This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.mft File: SYbHOZTQLZH8l9kW6YCabZgeaxc.mft (raw, json) Hash identifier: wrJliYuf9ACppgN3FRQJ3uW4+m/YeSgsOovzG+ppg/Q= Subject key identifier: 59:F5:15:15:F0:CD:AE:86:8F:5D:47:8D:C8:3C:54:10:D6:18:E0:95 Authority key identifier: 49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17 Certificate issuer: /CN=4986c73994d02d91fc97d916e9809a6d981e6b17 Certificate serial: 019AF49C0DAAC94845537CA50E4C96725B54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.mft Manifest number: 17F4 Signing time: Sat 06 Dec 2025 17:00:58 +0000 Manifest this update: Sat 06 Dec 2025 17:00:58 +0000 Manifest next update: Sun 07 Dec 2025 17:00:58 +0000 Files and hashes: 1: 2H8bk0scnZWZCejbJpVwKzPODxU.roa (hash: hMVwt69RjByg01GyzZs8pwlz2+q4Wpy8Ui3CHMqWQVM=) 2: BhKXE6iuo9SfBVLFhVn_mkUc-7o.roa (hash: 6UQPEWEZQ8R2LqnkEpCKEGwsYAPkUMrvkndL11WKeoQ=) 3: SYbHOZTQLZH8l9kW6YCabZgeaxc.crl (hash: hJJ/sUVP6/GMbrSgRJc38FXjzlCwChwo7tsfdFK85wA=) 4: dEkWV8xPj6ZjKfgx5t3dIacQr1A.roa (hash: ZOk1wKX5K0Mx4fspQclTvx+3kOne5shTmWgvCBY9O/Q=) 5: j-RMRHJ23qu7rbAmxPP-MPbufuc.roa (hash: dJtuGeJTvCUEBM+hGg9srwzgusTpj+o/Wmaam12pfeg=) 6: jQ5qWaYZOuGFbmK6xWnSAiBZvC4.roa (hash: hOBNFEt7+n9S44ThfKSG8bjP2CvsYahZ60/Dq1Sii/s=) 7: kYpZLQ-AuudDB2VaPbw0Spka5lg.roa (hash: 5naLUifPbVvyChqmHEXOpfanoJmyL4cI6dCLv8ZRPLk=) 8: xsBxTTHCu0M91jc-x-84709M1aw.roa (hash: n7OhK3FL5HSbtyKHt6+A8Y5XXP+dcUu4LzkiF/oZmAY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.mft rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:9c:0d:aa:c9:48:45:53:7c:a5:0e:4c:96:72:5b:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4986c73994d02d91fc97d916e9809a6d981e6b17 Validity Not Before: Dec 6 17:00:58 2025 GMT Not After : Dec 7 17:00:58 2025 GMT Subject: CN=59f51515f0cdae868f5d478dc83c5410d618e095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:be:5b:f8:1e:7b:5a:f9:f6:e8:1f:c5:05:d9: 1b:24:8a:8c:3d:d3:c4:39:b9:c7:bf:71:e8:8b:a7: a5:ed:70:09:ad:74:82:87:2b:d3:79:73:8c:98:f5: 94:b8:f6:3a:b9:ae:c4:03:a7:d6:08:b6:6d:96:f3: 49:87:d2:ca:51:0e:27:d1:fc:f5:f7:85:27:cd:fb: 61:07:fe:5b:fc:dd:cf:ea:34:bb:43:30:20:4e:5b: 3d:0a:5a:2e:1d:48:4c:75:a6:28:8e:3d:e2:8d:f6: 4f:38:51:e2:2d:c1:12:2b:20:8d:e1:96:6b:79:e3: 04:c6:dd:bb:1b:68:20:56:93:d6:e5:46:e6:d8:af: 4b:ee:c0:86:0b:06:86:be:df:31:eb:99:f4:90:23: c5:48:8d:6b:4c:c0:01:29:52:9f:ef:4a:f8:1c:26: 65:a8:ee:ca:e1:f7:19:c8:65:d0:d9:bc:4a:80:29: 19:7c:8f:fa:ea:e1:06:00:bc:a5:11:bb:86:d3:d7: e6:49:4a:f3:18:42:6f:74:e3:f5:a6:d3:7c:07:b3: 1a:1c:0a:4c:33:16:84:24:71:0e:15:b4:9f:20:37: 0c:7b:c6:e0:ca:81:ab:2d:db:fd:97:0e:ca:61:1d: 21:3b:cf:d3:d6:35:61:17:f3:a1:30:a6:40:db:c7: 96:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:F5:15:15:F0:CD:AE:86:8F:5D:47:8D:C8:3C:54:10:D6:18:E0:95 X509v3 Authority Key Identifier: keyid:49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:19:ae:72:81:d5:57:0b:04:a2:fb:2c:d2:d9:86:99:b8:61: 77:07:86:d7:7f:fe:d8:3e:ef:ad:a4:76:35:5f:6d:f4:79:c5: a6:2e:67:02:3a:16:62:5d:2d:88:80:bf:7a:a3:fc:7e:0d:79: af:c2:08:09:9f:7e:f3:82:43:74:c8:73:91:c1:f5:cd:21:95: d3:d3:8a:bc:50:d0:a0:a1:4d:38:ac:c9:48:77:1c:f1:0c:74: 59:58:08:67:60:cb:07:c4:d4:25:cd:5d:d0:36:70:a7:c5:d3: 00:6d:67:ac:d8:52:9e:82:4b:3c:fa:24:8b:c0:89:a3:9f:b7: 1d:ae:11:b6:2d:a9:b0:61:4f:dd:c4:05:e7:1a:8f:38:b1:f7: 31:52:7d:e7:22:c4:31:cc:7e:30:ac:9f:8d:e4:7c:a7:46:13: d2:0f:ca:81:59:0c:fb:b8:7e:64:00:b6:0a:7b:c4:52:6c:f5: 34:24:8a:9a:35:45:9e:c5:1d:df:6d:5b:bb:3d:35:44:bc:16: 32:c6:69:4e:b3:1e:48:b1:a3:2c:f5:cb:74:c2:c6:5e:c4:cd: 4a:10:60:26:79:11:7e:48:b3:83:b7:00:bd:6f:c8:d8:43:ed: e2:94:1e:19:0a:63:98:78:63:7d:23:02:33:da:d6:da:2b:da: 08:98:2f:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0nA2qyUhFU3ylDkyWcltUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5ODZjNzM5OTRkMDJkOTFmYzk3ZDkxNmU5ODA5YTZkOTgx ZTZiMTcwHhcNMjUxMjA2MTcwMDU4WhcNMjUxMjA3MTcwMDU4WjAzMTEwLwYDVQQD Eyg1OWY1MTUxNWYwY2RhZTg2OGY1ZDQ3OGRjODNjNTQxMGQ2MThlMDk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAub5b+B57Wvn26B/FBdkbJIqMPdPE ObnHv3Hoi6el7XAJrXSChyvTeXOMmPWUuPY6ua7EA6fWCLZtlvNJh9LKUQ4n0fz1 94UnzfthB/5b/N3P6jS7QzAgTls9ClouHUhMdaYojj3ijfZPOFHiLcESKyCN4ZZr eeMExt27G2ggVpPW5Ubm2K9L7sCGCwaGvt8x65n0kCPFSI1rTMABKVKf70r4HCZl qO7K4fcZyGXQ2bxKgCkZfI/66uEGALylEbuG09fmSUrzGEJvdOP1ptN8B7MaHApM MxaEJHEOFbSfIDcMe8bgyoGrLdv9lw7KYR0hO8/T1jVhF/OhMKZA28eWJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFn1FRXwza6Gj11Hjcg8VBDWGOCVMB8GA1UdIwQY MBaAFEmGxzmU0C2R/JfZFumAmm2YHmsXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU1liSE9aVFFMWkg4bDlrVzZZQ2FiWmdlYXhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS80NTdlMTMtNDFkMy00MGVmLWI1NzIt OWU4OTVkMGVmOGQyLzEvU1liSE9aVFFMWkg4bDlrVzZZQ2FiWmdlYXhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS80NTdlMTMtNDFkMy00MGVmLWI1NzItOWU4OTVkMGVmOGQy LzEvU1liSE9aVFFMWkg4bDlrVzZZQ2FiWmdlYXhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALxmucoHV VwsEovss0tmGmbhhdweG13/+2D7vraR2NV9t9HnFpi5nAjoWYl0tiIC/eqP8fg15 r8IICZ9+84JDdMhzkcH1zSGV09OKvFDQoKFNOKzJSHcc8Qx0WVgIZ2DLB8TUJc1d 0DZwp8XTAG1nrNhSnoJLPPoki8CJo5+3Ha4Rti2psGFP3cQF5xqPOLH3MVJ95yLE Mcx+MKyfjeR8p0YT0g/KgVkM+7h+ZAC2CnvEUmz1NCSKmjVFnsUd321buz01RLwW MsZpTrMeSLGjLPXLdMLGXsTNShBgJnkRfkizg7cAvW/I2EPt4pQeGQpjmHhjfSMC M9rW2ivaCJgvhQ== -----END CERTIFICATE-----Generated at Sat Dec 6 19:53:31 2025 by rpki-client