This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft File: STKJJW4ziHd9leTVMVZ842cqFJo.mft (raw, json) Hash identifier: qJqYpMtvr6IAFIIkqLz5f7bEkepjKk5N1EMV2pA5aTo= Subject key identifier: 64:B9:BA:A1:F6:3F:69:E7:67:1B:3E:07:25:86:B3:D7:2D:82:22:86 Authority key identifier: 49:32:89:25:6E:33:88:77:7D:95:E4:D5:31:56:7C:E3:67:2A:14:9A Certificate issuer: /CN=493289256e3388777d95e4d531567ce3672a149a Certificate serial: 019AF35299C49E408BE64FBF79738E1AD5B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 11:01:08 +0000 Manifest this update: Sat 06 Dec 2025 11:01:08 +0000 Manifest next update: Sun 07 Dec 2025 11:01:08 +0000 Files and hashes: 1: PDkI417cWn_abbXt0o9HD-0vD6g.roa (hash: mxVaLWpnhSe1agkXL4xYhLyldi4/weSHgH61n+a6Rqk=) 2: STKJJW4ziHd9leTVMVZ842cqFJo.crl (hash: WjFQEVngexIIwcTZGYormc5A3KA5QdKLgaSgCfZZ1GE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.crl rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:99:c4:9e:40:8b:e6:4f:bf:79:73:8e:1a:d5:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=493289256e3388777d95e4d531567ce3672a149a Validity Not Before: Dec 6 11:01:08 2025 GMT Not After : Dec 7 11:01:08 2025 GMT Subject: CN=64b9baa1f63f69e7671b3e072586b3d72d822286 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:68:fc:13:0d:ae:ef:62:12:93:2a:06:c0:ed: d5:96:5d:bf:7c:db:a9:bd:63:d5:30:59:e3:1b:80: e7:b3:cd:c2:e0:96:51:69:01:26:34:ae:f7:13:74: 5b:51:a0:35:a1:5e:22:d6:d1:a4:c8:1e:c4:bd:af: 78:5e:a2:94:cf:36:bf:d5:88:63:8c:d9:6c:fe:05: 7c:19:9d:a9:8c:a0:9d:13:e4:40:0a:74:12:a3:61: 5c:18:b3:84:03:54:d3:4f:85:f1:2b:2e:ea:be:b3: b4:0f:5b:9e:bd:92:6a:17:1c:36:ba:bb:c1:12:32: f2:d8:bf:ee:fb:46:d6:c8:76:2b:8b:5f:f0:de:1b: 81:b0:2f:ed:8a:e1:e0:3f:f0:1c:4f:16:28:f6:a3: 81:f5:7f:7d:12:ad:21:a7:f2:22:1f:9d:2c:84:b7: 91:a0:4c:fa:dd:70:5f:55:6d:8a:12:26:d7:19:04: 17:d4:44:a0:16:99:c6:5d:dc:a7:1f:b7:db:6a:3b: 2a:0d:8c:78:fc:41:d8:e2:06:43:74:6a:9b:2b:94: 8d:55:02:70:b0:3e:08:53:67:64:f5:82:45:c1:e2: bd:8e:94:e9:b7:70:2a:65:f8:5f:24:94:91:3d:67: 47:dc:83:5e:9a:38:8a:75:92:b2:b9:bc:b7:44:67: 95:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:B9:BA:A1:F6:3F:69:E7:67:1B:3E:07:25:86:B3:D7:2D:82:22:86 X509v3 Authority Key Identifier: keyid:49:32:89:25:6E:33:88:77:7D:95:E4:D5:31:56:7C:E3:67:2A:14:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/STKJJW4ziHd9leTVMVZ842cqFJo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/7ae133-d0b6-4b68-8f61-d4d9a2e60e64/1/STKJJW4ziHd9leTVMVZ842cqFJo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:4c:8c:82:b7:d4:5f:6a:52:03:cd:a6:c6:ca:17:92:77:d6: