This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft File: 05SToXmX0x6NWqbMyaa9dX8VwDA.mft (raw, json) Hash identifier: J6In9qJ3x8dwk5nn/sRtrJFbwfgJoSb7KRqiR56Nzqg= Subject key identifier: 8B:74:E3:BE:25:0F:E1:09:AE:AC:E6:A4:A3:BB:BB:9D:40:74:98:A5 Authority key identifier: D3:94:93:A1:79:97:D3:1E:8D:5A:A6:CC:C9:A6:BD:75:7F:15:C0:30 Certificate issuer: /CN=d39493a17997d31e8d5aa6ccc9a6bd757f15c030 Certificate serial: 019AF3526D05A09458C96EBDA70517963B72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/05SToXmX0x6NWqbMyaa9dX8VwDA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 11:00:56 +0000 Manifest this update: Sat 06 Dec 2025 11:00:56 +0000 Manifest next update: Sun 07 Dec 2025 11:00:56 +0000 Files and hashes: 1: 05SToXmX0x6NWqbMyaa9dX8VwDA.crl (hash: zcYBHvgkXJJB56UcDGHwk6tg5fJ80Ltgvj0qO0GklWE=) 2: q-MJPgpoCVNAGtgvIouNXgLENzk.roa (hash: BsC2KZYLnHn1uQcqBwkrRXQi/zA43li7q/QWJIEDjzs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft rsync://rpki.ripe.net/repository/DEFAULT/05SToXmX0x6NWqbMyaa9dX8VwDA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:6d:05:a0:94:58:c9:6e:bd:a7:05:17:96:3b:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d39493a17997d31e8d5aa6ccc9a6bd757f15c030 Validity Not Before: Dec 6 11:00:56 2025 GMT Not After : Dec 7 11:00:56 2025 GMT Subject: CN=8b74e3be250fe109aeace6a4a3bbbb9d407498a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:79:ac:a0:0c:84:39:3c:b6:bc:1c:e6:7c:07: 6b:7c:e7:bd:bc:2f:84:04:96:cb:f3:71:92:54:03: 61:56:b1:f4:f1:9b:e2:62:f3:2c:20:65:54:46:a2: 78:12:33:d2:47:fc:56:65:91:48:4b:53:90:82:5d: 5b:79:c3:e5:76:6e:83:90:6f:55:76:b6:55:d8:8c: 81:4a:2b:84:d1:02:8f:82:27:0d:5b:b1:99:fc:29: c0:1d:3c:62:cf:5a:b2:b4:d8:49:c8:3a:dc:39:30: 94:69:fc:b4:c2:b5:69:1f:71:ea:8d:ef:ab:20:a7: ef:a9:ff:a5:f8:74:59:d9:90:99:d0:bc:58:88:58: f5:1c:82:bc:40:37:a2:cd:d8:4b:d8:1e:6e:b4:df: 48:6f:2a:f7:51:79:a8:91:29:c7:f1:35:8c:3f:ce: 18:da:7c:fb:16:7a:bf:c1:c0:86:7c:42:8f:c3:af: 61:c4:dc:e0:03:a6:b0:cf:96:b1:79:2b:1e:7d:23: 85:d4:ef:0b:55:7b:ea:9b:bb:97:63:10:e6:5f:3c: b2:17:71:e7:df:29:d1:b9:26:52:48:50:86:1b:db: 30:27:a6:af:d3:a5:85:59:9e:5a:9a:f0:56:10:bd: a6:7a:16:5f:00:9e:f6:1c:4c:17:c3:5b:48:a3:a4: ec:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:74:E3:BE:25:0F:E1:09:AE:AC:E6:A4:A3:BB:BB:9D:40:74:98:A5 X509v3 Authority Key Identifier: keyid:D3:94:93:A1:79:97:D3:1E:8D:5A:A6:CC:C9:A6:BD:75:7F:15:C0:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/05SToXmX0x6NWqbMyaa9dX8VwDA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:92:d6:ea:ce:a1:26:85:1c:2f:11:c1:cb:35:c8:ad:d9:d9: 