This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft File: s_sdIFBvVM-5oflFH6EKiP87L2Q.mft (raw, json) Hash identifier: 1UzsYjK2+sfcRbYppUG2rdo91cqtehfgNMUNDfKSfNk= Subject key identifier: 65:0E:59:96:73:3F:08:6B:3F:0B:3D:98:44:3D:41:DF:F2:FC:45:1E Authority key identifier: B3:FB:1D:20:50:6F:54:CF:B9:A1:F9:45:1F:A1:0A:88:FF:3B:2F:64 Certificate issuer: /CN=b3fb1d20506f54cfb9a1f9451fa10a88ff3b2f64 Certificate serial: 019B59E3DF53E4AEFFC303BE4FB01B41C72D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s_sdIFBvVM-5oflFH6EKiP87L2Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft Manifest number: 0E3C Signing time: Fri 26 Dec 2025 09:01:04 +0000 Manifest this update: Fri 26 Dec 2025 09:01:04 +0000 Manifest next update: Sat 27 Dec 2025 09:01:04 +0000 Files and hashes: 1: s_sdIFBvVM-5oflFH6EKiP87L2Q.crl (hash: ywWwv2fWfkAJSxURjhJj4uMV2dq5A5HI0pilBaUujg4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.crl rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft rsync://rpki.ripe.net/repository/DEFAULT/s_sdIFBvVM-5oflFH6EKiP87L2Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e3:df:53:e4:ae:ff:c3:03:be:4f:b0:1b:41:c7:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3fb1d20506f54cfb9a1f9451fa10a88ff3b2f64 Validity Not Before: Dec 26 09:01:04 2025 GMT Not After : Dec 27 09:01:04 2025 GMT Subject: CN=650e5996733f086b3f0b3d98443d41dff2fc451e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:cf:ed:13:5e:fa:95:a7:ee:92:7b:e7:7a:ca: c8:29:d8:0b:6f:93:74:05:31:bf:7e:73:10:56:88: 57:99:81:06:a8:3b:fd:3a:95:81:cb:16:a4:b7:5c: d8:f6:bf:3c:2c:62:03:ad:3b:e5:b0:c7:0e:cd:06: 9c:90:87:15:b8:a5:e5:aa:d8:58:e3:41:77:a9:56: ce:18:d1:eb:58:52:e3:8b:87:c9:77:ca:18:55:73: a1:9e:c2:c7:ca:2c:56:03:c0:b2:8d:14:80:55:3a: 59:3c:e4:48:21:bd:7e:af:93:ec:3a:6c:9e:4e:b8: 62:ab:87:b9:85:e6:9b:e3:00:da:5e:a9:26:5e:69: cc:fa:6a:dc:4b:6c:6f:e6:a7:28:1c:c6:2a:66:a8: 1c:ed:c5:ab:c9:a2:41:ed:a2:d4:3d:56:0a:3e:45: 44:a2:b4:3a:80:ce:06:84:14:a0:37:29:d1:4f:fe: 73:09:54:e5:a5:74:66:c7:81:41:c5:2d:32:d2:2a: 5b:2f:9e:10:84:e4:bf:9b:c0:97:f2:6c:9f:2b:4c: cc:a5:31:df:08:75:1e:07:aa:2d:71:52:3e:1b:69: de:5c:8c:b8:3f:4f:48:34:cc:d7:36:cb:c9:fc:f4: 83:18:0f:3c:f2:1b:3a:f1:34:77:d7:fe:5d:93:47: 15:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:0E:59:96:73:3F:08:6B:3F:0B:3D:98:44:3D:41:DF:F2:FC:45:1E X509v3 Authority Key Identifier: keyid:B3:FB:1D:20:50:6F:54:CF:B9:A1:F9:45:1F:A1:0A:88:FF:3B:2F:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s_sdIFBvVM-5oflFH6EKiP87L2Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:74:cc:c9:c1:9b:39:c3:bc:f5:f6:7b:ab:1c:80:ef:0e:56: 