This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft File: Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft (raw, json) Hash identifier: r+oyfz3rr54HwyRUSDMzLmxbDZaycWOz0modL0D//rU= Subject key identifier: 23:D7:35:0C:A4:78:E2:2E:64:F0:11:13:21:F4:76:A0:BA:7D:8D:E5 Authority key identifier: 4B:17:7C:45:0D:20:35:06:7B:AA:26:92:0B:8A:4B:D3:6C:7B:33:14 Certificate issuer: /CN=4b177c450d2035067baa26920b8a4bd36c7b3314 Certificate serial: 019AF31CBB5F61F345284F3929E140CB7F4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft Manifest number: 0E74 Signing time: Sat 06 Dec 2025 10:02:17 +0000 Manifest this update: Sat 06 Dec 2025 10:02:17 +0000 Manifest next update: Sun 07 Dec 2025 10:02:17 +0000 Files and hashes: 1: Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl (hash: kvcBMHH1/tTew4mrFymVxRqxNtfIkeUFtdLwTFu79TM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:bb:5f:61:f3:45:28:4f:39:29:e1:40:cb:7f:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b177c450d2035067baa26920b8a4bd36c7b3314 Validity Not Before: Dec 6 10:02:17 2025 GMT Not After : Dec 7 10:02:17 2025 GMT Subject: CN=23d7350ca478e22e64f0111321f476a0ba7d8de5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:98:f1:ee:42:10:32:8b:8a:f3:91:bb:0b:1e: 6d:a8:77:b6:3b:59:89:14:c6:02:53:df:16:20:c6: 70:a7:e0:b5:2a:69:6b:94:9e:6f:5e:f2:93:b7:b3: 98:b0:65:00:c0:00:e6:3e:19:b9:a0:21:ec:88:27: 0e:e7:cc:4a:a8:18:b5:d8:a4:b1:00:30:ab:1a:60: c0:e3:d3:91:ac:f3:8d:03:e6:d3:8d:90:97:bf:f7: c3:36:5b:8f:88:e8:1f:e6:76:ff:f6:7c:99:a9:f7: d9:49:0b:db:6d:21:d8:59:8d:06:f6:d9:7d:f8:9f: 2f:22:03:44:c7:32:5e:7b:85:f8:b8:ce:7e:86:a5: 7d:4a:db:2d:d3:d9:c6:32:d5:48:13:50:e2:dc:26: 42:e3:0e:27:d7:7f:a5:b7:bb:a1:ee:81:d7:04:11: 16:f9:62:20:fe:85:7c:e2:6e:ea:cb:da:ec:8a:08: 05:2a:e4:91:e0:6f:92:6c:10:22:7e:80:60:99:7d: 86:17:d5:bf:75:63:66:86:aa:c9:7e:8f:9b:e3:9a: 86:f0:2c:67:9f:8e:01:75:99:a8:09:22:9b:83:9e: 38:d8:ce:1b:dc:16:ee:a6:f3:e2:ee:82:61:27:9b: 57:7f:ab:ba:4e:d3:dc:e3:5e:8a:cb:dc:ad:17:22: 5a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:D7:35:0C:A4:78:E2:2E:64:F0:11:13:21:F4:76:A0:BA:7D:8D:E5 X509v3 Authority Key Identifier: keyid:4B:17:7C:45:0D:20:35:06:7B:AA:26:92:0B:8A:4B:D3:6C:7B:33:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:51:7e:a2:bd:46:04:fe:da:6e:9f:7d:85:96:eb:fc:15:5a: 9b:23:b2:09:39:97:31:6b:ab:fe:a5:6e:b3:9b:84:18:95:f2: 