This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.mft File: sH-v24bTjze_DCbT8nMf3vaxTko.mft (raw, json) Hash identifier: 9oyrDmcLI+ZxyIIBzfbJAmuArkVtnzxNTlrFCSwvyis= Subject key identifier: 5A:5F:5A:E1:B0:3A:94:E8:8F:DE:BF:ED:26:A3:B6:DA:CF:72:88:E9 Authority key identifier: B0:7F:AF:DB:86:D3:8F:37:BF:0C:26:D3:F2:73:1F:DE:F6:B1:4E:4A Certificate issuer: /CN=b07fafdb86d38f37bf0c26d3f2731fdef6b14e4a Certificate serial: 019AF31D5BF0052D4A797D08FE1C17BD6D4F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sH-v24bTjze_DCbT8nMf3vaxTko.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.mft Manifest number: 08BF Signing time: Sat 06 Dec 2025 10:02:58 +0000 Manifest this update: Sat 06 Dec 2025 10:02:58 +0000 Manifest next update: Sun 07 Dec 2025 10:02:58 +0000 Files and hashes: 1: N75Q0uiaGqKgGJ2k7yeqIONc8k0.roa (hash: Q63lKGUZoNUeD8FAv4eG2ZAxCKPCbVbyxrGYOjEepus=) 2: sH-v24bTjze_DCbT8nMf3vaxTko.crl (hash: u4iOXYu7Jema2Wp8Vf915YB62deu4o3xscF0Slgzz+s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.mft rsync://rpki.ripe.net/repository/DEFAULT/sH-v24bTjze_DCbT8nMf3vaxTko.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1d:5b:f0:05:2d:4a:79:7d:08:fe:1c:17:bd:6d:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b07fafdb86d38f37bf0c26d3f2731fdef6b14e4a Validity Not Before: Dec 6 10:02:58 2025 GMT Not After : Dec 7 10:02:58 2025 GMT Subject: CN=5a5f5ae1b03a94e88fdebfed26a3b6dacf7288e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bd:05:23:22:e1:90:95:9a:ef:74:e3:07:73: ca:1f:3c:10:d6:e7:e0:31:a9:35:61:2b:9c:bf:59: df:01:5a:10:9d:d0:7b:75:39:a4:12:8b:14:96:9a: 46:61:92:33:bd:ea:fe:af:c2:dc:8b:b6:d7:83:71: dd:0f:26:00:1d:31:cb:51:9c:92:72:30:1f:cd:28: 4f:db:d4:31:ae:b4:54:1c:73:7c:47:5e:bf:2f:ac: 93:67:d9:db:c5:cd:6d:1b:e3:96:dd:f1:0c:53:8c: 00:e8:2b:3e:23:f5:d1:d7:26:c8:6a:b1:4e:01:51: 9e:3c:d9:36:c3:35:19:e5:6c:3a:09:09:16:8e:28: 1e:64:a5:13:52:c4:12:b6:b6:50:f2:57:0d:b0:b3: 2f:1a:aa:cc:52:aa:c6:6d:7e:fa:46:cb:f1:ff:59: d3:b1:f6:4c:ff:5c:3d:44:ec:b8:20:27:03:51:d0: 5b:a2:d5:86:e5:b2:08:d8:44:23:38:65:df:1a:d3: 8c:42:69:65:f4:58:34:e2:d4:5b:36:d9:26:75:15: ea:c8:34:49:78:74:d0:8e:44:8e:cb:ec:72:d8:b1: ad:58:58:21:aa:96:9d:23:94:5b:a0:48:7d:fc:fb: bd:6c:0a:08:93:65:57:c8:df:82:80:2a:ad:a8:34: bd:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:5F:5A:E1:B0:3A:94:E8:8F:DE:BF:ED:26:A3:B6:DA:CF:72:88:E9 X509v3 Authority Key Identifier: keyid:B0:7F:AF:DB:86:D3:8F:37:BF:0C:26:D3:F2:73:1F:DE:F6:B1:4E:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sH-v24bTjze_DCbT8nMf3vaxTko.