This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft File: sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft (raw, json) Hash identifier: sYRRVKO1eS6z1YhGc+mUz4NGMwNH9CfB3Ce2fCbSfpI= Subject key identifier: B8:06:22:B5:37:DE:D5:EA:5C:1D:D2:4C:27:69:82:BB:EF:33:9F:19 Authority key identifier: B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98 Certificate issuer: /CN=b01a59d0a61aa6174438988cc83598dbfea5a998 Certificate serial: 019AF2096422DC7B71FADC7C530DFA13F568 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft Manifest number: 12D3 Signing time: Sat 06 Dec 2025 05:01:32 +0000 Manifest this update: Sat 06 Dec 2025 05:01:32 +0000 Manifest next update: Sun 07 Dec 2025 05:01:32 +0000 Files and hashes: 1: HSNefFgXaRWCGcIv1fjoOpFklrI.roa (hash: cKpMHes+RehvKJ31+pA2N64A397k3fGtWACpN0dogjA=) 2: sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl (hash: bkamm8+iB8m6XTxVm/T6oSy0swRfpoyDF0ihE+RgFbM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:64:22:dc:7b:71:fa:dc:7c:53:0d:fa:13:f5:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b01a59d0a61aa6174438988cc83598dbfea5a998 Validity Not Before: Dec 6 05:01:32 2025 GMT Not After : Dec 7 05:01:32 2025 GMT Subject: CN=b80622b537ded5ea5c1dd24c276982bbef339f19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:08:82:8d:a6:66:b2:31:84:e4:40:7b:3c:47: 78:83:10:c2:16:ab:9a:08:de:11:7f:58:7e:8c:dc: 7e:49:41:ad:71:61:c1:dd:83:13:c6:fb:5b:e0:c3: 46:3c:ec:23:f3:b8:81:37:72:32:05:8e:be:e0:ea: 03:f4:68:e5:dc:53:9d:c0:5c:c3:a3:95:db:e8:c7: 18:aa:8e:14:73:ea:3b:a1:e5:25:b9:12:73:e2:30: e7:74:57:b7:06:40:73:ab:b9:03:c1:f6:49:04:0f: cc:25:01:db:89:18:74:4e:1f:94:78:70:ea:0c:51: 05:f9:8a:6a:b4:9e:57:a0:51:d1:26:68:f5:01:74: f1:77:b3:4d:a0:7d:a2:74:69:ed:8c:97:be:f2:e8: 7f:06:1b:fa:b2:02:74:3a:60:da:db:1d:88:dd:f5: 9b:63:bb:06:5a:ff:0a:4f:fe:42:7f:06:e8:99:08: 56:e5:8d:88:ef:56:f0:2c:9f:86:15:de:93:bc:d0: f2:37:ce:fb:69:b4:e7:fe:93:11:bc:f4:98:5d:08: 2c:f7:fa:87:98:0f:9f:10:95:84:6e:7a:19:aa:ce: 0c:c9:16:20:ac:52:1f:ff:e9:aa:42:a2:4f:99:6e: cf:60:17:72:b4:9f:b8:0f:ec:f4:da:be:30:89:61: 22:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:06:22:B5:37:DE:D5:EA:5C:1D:D2:4C:27:69:82:BB:EF:33:9F:19 X509v3 Authority Key Identifier: keyid:B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:96:fc:05:96:cf:33:93:4f:99:71:2b:f8:13:b7:13:04:28: 