This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft File: sbIBNjzMVWvsiHAladjTgaDolWY.mft (raw, json) Hash identifier: +4dZMevG0Yki7vzAWBCsrBSIynTmlWur9RKcDxsKTqA= Subject key identifier: 32:B7:A3:83:74:1B:5D:DB:2D:4C:D9:79:78:14:99:15:C4:94:FB:26 Authority key identifier: B1:B2:01:36:3C:CC:55:6B:EC:88:70:25:69:D8:D3:81:A0:E8:95:66 Certificate issuer: /CN=b1b201363ccc556bec88702569d8d381a0e89566 Certificate serial: 019AF12E4727660F0C7B2F9CF6920A32625D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sbIBNjzMVWvsiHAladjTgaDolWY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft Manifest number: 0DDC Signing time: Sat 06 Dec 2025 01:02:13 +0000 Manifest this update: Sat 06 Dec 2025 01:02:13 +0000 Manifest next update: Sun 07 Dec 2025 01:02:13 +0000 Files and hashes: 1: lqeFydVXrdHwpq6mWSJTL5OgZAY.roa (hash: YaK2y/qIg0D8N7eA9vbxZ0CRyImPi+H1Zg28ZURYmRg=) 2: sbIBNjzMVWvsiHAladjTgaDolWY.crl (hash: 0/3mLeImhOTHIgFJs371B//1DhtnHVX3nTLGsUJJlBM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.crl rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft rsync://rpki.ripe.net/repository/DEFAULT/sbIBNjzMVWvsiHAladjTgaDolWY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:47:27:66:0f:0c:7b:2f:9c:f6:92:0a:32:62:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1b201363ccc556bec88702569d8d381a0e89566 Validity Not Before: Dec 6 01:02:13 2025 GMT Not After : Dec 7 01:02:13 2025 GMT Subject: CN=32b7a383741b5ddb2d4cd97978149915c494fb26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:41:76:7e:20:d9:80:6f:53:74:6a:a3:c0:15: 6b:97:23:73:eb:f3:4c:79:a4:da:92:fa:18:8a:3c: 38:56:02:e2:4a:2d:10:c5:bf:62:7d:5c:6c:9a:0d: 19:c4:fc:c6:a5:81:ce:00:0b:f3:d0:26:c2:5e:0d: 94:36:df:5c:e4:73:3b:b6:90:cd:af:af:1e:8f:54: fa:1c:0d:c0:2e:5c:92:c3:98:a3:34:0a:64:fd:a9: 7e:46:28:6a:e7:67:1f:b5:b0:d0:90:7e:29:8d:bc: 9e:b9:de:6b:8e:e1:dd:b5:ef:7a:32:13:33:f7:ac: 25:2c:5f:74:31:87:4e:5f:d4:87:e0:d1:10:c9:7a: df:75:35:ca:e2:ea:18:3a:90:9a:ea:65:2c:56:59: 4b:b7:61:c4:2a:97:58:d2:63:2a:87:13:d5:81:39: 0e:2f:46:c2:c9:66:b8:7c:47:dd:7c:e7:97:37:9c: 68:4d:62:47:78:e9:d4:8e:45:d5:e4:78:79:77:9c: 7c:70:18:40:80:f3:b5:16:fd:df:02:f5:42:b0:d0: 94:b6:38:9f:c2:ca:4a:87:31:bd:b0:a1:66:0e:db: ac:07:68:d5:8d:b2:82:2e:86:a4:14:24:25:86:33: d5:c6:ca:04:64:a1:12:fd:a7:bb:5f:ce:0a:7d:b4: dd:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:B7:A3:83:74:1B:5D:DB:2D:4C:D9:79:78:14:99:15:C4:94:FB:26 X509v3 Authority Key Identifier: keyid:B1:B2:01:36:3C:CC:55:6B:EC:88:70:25:69:D8:D3:81:A0:E8:95:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sbIBNjzMVWvsiHAladjTgaDolWY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:80:c2:38:d4:af:3d:09:6f:be:50:d7:34:ce:b4:12:2b:18: 06:ce:60:83:83:12:b6:19:60:8f:d4:95:f2:a0:01:81:46:ad: b7:60:6c:5b:9c:73:0d:7d:6e:ab:ca:5a:ce:c1:5f:a5:66:4a: e7:ab:88:8b:2f:6b:b2:60:60:b5:2b:06:37:ad:8c:5c:bf:80: e8:71:23:91:07:ca:c8:82:72:08:e5:80:f6:64:b6:bf:06:c2: ee:e4:e7:9c:58:17:54:f6:bd:7b:38:59:da:a8:b7:51:39:0a: ea:dd:f9:78:6e:10:40:49:2a:d0:0c:e1:6a:73:a3:13:00:6f: a0:fb:e8:1e:55:d6:4b:47:15:71:0d:c2:a1:37:e3:1a:4a:b0: 7f:67:0b:38:58:28:0a:4a:e0:cc:ba:bb:1f:82:19:1d:5c:f2: f1:4e:e3:35:8d:fa:0c:2c:2f:ef:94:81:b6:a1:1f:ad:6a:89: 13:5d:68:ba:51:c4:5b:15:a2:6e:06:d2:ae:b4:a3:7f:41:5d: d8:e2:5f:79:bd:8f:55:de:cf:de:f8:61:76:fa:59:42:09:6d: 60:b0:42:1e:90:2f:7b:9d:a4:87:64:f1:53:ea:51:e7:e7:41: a3:54:95:a9:3e:39:0c:6f:8d:c2:93:21:21:09:9d:cf:fa:2c: 32:7e:76:12 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLkcnZg8Mey+c9pIKMmJdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxYjIwMTM2M2NjYzU1NmJlYzg4NzAyNTY5ZDhkMzgxYTBl ODk1NjYwHhcNMjUxMjA2MDEwMjEzWhcNMjUxMjA3MDEwMjEzWjAzMTEwLwYDVQQD EygzMmI3YTM4Mzc0MWI1ZGRiMmQ0Y2Q5Nzk3ODE0OTkxNWM0OTRmYjI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2EF2fiDZgG9TdGqjwBVrlyNz6/NM eaTakvoYijw4VgLiSi0Qxb9ifVxsmg0ZxPzGpYHOAAvz0CbCXg2UNt9c5HM7tpDN r68ej1T6HA3ALlySw5ijNApk/al+Rihq52cftbDQkH4pjbyeud5rjuHdte96MhMz 96wlLF90MYdOX9SH4NEQyXrfdTXK4uoYOpCa6mUsVllLt2HEKpdY0mMqhxPVgTkO L0bCyWa4fEfdfOeXN5xoTWJHeOnUjkXV5Hh5d5x8cBhAgPO1Fv3fAvVCsNCUtjif wspKhzG9sKFmDtusB2jVjbKCLoakFCQlhjPVxsoEZKES/ae7X84KfbTdzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDK3o4N0G13bLUzZeXgUmRXElPsmMB8GA1UdIwQY MBaAFLGyATY8zFVr7IhwJWnY04Gg6JVmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2JJQk5qek1WV3ZzaUhBbGFkalRnYURvbFdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi81YWU4YmYtZjk5OS00Yzc0LTlmNDYt MzI1NjI3YzQ2NmUyLzEvc2JJQk5qek1WV3ZzaUhBbGFkalRnYURvbFdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNi81YWU4YmYtZjk5OS00Yzc0LTlmNDYtMzI1NjI3YzQ2NmUy LzEvc2JJQk5qek1WV3ZzaUhBbGFkalRnYURvbFdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABoDCONSv PQlvvlDXNM60EisYBs5gg4MSthlgj9SV8qABgUatt2BsW5xzDX1uq8pazsFfpWZK 56uIiy9rsmBgtSsGN62MXL+A6HEjkQfKyIJyCOWA9mS2vwbC7uTnnFgXVPa9ezhZ 2qi3UTkK6t35eG4QQEkq0AzhanOjEwBvoPvoHlXWS0cVcQ3CoTfjGkqwf2cLOFgo CkrgzLq7H4IZHVzy8U7jNY36DCwv75SBtqEfrWqJE11oulHEWxWibgbSrrSjf0Fd 2OJfeb2PVd7P3vhhdvpZQgltYLBCHpAve52kh2TxU+pR5+dBo1SVqT45DG+NwpMh IQmdz/osMn52Eg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:26:21 2025 by rpki-client