This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft File: Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft (raw, json) Hash identifier: /sxuQrL4lGa+/CTNikFl1nLLTX/t7S+tBDRHZb62IwQ= Subject key identifier: F7:51:40:31:8A:90:4A:AE:EA:CA:08:1A:53:BA:3A:2D:8F:63:22:1B Authority key identifier: 4A:1D:20:BE:77:E1:22:32:32:3C:14:22:FB:51:98:FE:A0:08:60:34 Certificate issuer: /CN=4a1d20be77e12232323c1422fb5198fea0086034 Certificate serial: 019AF163E97D286D60BED036C79D4DA0F128 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 02:00:48 +0000 Manifest this update: Sat 06 Dec 2025 02:00:48 +0000 Manifest next update: Sun 07 Dec 2025 02:00:48 +0000 Files and hashes: 1: Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl (hash: e6R93wQUHjHO5/pJZaepAu49dkh/g4aZwIiFiB6tqR8=) 2: mN2qB1BO4S5r9HWkXJU36eJQAJo.roa (hash: CEQM9W3lMs7LPoWAqhYjN1IkeHCfM/C5tJypbGgHYt4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:63:e9:7d:28:6d:60:be:d0:36:c7:9d:4d:a0:f1:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4a1d20be77e12232323c1422fb5198fea0086034 Validity Not Before: Dec 6 02:00:48 2025 GMT Not After : Dec 7 02:00:48 2025 GMT Subject: CN=f75140318a904aaeeaca081a53ba3a2d8f63221b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:08:c1:0f:9a:06:9a:89:8b:54:17:7d:1e:8b: ca:b9:d7:91:61:fb:85:41:3c:44:ce:72:ca:18:bd: f2:96:60:eb:d0:cc:28:db:e7:db:02:33:13:18:a6: 0c:8a:82:99:56:87:e2:25:70:21:1a:20:05:54:a2: 13:7f:f2:b8:9c:9d:7d:3e:23:43:1f:20:c9:f7:00: c4:1e:9b:8b:07:d7:b5:a9:b0:5e:71:d1:c4:a3:69: 51:2e:8c:2b:94:d2:fe:b7:e9:d5:79:c0:a7:f7:f1: cc:29:6f:20:ec:c2:b5:c9:b1:1e:52:b9:71:94:c5: 91:e3:7d:e9:01:1a:1e:eb:ba:2e:89:4a:8d:65:85: a6:4e:4b:5d:d7:0a:a7:92:e8:fa:47:ba:b2:af:db: d3:ac:55:6d:19:c5:0b:b2:9a:be:7d:b2:21:1f:b1: 11:61:58:5b:cf:62:06:3a:3e:8a:de:02:79:4c:c5: e3:df:c5:11:f1:3d:ed:1f:46:dd:39:ae:75:da:8a: fd:2f:13:cd:e1:66:a5:b4:2d:4e:ff:02:70:8c:ae: 21:49:81:ef:aa:de:ab:53:20:12:fc:03:fe:06:36: 78:e8:ee:27:f8:88:05:db:8d:0b:21:72:91:26:51: 01:fd:71:e9:c9:58:f3:f3:21:ac:05:97:bc:4d:d9: 0a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:51:40:31:8A:90:4A:AE:EA:CA:08:1A:53:BA:3A:2D:8F:63:22:1B X509v3 Authority Key Identifier: keyid:4A:1D:20:BE:77:E1:22:32:32:3C:14:22:FB:51:98:FE:A0:08:60:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:4f:35:60:2c:11:38:30:b8:20:2c:1b:c7:15:19:04:7e:ec: 