This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft File: StRn8W0JUeQwcTgyxsdZVh52BB8.mft (raw, json) Hash identifier: CgcRng3UquFdRZ6+uYksqDi221k7CZRvpoNjBVAxtmo= Subject key identifier: B9:DF:F9:48:00:7B:58:08:73:FF:BB:C9:C7:DB:E8:09:5B:E5:B8:CB Authority key identifier: 4A:D4:67:F1:6D:09:51:E4:30:71:38:32:C6:C7:59:56:1E:76:04:1F Certificate issuer: /CN=4ad467f16d0951e430713832c6c759561e76041f Certificate serial: 019B2363750365C389888512A9F3E4E3E0A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft Manifest number: 177B Signing time: Mon 15 Dec 2025 19:01:19 +0000 Manifest this update: Mon 15 Dec 2025 19:01:19 +0000 Manifest next update: Tue 16 Dec 2025 19:01:19 +0000 Files and hashes: 1: 0qO4O1iuPzCMlLlUt1HamKiYOoA.roa (hash: cgE/JK3sVjQnbjv1N0QFg9l7ug/Hstmhscf6qZhJ3xA=) 2: StRn8W0JUeQwcTgyxsdZVh52BB8.crl (hash: XSL6UayxqGlZS2d0ecRWe1g1J5owqH5PuahdiGuYxiY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 19:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:23:63:75:03:65:c3:89:88:85:12:a9:f3:e4:e3:e0:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ad467f16d0951e430713832c6c759561e76041f Validity Not Before: Dec 15 19:01:19 2025 GMT Not After : Dec 16 19:01:19 2025 GMT Subject: CN=b9dff948007b580873ffbbc9c7dbe8095be5b8cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:69:af:46:17:e7:b4:ef:68:71:71:b5:ca:40: 86:5a:89:16:4f:64:7b:38:e2:c7:e5:2e:33:17:0a: 7a:a9:e6:93:1d:bc:b7:a1:0c:c3:cc:e8:62:ba:07: 3e:f7:2f:ff:fb:e4:a4:8e:23:15:c6:50:f5:c5:28: 7b:7b:16:80:d5:53:63:52:cb:2a:4e:86:d2:d7:2a: 0c:22:48:34:da:e0:70:3f:13:e5:85:7b:34:1d:9d: f0:5e:0a:5a:80:e1:d3:16:63:30:5a:e2:14:0c:13: dd:f4:35:70:68:52:e8:cc:0c:89:05:e2:fc:dc:1f: 4d:0f:21:65:5c:77:73:28:ee:dd:7e:aa:f2:07:9b: c3:fc:85:98:6c:84:0c:54:f1:4c:15:a9:27:89:81: 86:b3:f7:be:03:63:3f:c1:58:3f:d1:17:37:f0:dc: 59:99:44:bd:dc:06:aa:8f:ed:ca:0a:37:56:e7:27: fc:e9:3e:c1:f1:e0:7e:33:ab:c4:2c:7e:81:80:2f: ed:f7:ff:df:18:31:f5:9e:a2:fa:4c:ec:d2:f7:70: b1:b2:d2:df:75:18:69:58:4c:e7:db:75:4b:fb:55: 72:92:da:9c:de:77:b0:2d:1b:40:b4:75:5d:45:27: f6:e1:8c:15:65:cb:1c:2b:34:de:31:97:d0:59:ba: 95:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:DF:F9:48:00:7B:58:08:73:FF:BB:C9:C7:DB:E8:09:5B:E5:B8:CB X509v3 Authority Key Identifier: keyid:4A:D4:67:F1:6D:09:51:E4:30:71:38:32:C6:C7:59:56:1E:76:04:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:51:3f:f0:83:4c:32:92:91:2f:d0:c6:aa:88:e1:12:37:26: 