This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft File: st8A84zO2SGXmTB2yzaFvzK8Xmk.mft (raw, json) Hash identifier: jae++i90pQRZuAhTcfDHoFq5Qnqrn0e/rrJ5QqPlvNA= Subject key identifier: 6E:4F:98:30:BA:D9:55:5E:F9:52:CF:A0:7F:66:3B:C8:B0:42:4D:4C Authority key identifier: B2:DF:00:F3:8C:CE:D9:21:97:99:30:76:CB:36:85:BF:32:BC:5E:69 Certificate issuer: /CN=b2df00f38cced92197993076cb3685bf32bc5e69 Certificate serial: 019AF1D1C7E65FFA643CBDFE930A19E1CE0D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/st8A84zO2SGXmTB2yzaFvzK8Xmk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft Manifest number: 12CA Signing time: Sat 06 Dec 2025 04:00:48 +0000 Manifest this update: Sat 06 Dec 2025 04:00:48 +0000 Manifest next update: Sun 07 Dec 2025 04:00:48 +0000 Files and hashes: 1: gbTQ5TFLqYdv3bxMQXRQSRcMIoc.roa (hash: rJ5djAjgxTYzs8j0EQsFjkKUrs3CGg0sgiibLKW68Ck=) 2: st8A84zO2SGXmTB2yzaFvzK8Xmk.crl (hash: kpvELL4AL/12FNiHf/1D2NNn0+2duig9Za/h4nHdaM4=) 3: wu3L_A3dWSKUeaU4lbLH5tQFGhs.roa (hash: QMvHM8N7K9OdWcNx9rJFFp+Z7jXiktM21WFlvU4ZxMM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft rsync://rpki.ripe.net/repository/DEFAULT/st8A84zO2SGXmTB2yzaFvzK8Xmk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:c7:e6:5f:fa:64:3c:bd:fe:93:0a:19:e1:ce:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2df00f38cced92197993076cb3685bf32bc5e69 Validity Not Before: Dec 6 04:00:48 2025 GMT Not After : Dec 7 04:00:48 2025 GMT Subject: CN=6e4f9830bad9555ef952cfa07f663bc8b0424d4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c7:61:85:65:8e:30:02:84:d2:b0:96:e1:3b: 0f:72:1f:1a:eb:8f:d9:8d:47:a4:da:95:97:45:03: a4:ad:03:d0:00:e7:5a:fd:b5:f8:f1:2e:4b:44:4a: 1c:27:13:32:fa:eb:f4:6d:6b:d3:d0:9d:c0:44:e7: 00:a3:23:56:89:e9:46:57:81:f9:2c:0a:fa:8f:58: c2:f0:e9:bf:9b:4f:80:7a:d3:85:c8:9c:43:5f:19: 6b:47:4f:df:c1:78:68:18:22:8e:09:bd:70:a7:42: 44:fd:34:9f:c3:9b:3f:7a:ed:74:ac:02:b6:5e:25: fd:2a:8e:eb:f4:eb:39:04:1e:d7:c3:67:c6:b9:fb: ba:4a:0f:25:01:15:57:c5:08:1d:99:25:0a:e9:22: d2:9a:9a:07:eb:d4:b0:18:bf:ec:50:2a:45:78:f9: 6a:dd:b9:bd:ef:7d:43:41:f4:e0:dd:31:c2:48:b2: 36:0d:9e:7e:56:59:17:69:46:17:dc:a4:76:49:58: 30:db:66:da:db:b9:95:16:10:95:56:c5:93:91:b6: e4:68:84:df:4b:c1:b6:94:4e:02:2d:d5:8c:39:c1: 9f:76:68:d4:6f:8a:c9:55:c4:89:e3:3c:2a:d1:47: 7a:d0:2b:60:08:e7:a7:f9:a7:7d:70:ee:f3:b7:d1: de:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:4F:98:30:BA:D9:55:5E:F9:52:CF:A0:7F:66:3B:C8:B0:42:4D:4C X509v3 Authority Key Identifier: