This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft File: sYxKQwCDfE6hetHjghoJrVN2QIc.mft (raw, json) Hash identifier: OtIzZPgALEOJ49hbuJufKDxEHj/Qrw/NSS4YBWce5c8= Subject key identifier: FD:71:2A:BD:AE:F3:1D:90:CD:A9:8F:EA:5A:8D:49:CC:C3:E5:AE:87 Authority key identifier: B1:8C:4A:43:00:83:7C:4E:A1:7A:D1:E3:82:1A:09:AD:53:76:40:87 Certificate issuer: /CN=b18c4a4300837c4ea17ad1e3821a09ad53764087 Certificate serial: 019B19BC596C0E73E12169C86EE43FE3FA87 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sYxKQwCDfE6hetHjghoJrVN2QIc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft Manifest number: 100E Signing time: Sat 13 Dec 2025 22:02:12 +0000 Manifest this update: Sat 13 Dec 2025 22:02:12 +0000 Manifest next update: Sun 14 Dec 2025 22:02:12 +0000 Files and hashes: 1: 2pelV4FedV45XCLKgpg6a9aqnGU.roa (hash: JAMnQ7Ljsuvl5vUTIxSzwNI1IGVq+RkAOKUEPceEiRc=) 2: sYxKQwCDfE6hetHjghoJrVN2QIc.crl (hash: sgXjWpTnMeGh41NFO5TUv4aLqEXxe5Ji23Pw6OtXyW8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.crl rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft rsync://rpki.ripe.net/repository/DEFAULT/sYxKQwCDfE6hetHjghoJrVN2QIc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:bc:59:6c:0e:73:e1:21:69:c8:6e:e4:3f:e3:fa:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b18c4a4300837c4ea17ad1e3821a09ad53764087 Validity Not Before: Dec 13 22:02:12 2025 GMT Not After : Dec 14 22:02:12 2025 GMT Subject: CN=fd712abdaef31d90cda98fea5a8d49ccc3e5ae87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2a:1c:13:70:10:e3:ed:79:17:27:a5:c3:2f: 04:56:31:7a:5e:16:1c:e9:33:67:87:e3:cb:f5:0f: 87:49:ae:3e:b8:45:f4:cb:7f:13:6d:6b:26:4a:3b: 11:b2:dd:ed:a8:a4:bd:a7:5b:3e:61:0f:1a:56:29: 6f:40:62:f2:86:0c:87:50:5a:2e:8e:2c:7f:14:aa: 15:7d:7b:15:da:22:64:9f:5d:84:19:8c:4c:03:95: 99:8a:80:51:f7:54:b7:ce:12:44:7a:86:dd:ce:d0: b6:c5:7a:cc:17:84:86:56:fe:20:e2:f0:d7:6f:e3: e9:7d:f7:f0:47:eb:41:66:fc:46:2c:ac:9e:01:ac: 1c:7b:7b:15:6b:97:28:a6:ec:0e:b6:24:9f:fa:40: db:4b:3f:c8:da:2e:78:5e:68:99:22:34:cf:b9:e9: 08:ae:b9:ae:5f:21:fb:cb:c8:0b:10:de:a4:ab:e4: 39:9c:ac:3a:5f:0f:23:8f:1b:b4:9a:95:65:a6:d5: 6a:c3:2d:7e:d0:3b:bc:19:4d:31:93:cd:d7:b9:11: a0:03:45:60:b6:95:5c:c7:f3:1a:c0:04:78:67:9d: f6:f0:92:39:7d:05:50:ff:28:7d:e0:c8:40:3e:9a: 46:23:0c:fb:51:c1:9d:d9:bf:e6:37:c4:5f:83:76: f5:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:71:2A:BD:AE:F3:1D:90:CD:A9:8F:EA:5A:8D:49:CC:C3:E5:AE:87 X509v3 Authority Key Identifier: keyid:B1:8C:4A:43:00:83:7C:4E:A1:7A:D1:E3:82:1A:09:AD:53:76:40:87 