4b:90:19:0e:95:4d:36:28:89:b5:1c:0d:d7:34:08:ef:a0:21: 16:51:c6:1f:ae:64:15:22:fd:53:07:93:eb:c6:a9:e0:6f:4d: cf:8b:91:f4:0c:53:1c:26:b4:bb:cc:d1:73:79:d5:b6:16:44: 66:3f:7b:36:91:ff:4c:a6:9c:29:ef:c1:a1:6d:c0:c4:d9:04: 5d:e0:e4:7e:71:e0:98:bf:ec:06:f3:fe:ef:ec:d5:3e:10:e6: a2:b2:d4:bc:5f:05:2b:2d:6a:db:68:a7:f5:2e:fe:41:b7:0e: 34:c2:df:0a:3d:9c:71:2c:f3:f5:df:92:ff:28:48:30:cb:a3: d2:30:2d:11:9a:eb:0d:21:af:18:29:9d:55:7e:1f:83:9b:be: 66:90:47:a3:7f:fd:03:36:55:06:6c:b1:46:9f:03:f5:fc:0b: 38:61:1a:a6:6f:da:8a:e2:3d:70:93:61:62:93:a5:07:52:50: a3:f7:4f:ae:1c:9e:7e:77:e7:7b:71:0b:26:09:d8:ca:29:fb: 5d:f7:da:a8:b2:2d:9d:12:05:4a:7e:17:82:0f:56:0e:00:88: 24:76:13:45:55:ce:3f:7a:c6:6c:8c:a1:53:da:dc:d0:1b:ca: f3:de:e5:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUm0FoJRYyW69pwUXljtyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzOTQ5M2ExNzk5N2QzMWU4ZDVhYTZjY2M5YTZiZDc1N2Yx NWMwMzAwHhcNMjUxMjA2MTEwMDU2WhcNMjUxMjA3MTEwMDU2WjAzMTEwLwYDVQQD Eyg4Yjc0ZTNiZTI1MGZlMTA5YWVhY2U2YTRhM2JiYmI5ZDQwNzQ5OGE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo3msoAyEOTy2vBzmfAdrfOe9vC+E BJbL83GSVANhVrH08ZviYvMsIGVURqJ4EjPSR/xWZZFIS1OQgl1becPldm6DkG9V drZV2IyBSiuE0QKPgicNW7GZ/CnAHTxiz1qytNhJyDrcOTCUafy0wrVpH3Hqje+r IKfvqf+l+HRZ2ZCZ0LxYiFj1HIK8QDeizdhL2B5utN9Ibyr3UXmokSnH8TWMP84Y 2nz7Fnq/wcCGfEKPw69hxNzgA6awz5axeSsefSOF1O8LVXvqm7uXYxDmXzyyF3Hn 3ynRuSZSSFCGG9swJ6av06WFWZ5amvBWEL2mehZfAJ72HEwXw1tIo6TsmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIt0474lD+EJrqzmpKO7u51AdJilMB8GA1UdIwQY MBaAFNOUk6F5l9MejVqmzMmmvXV/FcAwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMDVTVG9YbVgweDZOV3FiTXlhYTlkWDhWd0RBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lODA0ZTQtN2YzMC00MDQ5LTk0OGIt OTc5MjMyOTdjZGE3LzEvMDVTVG9YbVgweDZOV3FiTXlhYTlkWDhWd0RBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi9lODA0ZTQtN2YzMC00MDQ5LTk0OGItOTc5MjMyOTdjZGE3 LzEvMDVTVG9YbVgweDZOV3FiTXlhYTlkWDhWd0RBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANZLW6s6h JoUcLxHByzXIrdnZS5AZDpVNNiiJtRwN1zQI76AhFlHGH65kFSL9UweT68ap4G9N z4uR9AxTHCa0u8zRc3nVthZEZj97NpH/TKacKe/BoW3AxNkEXeDkfnHgmL/sBvP+ 7+zVPhDmorLUvF8FKy1q22in9S7+QbcONMLfCj2ccSzz9d+S/yhIMMuj0jAtEZrr DSGvGCmdVX4fg5u+ZpBHo3/9AzZVBmyxRp8D9fwLOGEapm/aiuI9cJNhYpOlB1JQ o/dPrhyefnfne3ELJgnYyin7XffaqLItnRIFSn4Xgg9WDgCIJHYTRVXOP3rGbIyh U9rc0BvK897lzg== -----END CERTIFICATE-----Generated at Sat Dec 6 13:04:31 2025 by rpki-client