This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft File: stsr_PWdmcpwgzcI_TADLyP-9IU.mft (raw, json) Hash identifier: 0ggrFyIwoytfhn8WItMM0HaPC8TPehVX5BU26lsNOVw= Subject key identifier: 96:2E:F7:F3:87:E8:1F:BE:5E:99:12:65:24:D1:C0:A4:5A:59:59:F4 Authority key identifier: B2:DB:2B:FC:F5:9D:99:CA:70:83:37:08:FD:30:03:2F:23:FE:F4:85 Certificate issuer: /CN=b2db2bfcf59d99ca70833708fd30032f23fef485 Certificate serial: 019AF1D21C50936884B97D9FFD9550A0035A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft Manifest number: 172D Signing time: Sat 06 Dec 2025 04:01:10 +0000 Manifest this update: Sat 06 Dec 2025 04:01:10 +0000 Manifest next update: Sun 07 Dec 2025 04:01:10 +0000 Files and hashes: 1: 8OSq_me_piuY9aTEESBxQ_Nz1Zc.roa (hash: jli/f4rA8lzODNLo/sC1h2DAhvEwSPZMgYQGoXMtAvM=) 2: stsr_PWdmcpwgzcI_TADLyP-9IU.crl (hash: jEoZrV9ZQmG8Y113vPqxfWuk/K1AqJETfpVyz9+3Bro=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:1c:50:93:68:84:b9:7d:9f:fd:95:50:a0:03:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2db2bfcf59d99ca70833708fd30032f23fef485 Validity Not Before: Dec 6 04:01:10 2025 GMT Not After : Dec 7 04:01:10 2025 GMT Subject: CN=962ef7f387e81fbe5e99126524d1c0a45a5959f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3b:53:34:4a:ce:7c:3b:f8:60:f3:f1:a0:96: 20:50:e2:e2:0c:ac:52:35:d1:3c:57:09:ad:d2:28: 55:26:55:92:9c:26:45:16:ac:c4:43:64:fb:21:d6: 0a:07:50:fa:ae:23:fa:25:0a:57:1f:eb:36:53:15: 08:d1:a4:bc:ae:a4:99:f1:2d:b1:83:54:0f:e2:f0: b2:aa:6c:4d:18:81:66:d7:22:58:bc:12:36:c3:11: ac:f0:6a:81:af:6d:07:9f:1b:94:cb:3a:73:89:c8: 62:ff:20:8a:65:b2:9b:86:a0:cb:3b:41:b3:54:19: e3:a8:38:27:a3:97:4d:5a:84:39:a4:7e:c1:6f:74: 7d:2a:84:fd:cc:50:28:a7:90:6c:c5:47:88:9b:e5: 2a:a6:0e:a3:d2:85:c4:b6:13:ac:f3:68:18:7a:91: f5:e9:8a:ec:29:e4:5c:a6:3d:c5:f9:8e:45:0c:9e: 50:22:28:8c:25:e0:29:a4:16:0c:a9:6e:f2:bb:09: d1:9e:22:c0:99:07:af:61:8e:4c:af:47:7b:70:f1: 4f:c0:b3:40:a7:03:d3:ca:47:88:66:51:07:5e:12: 72:81:ba:fc:41:f4:92:52:05:91:75:1e:08:31:d1: 54:7f:31:6d:4c:35:87:64:2e:09:35:2d:f5:70:a8: 61:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:2E:F7:F3:87:E8:1F:BE:5E:99:12:65:24:D1:C0:A4:5A:59:59:F4 X509v3 Authority Key Identifier: keyid:B2:DB:2B:FC:F5:9D:99:CA:70:83:37:08:FD:30:03:2F:23:FE:F4:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:7a:79:2f:06:50:4f:6a:49:82:a8:04:e3:86:db:7c:19:3b: 