This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft File: stf5mYOKoWO_NE_GmRe7YNEv38M.mft (raw, json) Hash identifier: QiRQjt9QFVRvj1MpIiriVhh4TdEokFxFY+cRaG06fOQ= Subject key identifier: 3C:60:CD:A1:D3:69:73:91:CA:56:54:CC:58:1A:1A:E7:FF:B1:57:E4 Authority key identifier: B2:D7:F9:99:83:8A:A1:63:BF:34:4F:C6:99:17:BB:60:D1:2F:DF:C3 Certificate issuer: /CN=b2d7f999838aa163bf344fc69917bb60d12fdfc3 Certificate serial: 019AF3526F2874F932618DAB107BDC9578EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft Manifest number: 1251 Signing time: Sat 06 Dec 2025 11:00:57 +0000 Manifest this update: Sat 06 Dec 2025 11:00:57 +0000 Manifest next update: Sun 07 Dec 2025 11:00:57 +0000 Files and hashes: 1: i-DPtzOhX1UrAwvJvp6e_VFBpfU.roa (hash: b0DJ4Ik9RBvNDvd/V/+wWQQR6BcIK0SHDpRuzhlzJ6o=) 2: stf5mYOKoWO_NE_GmRe7YNEv38M.crl (hash: jyX9ntMmj4sON46r2P0rdqSiKwGHxf9W1iMWWyiulJg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.crl rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:6f:28:74:f9:32:61:8d:ab:10:7b:dc:95:78:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2d7f999838aa163bf344fc69917bb60d12fdfc3 Validity Not Before: Dec 6 11:00:57 2025 GMT Not After : Dec 7 11:00:57 2025 GMT Subject: CN=3c60cda1d3697391ca5654cc581a1ae7ffb157e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0f:59:95:e5:e6:b5:3f:08:d1:65:3b:e3:c3: 8c:c0:2b:2d:ae:11:3a:50:d4:85:a3:17:21:72:8e: db:81:7b:5b:e7:34:ad:06:f8:66:88:90:8c:60:9a: ae:5d:ca:cb:75:ec:0b:b4:c5:d9:99:14:28:a1:42: d1:73:c6:00:0f:26:4a:94:d3:6c:92:8b:62:55:fd: 6f:5f:86:6a:f2:42:f0:0b:df:06:95:cf:7c:ad:81: df:a8:28:9a:28:28:15:24:b4:be:01:97:4a:47:bb: 5c:1a:18:e6:d2:79:7d:48:9e:c7:56:65:b7:8b:07: ce:e1:9e:45:e1:ea:63:38:a5:fc:a6:6f:4d:3d:16: cd:60:e4:fa:a2:43:25:f8:73:a5:45:43:f6:b4:06: 50:28:06:41:18:dd:5f:1a:04:21:45:73:63:ad:0c: 8a:da:c3:d3:81:de:12:76:ea:bb:24:9f:c4:74:69: 2c:e2:cf:63:26:4e:5a:92:a7:ad:66:c2:a9:a3:e5: 28:33:95:1d:3f:9e:0e:a7:95:f5:9e:0d:5e:9d:eb: 2f:93:2d:68:59:a2:89:b5:79:2e:80:58:c8:0c:2d: 8a:0a:f3:9f:57:ec:fa:37:7b:7c:5c:6f:5e:1d:b9: f1:88:7d:9c:73:df:62:aa:99:15:49:43:93:32:f8: 8d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:60:CD:A1:D3:69:73:91:CA:56:54:CC:58:1A:1A:E7:FF:B1:57:E4 X509v3 Authority Key Identifier: keyid:B2:D7:F9:99:83:8A:A1:63:BF:34:4F:C6:99:17:BB:60:D1:2F:DF:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:eb:b4:31:94:ef:5b:c1:2b:ce:6e:46:ee:2f:6f:40:25:8d: d6:e5:21:61:ff:7a:c5:77:83:5d:21:72:d5:94:b6:c9:77:f0: ed:c2:9e:52:35:a4:19:1a:5d:33:9d:2d:77:58:ac:3b:53:e0: f2:96:8a:53:fe:37:64:ea:ed:bd:5c:a8:b2:c5:0e:15:31:4a: 9e:2b:bc:a5:85:ec:e2:58:be:46:e4:0e:6e:69:88:40:d0:43: c1:13:37:34:59:70:b8:67:5f:cc:77:3c:b4:bc:3d:d1:54:97: 9e:68:b2:64:3c:ef:59:76:4e:04:f2:76:ed:3c:c9:c8:c8:8e: 72:ea:11:90:68:2d:1e:87:f5:2a:3b:9e:af:dc:5d:91:92:ff: d5:15:f7:d0:79:9c:61:e3:f6:c2:4f:19:ae:5c:76:48:b4:d5: 99:a0:ec:9e:f7:50:4e:6a:2a:fa:60:4d:ea:1c:23:f7:b9:9f: 26:5a:09:67:29:48:3d:a8:15:9d:b1:8f:db:07:b5:d5:8c:d0: 3a:24:47:84:4f:32:d3:6f:cd:39:e5:92:a5:39:09:d9:4f:2a: c9:10:c0:b7:26:70:07:6c:0e:38:75:32:56:8a:a6:3e:12:fc: 21:83:e4:65:55:32:5e:f2:49:fd:a1:c9:62:e0:10:1f:f9:58: f4:2c:61:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUm8odPkyYY2rEHvclXjrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyZDdmOTk5ODM4YWExNjNiZjM0NGZjNjk5MTdiYjYwZDEy ZmRmYzMwHhcNMjUxMjA2MTEwMDU3WhcNMjUxMjA3MTEwMDU3WjAzMTEwLwYDVQQD EygzYzYwY2RhMWQzNjk3MzkxY2E1NjU0Y2M1ODFhMWFlN2ZmYjE1N2U0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxA9ZleXmtT8I0WU748OMwCstrhE6 UNSFoxchco7bgXtb5zStBvhmiJCMYJquXcrLdewLtMXZmRQooULRc8YADyZKlNNs kotiVf1vX4Zq8kLwC98Glc98rYHfqCiaKCgVJLS+AZdKR7tcGhjm0nl9SJ7HVmW3 iwfO4Z5F4epjOKX8pm9NPRbNYOT6okMl+HOlRUP2tAZQKAZBGN1fGgQhRXNjrQyK 2sPTgd4Sduq7JJ/EdGks4s9jJk5akqetZsKpo+UoM5UdP54Op5X1ng1enesvky1o WaKJtXkugFjIDC2KCvOfV+z6N3t8XG9eHbnxiH2cc99iqpkVSUOTMviNiQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDxgzaHTaXORylZUzFgaGuf/sVfkMB8GA1UdIwQY MBaAFLLX+ZmDiqFjvzRPxpkXu2DRL9/DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3RmNW1ZT0tvV09fTkVfR21SZTdZTkV2MzhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My82OThlZmItYzZiNC00ZDJjLTkzNjgt N2NlYzJkNTM0NWI0LzEvc3RmNW1ZT0tvV09fTkVfR21SZTdZTkV2MzhNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My82OThlZmItYzZiNC00ZDJjLTkzNjgtN2NlYzJkNTM0NWI0 LzEvc3RmNW1ZT0tvV09fTkVfR21SZTdZTkV2MzhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKeu0MZTv W8Erzm5G7i9vQCWN1uUhYf96xXeDXSFy1ZS2yXfw7cKeUjWkGRpdM50td1isO1Pg 8paKU/43ZOrtvVyossUOFTFKniu8pYXs4li+RuQObmmIQNBDwRM3NFlwuGdfzHc8 tLw90VSXnmiyZDzvWXZOBPJ27TzJyMiOcuoRkGgtHof1Kjuer9xdkZL/1RX30Hmc YeP2wk8Zrlx2SLTVmaDsnvdQTmoq+mBN6hwj97mfJloJZylIPagVnbGP2we11YzQ OiRHhE8y02/NOeWSpTkJ2U8qyRDAtyZwB2wOOHUyVoqmPhL8IYPkZVUyXvJJ/aHJ YuAQH/lY9Cxh9Q== -----END CERTIFICATE-----Generated at Sat Dec 6 15:28:11 2025 by rpki-client