This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.mft File: sxLbld_DsxOV4Oy1_yYhLXmN6DQ.mft (raw, json) Hash identifier: 8kzIjQ/+uWHzqJ8L+ohpQRB9BiV82VxnF8AgqH59B7E= Subject key identifier: 07:98:28:5D:D8:22:36:8F:F8:57:8F:EB:47:29:3D:84:7F:BE:71:76 Authority key identifier: B3:12:DB:95:DF:C3:B3:13:95:E0:EC:B5:FF:26:21:2D:79:8D:E8:34 Certificate issuer: /CN=b312db95dfc3b31395e0ecb5ff26212d798de834 Certificate serial: 019B10132553CBD4590297B9E6E0B1E7EA26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.mft Manifest number: 1515 Signing time: Fri 12 Dec 2025 01:00:48 +0000 Manifest this update: Fri 12 Dec 2025 01:00:48 +0000 Manifest next update: Sat 13 Dec 2025 01:00:48 +0000 Files and hashes: 1: nYyst-VXzn3xSdM3Fb9jRPKd5O0.roa (hash: utz/hKliLWf+w0YBiWTvZl5n+Jt5jKsuYbG8pQFD4oQ=) 2: sxLbld_DsxOV4Oy1_yYhLXmN6DQ.crl (hash: CO0qTBBtwsx+yljzk8RHvCjFW1nQ1KE8p/PXJm5Yy2Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.crl rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.mft rsync://rpki.ripe.net/repository/DEFAULT/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:13:25:53:cb:d4:59:02:97:b9:e6:e0:b1:e7:ea:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b312db95dfc3b31395e0ecb5ff26212d798de834 Validity Not Before: Dec 12 01:00:48 2025 GMT Not After : Dec 13 01:00:48 2025 GMT Subject: CN=0798285dd822368ff8578feb47293d847fbe7176 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:fd:42:6a:67:74:3e:49:c4:bd:8b:e7:39:44: 71:5c:19:5c:d4:fe:1d:77:79:f4:00:19:fc:39:49: 07:68:58:79:e7:0b:08:45:a5:0d:ac:67:c7:a3:3a: c9:f4:9a:b9:a4:ca:15:d2:a7:be:99:a3:c2:93:94: 09:ef:d4:e7:a3:20:fc:52:23:77:ff:6d:8f:62:1b: e5:ff:93:81:2a:f2:ea:36:95:3c:ac:6a:1e:b5:ff: 16:69:7e:f3:17:b3:dd:ad:92:f2:12:14:3b:80:ed: 49:fb:e9:7a:f8:c1:cb:21:88:20:b0:61:36:74:57: a9:6b:41:dd:d9:23:16:a3:c7:eb:33:fb:b5:e5:19: f7:0f:b4:21:bf:dd:ef:58:74:0d:a3:5b:dd:d3:02: f4:bc:65:82:47:b5:3a:b8:4c:bc:34:02:b9:ac:8e: a8:18:ae:bc:3d:1d:b4:83:ac:2f:ab:f7:f5:e2:f0: fd:95:da:10:69:6a:cc:7d:d7:c8:83:85:72:e9:84: 3f:83:da:65:cc:88:a2:61:f5:13:21:8f:97:1f:63: e9:63:8f:ac:0f:01:3a:0f:3d:cc:fb:8e:ef:11:33: 53:ac:6b:c1:8e:f1:30:6e:ff:e0:89:04:5a:66:bc: 4e:d3:67:4c:e4:5d:47:57:e8:3b:85:69:8c:7a:3a: 39:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:98:28:5D:D8:22:36:8F:F8:57:8F:EB:47:29:3D:84:7F:BE:71:76 X509v3 Authority Key Identifier: keyid:B3:12:DB:95:DF:C3:B3:13:95:E0:EC:B5:FF:26:21:2D:79:8D:E8:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:1a:91:20:fd:cc:5e:73:96:b3:fd:30:17:e6:3a:b7:b2:74: 