56:62:88:a9:1d:7b:53:88:80:cf:66:ba:0e:57:8b:97:b8:2f: e4:59:15:50:60:b6:e0:29:73:ca:b6:ae:1a:5d:eb:6e:05:14: 8e:3c:d1:e2:60:cc:d1:0b:cf:93:84:9b:79:55:c9:51:76:0d: 5b:9f:87:c9:9f:5a:40:45:fe:e1:bb:32:47:db:95:60:8a:a9: 80:de:27:f4:0c:7f:a5:c7:b4:07:4a:a7:00:60:02:8a:ee:ed: 57:12:f7:41:fe:83:63:54:11:6f:f2:a7:4d:dd:f4:14:02:06: 0b:29:c3:d5:77:2d:56:2a:7b:72:f1:dc:e2:d8:71:7b:ed:86: 7d:35:8b:4e:f8:7d:8d:a7:f4:3b:89:32:44:15:82:7a:b7:66: a3:6c:00:e6:cd:fa:aa:a6:fe:2f:da:72:95:8e:b3:3c:e5:d3: 48:4d:78:72:de:7f:97:23:1e:cd:36:d1:02:a7:df:5a:e2:4d: 98:e5:9d:d7:a4:b2:0c:6a:98:b9:df:7e:6d:27:64:f5:52:d8: 79:e8:29:e0:4d:dc:00:8a:be:db:75:00:45:9e:79:fc:fb:33: 68:12:2f:9c:7b:a8:d6:dc:76:20:df:fc:4a:08:04:b4:ff:94: 05:22:46:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0hxQk2iEuX2f/ZVQoANaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyZGIyYmZjZjU5ZDk5Y2E3MDgzMzcwOGZkMzAwMzJmMjNm ZWY0ODUwHhcNMjUxMjA2MDQwMTEwWhcNMjUxMjA3MDQwMTEwWjAzMTEwLwYDVQQD Eyg5NjJlZjdmMzg3ZTgxZmJlNWU5OTEyNjUyNGQxYzBhNDVhNTk1OWY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApjtTNErOfDv4YPPxoJYgUOLiDKxS NdE8Vwmt0ihVJlWSnCZFFqzEQ2T7IdYKB1D6riP6JQpXH+s2UxUI0aS8rqSZ8S2x g1QP4vCyqmxNGIFm1yJYvBI2wxGs8GqBr20HnxuUyzpzichi/yCKZbKbhqDLO0Gz VBnjqDgno5dNWoQ5pH7Bb3R9KoT9zFAop5BsxUeIm+Uqpg6j0oXEthOs82gYepH1 6YrsKeRcpj3F+Y5FDJ5QIiiMJeAppBYMqW7yuwnRniLAmQevYY5Mr0d7cPFPwLNA pwPTykeIZlEHXhJygbr8QfSSUgWRdR4IMdFUfzFtTDWHZC4JNS31cKhh6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJYu9/OH6B++XpkSZSTRwKRaWVn0MB8GA1UdIwQY MBaAFLLbK/z1nZnKcIM3CP0wAy8j/vSFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3Rzcl9QV2RtY3B3Z3pjSV9UQURMeVAtOUlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC8zOWRiNmMtZjIzYi00YzliLTlmNzkt NzM0OTk0YzUyYzFmLzEvc3Rzcl9QV2RtY3B3Z3pjSV9UQURMeVAtOUlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC8zOWRiNmMtZjIzYi00YzliLTlmNzktNzM0OTk0YzUyYzFm LzEvc3Rzcl9QV2RtY3B3Z3pjSV9UQURMeVAtOUlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUXp5LwZQ T2pJgqgE44bbfBk7VmKIqR17U4iAz2a6DleLl7gv5FkVUGC24ClzyrauGl3rbgUU jjzR4mDM0QvPk4SbeVXJUXYNW5+HyZ9aQEX+4bsyR9uVYIqpgN4n9Ax/pce0B0qn AGACiu7tVxL3Qf6DY1QRb/KnTd30FAIGCynD1XctVip7cvHc4thxe+2GfTWLTvh9 jaf0O4kyRBWCerdmo2wA5s36qqb+L9pylY6zPOXTSE14ct5/lyMezTbRAqffWuJN mOWd16SyDGqYud9+bSdk9VLYeegp4E3cAIq+23UARZ55/PszaBIvnHuo1tx2IN/8 SggEtP+UBSJGlQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:20:22 2025 by rpki-client