keyid:B2:DF:00:F3:8C:CE:D9:21:97:99:30:76:CB:36:85:BF:32:BC:5E:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/st8A84zO2SGXmTB2yzaFvzK8Xmk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:40:a3:4c:92:0c:44:43:ac:89:ba:3b:34:10:a2:1b:f0:52: 5f:94:95:28:2f:e4:07:e7:df:6c:28:4b:ef:1e:e7:ff:b6:84: 7e:9e:9b:31:3e:69:13:31:db:54:5c:dc:ba:d9:d2:63:a0:2a: 66:83:d5:c5:ae:f3:36:83:72:db:ce:48:63:db:25:15:49:4e: 4e:a5:f3:ea:77:e1:b3:4a:2d:d5:60:5f:a4:c2:66:14:0c:27: 91:3d:2f:e7:fa:ba:0b:ad:83:b0:ba:16:ea:4a:0b:58:df:92: d8:d9:de:a4:35:62:02:39:d8:bd:67:9f:70:4e:b6:0c:17:5d: 53:af:95:fe:c1:9d:f2:03:4a:05:dc:de:4f:70:42:65:d6:ab: c3:d3:2c:71:db:f3:fd:9a:ab:e8:7e:53:7a:1f:e0:c2:6e:45: f5:e6:65:9f:9b:2d:ba:3e:6c:9d:a8:2c:f2:d4:35:f2:e5:5b: fe:c6:37:ee:a7:e2:42:dd:76:0f:03:84:9f:ac:19:14:9b:5f: 65:58:0f:6c:42:42:f8:85:e6:8f:bc:3f:68:d0:f5:ec:17:0c: 87:94:77:03:6c:bd:a4:8a:54:3e:b7:b2:51:59:fa:60:58:53: d8:fe:1d:14:2f:cf:47:4e:81:3a:0a:86:4f:c7:93:da:25:f7: 13:b6:ad:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0cfmX/pkPL3+kwoZ4c4NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyZGYwMGYzOGNjZWQ5MjE5Nzk5MzA3NmNiMzY4NWJmMzJi YzVlNjkwHhcNMjUxMjA2MDQwMDQ4WhcNMjUxMjA3MDQwMDQ4WjAzMTEwLwYDVQQD Eyg2ZTRmOTgzMGJhZDk1NTVlZjk1MmNmYTA3ZjY2M2JjOGIwNDI0ZDRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqMdhhWWOMAKE0rCW4TsPch8a64/Z jUek2pWXRQOkrQPQAOda/bX48S5LREocJxMy+uv0bWvT0J3AROcAoyNWielGV4H5 LAr6j1jC8Om/m0+AetOFyJxDXxlrR0/fwXhoGCKOCb1wp0JE/TSfw5s/eu10rAK2 XiX9Ko7r9Os5BB7Xw2fGufu6Sg8lARVXxQgdmSUK6SLSmpoH69SwGL/sUCpFePlq 3bm9731DQfTg3THCSLI2DZ5+VlkXaUYX3KR2SVgw22ba27mVFhCVVsWTkbbkaITf S8G2lE4CLdWMOcGfdmjUb4rJVcSJ4zwq0Ud60CtgCOen+ad9cO7zt9HeaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG5PmDC62VVe+VLPoH9mO8iwQk1MMB8GA1UdIwQY MBaAFLLfAPOMztkhl5kwdss2hb8yvF5pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3Q4QTg0ek8yU0dYbVRCMnl6YUZ2eks4WG1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83MDZmYTgtNTJhMi00ZWQyLWEyZTEt MDRlNGU0ZGM1ZmJhLzEvc3Q4QTg0ek8yU0dYbVRCMnl6YUZ2eks4WG1rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi83MDZmYTgtNTJhMi00ZWQyLWEyZTEtMDRlNGU0ZGM1ZmJh LzEvc3Q4QTg0ek8yU0dYbVRCMnl6YUZ2eks4WG1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIECjTJIM REOsibo7NBCiG/BSX5SVKC/kB+ffbChL7x7n/7aEfp6bMT5pEzHbVFzcutnSY6Aq ZoPVxa7zNoNy285IY9slFUlOTqXz6nfhs0ot1WBfpMJmFAwnkT0v5/q6C62DsLoW 6koLWN+S2NnepDViAjnYvWefcE62DBddU6+V/sGd8gNKBdzeT3BCZdarw9Mscdvz /Zqr6H5Teh/gwm5F9eZln5stuj5snags8tQ18uVb/sY37qfiQt12DwOEn6wZFJtf ZVgPbEJC+IXmj7w/aND17BcMh5R3A2y9pIpUPreyUVn6YFhT2P4dFC/PR06BOgqG T8eT2iX3E7atwQ== -----END CERTIFICATE-----Generated at Sat Dec 6 14:30:41 2025 by rpki-client