This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft File: sUq6i2B0k5NHjoPDYObL110Vb4k.mft (raw, json) Hash identifier: ffwHZQE9d7FbYmvSxLmXxWAZ6IQX2K8QoReAGGyRpNQ= Subject key identifier: 86:B6:D5:1C:E9:71:7C:55:3F:38:26:1C:21:53:42:49:BB:BD:5D:24 Authority key identifier: B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89 Certificate issuer: /CN=b14aba8b60749393478e83c360e6cbd75d156f89 Certificate serial: 019AEF75F4F28FD0FD9C5CB589803D92C555 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft Manifest number: 1774 Signing time: Fri 05 Dec 2025 17:01:16 +0000 Manifest this update: Fri 05 Dec 2025 17:01:16 +0000 Manifest next update: Sat 06 Dec 2025 17:01:16 +0000 Files and hashes: 1: AtRByS0zJPDiOgR2GmP-us653x0.roa (hash: FxQtASMxynUngBeMPqWpgsQ0Eb/Ckc7wV64mAxHzC3U=) 2: Lsu4SS6ThyYeppRYu6PmZ-042nc.roa (hash: uXqaykBNjJacbWPSq8V/QHVwNjfPRIGaAOgab5oa/hs=) 3: SBLZeIJXD3Iok5gT5e4Uj-A0C7k.roa (hash: rx/yJfhhixvb/560wKVAPp4PPBkdDEWYgcp5l237Szs=) 4: YELUwe4nammHucxrbZyOcSXhQAs.roa (hash: F7evvDSLJ4aaJnnTjKcdJcahJaI+uHzuDY+hV5o5tME=) 5: sUq6i2B0k5NHjoPDYObL110Vb4k.crl (hash: Bkhu18kBURhJC0fCtp22XUz7hJU1gb9A+jaarHC1EvU=) 6: u0aUu0b_iEvlUDq3juqga9PBn0M.roa (hash: I2lvIAd5dytk2OpXdsqlzCje+prqBKxhEoVZ7EyyIW4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 17:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:ef:75:f4:f2:8f:d0:fd:9c:5c:b5:89:80:3d:92:c5:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b14aba8b60749393478e83c360e6cbd75d156f89 Validity Not Before: Dec 5 17:01:16 2025 GMT Not After : Dec 6 17:01:16 2025 GMT Subject: CN=86b6d51ce9717c553f38261c21534249bbbd5d24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:d1:e0:99:85:ea:73:ed:0b:41:e1:83:57:ed: 4a:0d:1b:cd:7c:c2:84:c2:a8:3c:34:17:94:1d:59: fe:59:f0:aa:65:6c:83:d5:a5:7d:1b:ea:b7:d0:ed: 90:ef:b2:8c:a6:84:12:44:24:82:3a:6b:80:fc:19: 46:0c:69:14:74:87:6b:88:09:14:a3:8e:e3:fc:a9: b7:13:b8:1f:b7:0b:74:cc:92:f5:91:26:16:63:a6: 2f:20:f9:90:30:7d:60:9b:71:d4:27:68:fb:a5:1f: d3:2a:04:42:9c:4b:ed:f2:6b:fe:f1:33:cd:05:c3: b9:37:92:90:9a:23:4d:4d:6a:f8:37:81:79:08:e7: 93:8a:29:e9:7a:29:96:39:2c:0e:38:72:68:65:82: 42:26:6a:92:4e:69:2e:fb:3c:e8:fc:c3:4e:cb:82: 12:e7:40:6a:9e:ab:75:6f:df:6f:6b:cc:b5:62:8f: ca:1b:f2:8f:6a:42:c8:14:91:1b:2b:8e:7d:dc:99: a1:36:9d:67:00:69:2b:b4:03:cf:63:50:eb:6b:87: 76:55:d1:c9:5c:65:96:ec:0c:1e:85:8a:9e:f7:cb: 34:72:ca:17:b4:68:b0:23:52:f9:df:de:aa:80:11: 3f:cb:7b:07:77:00:ca:a9:2d:11:fc:63:ac:19:ca: 1f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:B6:D5:1C:E9:71:7C:55:3F:38:26:1C:21:53:42:49:BB:BD:5D:24 