This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft File: SU14c0FlEKL7I0bvNCKAFVUicTs.mft (raw, json) Hash identifier: qI/KqVXZc+nNu0G87DrU9CDbHMUQbM0GZ58bb5tUYu4= Subject key identifier: 99:13:11:F7:3C:49:54:42:63:1F:C2:6A:5B:FF:31:9F:3F:56:47:41 Authority key identifier: 49:4D:78:73:41:65:10:A2:FB:23:46:EF:34:22:80:15:55:22:71:3B Certificate issuer: /CN=494d7873416510a2fb2346ef342280155522713b Certificate serial: 019B070FD3C1652F2ABD1AD3A538D5247992 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft Manifest number: 1485 Signing time: Wed 10 Dec 2025 07:00:36 +0000 Manifest this update: Wed 10 Dec 2025 07:00:36 +0000 Manifest next update: Thu 11 Dec 2025 07:00:36 +0000 Files and hashes: 1: B8HrelUy9bYGyo-udBZpXQ76dPg.roa (hash: 1JcwupsyhEziaGEtjnyo+5LdSyy6jIrto6vLWzkI9l8=) 2: OgrR2CAd56z5U5HmKNv5p8BkWPc.roa (hash: Rq+kB9vanf4G1JIJ3U+Pnkbq1HZGp2RBfUcOAAvfTYg=) 3: SU14c0FlEKL7I0bvNCKAFVUicTs.crl (hash: hnBWTM8kcjjPlnwbVEZ+iinqAohQa9NDHU0pEubNAPE=) 4: VqTKdS0wUklb387Znd5hFzPRASE.roa (hash: rDOvuh2F3d3eA0aeY1ATjqwPgZrek24RyHk+1v/gN1M=) 5: hs7LWx99onWfa7NDQgswR8o6gaE.roa (hash: Ass+jNWe5lghZzBAkHny706eHe/Mnq+7tyKFB/O7uyM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.crl rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 07:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:07:0f:d3:c1:65:2f:2a:bd:1a:d3:a5:38:d5:24:79:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=494d7873416510a2fb2346ef342280155522713b Validity Not Before: Dec 10 07:00:36 2025 GMT Not After : Dec 11 07:00:36 2025 GMT Subject: CN=991311f73c495442631fc26a5bff319f3f564741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:5c:f7:3f:aa:86:e7:0f:66:aa:8e:c2:68:26: cd:23:66:39:b7:55:98:0a:8b:88:75:98:1e:90:72: e4:f9:77:d9:79:ce:b2:e3:1c:89:80:a6:be:5a:8c: 32:ee:75:1e:7c:8f:bf:67:75:2b:3e:f8:3e:7d:90: 68:c1:f7:39:71:eb:e9:54:bc:d4:68:2c:a6:37:7f: 58:be:87:7d:65:c0:5c:51:00:a5:81:57:7a:70:b8: ec:36:6d:6e:3b:38:92:20:17:a2:8d:fc:c1:a7:c1: 68:6d:ab:6b:a4:bb:11:68:52:7d:2e:bf:81:9f:2e: aa:ac:06:3a:a4:63:fc:52:0f:44:10:c7:bf:cb:54: 0f:9c:08:ca:00:0b:61:46:94:3a:8b:88:e6:e4:7d: 69:20:bf:a6:35:01:7b:e3:0d:63:74:1d:bf:eb:ed: 95:69:5b:90:6c:1f:d6:43:1d:1f:41:42:2e:c5:a2: 29:1f:f2:fb:19:aa:8b:40:8a:a6:bd:da:18:6f:4d: d3:b2:1f:47:0c:5f:95:cf:a7:d9:d1:56:4a:8a:c4: 02:87:4c:fc:bb:78:a5:ac:85:8a:22:58:38:00:a9: 2a:42:8f:67:97:14:e6:f2:6b:2a:a9:bb:97:f4:bb: c1:55:57:4d:26:32:1a:e0:a9:df:f9:7c:7b:6c:43: 99:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:13:11:F7:3C:49:54:42:63:1F:C2:6A:5B:FF:31:9F:3F:56:47:41 X509v3 Authority Key Identifier: