This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft File: stLBGv8HK-w3pYJiEU4cBr7bSUI.mft (raw, json) Hash identifier: DDliV5RT//HNXO1HNlBJf0sVZgbG4/yzSedleWYVvQQ= Subject key identifier: 0C:72:10:18:94:F3:00:55:CF:32:EB:E6:B1:0C:55:9A:C5:D5:43:07 Authority key identifier: B2:D2:C1:1A:FF:07:2B:EC:37:A5:82:62:11:4E:1C:06:BE:DB:49:42 Certificate issuer: /CN=b2d2c11aff072bec37a58262114e1c06bedb4942 Certificate serial: 019B149540C1F2A33BCC7212968B0C6771DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft Manifest number: 010E Signing time: Fri 12 Dec 2025 22:01:24 +0000 Manifest this update: Fri 12 Dec 2025 22:01:24 +0000 Manifest next update: Sat 13 Dec 2025 22:01:24 +0000 Files and hashes: 1: stLBGv8HK-w3pYJiEU4cBr7bSUI.crl (hash: KFv6ruRqafKJEYptBAWGbBq3D6VntBXezikJ3LtdvOY=) 2: u0k0ZcdUu0HWts_QzMnRtt7idjE.roa (hash: gQ41j+zd/N93xs0pAJ6I2F+Zc4DvWJ1HscP8bcl0MW8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.crl rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 16:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:14:95:40:c1:f2:a3:3b:cc:72:12:96:8b:0c:67:71:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2d2c11aff072bec37a58262114e1c06bedb4942 Validity Not Before: Dec 12 22:01:24 2025 GMT Not After : Dec 13 22:01:24 2025 GMT Subject: CN=0c72101894f30055cf32ebe6b10c559ac5d54307 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:8e:4d:d7:47:1d:49:86:e1:29:c0:91:da:1d: 84:8c:6a:55:b6:c5:08:d5:e1:69:35:a7:3d:d4:8d: 37:78:49:cf:63:e2:64:60:6c:06:b4:1b:cf:0f:c8: 69:d3:e3:87:24:b4:5c:ba:6f:d9:ab:87:bb:e6:2e: f9:46:1c:7d:3f:82:95:9e:d1:d6:69:69:0e:da:2f: 7f:82:d4:63:d9:d6:5e:7a:15:9e:56:df:ee:e9:1e: 5a:f8:9d:f2:a0:27:01:af:bc:96:b3:45:84:58:e5: 3d:06:10:85:27:8d:7c:b4:d7:cf:51:ed:43:f8:98: 7a:47:92:31:70:93:15:80:c7:37:70:a1:a9:d1:d8: 7a:4f:8c:67:4a:a6:3e:4f:02:e3:5e:40:03:2e:81: 9a:99:ed:24:6b:74:19:85:55:3e:2d:81:09:3c:15: 13:f0:03:8e:87:27:42:25:44:e6:b0:5a:f4:79:e9: c4:13:da:9d:b0:bc:73:e9:ca:1e:7f:f0:df:0b:02: f6:f6:ce:14:fa:70:bd:03:0f:90:9a:4a:cf:31:7c: 31:23:58:c7:f3:9f:d4:de:c6:98:d4:8a:52:fd:9a: a3:2f:bf:73:c2:02:8f:a2:d8:a9:37:2b:dd:12:56: fc:43:7b:57:62:a4:ec:80:a7:52:cb:9d:0c:4e:c9: 02:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:72:10:18:94:F3:00:55:CF:32:EB:E6:B1:0C:55:9A:C5:D5:43:07 X509v3 Authority Key Identifier: keyid:B2:D2:C1:1A:FF:07:2B:EC:37:A5:82:62:11:4E:1C:06:BE:DB:49:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:da:d1:1f:9b:fd:4c:b5:9e:90:8c:92:c3:6a:3d:ba:ef:5b: 