This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft File: spIJTWkd9KfDjxa3VVfpwm1KxpI.mft (raw, json) Hash identifier: mjgDGC/DbhKHgQlZQnndZVKNwF5FTLW95d+rcxsK7C0= Subject key identifier: 24:90:98:25:16:3C:56:33:40:2B:84:58:76:CE:BC:6D:73:53:9A:6E Authority key identifier: B2:92:09:4D:69:1D:F4:A7:C3:8F:16:B7:55:57:E9:C2:6D:4A:C6:92 Certificate issuer: /CN=b292094d691df4a7c38f16b75557e9c26d4ac692 Certificate serial: 019B1BAA22189DB90F6D186B114C95D0BFF0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft Manifest number: 167C Signing time: Sun 14 Dec 2025 07:01:33 +0000 Manifest this update: Sun 14 Dec 2025 07:01:33 +0000 Manifest next update: Mon 15 Dec 2025 07:01:33 +0000 Files and hashes: 1: OmeM_n0y_6-zOQ1ggpf3SAaIYGM.roa (hash: nPLGIcarXsWhg9mWE06KhP99Y61Hg7uEiGrRbDzptwU=) 2: spIJTWkd9KfDjxa3VVfpwm1KxpI.crl (hash: ycEhqjn/ObCndfnMsuCW9NShGyga5k+TGl7u52UeFrc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1b:aa:22:18:9d:b9:0f:6d:18:6b:11:4c:95:d0:bf:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b292094d691df4a7c38f16b75557e9c26d4ac692 Validity Not Before: Dec 14 07:01:33 2025 GMT Not After : Dec 15 07:01:33 2025 GMT Subject: CN=24909825163c5633402b845876cebc6d73539a6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:67:24:ca:54:dd:4f:c8:94:4f:fa:86:d3:ff: 14:f3:4d:c7:82:f7:45:1e:48:56:21:c4:df:d1:a1: 0f:c6:d3:7b:8e:a8:2c:64:57:9d:58:a9:62:45:07: c5:c0:bd:a8:ca:19:46:50:7a:47:83:81:ea:2c:42: c1:96:76:8a:62:9f:e6:25:1e:d9:c3:bc:49:b5:9d: c0:f8:10:e9:74:49:85:48:a9:15:17:cc:51:f2:3e: 4a:31:5b:08:98:0e:6c:81:b9:f4:8c:d1:66:70:af: 11:4c:43:72:12:fc:be:bd:ab:44:36:d3:19:0d:06: 7f:2e:9d:81:ba:ee:7c:bf:75:2f:79:b0:b9:6e:6c: 73:75:39:ea:26:20:be:c3:f7:3e:3d:23:44:b0:3e: 36:8a:88:f4:7b:91:12:e0:81:13:be:da:31:ba:f4: ba:53:23:ba:63:63:dc:1c:fe:87:d6:da:3b:de:24: 35:be:4f:1c:b8:df:15:7f:b9:af:77:48:ed:9a:bb: 0c:2f:37:da:24:cc:81:8d:b7:43:ce:9f:65:e5:d7: 9e:71:1d:b8:90:6e:99:9d:14:24:9d:65:b1:72:2a: ca:bb:78:5d:3f:a7:4b:89:90:1b:0b:31:7c:bf:14: 73:84:9d:13:c8:e7:dd:27:77:5e:a9:3f:76:ff:30: 71:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:90:98:25:16:3C:56:33:40:2B:84:58:76:CE:BC:6D:73:53:9A:6E X509v3 Authority Key Identifier: keyid:B2:92:09:4D:69:1D:F4:A7:C3:8F:16:B7:55:57:E9:C2:6D:4A:C6:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:9e:07:c2:28:74:2b:ab:52:5d:2e:e8:58:ea:87:a6:18:a0: fc:b6:af:a5:07:0f:ed:ea:96:0d:d6:0c:1f:fa:b1:a0:5d:58: 35:12:ff:77:71:f4:2b:10:63:2a:99:85:d0:69:47:51:11:fe: 6e:5d:e3:1f:9f:39:c6:27:90:48:4c:d4:42:58:fd:21:44:1f: fc:b2:c5:0e:bd:ce:99:fd:70:f1:1d:04:bb:dd:05:d8:f9:84: a3:87:74:68:be:2d:a1:3d:a2:dd:80:23:9f:c4:9b:e2:bc:90: b2:16:2f:26:68:95:8b:51:09:bd:40:ea:d0:89:3c:14:b9:d6: cc:ee:61:76:ff:85:a4:22:3b:eb:65:8e:28:f0:26:25:1f:9f: 6b:2e:bb:aa:e3:fa:0b:dc:86:80:49:b0:b7:55:b9:d7:a8:d6: c5:65:2e:04:ec:7e:d4:26:aa:8e:45:16:b9:df:62:a0:7c:5a: 7f:8f:f6:e1:52:7c:92:86:64:29:2f:3e:81:a3:c3:84:94:95: 82:bd:27:9b:bc:b4:02:95:c2:46:f3:4d:d5:58:fc:b9:cc:22: d3:39:c6:07:8f:48:5e:83:ea:40:dd:b1:d3:15:cf:05:25:bc: dc:41:b0:90:9e:46:29:3c:90:c9:1f:35:f3:c2:93:49:f3:b1: 02:6e:6b:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsbqiIYnbkPbRhrEUyV0L/wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyOTIwOTRkNjkxZGY0YTdjMzhmMTZiNzU1NTdlOWMyNmQ0 YWM2OTIwHhcNMjUxMjE0MDcwMTMzWhcNMjUxMjE1MDcwMTMzWjAzMTEwLwYDVQQD EygyNDkwOTgyNTE2M2M1NjMzNDAyYjg0NTg3NmNlYmM2ZDczNTM5YTZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwGckylTdT8iUT/qG0/8U803HgvdF HkhWIcTf0aEPxtN7jqgsZFedWKliRQfFwL2oyhlGUHpHg4HqLELBlnaKYp/mJR7Z w7xJtZ3A+BDpdEmFSKkVF8xR8j5KMVsImA5sgbn0jNFmcK8RTENyEvy+vatENtMZ DQZ/Lp2Buu58v3UvebC5bmxzdTnqJiC+w/c+PSNEsD42ioj0e5ES4IETvtoxuvS6 UyO6Y2PcHP6H1to73iQ1vk8cuN8Vf7mvd0jtmrsMLzfaJMyBjbdDzp9l5deecR24 kG6ZnRQknWWxcirKu3hdP6dLiZAbCzF8vxRzhJ0TyOfdJ3deqT92/zBxrwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCSQmCUWPFYzQCuEWHbOvG1zU5puMB8GA1UdIwQY MBaAFLKSCU1pHfSnw48Wt1VX6cJtSsaSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3BJSlRXa2Q5S2ZEanhhM1ZWZnB3bTFLeHBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi9lN2I5MzItZmMyMS00YTYxLWFlZjAt MTVhMDkzZTJiYjhmLzEvc3BJSlRXa2Q5S2ZEanhhM1ZWZnB3bTFLeHBJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi9lN2I5MzItZmMyMS00YTYxLWFlZjAtMTVhMDkzZTJiYjhm LzEvc3BJSlRXa2Q5S2ZEanhhM1ZWZnB3bTFLeHBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV54Hwih0 K6tSXS7oWOqHphig/LavpQcP7eqWDdYMH/qxoF1YNRL/d3H0KxBjKpmF0GlHURH+ bl3jH585xieQSEzUQlj9IUQf/LLFDr3Omf1w8R0Eu90F2PmEo4d0aL4toT2i3YAj n8Sb4ryQshYvJmiVi1EJvUDq0Ik8FLnWzO5hdv+FpCI762WOKPAmJR+fay67quP6 C9yGgEmwt1W516jWxWUuBOx+1CaqjkUWud9ioHxaf4/24VJ8koZkKS8+gaPDhJSV gr0nm7y0ApXCRvNN1Vj8ucwi0znGB49IXoPqQN2x0xXPBSW83EGwkJ5GKTyQyR81 88KTSfOxAm5riw== -----END CERTIFICATE-----Generated at Sun Dec 14 15:08:45 2025 by rpki-client