26:9c:70:2b:79:50:69:9a:12:3b:c1:52:9d:38:8f:16:db:1e: 48:ab:32:ea:7b:c6:2f:d7:5d:39:df:ac:26:d6:d8:10:24:a9: 3b:28:e6:1d:34:e1:be:37:d0:e7:65:58:e6:7b:6a:18:df:21: 88:67:06:b4:9b:09:80:c0:a1:af:4d:2e:40:42:68:e0:77:67: 2f:06:b2:f2:b9:d0:7c:6c:1a:33:3f:fd:8e:cb:c2:20:e9:11: 48:77:1c:e3:13:99:33:42:17:29:9b:0d:a6:08:a8:2b:75:65: 5f:91:bd:32:0f:be:46:26:77:7e:22:f1:e5:ba:6e:fc:1c:8d: 25:a3:2a:28:ac:63:f6:92:96:49:bb:c4:09:f7:e9:c1:c3:ee: a1:c1:bf:51:44:a2:84:d7:8b:90:70:51:11:67:de:5b:4a:b1: 93:6a:67:d6:5f:74:c1:4e:61:54:ad:3b:b5:90:5a:3c:a9:02: 45:50:8c:05:23:0e:cf:05:c3:b8:83:46:0f:05:f6:ba:8e:ab: 23:5a:7b:0e:49:18:4e:a6:6a:32:d9:d4:29:cb:8b:ae:f6:61: 82:90:a6:a9:bc:d4:52:31:fc:30:89:ac:53:fb:01:2c:2f:be: 3e:6d:c5:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ499T5K7/wwO+T7AbQcctMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzZmIxZDIwNTA2ZjU0Y2ZiOWExZjk0NTFmYTEwYTg4ZmYz YjJmNjQwHhcNMjUxMjI2MDkwMTA0WhcNMjUxMjI3MDkwMTA0WjAzMTEwLwYDVQQD Eyg2NTBlNTk5NjczM2YwODZiM2YwYjNkOTg0NDNkNDFkZmYyZmM0NTFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0M/tE176lafuknvnesrIKdgLb5N0 BTG/fnMQVohXmYEGqDv9OpWByxakt1zY9r88LGIDrTvlsMcOzQackIcVuKXlqthY 40F3qVbOGNHrWFLji4fJd8oYVXOhnsLHyixWA8CyjRSAVTpZPORIIb1+r5PsOmye Trhiq4e5heab4wDaXqkmXmnM+mrcS2xv5qcoHMYqZqgc7cWryaJB7aLUPVYKPkVE orQ6gM4GhBSgNynRT/5zCVTlpXRmx4FBxS0y0ipbL54QhOS/m8CX8myfK0zMpTHf CHUeB6otcVI+G2neXIy4P09INMzXNsvJ/PSDGA888hs68TR31/5dk0cVuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGUOWZZzPwhrPws9mEQ9Qd/y/EUeMB8GA1UdIwQY MBaAFLP7HSBQb1TPuaH5RR+hCoj/Oy9kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc19zZElGQnZWTS01b2ZsRkg2RUtpUDg3TDJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9jNDJkZjUtNGY5Mi00NDdkLWJkMjUt ODZkNmUyZjQ2NjQyLzEvc19zZElGQnZWTS01b2ZsRkg2RUtpUDg3TDJRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy9jNDJkZjUtNGY5Mi00NDdkLWJkMjUtODZkNmUyZjQ2NjQy LzEvc19zZElGQnZWTS01b2ZsRkg2RUtpUDg3TDJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ3TMycGb OcO89fZ7qxyA7w5WJpxwK3lQaZoSO8FSnTiPFtseSKsy6nvGL9ddOd+sJtbYECSp OyjmHTThvjfQ52VY5ntqGN8hiGcGtJsJgMChr00uQEJo4HdnLway8rnQfGwaMz/9 jsvCIOkRSHcc4xOZM0IXKZsNpgioK3VlX5G9Mg++RiZ3fiLx5bpu/ByNJaMqKKxj 9pKWSbvECffpwcPuocG/UUSihNeLkHBREWfeW0qxk2pn1l90wU5hVK07tZBaPKkC RVCMBSMOzwXDuINGDwX2uo6rI1p7DkkYTqZqMtnUKcuLrvZhgpCmqbzUUjH8MIms U/sBLC++Pm3FAQ== -----END CERTIFICATE-----Generated at Fri Dec 26 14:16:59 2025 by rpki-client