keyid:49:4D:78:73:41:65:10:A2:FB:23:46:EF:34:22:80:15:55:22:71:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:e3:99:e3:ea:6c:4b:1b:19:a9:a6:84:b3:0b:1b:3d:37:79: a7:36:87:90:83:f4:0b:6b:3e:c6:dc:e6:34:ed:28:77:d2:ab: e8:cf:7d:9a:8f:de:9f:fe:2e:6a:7f:3a:89:90:1b:c5:dd:76: ae:19:31:a0:2d:27:84:2e:0b:94:08:43:a1:ec:d8:a5:8f:fb: b7:d7:9c:5f:f5:7d:7a:4a:64:f0:5a:47:67:60:21:f5:0c:75: 50:73:f3:00:14:90:eb:b3:eb:49:2d:0c:d6:60:d6:06:2e:17: af:56:0f:ac:67:25:87:35:02:1c:df:44:b4:68:71:eb:3f:9a: ed:81:27:fd:01:23:71:4b:0e:90:a3:23:11:0c:ae:90:c5:b5: 75:4f:8a:ef:49:4c:78:b3:ca:28:4a:2d:90:49:0c:ec:95:20: fe:8c:d9:bc:93:57:00:80:d9:65:05:70:8b:52:0a:d4:5a:45: ed:3a:b2:07:f7:4e:a2:88:e1:32:4a:e1:66:11:22:2d:cb:4a: 7e:4e:a1:8d:09:40:4e:36:51:a0:78:83:e9:7d:94:8a:db:1a: 06:ac:dc:56:87:91:e2:95:1a:49:33:bb:97:54:10:14:f3:0d: 5a:88:06:fa:ea:11:d6:03:d9:70:8e:6e:be:78:fa:b5:60:e6: 6b:9b:be:6a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsHD9PBZS8qvRrTpTjVJHmSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5NGQ3ODczNDE2NTEwYTJmYjIzNDZlZjM0MjI4MDE1NTUy MjcxM2IwHhcNMjUxMjEwMDcwMDM2WhcNMjUxMjExMDcwMDM2WjAzMTEwLwYDVQQD Eyg5OTEzMTFmNzNjNDk1NDQyNjMxZmMyNmE1YmZmMzE5ZjNmNTY0NzQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj1z3P6qG5w9mqo7CaCbNI2Y5t1WY CouIdZgekHLk+XfZec6y4xyJgKa+Wowy7nUefI+/Z3UrPvg+fZBowfc5cevpVLzU aCymN39Yvod9ZcBcUQClgVd6cLjsNm1uOziSIBeijfzBp8FobatrpLsRaFJ9Lr+B ny6qrAY6pGP8Ug9EEMe/y1QPnAjKAAthRpQ6i4jm5H1pIL+mNQF74w1jdB2/6+2V aVuQbB/WQx0fQUIuxaIpH/L7GaqLQIqmvdoYb03Tsh9HDF+Vz6fZ0VZKisQCh0z8 u3ilrIWKIlg4AKkqQo9nlxTm8msqqbuX9LvBVVdNJjIa4Knf+Xx7bEOZRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJkTEfc8SVRCYx/Calv/MZ8/VkdBMB8GA1UdIwQY MBaAFElNeHNBZRCi+yNG7zQigBVVInE7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU1UxNGMwRmxFS0w3STBidk5DS0FGVlVpY1RzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8yOGY3YTYtZTFiYS00OTc4LTkxMjIt ZTE4ZTdiMmFjNTM2LzEvU1UxNGMwRmxFS0w3STBidk5DS0FGVlVpY1RzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS8yOGY3YTYtZTFiYS00OTc4LTkxMjItZTE4ZTdiMmFjNTM2 LzEvU1UxNGMwRmxFS0w3STBidk5DS0FGVlVpY1RzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAueOZ4+ps SxsZqaaEswsbPTd5pzaHkIP0C2s+xtzmNO0od9Kr6M99mo/en/4uan86iZAbxd12 rhkxoC0nhC4LlAhDoezYpY/7t9ecX/V9ekpk8FpHZ2Ah9Qx1UHPzABSQ67PrSS0M 1mDWBi4Xr1YPrGclhzUCHN9EtGhx6z+a7YEn/QEjcUsOkKMjEQyukMW1dU+K70lM eLPKKEotkEkM7JUg/ozZvJNXAIDZZQVwi1IK1FpF7TqyB/dOoojhMkrhZhEiLctK fk6hjQlATjZRoHiD6X2UitsaBqzcVoeR4pUaSTO7l1QQFPMNWogG+uoR1gPZcI5u vnj6tWDma5u+ag== -----END CERTIFICATE-----Generated at Wed Dec 10 13:17:49 2025 by rpki-client