This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/284b3e-2d4f-412a-8862-539e1ac821d7/1/sNcTFlrGKE-0HV38gmV3_B2gtzA.mft File: sNcTFlrGKE-0HV38gmV3_B2gtzA.mft (raw, json) Hash identifier: /jl/EtNtH3Mxl0fZ8dnPrkoXYAOdvIP0EhJD/+ZxJRE= Subject key identifier: 62:A6:C7:A2:A0:B1:6B:A4:39:D0:8D:8C:9C:1A:00:80:8F:9B:55:C1 Authority key identifier: B0:D7:13:16:5A:C6:28:4F:B4:1D:5D:FC:82:65:77:FC:1D:A0:B7:30 Certificate issuer: /CN=b0d713165ac6284fb41d5dfc826577fc1da0b730 Certificate serial: 019B34C4431E522DADA3963988DF290342D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sNcTFlrGKE-0HV38gmV3_B2gtzA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/284b3e-2d4f-412a-8862-539e1ac821d7/1/sNcTFlrGKE-0HV38gmV3_B2gtzA.mft Manifest number: 149A Signing time: Fri 19 Dec 2025 04:00:36 +0000 Manifest this update: Fri 19 Dec 2025 04:00:36 +0000 Manifest next update: Sat 20 Dec 2025 04:00:36 +0000 Files and hashes: 1: sNcTFlrGKE-0HV38gmV3_B2gtzA.crl (hash: eaDMgOrKy0/ki3gup6vO9fY++WqFtqXhxoCOX/Pj6vI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/284b3e-2d4f-412a-8862-539e1ac821d7/1/sNcTFlrGKE-0HV38gmV3_B2gtzA.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/284b3e-2d4f-412a-8862-539e1ac821d7/1/sNcTFlrGKE-0HV38gmV3_B2gtzA.mft rsync://rpki.ripe.net/repository/DEFAULT/sNcTFlrGKE-0HV38gmV3_B2gtzA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 04:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:c4:43:1e:52:2d:ad:a3:96:39:88:df:29:03:42:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0d713165ac6284fb41d5dfc826577fc1da0b730 Validity Not Before: Dec 19 04:00:36 2025 GMT Not After : Dec 20 04:00:36 2025 GMT Subject: CN=62a6c7a2a0b16ba439d08d8c9c1a00808f9b55c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a2:53:5a:fd:24:7e:1d:6d:95:3e:e0:74:30: f1:2b:af:e9:fe:54:83:bc:01:88:e5:13:81:e0:03: 03:6f:72:f6:3b:c2:4c:ec:b9:df:c2:63:da:4e:cc: 8c:45:3b:36:68:b7:3b:64:3e:53:3c:08:80:a3:92: 71:04:f5:63:60:fc:0a:39:06:de:ec:57:9a:1f:75: 3f:df:b4:65:72:4f:0d:b1:f0:73:7c:15:bf:49:63: c3:3a:f9:a2:a0:0a:2f:62:a7:dc:2b:ea:68:ce:cd: 2e:af:7c:93:06:5a:86:15:76:b8:dd:1e:0b:29:b2: 86:a0:e9:51:86:c5:7e:18:f2:34:a9:2b:cc:cf:1a: 81:a7:73:ab:c9:37:2e:30:9c:b5:f6:86:a6:d5:ac: bf:2f:97:43:da:35:cb:22:44:bc:64:bb:68:70:b2: 10:e1:35:07:14:49:d5:31:5e:4d:38:ad:7c:b9:2c: 55:ea:66:bd:7f:21:d1:83:bb:8c:6b:7d:0e:ac:1e: 83:6c:0a:05:0b:82:77:7b:f7:d6:bd:61:d5:2a:e4: dd:20:91:ab:87:72:74:89:ec:a2:ae:f9:b2:73:c8: 7c:f2:6c:6e:13:65:dd:22:03:68:21:fd:4c:10:2f: 2d:7e:d9:89:5f:85:55:44:87:6b:42:8b:36:ae:eb: b8:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:A6:C7:A2:A0:B1:6B:A4:39:D0:8D:8C:9C:1A:00:80:8F:9B:55:C1 X509v3 Authority Key Identifier: