This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft File: sK3wWv729l-hmmHDCuT7EcfPJbY.mft (raw, json) Hash identifier: Sh8KyetplclkDve+SoMr0RdrO5R/mm+coAX0DseSxJc= Subject key identifier: AB:9E:BC:F2:F1:55:25:92:C6:A4:88:52:49:F1:5D:D5:FF:62:8B:84 Authority key identifier: B0:AD:F0:5A:FE:F6:F6:5F:A1:9A:61:C3:0A:E4:FB:11:C7:CF:25:B6 Certificate issuer: /CN=b0adf05afef6f65fa19a61c30ae4fb11c7cf25b6 Certificate serial: 019AF42E5C9B1757709F0595EA7C001F84DD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sK3wWv729l-hmmHDCuT7EcfPJbY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 15:01:10 +0000 Manifest this update: Sat 06 Dec 2025 15:01:10 +0000 Manifest next update: Sun 07 Dec 2025 15:01:10 +0000 Files and hashes: 1: IO0LvnAOcWauTMBpIRocATcgbnc.roa (hash: X7MgkZkBpVtr92LvTB/v/8FDDjBqTMenme65NutXS6Q=) 2: sK3wWv729l-hmmHDCuT7EcfPJbY.crl (hash: nXXnJPzkL2qzoGumaBOirTflH2UcBnDVpdPOWD0z7/E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft rsync://rpki.ripe.net/repository/DEFAULT/sK3wWv729l-hmmHDCuT7EcfPJbY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:2e:5c:9b:17:57:70:9f:05:95:ea:7c:00:1f:84:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0adf05afef6f65fa19a61c30ae4fb11c7cf25b6 Validity Not Before: Dec 6 15:01:10 2025 GMT Not After : Dec 7 15:01:10 2025 GMT Subject: CN=ab9ebcf2f1552592c6a4885249f15dd5ff628b84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:b9:15:bc:06:7e:8a:1f:94:cb:c1:5e:33:42: 6c:24:cb:fa:22:a2:ab:c0:a5:8e:fc:88:51:c1:c6: 9f:ae:e3:13:0c:8e:aa:0b:20:4c:96:d2:81:7d:d0: f2:b7:a2:ad:da:3a:ce:f3:bd:02:47:52:9d:f1:67: e4:e6:80:04:21:98:e1:f3:33:ab:83:86:45:fa:c2: 1d:46:6a:04:6a:76:cc:27:9c:47:fe:0a:a7:1b:9e: f6:ab:dc:41:be:20:ff:54:45:b1:9e:36:e9:95:8d: 09:32:09:2a:36:7d:78:34:87:1b:c2:77:8f:f8:03: cc:b4:9c:76:9c:b6:e4:db:60:78:e5:13:f4:9f:61: 59:81:e9:ec:60:21:e5:01:d1:bf:64:e2:80:7e:3b: b8:9b:7f:3b:3a:6d:1e:e4:a2:45:40:b3:ab:5f:57: 27:88:26:0d:26:ba:f4:10:6f:1d:e3:24:18:6a:18: 4a:43:94:3e:dc:a1:3e:49:64:8a:e8:dd:06:a1:2f: 2a:49:af:c9:59:46:f6:81:82:f4:10:8c:d1:20:7d: 5e:c0:db:0e:e4:b3:08:84:c2:9d:51:fa:33:9a:71: 45:d6:9e:f4:60:cf:56:be:23:10:f5:ac:6a:a1:a9: 05:3c:e2:e2:41:42:62:c7:91:4c:0d:c9:a3:de:8d: 0a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:9E:BC:F2:F1:55:25:92:C6:A4:88:52:49:F1:5D:D5:FF:62:8B:84 X509v3 Authority Key Identifier: keyid:B0:AD:F0:5A:FE:F6:F6:5F:A1:9A:61:C3:0A:E4:FB:11:C7:CF:25:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sK3wWv729l-hmmHDCuT7EcfPJbY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:93:59:93:59:bf:f7:46:54:0b:67:00:14:6a:a2:51:c6:4f: 