90:25:a5:5f:29:14:e9:5b:c8:0b:a8:00:a0:7d:b4:67:a3:87: 8c:d7:41:65:58:3c:55:a3:b3:e6:2b:39:6f:26:61:85:2a:b6: ca:54:d2:02:1b:86:e4:32:84:cb:a0:57:d4:28:ab:bd:3e:59: 22:ce:a2:af:c1:dd:2e:3e:2c:9a:79:57:a9:8c:9e:82:de:2b: d1:d1:26:8e:fc:33:b8:f9:7b:4f:6c:b9:87:22:ad:92:4e:13: 26:46:5f:ab:e0:4c:c5:5e:3a:d3:4d:aa:e8:2b:ec:2d:73:b7: f7:d6:1a:8e:a6:3a:39:72:94:72:58:5a:be:ce:b1:c5:7c:f2: de:30:0c:16:6b:68:1f:e4:e7:c2:55:c5:38:f9:4d:d1:8d:37: e0:9f:47:0b:c7:ac:d2:15:98:f9:2c:89:d2:0f:63:33:6f:f7: d2:f2:11:63:a1:84:93:07:c8:58:78:f2:16:35:0a:e9:63:bb: be:34:16:79:c8:34:a2:b5:b0:ed:41:64:44:35:8c:05:92:6f: 7d:9e:10:02:2f:7b:e1:93:76:ce:73:f0:ac:bd:7e:a5:89:59: 3c:7f:c7:05:85:99:06:30:b9:ab:a5:3c:f9:e5:f1:d7:d4:f1: e2:00:c0:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCWQi3Htx+tx8Uw36E/VoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwMWE1OWQwYTYxYWE2MTc0NDM4OTg4Y2M4MzU5OGRiZmVh NWE5OTgwHhcNMjUxMjA2MDUwMTMyWhcNMjUxMjA3MDUwMTMyWjAzMTEwLwYDVQQD EyhiODA2MjJiNTM3ZGVkNWVhNWMxZGQyNGMyNzY5ODJiYmVmMzM5ZjE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzwiCjaZmsjGE5EB7PEd4gxDCFqua CN4Rf1h+jNx+SUGtcWHB3YMTxvtb4MNGPOwj87iBN3IyBY6+4OoD9Gjl3FOdwFzD o5Xb6McYqo4Uc+o7oeUluRJz4jDndFe3BkBzq7kDwfZJBA/MJQHbiRh0Th+UeHDq DFEF+YpqtJ5XoFHRJmj1AXTxd7NNoH2idGntjJe+8uh/Bhv6sgJ0OmDa2x2I3fWb Y7sGWv8KT/5CfwbomQhW5Y2I71bwLJ+GFd6TvNDyN877abTn/pMRvPSYXQgs9/qH mA+fEJWEbnoZqs4MyRYgrFIf/+mqQqJPmW7PYBdytJ+4D+z02r4wiWEi0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLgGIrU33tXqXB3STCdpgrvvM58ZMB8GA1UdIwQY MBaAFLAaWdCmGqYXRDiYjMg1mNv+pamYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0JwWjBLWWFwaGRFT0ppTXlEV1kyXzZscVpnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9hMGU4ZTMtYTRlNy00YTllLWI3OTgt MDRlMWZhODA4NDI2LzEvc0JwWjBLWWFwaGRFT0ppTXlEV1kyXzZscVpnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy9hMGU4ZTMtYTRlNy00YTllLWI3OTgtMDRlMWZhODA4NDI2 LzEvc0JwWjBLWWFwaGRFT0ppTXlEV1kyXzZscVpnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn5b8BZbP M5NPmXEr+BO3EwQokCWlXykU6VvIC6gAoH20Z6OHjNdBZVg8VaOz5is5byZhhSq2 ylTSAhuG5DKEy6BX1CirvT5ZIs6ir8HdLj4smnlXqYyegt4r0dEmjvwzuPl7T2y5 hyKtkk4TJkZfq+BMxV46002q6CvsLXO399YajqY6OXKUclhavs6xxXzy3jAMFmto H+TnwlXFOPlN0Y034J9HC8es0hWY+SyJ0g9jM2/30vIRY6GEkwfIWHjyFjUK6WO7 vjQWecg0orWw7UFkRDWMBZJvfZ4QAi974ZN2znPwrL1+pYlZPH/HBYWZBjC5q6U8 +eXx19Tx4gDACw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:06:55 2025 by rpki-client