This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.mft File: sYWfPSzSg-fbkPAv4bDU9hVgWUc.mft (raw, json) Hash identifier: jDcQ22s/vYYT3FK9miwwSiJBVHgGK/+WGBmMlZTnSME= Subject key identifier: 70:EB:24:5D:E4:5D:B9:46:1A:85:75:C9:FC:69:3D:10:AA:3B:8D:CC Authority key identifier: B1:85:9F:3D:2C:D2:83:E7:DB:90:F0:2F:E1:B0:D4:F6:15:60:59:47 Certificate issuer: /CN=b1859f3d2cd283e7db90f02fe1b0d4f615605947 Certificate serial: 019B0F010DBDCDBEA914CE8F439A6C5E3250 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sYWfPSzSg-fbkPAv4bDU9hVgWUc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.mft Manifest number: 0A90 Signing time: Thu 11 Dec 2025 20:01:25 +0000 Manifest this update: Thu 11 Dec 2025 20:01:25 +0000 Manifest next update: Fri 12 Dec 2025 20:01:25 +0000 Files and hashes: 1: sYWfPSzSg-fbkPAv4bDU9hVgWUc.crl (hash: p2qBYUL4JXQw98QgGn2iIPazNBtZZrq57LHx8Zg9t6Q=) 2: zGycLxq7YqbVlBvuNEd47CRzT-U.roa (hash: o72/nsIKF1YG4XUjUYVm0HFMSGLne+bRa8vjHOf30pI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.crl rsync://rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.mft rsync://rpki.ripe.net/repository/DEFAULT/sYWfPSzSg-fbkPAv4bDU9hVgWUc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:01:0d:bd:cd:be:a9:14:ce:8f:43:9a:6c:5e:32:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1859f3d2cd283e7db90f02fe1b0d4f615605947 Validity Not Before: Dec 11 20:01:25 2025 GMT Not After : Dec 12 20:01:25 2025 GMT Subject: CN=70eb245de45db9461a8575c9fc693d10aa3b8dcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:62:96:30:29:e7:66:f7:72:18:fc:f3:bb:e4: 39:f1:62:ba:15:d7:3b:5c:e4:26:8c:a6:eb:8b:b6: f4:9e:c8:86:0a:d1:3e:4a:e4:83:c1:27:ea:1f:70: 37:3d:b4:84:bc:9f:3c:84:32:ba:25:dd:9f:49:36: 48:ab:18:58:95:ae:03:28:9a:1a:1f:4c:a8:a2:2f: 50:f4:65:90:b6:ef:7f:78:c5:e7:99:a1:02:1b:f0: 8c:00:76:02:06:3c:e7:fe:2d:cc:bd:98:60:0e:5c: ce:ef:ec:30:a5:60:3c:b1:d9:22:d3:8c:91:c6:96: 57:08:0a:8b:af:99:d8:52:90:46:76:16:f1:ce:64: 4f:33:5d:9b:b6:5b:dc:b0:ee:ee:e4:47:70:6b:cd: f7:ce:82:28:23:64:9d:e9:69:05:30:80:11:6a:16: f0:bd:8e:a9:d0:96:06:b6:62:44:9f:e6:6b:98:61: 31:84:b5:dd:89:75:87:56:49:9e:f9:8a:40:e1:d4: 43:f8:54:1f:9b:03:2f:cd:bd:4b:8f:54:cf:f0:40: f8:a6:13:32:68:8b:1a:94:d8:70:5e:05:7d:3a:42: 5b:78:c3:e5:33:31:43:48:57:ba:a7:34:b7:d8:7f: cb:ca:6b:a6:c5:89:af:7e:8c:33:c9:65:da:56:92: d6:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:EB:24:5D:E4:5D:B9:46:1A:85:75:C9:FC:69:3D:10:AA:3B:8D:CC X509v3 Authority Key Identifier: keyid:B1:85:9F:3D:2C:D2:83:E7:DB:90:F0:2F:E1:B0:D4:F6:15:60:59:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sYWfPSzSg-fbkPAv4bDU9hVgWUc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:51:e9:8d:21:24:24:94:64:db:05:2d:c6:8e:fa:b2:29:b4: 22:f3:b7:0f:53:6b:4c:40:fa:6a:ad:44:8f:d4:30:6a:bf:67: 93:61:b5:ff:c7:50:53:37:46:cc:b7:86:d7:ce:36:f2:7b:d1: 46:43:dd:39:f4:3f:69:63:96:c9:6b:29:7a:de:09:7b:e9:f5: 2e:5b:fb:00:04:10:dd:b9:56:f3:b8:49:f4:61:54:a0:16:17: c1:21:a1:b2:bb:2f:7b:24:d1:89:b3:16:ed:08:8c:9f:8d:54: ea:a7:ff:27:f6:ca:d3:aa:60:12:84:22:39:d6:1a:bf:84:10: 03:f3:ad:61:a9:7d:02:ef:08:ed:00:a7:3b:9e:4f:46:5c:80: aa:0d:47:2d:6d:3a:21:73:72:62:53:00:49:b8:4a:3f:a9:ee: 80:bc:59:dc:51:0d:ac:bd:53:0b:d5:e2:ec:e5:f4:8e:75:a2: 89:e7:b7:94:f9:4e:89:6e:89:d0:a7:fb:72:44:56:c3:a9:ba: 88:2c:b9:94:70:e9:e8:03:60:7f:a9:29:3f:7c:d6:b5:71:0b: ea:62:bb:25:7e:1b:aa:08:e8:04:b4:e9:fd:44:98:9b:4f:58: 95:18:06:c0:3e:41:1e:79:3b:24:5b:44:ef:4e:d3:47:c5:eb: 91:aa:48:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPAQ29zb6pFM6PQ5psXjJQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxODU5ZjNkMmNkMjgzZTdkYjkwZjAyZmUxYjBkNGY2MTU2 MDU5NDcwHhcNMjUxMjExMjAwMTI1WhcNMjUxMjEyMjAwMTI1WjAzMTEwLwYDVQQD Eyg3MGViMjQ1ZGU0NWRiOTQ2MWE4NTc1YzlmYzY5M2QxMGFhM2I4ZGNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqGKWMCnnZvdyGPzzu+Q58WK6Fdc7 XOQmjKbri7b0nsiGCtE+SuSDwSfqH3A3PbSEvJ88hDK6Jd2fSTZIqxhYla4DKJoa H0yooi9Q9GWQtu9/eMXnmaECG/CMAHYCBjzn/i3MvZhgDlzO7+wwpWA8sdki04yR xpZXCAqLr5nYUpBGdhbxzmRPM12btlvcsO7u5Edwa833zoIoI2Sd6WkFMIARahbw vY6p0JYGtmJEn+ZrmGExhLXdiXWHVkme+YpA4dRD+FQfmwMvzb1Lj1TP8ED4phMy aIsalNhwXgV9OkJbeMPlMzFDSFe6pzS32H/LymumxYmvfowzyWXaVpLWDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHDrJF3kXblGGoV1yfxpPRCqO43MMB8GA1UdIwQY MBaAFLGFnz0s0oPn25DwL+Gw1PYVYFlHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1lXZlBTelNnLWZia1BBdjRiRFU5aFZnV1VjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC9mN2E1NjAtODg3My00MGVlLWE3YzUt MmFhZGM1YzNjNTdkLzEvc1lXZlBTelNnLWZia1BBdjRiRFU5aFZnV1VjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC9mN2E1NjAtODg3My00MGVlLWE3YzUtMmFhZGM1YzNjNTdk LzEvc1lXZlBTelNnLWZia1BBdjRiRFU5aFZnV1VjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABFHpjSEk JJRk2wUtxo76sim0IvO3D1NrTED6aq1Ej9Qwar9nk2G1/8dQUzdGzLeG18428nvR RkPdOfQ/aWOWyWspet4Je+n1Llv7AAQQ3blW87hJ9GFUoBYXwSGhsrsveyTRibMW 7QiMn41U6qf/J/bK06pgEoQiOdYav4QQA/OtYal9Au8I7QCnO55PRlyAqg1HLW06 IXNyYlMASbhKP6nugLxZ3FENrL1TC9Xi7OX0jnWiiee3lPlOiW6J0Kf7ckRWw6m6 iCy5lHDp6ANgf6kpP3zWtXEL6mK7JX4bqgjoBLTp/USYm09YlRgGwD5BHnk7JFtE 707TR8XrkapIGA== -----END CERTIFICATE-----Generated at Fri Dec 12 00:32:06 2025 by rpki-client