8b:1f:6f:bb:88:27:dd:f5:06:21:6a:41:cc:95:f8:1e:ee:68: 3f:ef:a5:2a:91:ca:07:1a:0b:ac:0c:79:69:8a:cb:cf:5e:6d: 20:c9:a5:f7:db:b8:fe:17:ef:94:28:e4:ca:1c:6f:8d:bc:78: 8e:39:87:4d:81:5d:7d:73:5a:bc:dc:ac:f7:80:04:d2:11:14: 60:eb:1f:c0:fe:3e:bb:d7:41:5b:5c:87:a4:d7:cb:85:80:2c: 06:ca:a4:e4:de:35:92:b6:b6:cc:99:e0:91:85:fc:1d:7d:ad: 50:19:44:b4:95:1a:63:a9:5d:1d:48:8f:b5:1f:00:29:a3:b1: 2c:63:bb:f9:13:f5:eb:7e:78:1f:65:2a:10:89:47:4a:e5:84: 4d:9b:53:4f:ad:ac:c1:5b:83:15:6b:88:e4:4e:92:d1:c0:59: dc:da:d3:7f:32:05:c5:9a:c2:5f:dd:26:73:64:79:28:5a:2f: dd:b5:e2:63:97:61:73:52:c7:ad:80:a6:94:f6:c0:fc:a4:ea: f3:93:df:2e:be:4f:de:ca:23:c3:4f:94:27:84:26:5f:d7:cb: 42:39:3d:38:3f:15:ae:6c:82:b8:09:a3:dd:ce:31:34:2e:f9: c9:66:43:7d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0LlybF1dwnwWV6nwAH4TdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwYWRmMDVhZmVmNmY2NWZhMTlhNjFjMzBhZTRmYjExYzdj ZjI1YjYwHhcNMjUxMjA2MTUwMTEwWhcNMjUxMjA3MTUwMTEwWjAzMTEwLwYDVQQD EyhhYjllYmNmMmYxNTUyNTkyYzZhNDg4NTI0OWYxNWRkNWZmNjI4Yjg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5rkVvAZ+ih+Uy8FeM0JsJMv6IqKr wKWO/IhRwcafruMTDI6qCyBMltKBfdDyt6Kt2jrO870CR1Kd8Wfk5oAEIZjh8zOr g4ZF+sIdRmoEanbMJ5xH/gqnG572q9xBviD/VEWxnjbplY0JMgkqNn14NIcbwneP +APMtJx2nLbk22B45RP0n2FZgensYCHlAdG/ZOKAfju4m387Om0e5KJFQLOrX1cn iCYNJrr0EG8d4yQYahhKQ5Q+3KE+SWSK6N0GoS8qSa/JWUb2gYL0EIzRIH1ewNsO 5LMIhMKdUfozmnFF1p70YM9WviMQ9axqoakFPOLiQUJix5FMDcmj3o0K4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKuevPLxVSWSxqSIUknxXdX/YouEMB8GA1UdIwQY MBaAFLCt8Fr+9vZfoZphwwrk+xHHzyW2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0szd1d2NzI5bC1obW1IREN1VDdFY2ZQSmJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS83MDk1OWItZDc5Yi00MmRjLWI4OTMt NWYyZDBlMmFlNzE0LzEvc0szd1d2NzI5bC1obW1IREN1VDdFY2ZQSmJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS83MDk1OWItZDc5Yi00MmRjLWI4OTMtNWYyZDBlMmFlNzE0 LzEvc0szd1d2NzI5bC1obW1IREN1VDdFY2ZQSmJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHZNZk1m/ 90ZUC2cAFGqiUcZPix9vu4gn3fUGIWpBzJX4Hu5oP++lKpHKBxoLrAx5aYrLz15t IMml99u4/hfvlCjkyhxvjbx4jjmHTYFdfXNavNys94AE0hEUYOsfwP4+u9dBW1yH pNfLhYAsBsqk5N41kra2zJngkYX8HX2tUBlEtJUaY6ldHUiPtR8AKaOxLGO7+RP1 6354H2UqEIlHSuWETZtTT62swVuDFWuI5E6S0cBZ3NrTfzIFxZrCX90mc2R5KFov 3bXiY5dhc1LHrYCmlPbA/KTq85PfLr5P3sojw0+UJ4QmX9fLQjk9OD8VrmyCuAmj 3c4xNC75yWZDfQ== -----END CERTIFICATE-----Generated at Sat Dec 6 23:57:06 2025 by rpki-client