5b:61:77:cb:bc:60:5e:a8:31:ef:a2:bf:9a:da:62:35:d4:35: 03:e2:a4:de:72:f6:25:c2:ef:15:b1:40:8a:ce:4d:62:7b:e8: 49:9b:d1:e4:0d:fc:fc:4f:7e:e1:09:4a:e0:af:2d:05:5a:eb: 3b:3a:33:51:51:5c:f1:18:d7:1d:6a:d3:db:32:38:ee:10:b0: 35:b7:6f:bc:d8:14:8b:e1:84:64:ba:96:80:e7:0c:ee:b0:1e: a5:25:ab:b2:49:2c:0c:01:b6:18:fb:7b:4a:2e:b0:2f:f7:80: 47:5d:46:93:57:01:db:bc:67:b7:d9:7f:f1:2c:2b:52:3a:4d: 64:de:4b:19:f0:40:ec:ef:b4:3c:a1:fa:7e:17:2a:56:68:36: 21:91:52:cb:b6:79:33:28:ab:49:1a:23:90:d8:74:35:ba:0a: bb:84:23:85:47:09:41:cc:44:c5:cd:76:33:14:1f:39:58:d0: b5:bf:7b:31:c3:3f:0b:fd:21:c3:c6:ed:a9:54:e9:48:c7:d3: 05:dd:b1:90:28:8c:3d:9d:67:b2:ca:9f:66:a6:46:a1:cf:b2: 33:4c:1b:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHLtfYfNFKE85KeFAy39KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiMTc3YzQ1MGQyMDM1MDY3YmFhMjY5MjBiOGE0YmQzNmM3 YjMzMTQwHhcNMjUxMjA2MTAwMjE3WhcNMjUxMjA3MTAwMjE3WjAzMTEwLwYDVQQD EygyM2Q3MzUwY2E0NzhlMjJlNjRmMDExMTMyMWY0NzZhMGJhN2Q4ZGU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu5jx7kIQMouK85G7Cx5tqHe2O1mJ FMYCU98WIMZwp+C1KmlrlJ5vXvKTt7OYsGUAwADmPhm5oCHsiCcO58xKqBi12KSx ADCrGmDA49ORrPONA+bTjZCXv/fDNluPiOgf5nb/9nyZqffZSQvbbSHYWY0G9tl9 +J8vIgNExzJee4X4uM5+hqV9Stst09nGMtVIE1Di3CZC4w4n13+lt7uh7oHXBBEW +WIg/oV84m7qy9rsiggFKuSR4G+SbBAifoBgmX2GF9W/dWNmhqrJfo+b45qG8Cxn n44BdZmoCSKbg5442M4b3BbupvPi7oJhJ5tXf6u6TtPc416Ky9ytFyJaBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCPXNQykeOIuZPAREyH0dqC6fY3lMB8GA1UdIwQY MBaAFEsXfEUNIDUGe6omkguKS9NsezMUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU3hkOFJRMGdOUVo3cWlhU0M0cEwwMng3TXhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS81YTZhYWQtYTRjNy00M2I5LThhOWUt OGQ3YjczNmE2OTVjLzEvU3hkOFJRMGdOUVo3cWlhU0M0cEwwMng3TXhRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS81YTZhYWQtYTRjNy00M2I5LThhOWUtOGQ3YjczNmE2OTVj LzEvU3hkOFJRMGdOUVo3cWlhU0M0cEwwMng3TXhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABlF+or1G BP7abp99hZbr/BVamyOyCTmXMWur/qVus5uEGJXyW2F3y7xgXqgx76K/mtpiNdQ1 A+Kk3nL2JcLvFbFAis5NYnvoSZvR5A38/E9+4QlK4K8tBVrrOzozUVFc8RjXHWrT 2zI47hCwNbdvvNgUi+GEZLqWgOcM7rAepSWrskksDAG2GPt7Si6wL/eAR11Gk1cB 27xnt9l/8SwrUjpNZN5LGfBA7O+0PKH6fhcqVmg2IZFSy7Z5MyirSRojkNh0NboK u4QjhUcJQcxExc12MxQfOVjQtb97McM/C/0hw8btqVTpSMfTBd2xkCiMPZ1nssqf ZqZGoc+yM0wbPg== -----END CERTIFICATE-----Generated at Sat Dec 6 12:34:42 2025 by rpki-client