This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft File: S1KaTSL67yMTXW7_iRImZiPEklU.mft (raw, json) Hash identifier: 3LwgpROdeUCyWEXfyNvil6lRppP2MnUVg0ZPiV3GtJc= Subject key identifier: 0B:3D:85:48:A2:97:3B:55:7E:C4:2A:A6:EE:42:0A:49:78:82:76:66 Authority key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55 Certificate issuer: /CN=4b529a4d22faef23135d6eff8912266623c49255 Certificate serial: 019AF0BF5691CFAD3682FD8C762DAD530C37 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft Manifest number: 177E Signing time: Fri 05 Dec 2025 23:01:02 +0000 Manifest this update: Fri 05 Dec 2025 23:01:02 +0000 Manifest next update: Sat 06 Dec 2025 23:01:02 +0000 Files and hashes: 1: 1-dpFpZ66BUopKTWddAy3aYd5Q58.roa (hash: a/nFyI+oVdi7douUuLnGlPqM2YOH9iXTA2Ltk7+EQUM=) 2: DL1hBwC058Ly5gbOYmTudqMnhLY.roa (hash: ZP95RnK2lnoKaBDaVLfKRWdtbqYZIJodq0FZ93fqmj4=) 3: S1KaTSL67yMTXW7_iRImZiPEklU.crl (hash: CAKtKHttQOtsN5cuTUBPfjyp6hRsRvD9/1UQvB4Yn04=) 4: TSdQZeiJv87sxq_OJ-PJSQE8GTQ.roa (hash: zeHI0YzPke/O83NDkRPiKpR8/sA4EMZWB7tgWAf8HNc=) 5: YG4GH2kbor4nZ_HdlU4bXsM_ISU.roa (hash: orPHPnq001m59xqGhWWhOTcNNv+UhgU5D7ZAydlYwJ0=) 6: _YciLAUMll_l6Ad-S-3jEr-WUP0.roa (hash: YLNVgwBOiutPhe7HbfVw0eYS7E9cfJJEs9zT8+FOZFI=) 7: ct-_W27EwoC0fOGDJoYPaUOCh1k.roa (hash: Ry7d3ypfHQ+1XBY6nTPep5IZIfXf1osPEMavue76/1w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:56:91:cf:ad:36:82:fd:8c:76:2d:ad:53:0c:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b529a4d22faef23135d6eff8912266623c49255 Validity Not Before: Dec 5 23:01:02 2025 GMT Not After : Dec 6 23:01:02 2025 GMT Subject: CN=0b3d8548a2973b557ec42aa6ee420a4978827666 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:20:f2:d9:53:2d:ea:a8:e7:8d:7c:6c:86:ec: 13:64:ec:ce:88:7d:70:1a:68:6d:af:db:7c:6e:a8: 27:c0:01:43:af:53:1f:95:a3:a3:f1:a0:02:a7:7e: a9:b0:f3:c6:65:7f:b1:c1:f0:1b:d9:96:18:69:d8: 07:23:36:73:49:79:c3:d7:f6:f8:5c:13:33:ef:3b: ae:9c:b4:b8:1a:b2:9b:3a:cb:ff:cf:d3:fd:44:0e: 83:d1:65:96:94:12:e7:37:d0:28:7f:21:5d:3c:f1: eb:74:87:89:54:2e:9c:7d:df:4f:bc:7f:3f:f4:3e: 55:40:55:45:9c:56:76:2e:d7:ce:ec:be:74:63:6c: f3:f6:2f:45:3a:e9:62:57:f1:c2:7d:e7:db:62:c4: 11:56:eb:f2:49:b9:3f:9c:40:2b:35:34:bf:21:99: 97:1e:9d:03:aa:59:07:07:6a:bd:bf:a3:15:18:a7: b0:1f:1d:bd:24:94:d6:44:c7:cb:2e:03:de:79:bd: 26:44:6c:c2:55:81:2f:31:d4:9e:27:78:81:8e:90: 61:01:da:1c:ce:80:bc:f6:56:c1:da:1e:fb:d6:9c: a7:ab:bd:50:f8:fd:a5:b1:4d:ac:a3:0c:2c:c5:9e: 3e:2c:e4:29:b5:73:e7:44:39:46:9c:a7:8c:e0:40: 97:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:3D:85:48:A2:97:3B:55:7E:C4:2A:A6:EE:42:0A:49:78:82:76:66 