This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft File: sPoMerwQeWkV4zW6GXgORz4CeWk.mft (raw, json) Hash identifier: djN9fDKKyc/DCm6n2yM/7weA3CkJ7mtWyfyIr9N/gwU= Subject key identifier: BE:1E:28:EA:7B:56:5F:24:01:F5:8B:72:3A:C5:90:68:C4:42:DD:EF Authority key identifier: B0:FA:0C:7A:BC:10:79:69:15:E3:35:BA:19:78:0E:47:3E:02:79:69 Certificate issuer: /CN=b0fa0c7abc10796915e335ba19780e473e027969 Certificate serial: 019AF1D1EBEA57F6C575EDD1DFAAED0FFE4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft Manifest number: 1253 Signing time: Sat 06 Dec 2025 04:00:57 +0000 Manifest this update: Sat 06 Dec 2025 04:00:57 +0000 Manifest next update: Sun 07 Dec 2025 04:00:57 +0000 Files and hashes: 1: Y9lkKqKsnQqZGmQo1Xo2fiLr5iU.roa (hash: 6A0trmFdZaEK+JW4D/IW96VMnZJTTVLOPMuYPUfapNM=) 2: sPoMerwQeWkV4zW6GXgORz4CeWk.crl (hash: jmnWV+TPtMqIf9BLW6CWiMlIe7gRq4rSpnw+3JCzKlA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:eb:ea:57:f6:c5:75:ed:d1:df:aa:ed:0f:fe:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0fa0c7abc10796915e335ba19780e473e027969 Validity Not Before: Dec 6 04:00:57 2025 GMT Not After : Dec 7 04:00:57 2025 GMT Subject: CN=be1e28ea7b565f2401f58b723ac59068c442ddef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:08:1b:95:1f:c7:bb:ec:d2:5f:42:9e:c8:32: 01:49:25:47:ea:f2:fa:a2:cb:4d:ff:0c:12:39:82: 3a:fd:d9:45:cc:34:8a:a6:15:93:da:1b:e5:81:80: fd:bc:e6:a0:1e:95:c2:79:e8:59:a2:d8:0c:72:ad: a3:43:f8:46:42:76:02:8d:7f:12:6c:5f:80:b9:d9: a7:bd:38:48:55:87:44:88:19:29:ab:f9:23:e9:b0: 76:0c:a0:8d:33:45:aa:64:64:12:4c:12:2b:24:f6: 2c:3c:8f:b1:07:f8:55:19:94:fb:d0:24:d2:c9:41: 49:71:16:a1:2e:a1:cf:1c:77:84:44:84:62:4e:76: 6b:6d:65:90:d1:0d:6a:e0:15:31:c5:7a:5c:a7:3d: 05:17:95:60:f9:76:87:9e:34:77:4f:ae:b3:e2:d2: bf:0e:08:44:2e:03:22:f7:b4:e1:cf:e6:90:52:8a: bc:73:15:ba:b9:bc:d4:06:49:9b:34:b0:a1:53:a3: c0:cc:26:c8:67:ac:48:0c:14:d4:b7:4a:f3:57:0b: 84:49:6f:94:1c:a6:27:29:a5:e8:63:b7:42:d8:04: 53:83:20:e7:2b:7f:cc:96:36:d3:c8:c1:a0:f3:b3: 49:52:b2:cc:01:9d:7b:02:74:46:21:19:73:12:63: 7b:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:1E:28:EA:7B:56:5F:24:01:F5:8B:72:3A:C5:90:68:C4:42:DD:EF X509v3 Authority Key Identifier: keyid:B0:FA:0C:7A:BC:10:79:69:15:E3:35:BA:19:78:0E:47:3E:02:79:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:0e:52:30:d8:53:f1:a2:52:e9:03:c3:d2:56:da:e8:a2:c3: 