X509v3 Authority Key Identifier: keyid:B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:b5:c2:55:5a:5f:65:4b:ec:ab:67:95:ff:e8:8d:3d:d5:db: 5f:dc:14:d2:39:b7:8d:ea:37:a5:59:57:90:22:bd:8e:f9:48: 0a:27:ed:5a:a0:04:05:15:ef:bb:bd:a4:92:3b:d5:28:14:7f: e6:c6:af:53:29:91:1c:ed:01:69:cb:2f:36:63:a1:2d:f4:ce: c7:58:7a:ac:c3:e6:7f:b2:5f:fd:dd:06:cb:5d:0b:e8:35:b4: 81:4f:34:bc:10:2d:20:1b:0c:ce:3a:2a:2d:fe:36:e0:7c:9e: 9f:b4:64:60:a6:7a:43:cc:8c:86:26:ee:f9:89:82:eb:e8:68: 51:a9:ad:77:18:42:df:f4:f9:d1:bf:04:a2:4f:eb:1d:0f:6a: 9f:83:0c:0f:52:ca:31:81:57:c9:c1:51:f0:56:6b:d3:7e:e1: c9:25:dc:12:17:54:ab:0a:4d:e2:cc:16:1c:21:c4:af:bd:24: 30:c0:7e:c7:7d:01:39:3e:00:61:12:74:29:02:ca:86:07:89: 38:e5:2d:7a:3d:a4:e6:35:2e:33:81:70:95:a3:cd:ce:01:58: e0:95:de:46:50:b5:d7:37:48:1d:0f:6a:77:ff:0c:e7:72:53: e9:5e:bb:c0:3c:6a:39:58:33:b0:bb:9c:3b:11:9f:38:86:4b: 6b:7d:f5:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrvdfTyj9D9nFy1iYA9ksVVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxNGFiYThiNjA3NDkzOTM0NzhlODNjMzYwZTZjYmQ3NWQx NTZmODkwHhcNMjUxMjA1MTcwMTE2WhcNMjUxMjA2MTcwMTE2WjAzMTEwLwYDVQQD Eyg4NmI2ZDUxY2U5NzE3YzU1M2YzODI2MWMyMTUzNDI0OWJiYmQ1ZDI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi9HgmYXqc+0LQeGDV+1KDRvNfMKE wqg8NBeUHVn+WfCqZWyD1aV9G+q30O2Q77KMpoQSRCSCOmuA/BlGDGkUdIdriAkU o47j/Km3E7gftwt0zJL1kSYWY6YvIPmQMH1gm3HUJ2j7pR/TKgRCnEvt8mv+8TPN BcO5N5KQmiNNTWr4N4F5COeTiinpeimWOSwOOHJoZYJCJmqSTmku+zzo/MNOy4IS 50Bqnqt1b99va8y1Yo/KG/KPakLIFJEbK4593JmhNp1nAGkrtAPPY1Dra4d2VdHJ XGWW7AwehYqe98s0csoXtGiwI1L5396qgBE/y3sHdwDKqS0R/GOsGcofhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIa21RzpcXxVPzgmHCFTQkm7vV0kMB8GA1UdIwQY MBaAFLFKuotgdJOTR46Dw2Dmy9ddFW+JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1VxNmkyQjBrNU5Iam9QRFlPYkwxMTBWYjRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi80NjE2ODUtMDczZS00MWFmLTliYjYt Y2Y2YzMwNTIxMmViLzEvc1VxNmkyQjBrNU5Iam9QRFlPYkwxMTBWYjRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi80NjE2ODUtMDczZS00MWFmLTliYjYtY2Y2YzMwNTIxMmVi LzEvc1VxNmkyQjBrNU5Iam9QRFlPYkwxMTBWYjRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlbXCVVpf ZUvsq2eV/+iNPdXbX9wU0jm3jeo3pVlXkCK9jvlICiftWqAEBRXvu72kkjvVKBR/ 5savUymRHO0BacsvNmOhLfTOx1h6rMPmf7Jf/d0Gy10L6DW0gU80vBAtIBsMzjoq Lf424Hyen7RkYKZ6Q8yMhibu+YmC6+hoUamtdxhC3/T50b8Eok/rHQ9qn4MMD1LK MYFXycFR8FZr037hySXcEhdUqwpN4swWHCHEr70kMMB+x30BOT4AYRJ0KQLKhgeJ OOUtej2k5jUuM4FwlaPNzgFY4JXeRlC11zdIHQ9qd/8M53JT6V67wDxqOVgzsLuc OxGfOIZLa331vw== -----END CERTIFICATE-----Generated at Fri Dec 5 23:04:51 2025 by rpki-client