This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.mft File: StFxca6oV2xDHGN0GGkcnB9VdRY.mft (raw, json) Hash identifier: GHMtn51wHlmJWnIgq+0evvWXYqaCLl+iiOewicl2ksM= Subject key identifier: C6:19:83:DC:12:51:A7:C4:BB:63:5A:E1:7E:55:CD:BA:61:C0:43:58 Authority key identifier: 4A:D1:71:71:AE:A8:57:6C:43:1C:63:74:18:69:1C:9C:1F:55:75:16 Certificate issuer: /CN=4ad17171aea8576c431c637418691c9c1f557516 Certificate serial: 019AF27664A3063FE36BE7A83A07ADBD616E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StFxca6oV2xDHGN0GGkcnB9VdRY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.mft Manifest number: 140E Signing time: Sat 06 Dec 2025 07:00:36 +0000 Manifest this update: Sat 06 Dec 2025 07:00:36 +0000 Manifest next update: Sun 07 Dec 2025 07:00:36 +0000 Files and hashes: 1: SHXTlexCU640W6zbYxhCmQn8Cw4.roa (hash: k2ku6jDV9cI0tnwN43DyJg87QMwSJe7N2AG8yOiDsPE=) 2: StFxca6oV2xDHGN0GGkcnB9VdRY.crl (hash: yZXOQLWTELVzrZDk3eejF0NPnl3/kP8+nNjXfWtK4QA=) 3: TPLmVhwEw6jgrdMtUuhmz_0dBbo.roa (hash: wGkqaR7oIjPHLb7cXn0PbtIJ1WFfuKuRjd0OcbETY00=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.mft rsync://rpki.ripe.net/repository/DEFAULT/StFxca6oV2xDHGN0GGkcnB9VdRY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:64:a3:06:3f:e3:6b:e7:a8:3a:07:ad:bd:61:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ad17171aea8576c431c637418691c9c1f557516 Validity Not Before: Dec 6 07:00:36 2025 GMT Not After : Dec 7 07:00:36 2025 GMT Subject: CN=c61983dc1251a7c4bb635ae17e55cdba61c04358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:48:3c:3e:83:72:74:3f:0d:14:b2:6b:63:e7: ad:f2:2c:16:f1:44:c7:fe:e4:6e:18:2d:25:86:86: b2:d5:aa:04:2d:ee:ff:21:19:cb:f7:a7:6f:0b:40: 84:db:42:25:e0:ed:52:7a:d5:bf:2e:cf:b6:1c:40: ae:f6:74:59:07:75:8e:60:74:bb:85:97:06:e7:4a: 3a:44:e5:f4:c8:84:cc:32:6f:13:2e:e0:ca:91:dd: 69:4f:56:7b:12:99:4b:da:51:5e:1e:3f:91:da:8e: e5:f4:98:0e:08:e5:32:a0:8d:73:92:e9:c2:bf:94: a8:68:1c:5e:31:ba:a5:02:47:68:12:95:54:9f:36: 9b:22:12:14:53:63:01:55:6c:c0:64:0b:ba:57:59: 38:f1:5c:f0:43:19:53:ba:93:f1:68:44:59:83:34: 35:e2:9b:9a:f1:c6:ca:ec:88:92:de:4a:6f:7b:db: ab:f8:18:b9:a5:2b:62:68:63:6b:f2:02:34:d9:e9: 60:b0:c2:16:2c:46:c9:6f:44:d7:8a:73:05:07:36: 7d:06:34:6d:dc:42:0c:c0:48:78:3c:f2:ff:40:8d: 59:d4:82:02:b7:4d:01:8c:a4:04:47:9d:23:15:c6: 65:65:d8:77:72:8a:5b:c0:bd:bb:b7:9c:ce:b8:ca: 37:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:19:83:DC:12:51:A7:C4:BB:63:5A:E1:7E:55:CD:BA:61:C0:43:58 X509v3 Authority Key Identifier: keyid:4A:D1:71:71:AE:A8:57:6C:43:1C:63:74:18:69:1C:9C:1F:55:75:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StFxca6oV2xDHGN0GGkcnB9VdRY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:5a:dd:db:e6:6a:b6:6b:53:78:89:39:1d:bc:2a:50:63:de: 65:5e:00:ad:6e:a7:76:56:a0:4f:13:6e:56:34:1d:39:c0:7b: 5c:e8:92:f3:88:b7:09:0f:96:4c:df:50:da:96:41:2a:ba:e9: 69:23:8c:2e:78:4e:bc:a9:a5:da:3d:92:99:80:5b:fe:e4:cc: 72:76:45:89:7a:b9:a3:39:4c:4e:71:70:5a:8b:a6:b7:aa:c4: 66:c6:33:93:a3:81:db:5b:02:de:51:5f:22:88:de:f1:af:62: 6d:d5:61:16:1a:d1:93:ee:c6:43:11:fe:7d:30:87:11:c6:a7: 26:76:03:1b:a1:93:a7:50:d0:52:53:05:ce:bc:c0:3d:7f:34: fd:95:e4:32:6a:fd:39:5e:40:af:0a:a2:58:ba:4b:23:3a:c1: 50:b8:e0:6d:29:ce:00:33:6e:5e:88:48:77:23:33:b8:6a:a8: 97:f3:92:e6:64:39:65:ba:7d:3f:61:24:4a:85:3e:67:61:58: 96:cd:dc:2f:55:01:99:c8:32:e1:01:d8:1c:cf:5d:19:78:a5: 29:54:d3:3e:32:af:33:e1:3a:d1:ea:d3:5f:2f:d0:7b:5d:62: 57:b5:77:05:92:49:36:2b:b6:11:60:60:9c:87:a7:be:b8:03: 9c:3a:89:94 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydmSjBj/ja+eoOgetvWFuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhZDE3MTcxYWVhODU3NmM0MzFjNjM3NDE4NjkxYzljMWY1 NTc1MTYwHhcNMjUxMjA2MDcwMDM2WhcNMjUxMjA3MDcwMDM2WjAzMTEwLwYDVQQD EyhjNjE5ODNkYzEyNTFhN2M0YmI2MzVhZTE3ZTU1Y2RiYTYxYzA0MzU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Ug8PoNydD8NFLJrY+et8iwW8UTH /uRuGC0lhoay1aoELe7/IRnL96dvC0CE20Il4O1SetW/Ls+2HECu9nRZB3WOYHS7 hZcG50o6ROX0yITMMm8TLuDKkd1pT1Z7EplL2lFeHj+R2o7l9JgOCOUyoI1zkunC v5SoaBxeMbqlAkdoEpVUnzabIhIUU2MBVWzAZAu6V1k48VzwQxlTupPxaERZgzQ1 4pua8cbK7IiS3kpve9ur+Bi5pStiaGNr8gI02elgsMIWLEbJb0TXinMFBzZ9BjRt 3EIMwEh4PPL/QI1Z1IICt00BjKQER50jFcZlZdh3copbwL27t5zOuMo3/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMYZg9wSUafEu2Na4X5VzbphwENYMB8GA1UdIwQY MBaAFErRcXGuqFdsQxxjdBhpHJwfVXUWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU3RGeGNhNm9WMnhESEdOMEdHa2NuQjlWZFJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy81YTNjZDEtODEwOS00YzY2LTgzMjQt NDgyOGQ2NTEwNGUxLzEvU3RGeGNhNm9WMnhESEdOMEdHa2NuQjlWZFJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy81YTNjZDEtODEwOS00YzY2LTgzMjQtNDgyOGQ2NTEwNGUx LzEvU3RGeGNhNm9WMnhESEdOMEdHa2NuQjlWZFJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK1rd2+Zq tmtTeIk5HbwqUGPeZV4ArW6ndlagTxNuVjQdOcB7XOiS84i3CQ+WTN9Q2pZBKrrp aSOMLnhOvKml2j2SmYBb/uTMcnZFiXq5ozlMTnFwWoumt6rEZsYzk6OB21sC3lFf Ioje8a9ibdVhFhrRk+7GQxH+fTCHEcanJnYDG6GTp1DQUlMFzrzAPX80/ZXkMmr9 OV5ArwqiWLpLIzrBULjgbSnOADNuXohIdyMzuGqol/OS5mQ5Zbp9P2EkSoU+Z2FY ls3cL1UBmcgy4QHYHM9dGXilKVTTPjKvM+E60erTXy/Qe11iV7V3BZJJNiu2EWBg nIenvrgDnDqJlA== -----END CERTIFICATE-----Generated at Sat Dec 6 10:16:19 2025 by rpki-client