74:98:f6:d6:25:09:9d:5d:12:ba:36:d9:6f:90:8c:93:92:41: 00:b6:c3:76:cc:52:07:8e:12:b5:01:72:45:f0:24:8a:5a:4f: 75:a2:3b:53:45:e7:b1:91:6d:bc:3f:6f:2c:d8:19:4c:6d:22: 9c:d4:2d:c6:d8:39:f7:d1:06:29:d3:7e:38:f2:ea:63:45:1b: 53:27:8b:21:ac:88:d6:78:55:86:94:e3:b6:3c:81:aa:eb:ab: a6:4f:93:7f:26:39:89:63:2b:1a:62:a4:96:78:39:95:69:a1: 2d:f7:88:63:83:fd:be:e0:df:ab:7b:d1:f1:e0:34:4a:5a:fb: 76:fc:78:5e:1f:87:f3:3b:10:f5:da:59:06:24:37:4e:c9:63: b2:81:9c:e0:e5:7a:ba:a4:e0:7a:f0:0e:33:47:c8:d2:1f:83: 05:a1:73:5c:cb:ea:e2:f0:1f:30:0d:c4:19:68:c5:d6:5f:41: 67:c2:f0:da:d0:e1:5d:15:7f:bc:f7:f5:ea:4f:bd:4f:30:cd: 8d:e9:cd:38:70:de:dc:2d:fd:6f:d8:18:73:23:2b:c4:a1:18: 23:34:bc:5b:f3:e7:73:5d:c7:24:c0:62:38:0a:7b:f0:8e:33: a0:7e:40:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsjY3UDZcOJiIUSqfPk4+ClMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhZDQ2N2YxNmQwOTUxZTQzMDcxMzgzMmM2Yzc1OTU2MWU3 NjA0MWYwHhcNMjUxMjE1MTkwMTE5WhcNMjUxMjE2MTkwMTE5WjAzMTEwLwYDVQQD EyhiOWRmZjk0ODAwN2I1ODA4NzNmZmJiYzljN2RiZTgwOTViZTViOGNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoGmvRhfntO9ocXG1ykCGWokWT2R7 OOLH5S4zFwp6qeaTHby3oQzDzOhiugc+9y//++SkjiMVxlD1xSh7exaA1VNjUssq TobS1yoMIkg02uBwPxPlhXs0HZ3wXgpagOHTFmMwWuIUDBPd9DVwaFLozAyJBeL8 3B9NDyFlXHdzKO7dfqryB5vD/IWYbIQMVPFMFakniYGGs/e+A2M/wVg/0Rc38NxZ mUS93Aaqj+3KCjdW5yf86T7B8eB+M6vELH6BgC/t9//fGDH1nqL6TOzS93CxstLf dRhpWEzn23VL+1Vyktqc3newLRtAtHVdRSf24YwVZcscKzTeMZfQWbqVnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLnf+UgAe1gIc/+7ycfb6Alb5bjLMB8GA1UdIwQY MBaAFErUZ/FtCVHkMHE4MsbHWVYedgQfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU3RSbjhXMEpVZVF3Y1RneXhzZFpWaDUyQkI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8zMzg2MDUtNGRiNC00ZWRlLWEzMTAt NTY0MjM1M2Q0MzFhLzEvU3RSbjhXMEpVZVF3Y1RneXhzZFpWaDUyQkI4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC8zMzg2MDUtNGRiNC00ZWRlLWEzMTAtNTY0MjM1M2Q0MzFh LzEvU3RSbjhXMEpVZVF3Y1RneXhzZFpWaDUyQkI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmlE/8INM MpKRL9DGqojhEjcmdJj21iUJnV0SujbZb5CMk5JBALbDdsxSB44StQFyRfAkilpP daI7U0XnsZFtvD9vLNgZTG0inNQtxtg599EGKdN+OPLqY0UbUyeLIayI1nhVhpTj tjyBquurpk+TfyY5iWMrGmKklng5lWmhLfeIY4P9vuDfq3vR8eA0Slr7dvx4Xh+H 8zsQ9dpZBiQ3TsljsoGc4OV6uqTgevAOM0fI0h+DBaFzXMvq4vAfMA3EGWjF1l9B Z8Lw2tDhXRV/vPf16k+9TzDNjenNOHDe3C39b9gYcyMrxKEYIzS8W/Pnc13HJMBi OAp78I4zoH5A5A== -----END CERTIFICATE-----Generated at Tue Dec 16 04:05:37 2025 by rpki-client