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sYxKQwCDfE6hetHjghoJrVN2QIc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:a3:fe:c2:d2:3e:59:c5:47:05:2a:9f:78:3e:f0:be:bf:5d: 59:ec:f2:e4:28:65:d4:3d:47:24:6b:6d:3f:f8:da:b1:1b:ce: fe:46:96:03:e8:4a:67:ec:be:bf:3b:da:07:fe:53:43:5c:c0: b0:61:ed:b4:6c:59:85:ac:38:24:88:e2:88:a8:48:a6:69:84: 3e:71:cb:da:77:5c:a8:50:3b:79:74:47:7f:fe:7b:bc:10:14: 43:d1:02:96:97:2e:4c:03:69:0e:af:9b:23:ed:c1:cb:55:b8: 7d:0f:59:15:a1:df:13:d2:68:8e:2f:4e:64:bc:55:db:58:b4: 9d:27:e0:fa:d0:2f:ff:57:bf:a1:ce:34:27:56:f7:0d:4d:90: 97:30:25:21:f6:bb:47:85:88:08:d7:1e:f2:f1:d1:aa:8d:0e: 9d:57:c6:7e:75:f9:ca:db:ca:5d:81:2a:d0:35:7e:c9:1b:79: 7c:95:86:d5:2a:04:d8:0b:e0:3e:1c:a5:7b:9c:47:9d:b9:86: a8:b2:64:e9:6b:81:28:8c:ed:e6:b4:b1:59:6e:e1:da:91:b3: 23:03:88:2e:f6:e2:41:ac:1c:2b:3c:4a:40:39:af:0f:84:05: 39:2a:d9:40:ed:ee:ce:3c:0b:81:85:d7:9a:8b:10:06:2b:98: 55:fc:2e:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZvFlsDnPhIWnIbuQ/4/qHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxOGM0YTQzMDA4MzdjNGVhMTdhZDFlMzgyMWEwOWFkNTM3 NjQwODcwHhcNMjUxMjEzMjIwMjEyWhcNMjUxMjE0MjIwMjEyWjAzMTEwLwYDVQQD EyhmZDcxMmFiZGFlZjMxZDkwY2RhOThmZWE1YThkNDljY2MzZTVhZTg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCocE3AQ4+15Fyelwy8EVjF6XhYc 6TNnh+PL9Q+HSa4+uEX0y38TbWsmSjsRst3tqKS9p1s+YQ8aVilvQGLyhgyHUFou jix/FKoVfXsV2iJkn12EGYxMA5WZioBR91S3zhJEeobdztC2xXrMF4SGVv4g4vDX b+PpfffwR+tBZvxGLKyeAawce3sVa5copuwOtiSf+kDbSz/I2i54XmiZIjTPuekI rrmuXyH7y8gLEN6kq+Q5nKw6Xw8jjxu0mpVlptVqwy1+0Du8GU0xk83XuRGgA0Vg tpVcx/MawAR4Z5328JI5fQVQ/yh94MhAPppGIwz7UcGd2b/mN8Rfg3b1hwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP1xKr2u8x2QzamP6lqNSczD5a6HMB8GA1UdIwQY MBaAFLGMSkMAg3xOoXrR44IaCa1TdkCHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1l4S1F3Q0RmRTZoZXRIamdob0pyVk4yUUljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9hZjRlNGItMjAyNi00YmJiLTk2Mjgt ZjA4YTBhZTkyYjhkLzEvc1l4S1F3Q0RmRTZoZXRIamdob0pyVk4yUUljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy9hZjRlNGItMjAyNi00YmJiLTk2MjgtZjA4YTBhZTkyYjhk LzEvc1l4S1F3Q0RmRTZoZXRIamdob0pyVk4yUUljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgKP+wtI+ WcVHBSqfeD7wvr9dWezy5Chl1D1HJGttP/jasRvO/kaWA+hKZ+y+vzvaB/5TQ1zA sGHttGxZhaw4JIjiiKhIpmmEPnHL2ndcqFA7eXRHf/57vBAUQ9EClpcuTANpDq+b I+3By1W4fQ9ZFaHfE9Joji9OZLxV21i0nSfg+tAv/1e/oc40J1b3DU2QlzAlIfa7 R4WICNce8vHRqo0OnVfGfnX5ytvKXYEq0DV+yRt5fJWG1SoE2AvgPhyle5xHnbmG qLJk6WuBKIzt5rSxWW7h2pGzIwOILvbiQawcKzxKQDmvD4QFOSrZQO3uzjwLgYXX mosQBiuYVfwuRQ== -----END CERTIFICATE-----Generated at Sun Dec 14 01:03:45 2025 by rpki-client