ba:3a:ca:28:f7:9f:e2:1a:d9:73:ea:17:0e:46:c8:93:c9:c5: 59:d3:ff:fb:91:58:8d:e0:7a:4f:c9:99:42:6d:42:a3:18:92: fb:dd:f5:6a:cb:ca:e8:a3:74:d2:01:6e:b0:23:7a:e8:a9:7e: 3d:3d:09:f5:af:af:bb:a7:22:c2:48:8b:39:31:b6:b9:80:1b: 4c:b5:f6:87:67:78:6b:03:3b:a6:cc:05:24:66:27:1b:ca:00: bf:79:36:4e:a8:6e:37:c9:0c:01:3d:4a:28:8e:5a:d0:e1:ee: f4:b2:93:3a:55:f8:d2:9f:ec:cf:12:20:32:d1:c9:12:68:bd: 3a:e9:33:26:2f:6e:bb:2c:50:b2:40:e5:1d:b7:0e:e5:bf:4f: 57:99:c7:b0:66:b8:2b:0e:17:be:26:bc:fd:31:13:f1:fa:b9: 43:1d:53:f1:34:9b:a8:0f:4e:f1:11:1f:dd:50:cd:82:f2:a9: 17:36:e3:08:88:80:11:fc:91:d7:fb:5a:d3:b5:73:8f:f8:15: 4a:11:b6:40:e4:37:24:9b:5d:38:2b:a4:5c:ca:eb:11:60:38: 58:f5:ad:fc:70:f8:09:73:50:d1:96:30:32:b5:87:7d:7c:45: 6f:24:a2:6a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUpnEnkCL5k+/eXOOGtWwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5MzI4OTI1NmUzMzg4Nzc3ZDk1ZTRkNTMxNTY3Y2UzNjcy YTE0OWEwHhcNMjUxMjA2MTEwMTA4WhcNMjUxMjA3MTEwMTA4WjAzMTEwLwYDVQQD Eyg2NGI5YmFhMWY2M2Y2OWU3NjcxYjNlMDcyNTg2YjNkNzJkODIyMjg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoWj8Ew2u72ISkyoGwO3Vll2/fNup vWPVMFnjG4Dns83C4JZRaQEmNK73E3RbUaA1oV4i1tGkyB7Eva94XqKUzza/1Yhj jNls/gV8GZ2pjKCdE+RACnQSo2FcGLOEA1TTT4XxKy7qvrO0D1uevZJqFxw2urvB EjLy2L/u+0bWyHYri1/w3huBsC/tiuHgP/AcTxYo9qOB9X99Eq0hp/IiH50shLeR oEz63XBfVW2KEibXGQQX1ESgFpnGXdynH7fbajsqDYx4/EHY4gZDdGqbK5SNVQJw sD4IU2dk9YJFweK9jpTpt3AqZfhfJJSRPWdH3INemjiKdZKyuby3RGeVCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGS5uqH2P2nnZxs+ByWGs9ctgiKGMB8GA1UdIwQY MBaAFEkyiSVuM4h3fZXk1TFWfONnKhSaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU1RLSkpXNHppSGQ5bGVUVk1WWjg0MmNxRkpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni83YWUxMzMtZDBiNi00YjY4LThmNjEt ZDRkOWEyZTYwZTY0LzEvU1RLSkpXNHppSGQ5bGVUVk1WWjg0MmNxRkpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni83YWUxMzMtZDBiNi00YjY4LThmNjEtZDRkOWEyZTYwZTY0 LzEvU1RLSkpXNHppSGQ5bGVUVk1WWjg0MmNxRkpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN0yMgrfU X2pSA82mxsoXknfWujrKKPef4hrZc+oXDkbIk8nFWdP/+5FYjeB6T8mZQm1CoxiS +931asvK6KN00gFusCN66Kl+PT0J9a+vu6ciwkiLOTG2uYAbTLX2h2d4awM7pswF JGYnG8oAv3k2TqhuN8kMAT1KKI5a0OHu9LKTOlX40p/szxIgMtHJEmi9OukzJi9u uyxQskDlHbcO5b9PV5nHsGa4Kw4Xvia8/TET8fq5Qx1T8TSbqA9O8REf3VDNgvKp FzbjCIiAEfyR1/ta07Vzj/gVShG2QOQ3JJtdOCukXMrrEWA4WPWt/HD4CXNQ0ZYw MrWHfXxFbySiag== -----END CERTIFICATE-----Generated at Sat Dec 6 17:41:49 2025 by rpki-client