11:18:42:30:0a:a7:bf:0f:f1:65:cc:c7:e7:63:da:be:95:62: c3:79:9e:a2:03:3e:81:c3:a8:4b:bf:3b:e7:84:4c:6d:e4:15: a3:63:f8:49:92:4f:25:07:6d:6b:01:cc:c1:a8:1f:5d:e4:1f: 3a:81:99:ea:18:c0:f4:19:0d:0e:6b:4b:0a:46:66:c1:58:45: d2:8d:09:cb:3a:df:11:2a:88:6c:7e:27:f8:6e:62:e0:84:fe: 9c:7f:8e:42:e1:8c:e8:17:7b:ff:c2:0f:93:3f:db:81:89:2f: e7:a6:5b:f6:29:5d:05:a0:5b:a0:12:90:43:66:8f:f3:45:f0: ec:f7:5a:77:4c:63:bc:36:19:8f:bd:e6:9b:05:19:c4:b8:3e: 51:c5:d1:30:d9:be:22:77:c1:c6:3f:1a:db:70:43:b9:17:2a: 89:c5:b7:a1:9b:91:28:e8:04:1e:d0:8f:b4:05:2e:c5:00:90: c5:40:75:16:8f:2e:ab:a3:d5:ed:13:bf:cb:2e:cb:2d:d6:54: fb:78:15:30:19:86:3a:41:c4:48:4c:7d:25:9c:c1:a8:fa:21: 0c:ab:94:ef:dd:0b:63:fd:a1:ad:d0:6b:0b:a5:e2:01:c9:28: 6c:33:55:94 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQEyVTy9RZApe55uCx5+omMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzMTJkYjk1ZGZjM2IzMTM5NWUwZWNiNWZmMjYyMTJkNzk4 ZGU4MzQwHhcNMjUxMjEyMDEwMDQ4WhcNMjUxMjEzMDEwMDQ4WjAzMTEwLwYDVQQD EygwNzk4Mjg1ZGQ4MjIzNjhmZjg1NzhmZWI0NzI5M2Q4NDdmYmU3MTc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnP1Camd0PknEvYvnOURxXBlc1P4d d3n0ABn8OUkHaFh55wsIRaUNrGfHozrJ9Jq5pMoV0qe+maPCk5QJ79TnoyD8UiN3 /22PYhvl/5OBKvLqNpU8rGoetf8WaX7zF7PdrZLyEhQ7gO1J++l6+MHLIYggsGE2 dFepa0Hd2SMWo8frM/u15Rn3D7Qhv93vWHQNo1vd0wL0vGWCR7U6uEy8NAK5rI6o GK68PR20g6wvq/f14vD9ldoQaWrMfdfIg4Vy6YQ/g9plzIiiYfUTIY+XH2PpY4+s DwE6Dz3M+47vETNTrGvBjvEwbv/giQRaZrxO02dM5F1HV+g7hWmMejo5MwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAeYKF3YIjaP+FeP60cpPYR/vnF2MB8GA1UdIwQY MBaAFLMS25Xfw7MTleDstf8mIS15jeg0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3hMYmxkX0RzeE9WNE95MV95WWhMWG1ONkRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS9jYmM1MGUtZmFlZi00M2VjLWJkYmEt ZmRhNDcwYzYxZTA5LzEvc3hMYmxkX0RzeE9WNE95MV95WWhMWG1ONkRRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS9jYmM1MGUtZmFlZi00M2VjLWJkYmEtZmRhNDcwYzYxZTA5 LzEvc3hMYmxkX0RzeE9WNE95MV95WWhMWG1ONkRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMxqRIP3M XnOWs/0wF+Y6t7J0ERhCMAqnvw/xZczH52PavpViw3meogM+gcOoS78754RMbeQV o2P4SZJPJQdtawHMwagfXeQfOoGZ6hjA9BkNDmtLCkZmwVhF0o0JyzrfESqIbH4n +G5i4IT+nH+OQuGM6Bd7/8IPkz/bgYkv56Zb9ildBaBboBKQQ2aP80Xw7Pdad0xj vDYZj73mmwUZxLg+UcXRMNm+InfBxj8a23BDuRcqicW3oZuRKOgEHtCPtAUuxQCQ xUB1Fo8uq6PV7RO/yy7LLdZU+3gVMBmGOkHESEx9JZzBqPohDKuU790LY/2hrdBr C6XiAckobDNVlA== -----END CERTIFICATE-----Generated at Fri Dec 12 08:41:32 2025 by rpki-client