This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft File: shna0BUe3wUqLxyX34hKWoeotfU.mft (raw, json) Hash identifier: VpXzcMYJsRwl2UxbdPAU+Hnjv3Jz3F791Z37y8R6KCQ= Subject key identifier: AC:D6:89:A5:06:AA:F2:1C:7A:19:53:BF:F7:40:0A:25:84:94:05:79 Authority key identifier: B2:19:DA:D0:15:1E:DF:05:2A:2F:1C:97:DF:88:4A:5A:87:A8:B5:F5 Certificate issuer: /CN=b219dad0151edf052a2f1c97df884a5a87a8b5f5 Certificate serial: 019AF3F7E9CA0E2DD5A385D6BF36D9ABD4FE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft Manifest number: 0906 Signing time: Sat 06 Dec 2025 14:01:42 +0000 Manifest this update: Sat 06 Dec 2025 14:01:42 +0000 Manifest next update: Sun 07 Dec 2025 14:01:42 +0000 Files and hashes: 1: shna0BUe3wUqLxyX34hKWoeotfU.crl (hash: ViRNxurXnug3YPVB1vIu29vN2Dwz46H9ww27eaZ1sLQ=) 2: yqdi2I4mvyqmB4-2BzPkMkJ3hIY.roa (hash: oTSjwH5eKf8we68+dtERfn9uiSN2W5Nb5pDWgRrwsxA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.crl rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:f7:e9:ca:0e:2d:d5:a3:85:d6:bf:36:d9:ab:d4:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b219dad0151edf052a2f1c97df884a5a87a8b5f5 Validity Not Before: Dec 6 14:01:42 2025 GMT Not After : Dec 7 14:01:42 2025 GMT Subject: CN=acd689a506aaf21c7a1953bff7400a2584940579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:47:d0:80:55:ff:72:90:46:d7:d0:0e:9b:17: 46:fa:ae:ee:7b:89:53:1e:9c:33:bc:d2:0e:27:82: 90:74:7e:82:d7:2c:7d:e6:26:68:1b:65:da:2f:6c: e1:1e:1a:59:a7:19:98:b9:08:f3:da:0c:cc:f6:75: c9:82:b5:e6:91:42:27:5c:fb:52:ea:99:d2:61:e4: 41:ef:0d:00:be:6a:72:ef:5a:7e:54:9a:1c:7d:43: 1a:47:da:9c:50:ba:15:f9:2e:2f:4b:92:44:90:e0: bf:d6:ee:99:fb:ef:32:02:18:c3:dc:c6:80:a1:26: 1f:b3:d1:63:f9:09:72:e7:ec:e0:5f:43:a9:ba:8b: ce:ea:d9:0e:ca:bc:80:40:c5:1b:19:c7:65:28:b5: 8a:9b:5c:91:70:14:0a:96:b2:cb:3a:84:d2:bf:3f: 7e:7b:35:b2:ee:83:6e:01:04:48:ba:b0:12:79:92: 4e:cd:96:e9:d5:50:e5:d3:2a:c4:aa:0d:5d:38:ca: 0a:89:64:90:64:ce:77:f3:24:90:f8:54:d5:84:a1: 0e:dc:3a:33:80:2a:20:57:91:12:b7:aa:39:43:de: a4:34:c3:b8:99:bb:c4:4a:d4:fd:7b:c5:33:e1:82: 21:ea:8c:63:75:f9:2c:ca:87:cc:ef:80:d5:71:da: 5a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D6:89:A5:06:AA:F2:1C:7A:19:53:BF:F7:40:0A:25:84:94:05:79 X509v3 Authority Key Identifier: keyid:B2:19:DA:D0:15:1E:DF:05:2A:2F:1C:97:DF:88:4A:5A:87:A8:B5:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:0d:90:d9:04:ce:33:72:73:6d:a0:84:9d:91:29:85:3d:38: 