79:a6:ef:75:e9:ba:4f:85:9a:61:b9:9b:c8:3a:a9:e6:ba:65: be:3e:32:5a:23:8f:15:ff:84:6a:19:7d:d9:6f:9a:b8:e1:f0: 30:35:cf:8c:a1:a9:df:93:b4:46:86:26:41:68:54:d6:7d:39: 2d:88:57:6f:86:78:10:da:ab:44:36:d7:a6:f7:be:88:94:2a: ef:74:16:52:00:21:77:98:a4:ee:2d:6c:de:a2:2c:73:a5:9a: 7d:b8:7c:46:d5:09:b9:07:47:bd:55:0c:2b:86:b7:6f:ba:98: 13:97:e0:ef:1c:48:98:eb:b5:9d:9f:b2:88:3b:2a:43:a5:d8: 16:af:51:bf:cb:b1:2a:ba:f5:2b:11:00:f7:7c:9a:1b:76:74: 13:f6:91:24:20:62:99:f9:b3:c3:04:33:17:be:f5:0b:df:ff: 43:d6:c7:06:fa:ef:22:a5:fe:dc:44:b0:23:30:05:94:f6:20: 25:d8:8a:15:7a:e6:fc:17:e7:fd:30:32:1a:66:ed:d9:6f:6a: f7:95:9a:1b:db:9b:94:fb:34:7e:2c:17:bc:2a:01:1d:55:c6: c5:a3:c2:d5:98:04:a4:21:43:05:d4:b4:b6:4c:32:15:3b:2d: c7:0d:41:88 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxY+l9KG1gvtA2x51NoPEoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhMWQyMGJlNzdlMTIyMzIzMjNjMTQyMmZiNTE5OGZlYTAw ODYwMzQwHhcNMjUxMjA2MDIwMDQ4WhcNMjUxMjA3MDIwMDQ4WjAzMTEwLwYDVQQD EyhmNzUxNDAzMThhOTA0YWFlZWFjYTA4MWE1M2JhM2EyZDhmNjMyMjFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuAjBD5oGmomLVBd9HovKudeRYfuF QTxEznLKGL3ylmDr0Mwo2+fbAjMTGKYMioKZVofiJXAhGiAFVKITf/K4nJ19PiND HyDJ9wDEHpuLB9e1qbBecdHEo2lRLowrlNL+t+nVecCn9/HMKW8g7MK1ybEeUrlx lMWR433pARoe67ouiUqNZYWmTktd1wqnkuj6R7qyr9vTrFVtGcULspq+fbIhH7ER YVhbz2IGOj6K3gJ5TMXj38UR8T3tH0bdOa512or9LxPN4WaltC1O/wJwjK4hSYHv qt6rUyAS/AP+BjZ46O4n+IgF240LIXKRJlEB/XHpyVjz8yGsBZe8TdkKbwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPdRQDGKkEqu6soIGlO6Oi2PYyIbMB8GA1UdIwQY MBaAFEodIL534SIyMjwUIvtRmP6gCGA0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU2gwZ3ZuZmhJakl5UEJRaS0xR1lfcUFJWURRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi82M2M5ZGItOGFiOS00YzFlLWFmMjct ZWQyODg1MWVjYjc2LzEvU2gwZ3ZuZmhJakl5UEJRaS0xR1lfcUFJWURRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi82M2M5ZGItOGFiOS00YzFlLWFmMjctZWQyODg1MWVjYjc2 LzEvU2gwZ3ZuZmhJakl5UEJRaS0xR1lfcUFJWURRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnk81YCwR ODC4ICwbxxUZBH7seabvdem6T4WaYbmbyDqp5rplvj4yWiOPFf+Eahl92W+auOHw MDXPjKGp35O0RoYmQWhU1n05LYhXb4Z4ENqrRDbXpve+iJQq73QWUgAhd5ik7i1s 3qIsc6Wafbh8RtUJuQdHvVUMK4a3b7qYE5fg7xxImOu1nZ+yiDsqQ6XYFq9Rv8ux Krr1KxEA93yaG3Z0E/aRJCBimfmzwwQzF771C9//Q9bHBvrvIqX+3ESwIzAFlPYg JdiKFXrm/Bfn/TAyGmbt2W9q95WaG9ublPs0fiwXvCoBHVXGxaPC1ZgEpCFDBdS0 tkwyFTstxw1BiA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:01:31 2025 by rpki-client