This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft
File:                     SSFvXBZbgnp_1z2BB669L2PGPiQ.mft (raw, json)
Hash identifier:          6mkciY9Bqd55xKt31bx3JJ+uwmSxypkmYtVxD+0BLdA=
Subject key identifier:   49:7E:62:9B:10:73:13:84:5F:8D:6A:CE:2E:F8:BC:EA:2F:8C:50:77
Authority key identifier: 49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24
Certificate issuer:       /CN=49216f5c165b827a7fd73d8107aebd2f63c63e24
Certificate serial:       019B2F30A64F6C4B0F0296B4D72B4728A53F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft
Manifest number:          08A5
Signing time:             Thu 18 Dec 2025 02:01:16 +0000
Manifest this update:     Thu 18 Dec 2025 02:01:16 +0000
Manifest next update:     Fri 19 Dec 2025 02:01:16 +0000
Files and hashes:         1: 1-EZfm36xDgODSAJSHjoDKqosl0A.roa (hash: YJXvTARkaZsNuPWx3R0tfgZi43JI9omATgYJzudFfVw=)
                          2: 3U2HMxedCVt6_kMIDQH--335xZ4.roa (hash: 88sss7mFD2sWeeU8HLQ5OArgZS/AoA8AY0GLqd56WLQ=)
                          3: 8wPWU2vG9yor96syg0xci6OMavk.roa (hash: 58okY/hMSnPqb+2am85BaYPbNkOmLTFbAoYMmjPkzSM=)
                          4: A8u38dlgw8e8wVBstLEUX0BIwKA.roa (hash: wMifdjJKZOKPZclZ2LTT2h1hBhv48+8C1YSb4m0Dn8w=)
                          5: AcDYJhONPbrOnDXucR_bbR1A5kg.roa (hash: 88oN9iWkRyRsEw49ibrN6cr6y4laodB6sXFL6B6zm+E=)
                          6: Cj1iRWtZaWr3CQT35mnwIkfqqYs.roa (hash: 9ZVHBVyd/Pk4UvvVMqUwxdLUlrLbgZ/V2ltofM5wDow=)
                          7: MjYi-LSjoIJQHulT2C8hiHI7HD8.roa (hash: dC5UZCibXUg9xVnIxopZdKZtoheRYoCMgnJyaeHGfKM=)
                          8: O442f9rKCameMmZGS2am4On1RJE.roa (hash: Tjn+0NJyIaKfDErYElD/Vnb1U5GiOqlQwXo7lUYpajU=)
                          9: SSFvXBZbgnp_1z2BB669L2PGPiQ.crl (hash: kCVP+s/fvLnr8UirkVzFuQMdJ0Zmr8a9c0iof/1k69o=)
                          10: XhNIRKox72ceLxS-HicNdteAlnc.roa (hash: QNRbEve8iPmaf5PJ3d4wKSJFvAQJTgfZsNNYbZDbIlc=)
                          11: gcyVEfl2Y641X6JyrJ5gHsnWGHM.roa (hash: 4fScV3KfjcgkIMTXmX6XzXUXdZUkt2FHTuue2HpZKoE=)
                          12: i0xOZ9Jhra30YZPBjOHXbYaWfqk.roa (hash: 037VXUJZVI+mWu72PU8YPxD3JLA/Q6+4Wqo2f8ZWqyE=)
                          13: kTJsplmwURGCaPzG4ayo6wcNo7A.roa (hash: l/8qlEM8+mm6CRnvB68H+M19y+bDF0JqtLE1zP1nToE=)
                          14: oX3OGzwxfpoj75NeGxUgbWj5Nag.roa (hash: AUpPKp6STpZ3+I37dxgfx0DnwlKN78RdnPEKRCGUs1k=)
                          15: pSBQwLUPyYWO99fSCGOORj9giws.roa (hash: JkOzR+BpOFLVw+DBFx5vd7D/7xkaT2h6VtCqnTT04N4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 19 Dec 2025 01:18:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9b:2f:30:a6:4f:6c:4b:0f:02:96:b4:d7:2b:47:28:a5:3f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=49216f5c165b827a7fd73d8107aebd2f63c63e24