07:90:c9:92:5d:ab:d4:9b:23:93:ba:e3:39:d9:06:36:e4:71: a6:84:2b:a8:fe:9f:ce:74:a3:5b:3e:38:12:cc:0e:fd:f5:4d: f6:a3:9d:57:0d:d9:df:68:d0:83:ed:0b:36:28:92:0a:50:f6: d0:2d:f1:34:46:35:8c:a0:5d:6f:dd:3f:b8:5d:c3:8c:8c:7e: 21:6e:32:f3:2c:ce:b0:69:e5:cf:61:5c:37:a7:98:92:70:a6: 9f:1e:3f:15:bf:c0:db:e9:96:16:4b:72:b8:15:a8:4b:f6:a9: de:81:fe:4c:c2:69:9c:8d:2c:2e:1d:82:16:22:21:e2:e1:e3: 50:ba:57:bb:89:01:d6:48:8a:9d:f5:cd:f4:6b:40:5e:23:aa: ad:21:53:53:d4:66:80:88:8c:39:57:b6:8e:e1:62:e2:97:9b: d5:c3:b9:54:31:78:d0:18:5d:50:ad:bf:0e:22:fd:de:ac:7b: 63:4b:c5:7a:46:b0:b2:d6:b2:01:f9:45:dd:2e:e0:7a:59:0c: 32:80:6c:f4:35:24:bd:a4:9c:4b:2b:c0:ad:f2:77:90:13:19: b9:d1:17:eb:d3:3b:12:f9:ba:98:71:c6:f0:07:ec:6a:91:89: c1:7e:f4:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsUlUDB8qM7zHISlosMZ3HaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyZDJjMTFhZmYwNzJiZWMzN2E1ODI2MjExNGUxYzA2YmVk YjQ5NDIwHhcNMjUxMjEyMjIwMTI0WhcNMjUxMjEzMjIwMTI0WjAzMTEwLwYDVQQD EygwYzcyMTAxODk0ZjMwMDU1Y2YzMmViZTZiMTBjNTU5YWM1ZDU0MzA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA545N10cdSYbhKcCR2h2EjGpVtsUI 1eFpNac91I03eEnPY+JkYGwGtBvPD8hp0+OHJLRcum/Zq4e75i75Rhx9P4KVntHW aWkO2i9/gtRj2dZeehWeVt/u6R5a+J3yoCcBr7yWs0WEWOU9BhCFJ418tNfPUe1D +Jh6R5IxcJMVgMc3cKGp0dh6T4xnSqY+TwLjXkADLoGame0ka3QZhVU+LYEJPBUT 8AOOhydCJUTmsFr0eenEE9qdsLxz6coef/DfCwL29s4U+nC9Aw+QmkrPMXwxI1jH 85/U3saY1IpS/ZqjL79zwgKPotipNyvdElb8Q3tXYqTsgKdSy50MTskCuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAxyEBiU8wBVzzLr5rEMVZrF1UMHMB8GA1UdIwQY MBaAFLLSwRr/ByvsN6WCYhFOHAa+20lCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3RMQkd2OEhLLXczcFlKaUVVNGNCcjdiU1VJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8yODNkMzItMzgwYS00ZTZlLWE5NTct YzViYWVhM2YxNzI5LzEvc3RMQkd2OEhLLXczcFlKaUVVNGNCcjdiU1VJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi8yODNkMzItMzgwYS00ZTZlLWE5NTctYzViYWVhM2YxNzI5 LzEvc3RMQkd2OEhLLXczcFlKaUVVNGNCcjdiU1VJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQdrRH5v9 TLWekIySw2o9uu9bB5DJkl2r1Jsjk7rjOdkGNuRxpoQrqP6fznSjWz44EswO/fVN 9qOdVw3Z32jQg+0LNiiSClD20C3xNEY1jKBdb90/uF3DjIx+IW4y8yzOsGnlz2Fc N6eYknCmnx4/Fb/A2+mWFktyuBWoS/ap3oH+TMJpnI0sLh2CFiIh4uHjULpXu4kB 1kiKnfXN9GtAXiOqrSFTU9RmgIiMOVe2juFi4peb1cO5VDF40BhdUK2/DiL93qx7 Y0vFekawstayAflF3S7gelkMMoBs9DUkvaScSyvArfJ3kBMZudEX69M7Evm6mHHG 8AfsapGJwX703A== -----END CERTIFICATE-----Generated at Fri Dec 12 23:30:56 2025 by rpki-client