35:3e:72:ba:a3:44:ca:91:83:4e:93:18:fd:80:9e:f3:21:49: ad:98:36:cf:cb:71:dc:c6:9a:dc:28:0c:86:a0:39:6c:56:f8: 14:1c:0f:18:b6:2d:27:22:77:46:73:8b:c1:ae:38:c9:49:e4: 62:e4:23:65:21:1a:a5:79:09:5d:3d:8c:98:61:c9:da:93:61: a0:71:52:98:d5:82:9d:2b:38:7b:19:81:37:42:39:e8:15:ac: e6:85:9d:c7:51:69:d5:5b:bb:f9:2f:cc:77:10:20:85:6d:1a: 74:86:ca:8d:b7:bb:15:cf:f4:e9:aa:7e:a6:d7:19:46:80:4e: c1:97:e4:21:3f:c6:b6:bb:56:81:8d:77:42:c5:25:18:9b:b0: ea:14:72:5d:fd:b3:7a:46:3e:9a:c1:9b:30:36:6a:4b:27:d5: f6:4d:14:19:b0:f6:19:87:90:87:06:96:ae:fd:27:cc:96:fc: fb:ec:a1:12:4b:e3:b3:9e:f4:d7:d9:92:88:78:8d:19:4d:5c: 29:4d:e9:dc:1b:aa:c8:01:8e:3f:2d:02:0e:53:0d:e8:c3:16: 05:77:08:5b:8b:89:25:b6:67:af:8b:8b:4f:f2:d6:d0:4c:11: 6e:fd:6b:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0evqV/bFde3R36rtD/5KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwZmEwYzdhYmMxMDc5NjkxNWUzMzViYTE5NzgwZTQ3M2Uw Mjc5NjkwHhcNMjUxMjA2MDQwMDU3WhcNMjUxMjA3MDQwMDU3WjAzMTEwLwYDVQQD EyhiZTFlMjhlYTdiNTY1ZjI0MDFmNThiNzIzYWM1OTA2OGM0NDJkZGVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxggblR/Hu+zSX0KeyDIBSSVH6vL6 ostN/wwSOYI6/dlFzDSKphWT2hvlgYD9vOagHpXCeehZotgMcq2jQ/hGQnYCjX8S bF+AudmnvThIVYdEiBkpq/kj6bB2DKCNM0WqZGQSTBIrJPYsPI+xB/hVGZT70CTS yUFJcRahLqHPHHeERIRiTnZrbWWQ0Q1q4BUxxXpcpz0FF5Vg+XaHnjR3T66z4tK/ DghELgMi97Thz+aQUoq8cxW6ubzUBkmbNLChU6PAzCbIZ6xIDBTUt0rzVwuESW+U HKYnKaXoY7dC2ARTgyDnK3/MljbTyMGg87NJUrLMAZ17AnRGIRlzEmN7XwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL4eKOp7Vl8kAfWLcjrFkGjEQt3vMB8GA1UdIwQY MBaAFLD6DHq8EHlpFeM1uhl4Dkc+AnlpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1BvTWVyd1FlV2tWNHpXNkdYZ09SejRDZVdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC85NzQ3NDktNGQ3ZS00NDUwLTk3OTMt ZGY4NTRmNDdiYWY0LzEvc1BvTWVyd1FlV2tWNHpXNkdYZ09SejRDZVdrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC85NzQ3NDktNGQ3ZS00NDUwLTk3OTMtZGY4NTRmNDdiYWY0 LzEvc1BvTWVyd1FlV2tWNHpXNkdYZ09SejRDZVdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqg5SMNhT 8aJS6QPD0lba6KLDNT5yuqNEypGDTpMY/YCe8yFJrZg2z8tx3Maa3CgMhqA5bFb4 FBwPGLYtJyJ3RnOLwa44yUnkYuQjZSEapXkJXT2MmGHJ2pNhoHFSmNWCnSs4exmB N0I56BWs5oWdx1Fp1Vu7+S/MdxAghW0adIbKjbe7Fc/06ap+ptcZRoBOwZfkIT/G trtWgY13QsUlGJuw6hRyXf2zekY+msGbMDZqSyfV9k0UGbD2GYeQhwaWrv0nzJb8 ++yhEkvjs57019mSiHiNGU1cKU3p3BuqyAGOPy0CDlMN6MMWBXcIW4uJJbZnr4uL T/LW0EwRbv1rWQ== -----END CERTIFICATE-----Generated at Sat Dec 6 10:56:01 2025 by rpki-client