        Validity
            Not Before: Dec 18 02:01:16 2025 GMT
            Not After : Dec 19 02:01:16 2025 GMT
        Subject: CN=497e629b107313845f8d6ace2ef8bcea2f8c5077
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:3c:10:6b:e5:46:b8:0d:88:93:48:32:5d:f9:
                    2b:37:7b:bc:96:5c:07:6f:76:e2:e8:94:a4:8c:d1:
                    fd:39:9d:35:39:21:ce:86:f0:ed:e4:45:d9:04:b7:
                    14:d9:3a:89:e1:da:cc:9e:b8:8e:a4:c7:18:62:a0:
                    cc:f8:d0:4a:ab:1e:fa:77:55:af:40:e9:61:44:49:
                    94:74:e8:20:dd:d0:3f:de:b6:6c:2e:e5:25:4b:01:
                    26:7d:0d:91:80:0b:db:45:c1:62:8c:e4:58:ce:ef:
                    dd:ef:7b:30:89:e7:b2:54:19:dd:0c:ce:2a:b7:7e:
                    28:11:e9:92:0d:b6:ac:d9:bd:1d:3b:f6:0c:45:7b:
                    27:d3:05:8d:50:d0:ba:2a:0d:e5:40:bf:cf:f5:a4:
                    9e:bb:60:92:5e:9e:27:2a:04:0f:b2:63:32:7c:2f:
                    ce:a7:d7:dc:cc:38:6b:a7:c5:77:02:b1:3d:77:e5:
                    7f:86:7f:13:52:38:e6:29:1b:11:20:b2:19:62:95:
                    0f:22:f5:77:ed:d3:08:8d:c3:c4:0c:48:59:61:8d:
                    60:9b:75:a2:c9:5a:90:d8:e0:f4:38:ee:cd:41:34:
                    ce:0c:04:0b:1d:a8:98:a8:ea:b9:f5:67:eb:ac:03:
                    89:d7:ae:8a:db:f5:14:4b:75:ab:03:53:26:1b:a2:
                    32:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                49:7E:62:9B:10:73:13:84:5F:8D:6A:CE:2E:F8:BC:EA:2F:8C:50:77
            X509v3 Authority Key Identifier:
                keyid:49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         36:c6:71:fc:e0:3a:a5:3d:ec:b6:75:ff:6b:52:c6:f5:45:f4:
         1e:54:36:33:ce:94:da:3a:ed:76:54:66:e3:25:8a:11:0a:5f:
         f9:59:10:5b:51:ef:f6:6e:d1:00:e5:88:35:c0:de:6f:37:a1:
         0d:73:06:49:de:5a:92:9f:32:d8:ea:8b:d5:17:54:13:d9:e9:
         7d:66:2e:57:68:e0:0c:84:6e:51:b4:3a:a1:9f:fd:92:39:ec:
         62:ed:29:22:c2:15:63:d1:5c:6e:d4:ff:7c:e5:e8:aa:a6:e1:
         73:b2:5c:a4:1f:42:97:09:b9:3b:93:45:5d:2d:41:0d:62:ad:
         a3:0c:cb:33:a1:b9:64:05:93:08:8b:48:f4:71:ac:49:90:f9:
         6b:e1:e8:7a:44:7d:5e:c7:e1:68:1f:f7:6c:9f:45:58:45:f2:
         4f:3a:4d:ef:68:ae:b8:e0:8a:b7:13:b0:53:65:a6:25:45:98:
         05:1d:5a:c0:dd:00:b0:68:ad:ed:17:3d:80:73:b8:05:eb:fa:
         6a:76:d2:76:87:67:86:ab:93:66:d2:46:4f:b9:51:36:34:2e:
         8f:f2:4d:d8:2a:6b:4a:46:f2:54:c5:83:e2:d2:63:ca:18:cd:
         06:c2:30:6c:dd:9d:07:de:bc:48:5b:d8:98:ca:b6:89:ea:d4:
         a1:70:8d:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----