41:e7:dd:ed:84:d4:bc:90:78:fe:31:ae:c9:05:a7:a0:1c:4b: 61:51:41:0f:6c:85:eb:50:a8:30:b5:09:41:9f:3d:37:5c:88: bc:0c:23:26:6a:be:55:78:95:a8:68:36:f1:09:11:7c:bf:73: f5:ec:bd:e3:f5:b3:2f:fe:e2:19:1b:2d:47:2d:dc:62:fe:69: 28:97:66:ae:c2:de:b4:0e:1f:f0:48:c9:b3:c0:24:54:14:30: 75:79:af:25:14:bb:10:10:6d:fd:01:79:56:38:05:b4:2f:2f: 65:95:34:bf:52:4a:94:b1:d8:d0:1a:ee:b9:68:6c:5e:87:a3: b4:37:da:ff:e3:8a:9f:73:f0:39:d4:d3:07:57:3e:67:c2:5c: 19:be:2d:fb:03:6b:59:ba:60:91:c5:76:c1:b7:5b:ab:ae:1f: 3e:e8:48:c5:c8:88:b8:20:6f:bc:da:de:31:be:25:6c:7c:c0: 0b:30:77:64:0f:bf:d2:a1:31:e3:eb:77:2a:10:55:2c:76:30: 2c:a3:72:b4:2f:04:0a:a0:68:fc:ba:7a:a1:14:f0:49:c5:d2: 7d:59:43:b9:6f:82:a1:b1:37:95:ab:2f:9b:ac:46:43:7b:2c: 09:97:44:7b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrz9+nKDi3Vo4XWvzbZq9T+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyMTlkYWQwMTUxZWRmMDUyYTJmMWM5N2RmODg0YTVhODdh OGI1ZjUwHhcNMjUxMjA2MTQwMTQyWhcNMjUxMjA3MTQwMTQyWjAzMTEwLwYDVQQD EyhhY2Q2ODlhNTA2YWFmMjFjN2ExOTUzYmZmNzQwMGEyNTg0OTQwNTc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqUfQgFX/cpBG19AOmxdG+q7ue4lT HpwzvNIOJ4KQdH6C1yx95iZoG2XaL2zhHhpZpxmYuQjz2gzM9nXJgrXmkUInXPtS 6pnSYeRB7w0Avmpy71p+VJocfUMaR9qcULoV+S4vS5JEkOC/1u6Z++8yAhjD3MaA oSYfs9Fj+Qly5+zgX0OpuovO6tkOyryAQMUbGcdlKLWKm1yRcBQKlrLLOoTSvz9+ ezWy7oNuAQRIurASeZJOzZbp1VDl0yrEqg1dOMoKiWSQZM538ySQ+FTVhKEO3Doz gCogV5ESt6o5Q96kNMO4mbvEStT9e8Uz4YIh6oxjdfksyofM74DVcdpacQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKzWiaUGqvIcehlTv/dACiWElAV5MB8GA1UdIwQY MBaAFLIZ2tAVHt8FKi8cl9+ISlqHqLX1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2huYTBCVWUzd1VxTHh5WDM0aEtXb2VvdGZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni83NzQ4MmQtNDgzMC00OWY3LWI2YmQt NzY1MGQ5NzMyYTUyLzEvc2huYTBCVWUzd1VxTHh5WDM0aEtXb2VvdGZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni83NzQ4MmQtNDgzMC00OWY3LWI2YmQtNzY1MGQ5NzMyYTUy LzEvc2huYTBCVWUzd1VxTHh5WDM0aEtXb2VvdGZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdA2Q2QTO M3JzbaCEnZEphT04Qefd7YTUvJB4/jGuyQWnoBxLYVFBD2yF61CoMLUJQZ89N1yI vAwjJmq+VXiVqGg28QkRfL9z9ey94/WzL/7iGRstRy3cYv5pKJdmrsLetA4f8EjJ s8AkVBQwdXmvJRS7EBBt/QF5VjgFtC8vZZU0v1JKlLHY0BruuWhsXoejtDfa/+OK n3PwOdTTB1c+Z8JcGb4t+wNrWbpgkcV2wbdbq64fPuhIxciIuCBvvNreMb4lbHzA CzB3ZA+/0qEx4+t3KhBVLHYwLKNytC8ECqBo/Lp6oRTwScXSfVlDuW+CobE3lasv m6xGQ3ssCZdEew== -----END CERTIFICATE-----Generated at Sat Dec 6 20:08:18 2025 by rpki-client