2c:d6:44:87:8a:c3:2f:05:17:76:43:12:19:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b21e3b2ac50970fb126cbdf19d7fb315dcc1c45d Validity Not Before: Dec 6 01:01:00 2025 GMT Not After : Dec 7 01:01:00 2025 GMT Subject: CN=d9b01c677a7a4955418a0ed9fb4a7edb6e1e8b94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3e:d0:f9:e2:1c:ed:7d:78:81:d9:99:f9:a6: 68:17:77:95:4c:ad:41:2e:fa:b6:61:d7:f0:6e:c9: d5:77:7e:08:f6:8f:10:cb:46:61:38:a4:44:db:1e: be:16:22:b0:7b:a0:fa:78:88:73:74:07:71:71:3d: be:50:39:bc:6d:3a:42:0d:d3:88:44:97:f6:be:06: 4e:82:1a:4a:a0:56:33:79:b6:8f:2d:dc:cb:b7:22: fc:e6:69:16:6a:ea:c5:96:b6:c6:79:45:e5:18:c4: c1:ea:6e:27:13:7b:37:1c:fd:19:70:28:62:80:9e: 63:24:b9:f7:9e:58:e0:28:31:29:d3:0b:53:53:d5: a9:aa:a9:81:81:0f:f6:5a:40:c9:6b:cd:ff:34:19: e2:4b:14:1b:fa:ec:b3:09:0a:44:f5:18:0f:58:15: e7:2e:78:54:9a:63:31:d6:51:1a:17:92:cc:e6:ee: 9c:bf:77:9b:87:91:83:b8:88:28:83:90:83:51:77: 78:4e:e0:10:2f:e6:7b:c7:b5:1e:6b:a0:43:5f:e9: 8e:bf:5e:fc:71:69:e8:ff:fe:31:c1:a4:eb:20:9e: 6f:9b:85:fc:39:c4:24:eb:67:d1:81:dd:75:ae:ff: a1:9e:9e:3e:be:15:ea:06:a9:9d:42:86:93:ba:4d: 5b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B0:1C:67:7A:7A:49:55:41:8A:0E:D9:FB:4A:7E:DB:6E:1E:8B:94 X509v3 Authority Key Identifier: keyid:B2:1E:3B:2A:C5:09:70:FB:12:6C:BD:F1:9D:7F:B3:15:DC:C1:C4:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sh47KsUJcPsSbL3xnX-zFdzBxF0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:20:c7:ba:a0:31:34:de:df:77:7b:a0:5d:e5:a3:ef:19:b8: 2d:7a:30:98:74:09:68:bc:bf:e9:4d:ec:37:66:ec:c0:4e:28: 20:7e:12:20:89:48:e4:27:bb:98:e2:a9:fd:a2:f1:1e:df:7a: 39:18:cd:56:5d:3b:9c:a8:7e:fe:6d:97:9f:c7:6d:ea:78:ed: fb:8f:f9:73:44:8d:bd:10:5b:38:7c:96:19:0a:65:f2:8d:26: 7f:07:66:90:46:06:8a:51:6d:e4:d3:d9:9f:93:47:0c:b7:cd: 23:d0:33:2c:09:2d:f9:c3:09:ce:c6:a7:57:67:ad:4d:a9:c3: 18:f4:a1:10:5c:0a:d8:82:64:ec:55:cb:0a:53:70:e7:47:35: 90:e7:b6:40:f0:55:bc:3a:98:6b:00:d1:98:c8:37:15:5c:fb: 05:4f:07:7b:61:05:e4:13:ec:4e:00:0c:cd:fe:35:8a:89:89: a4:ee:da:fb:26:af:6e:26:6a:db:ed:f0:7e:55:41:23:2c:93: 67:fb:bb:25:9b:27:0f:a6:38:dd:fe:30:0a:9d:0a:c4:e0:f5: e0:f8:50:02:9b:27:25:ba:fb:1c:5d:76:8e:19:33:f1:aa:76: df:67:58:45:a0:a8:6c:72:79:bc:aa:84:2b:de:d7:0f:0d:11: c5:6c:b3:ba -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLSzWRIeKwy8FF3ZDEhnjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyMWUzYjJhYzUwOTcwZmIxMjZjYmRmMTlkN2ZiMzE1ZGNj MWM0NWQwHhcNMjUxMjA2MDEwMTAwWhcNMjUxMjA3MDEwMTAwWjAzMTEwLwYDVQQD EyhkOWIwMWM2NzdhN2E0OTU1NDE4YTBlZDlmYjRhN2VkYjZlMWU4Yjk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuD7Q+eIc7X14gdmZ+aZoF3eVTK1B Lvq2YdfwbsnVd34I9o8Qy0ZhOKRE2x6+FiKwe6D6eIhzdAdxcT2+UDm8bTpCDdOI RJf2vgZOghpKoFYzebaPLdzLtyL85mkWaurFlrbGeUXlGMTB6m4nE3s3HP0ZcChi gJ5jJLn3nljgKDEp0wtTU9WpqqmBgQ/2WkDJa83/NBniSxQb+uyzCQpE9RgPWBXn LnhUmmMx1lEaF5LM5u6cv3ebh5GDuIgog5CDUXd4TuAQL+Z7x7Uea6BDX+mOv178 cWno//4xwaTrIJ5vm4X8OcQk62fRgd11rv+hnp4+vhXqBqmdQoaTuk1b7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNmwHGd6eklVQYoO2ftKfttuHouUMB8GA1UdIwQY MBaAFLIeOyrFCXD7Emy98Z1/sxXcwcRdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2g0N0tzVUpjUHNTYkwzeG5YLXpGZHpCeEYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy81MmExZTUtODZmMS00OWY3LWE3NzMt Y2IzZTI5YjZhZDMyLzEvc2g0N0tzVUpjUHNTYkwzeG5YLXpGZHpCeEYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy81MmExZTUtODZmMS00OWY3LWE3NzMtY2IzZTI5YjZhZDMy LzEvc2g0N0tzVUpjUHNTYkwzeG5YLXpGZHpCeEYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFyDHuqAx NN7fd3ugXeWj7xm4LXowmHQJaLy/6U3sN2bswE4oIH4SIIlI5Ce7mOKp/aLxHt96 ORjNVl07nKh+/m2Xn8dt6njt+4/5c0SNvRBbOHyWGQpl8o0mfwdmkEYGilFt5NPZ n5NHDLfNI9AzLAkt+cMJzsanV2etTanDGPShEFwK2IJk7FXLClNw50c1kOe2QPBV vDqYawDRmMg3FVz7BU8He2EF5BPsTgAMzf41iomJpO7a+yavbiZq2+3wflVBIyyT Z/u7JZsnD6Y43f4wCp0KxOD14PhQApsnJbr7HF12jhkz8ap232dYRaCobHJ5vKqE K97XDw0RxWyzug== -----END CERTIFICATE-----Generated at Sat Dec 6 11:13:35 2025 by rpki-client