keyid:B0:D7:13:16:5A:C6:28:4F:B4:1D:5D:FC:82:65:77:FC:1D:A0:B7:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sNcTFlrGKE-0HV38gmV3_B2gtzA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/284b3e-2d4f-412a-8862-539e1ac821d7/1/sNcTFlrGKE-0HV38gmV3_B2gtzA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/284b3e-2d4f-412a-8862-539e1ac821d7/1/sNcTFlrGKE-0HV38gmV3_B2gtzA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:3d:9d:4b:45:dc:ac:6a:23:cb:be:3a:9f:78:e3:c3:04:36: 06:d9:ed:15:1b:df:74:ee:4d:bd:3b:49:58:a7:1d:4c:e4:f7: 82:ab:80:24:09:31:1d:16:35:6f:be:83:35:3b:39:e7:34:bd: 1b:1f:84:24:73:fa:d0:5d:99:36:1a:28:82:a2:be:cc:b1:70: 8f:cf:45:6a:5f:d9:86:42:91:66:f1:bf:cf:79:5d:45:ff:0e: d3:ac:f4:e0:7a:c9:2b:53:cd:61:bf:b1:d6:04:40:11:e8:cb: 69:4e:be:cb:f7:a4:ee:5c:ab:e2:c2:fa:8a:ef:6c:c9:8a:08: 97:06:a0:f5:04:81:54:60:c8:9c:2d:04:c8:97:f2:50:20:49: 0d:de:3b:88:a9:3d:5f:04:3f:ce:05:3d:87:e4:26:c1:77:9d: 44:8f:85:b0:93:d8:29:0e:16:4f:ad:3a:61:12:39:70:a8:5c: 8b:2c:16:0c:2b:a9:a4:8b:cc:a1:c8:50:64:32:5e:1c:5d:84: 24:16:a5:70:4f:7a:71:41:b6:2f:9c:15:52:21:61:44:36:aa: a3:bb:cf:a1:78:b3:0c:e6:95:3d:e4:d9:5b:87:f8:be:d4:7f: ff:6d:4b:8c:27:fb:e2:09:5d:23:35:88:07:d3:c7:eb:86:9d: 5a:a1:1f:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0xEMeUi2to5Y5iN8pA0LXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwZDcxMzE2NWFjNjI4NGZiNDFkNWRmYzgyNjU3N2ZjMWRh MGI3MzAwHhcNMjUxMjE5MDQwMDM2WhcNMjUxMjIwMDQwMDM2WjAzMTEwLwYDVQQD Eyg2MmE2YzdhMmEwYjE2YmE0MzlkMDhkOGM5YzFhMDA4MDhmOWI1NWMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv6JTWv0kfh1tlT7gdDDxK6/p/lSD vAGI5ROB4AMDb3L2O8JM7LnfwmPaTsyMRTs2aLc7ZD5TPAiAo5JxBPVjYPwKOQbe 7FeaH3U/37Rlck8NsfBzfBW/SWPDOvmioAovYqfcK+pozs0ur3yTBlqGFXa43R4L KbKGoOlRhsV+GPI0qSvMzxqBp3OryTcuMJy19oam1ay/L5dD2jXLIkS8ZLtocLIQ 4TUHFEnVMV5NOK18uSxV6ma9fyHRg7uMa30OrB6DbAoFC4J3e/fWvWHVKuTdIJGr h3J0ieyirvmyc8h88mxuE2XdIgNoIf1MEC8tftmJX4VVRIdrQos2ruu4kQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGKmx6KgsWukOdCNjJwaAICPm1XBMB8GA1UdIwQY MBaAFLDXExZaxihPtB1d/IJld/wdoLcwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc05jVEZsckdLRS0wSFYzOGdtVjNfQjJndHpBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yODRiM2UtMmQ0Zi00MTJhLTg4NjIt NTM5ZTFhYzgyMWQ3LzEvc05jVEZsckdLRS0wSFYzOGdtVjNfQjJndHpBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yODRiM2UtMmQ0Zi00MTJhLTg4NjItNTM5ZTFhYzgyMWQ3 LzEvc05jVEZsckdLRS0wSFYzOGdtVjNfQjJndHpBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkD2dS0Xc rGojy746n3jjwwQ2BtntFRvfdO5NvTtJWKcdTOT3gquAJAkxHRY1b76DNTs55zS9 Gx+EJHP60F2ZNhoogqK+zLFwj89Fal/ZhkKRZvG/z3ldRf8O06z04HrJK1PNYb+x 1gRAEejLaU6+y/ek7lyr4sL6iu9syYoIlwag9QSBVGDInC0EyJfyUCBJDd47iKk9 XwQ/zgU9h+QmwXedRI+FsJPYKQ4WT606YRI5cKhciywWDCuppIvMochQZDJeHF2E JBalcE96cUG2L5wVUiFhRDaqo7vPoXizDOaVPeTZW4f4vtR//21LjCf74gldIzWI B9PH64adWqEfsg== -----END CERTIFICATE-----Generated at Fri Dec 19 12:53:25 2025 by rpki-client