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:d1:06:17:98:b7:63:62:31:61:96:3a:d3:33:c0:ef:60:aa: 7e:ec:0d:1f:df:fb:ac:ab:81:9b:7e:51:fc:5e:67:31:ba:84: 6a:72:7d:df:2a:6b:40:52:55:f7:ff:18:70:e0:7d:53:47:7e: 27:42:50:7b:78:55:b1:60:aa:44:68:80:6a:a9:e3:0c:ea:5f: 0d:a9:00:40:4c:de:dc:9e:9f:6b:e3:89:8e:fe:97:30:1d:26: 63:8f:ef:49:19:ba:fe:10:31:22:d4:45:c3:2a:ef:dc:68:57: bd:2d:33:3c:02:b6:4e:d5:ec:c0:74:11:c8:aa:50:64:96:25: 82:2b:a9:6b:f7:1a:00:2f:41:79:d0:ef:83:6f:0f:f7:26:bf: 7c:5a:a6:58:6c:ac:e6:0f:ff:48:98:cb:f1:34:61:dc:d5:56: dc:cd:52:d6:58:d2:54:92:d7:ef:50:55:1f:e0:81:c7:11:52: 41:15:21:23:b9:fa:31:05:88:31:5d:a3:ab:2d:7d:b4:df:bb: 03:95:ea:94:ae:c1:9a:1f:61:e5:da:cd:2d:2e:a4:cc:a9:2b: d0:73:3e:26:96:5c:2c:2c:27:92:8a:a6:33:50:66:88:5d:3b: ee:ea:49:74:7d:49:48:97:4c:63:be:2d:43:41:9d:b2:81:f0: 94:f1:14:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHVvwBS1KeX0I/hwXvW1PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwN2ZhZmRiODZkMzhmMzdiZjBjMjZkM2YyNzMxZmRlZjZi MTRlNGEwHhcNMjUxMjA2MTAwMjU4WhcNMjUxMjA3MTAwMjU4WjAzMTEwLwYDVQQD Eyg1YTVmNWFlMWIwM2E5NGU4OGZkZWJmZWQyNmEzYjZkYWNmNzI4OGU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv70FIyLhkJWa73TjB3PKHzwQ1ufg Mak1YSucv1nfAVoQndB7dTmkEosUlppGYZIzver+r8Lci7bXg3HdDyYAHTHLUZyS cjAfzShP29QxrrRUHHN8R16/L6yTZ9nbxc1tG+OW3fEMU4wA6Cs+I/XR1ybIarFO AVGePNk2wzUZ5Ww6CQkWjigeZKUTUsQStrZQ8lcNsLMvGqrMUqrGbX76Rsvx/1nT sfZM/1w9ROy4ICcDUdBbotWG5bII2EQjOGXfGtOMQmll9Fg04tRbNtkmdRXqyDRJ eHTQjkSOy+xy2LGtWFghqpadI5RboEh9/Pu9bAoIk2VXyN+CgCqtqDS9KwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFpfWuGwOpToj96/7SajttrPcojpMB8GA1UdIwQY MBaAFLB/r9uG0483vwwm0/JzH972sU5KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0gtdjI0YlRqemVfRENiVDhuTWYzdmF4VGtvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9kNmQyNjMtMjlmOS00NjEzLWJiN2Qt NDkzOGI4ZDBjM2RlLzEvc0gtdjI0YlRqemVfRENiVDhuTWYzdmF4VGtvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS9kNmQyNjMtMjlmOS00NjEzLWJiN2QtNDkzOGI4ZDBjM2Rl LzEvc0gtdjI0YlRqemVfRENiVDhuTWYzdmF4VGtvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJtEGF5i3 Y2IxYZY60zPA72CqfuwNH9/7rKuBm35R/F5nMbqEanJ93yprQFJV9/8YcOB9U0d+ J0JQe3hVsWCqRGiAaqnjDOpfDakAQEze3J6fa+OJjv6XMB0mY4/vSRm6/hAxItRF wyrv3GhXvS0zPAK2TtXswHQRyKpQZJYlgiupa/caAC9BedDvg28P9ya/fFqmWGys 5g//SJjL8TRh3NVW3M1S1ljSVJLX71BVH+CBxxFSQRUhI7n6MQWIMV2jqy19tN+7 A5XqlK7Bmh9h5drNLS6kzKkr0HM+JpZcLCwnkoqmM1BmiF077upJdH1JSJdMY74t Q0GdsoHwlPEU+w== -----END CERTIFICATE-----Generated at Sat Dec 6 13:45:34 2025 by rpki-client