X509v3 Authority Key Identifier: keyid:4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:17:78:c0:f4:16:8a:c5:d7:ba:82:2a:0e:bb:77:98:54:1a: cf:22:86:07:03:6b:67:dc:ad:30:85:84:34:6a:64:76:55:b9: c2:71:a7:dd:08:21:d4:30:60:99:11:6d:2c:32:4f:17:33:70: 36:96:93:39:a0:f5:78:a3:b5:a3:47:ca:dd:24:2a:f6:fe:d7: 80:bb:29:70:65:d5:e6:cb:be:48:8f:dd:ab:72:16:ce:84:a1: f5:a9:07:1c:d2:a3:1f:49:1e:e3:ed:8c:be:83:38:64:30:dc: 2b:bf:3e:7e:b3:de:fd:62:e3:63:e6:ee:aa:85:6b:5f:20:26: 74:d4:82:08:f4:fb:16:5a:da:c0:d4:7b:11:51:3e:53:fc:e9: 50:07:84:9e:0a:ae:aa:4e:6c:fc:ed:af:9e:0e:bf:8a:2c:71: e4:ba:a0:eb:9f:38:64:00:94:0c:9d:1c:4a:21:16:48:d2:f0: 94:95:8f:4c:13:9b:39:57:99:5e:3d:64:d9:a0:c8:6d:9e:0a: 2d:da:82:b2:86:00:c5:60:7c:92:17:6e:ed:0f:1f:ad:f5:85: dd:83:74:ae:9e:86:f2:35:ea:c6:42:c3:3e:63:fc:03:ff:b1: 8d:66:f2:d8:f4:b4:3d:8e:19:75:37:eb:f7:5d:8c:f8:06:1f: 2a:29:ac:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwv1aRz602gv2Mdi2tUww3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiNTI5YTRkMjJmYWVmMjMxMzVkNmVmZjg5MTIyNjY2MjNj NDkyNTUwHhcNMjUxMjA1MjMwMTAyWhcNMjUxMjA2MjMwMTAyWjAzMTEwLwYDVQQD EygwYjNkODU0OGEyOTczYjU1N2VjNDJhYTZlZTQyMGE0OTc4ODI3NjY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkCDy2VMt6qjnjXxshuwTZOzOiH1w Gmhtr9t8bqgnwAFDr1MflaOj8aACp36psPPGZX+xwfAb2ZYYadgHIzZzSXnD1/b4 XBMz7zuunLS4GrKbOsv/z9P9RA6D0WWWlBLnN9AofyFdPPHrdIeJVC6cfd9PvH8/ 9D5VQFVFnFZ2LtfO7L50Y2zz9i9FOuliV/HCfefbYsQRVuvySbk/nEArNTS/IZmX Hp0DqlkHB2q9v6MVGKewHx29JJTWRMfLLgPeeb0mRGzCVYEvMdSeJ3iBjpBhAdoc zoC89lbB2h771pynq71Q+P2lsU2sowwsxZ4+LOQptXPnRDlGnKeM4ECX3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAs9hUiilztVfsQqpu5CCkl4gnZmMB8GA1UdIwQY MBaAFEtSmk0i+u8jE11u/4kSJmYjxJJVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzFLYVRTTDY3eU1UWFc3X2lSSW1aaVBFa2xVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8xZDliMDUtZWM2MS00YzMzLWEwOTct MzZhZTc2ZWU5ODNlLzEvUzFLYVRTTDY3eU1UWFc3X2lSSW1aaVBFa2xVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy8xZDliMDUtZWM2MS00YzMzLWEwOTctMzZhZTc2ZWU5ODNl LzEvUzFLYVRTTDY3eU1UWFc3X2lSSW1aaVBFa2xVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOBd4wPQW isXXuoIqDrt3mFQazyKGBwNrZ9ytMIWENGpkdlW5wnGn3Qgh1DBgmRFtLDJPFzNw NpaTOaD1eKO1o0fK3SQq9v7XgLspcGXV5su+SI/dq3IWzoSh9akHHNKjH0ke4+2M voM4ZDDcK78+frPe/WLjY+buqoVrXyAmdNSCCPT7FlrawNR7EVE+U/zpUAeEngqu qk5s/O2vng6/iixx5Lqg6584ZACUDJ0cSiEWSNLwlJWPTBObOVeZXj1k2aDIbZ4K LdqCsoYAxWB8khdu7Q8frfWF3YN0rp6G8jXqxkLDPmP8A/+xjWby2PS0PY4ZdTfr 912M+AYfKimsVQ== -----END CERTIFICATE-----Generated at Sat Dec 6 06:57:13 2025 by rpki-client