This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/a32c29-4087-4f87-89d9-9e4d1376ba31/1/sTFfExaKIog9oEuECAZgc7Hz8Nw.mft File: sTFfExaKIog9oEuECAZgc7Hz8Nw.mft (raw, json) Hash identifier: wgRHViAoY9XZ47AgHzCQzePBWYc7quC4O9MZdg+659U= Subject key identifier: 0D:86:9E:93:C3:56:39:3A:25:87:F4:DB:2D:59:2F:13:4F:59:1A:9F Authority key identifier: B1:31:5F:13:16:8A:22:88:3D:A0:4B:84:08:06:60:73:B1:F3:F0:DC Certificate issuer: /CN=b1315f13168a22883da04b8408066073b1f3f0dc Certificate serial: 019B32D7F57DA841BC6586CFA2C21D8251EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sTFfExaKIog9oEuECAZgc7Hz8Nw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/a32c29-4087-4f87-89d9-9e4d1376ba31/1/sTFfExaKIog9oEuECAZgc7Hz8Nw.mft Manifest number: 1780 Signing time: Thu 18 Dec 2025 19:02:52 +0000 Manifest this update: Thu 18 Dec 2025 19:02:52 +0000 Manifest next update: Fri 19 Dec 2025 19:02:52 +0000 Files and hashes: 1: sTFfExaKIog9oEuECAZgc7Hz8Nw.crl (hash: /IrdySdmz+6Tegn+92taDKgI9k9FLUsTXOMbiY9+yhw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/a32c29-4087-4f87-89d9-9e4d1376ba31/1/sTFfExaKIog9oEuECAZgc7Hz8Nw.crl rsync://rpki.ripe.net/repository/DEFAULT/6c/a32c29-4087-4f87-89d9-9e4d1376ba31/1/sTFfExaKIog9oEuECAZgc7Hz8Nw.mft rsync://rpki.ripe.net/repository/DEFAULT/sTFfExaKIog9oEuECAZgc7Hz8Nw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 19:02:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:d7:f5:7d:a8:41:bc:65:86:cf:a2:c2:1d:82:51:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1315f13168a22883da04b8408066073b1f3f0dc Validity Not Before: Dec 18 19:02:52 2025 GMT Not After : Dec 19 19:02:52 2025 GMT Subject: CN=0d869e93c356393a2587f4db2d592f134f591a9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:20:b1:45:e9:19:6e:b2:23:02:ee:c2:1d:5c: 52:77:bb:9c:9b:44:ca:0a:3f:48:77:4c:cc:bc:07: 82:f7:de:c4:76:f4:44:46:06:f4:10:ad:ae:d7:f4: 5a:34:f0:85:f3:a0:73:2a:ae:5e:a8:c0:a8:06:22: f6:2b:9a:25:bc:b6:d5:b2:35:94:ec:03:5f:00:73: 67:91:ee:de:fc:1c:56:56:03:c8:18:3a:a0:a7:53: f5:44:fc:0c:ff:77:15:03:16:dc:78:49:e6:dd:3c: 2d:a1:3e:16:74:c5:82:a9:76:0f:68:ef:65:f7:ab: 15:e2:c2:20:76:e0:14:82:d0:40:03:c8:b5:63:a0: f8:49:82:0a:66:eb:49:af:bd:89:2d:b6:7a:b7:ba: 44:e6:4b:f0:a3:a7:92:3b:47:a6:f4:00:de:1f:15: cd:67:22:72:64:66:57:94:34:04:60:d0:ce:67:67: 17:f7:a8:97:c3:27:a0:8f:6f:30:0b:11:df:cf:d4: 66:3e:21:cf:52:10:b6:9a:f7:3e:c6:eb:d1:0c:41: 29:23:50:68:08:fd:dd:81:ef:45:6b:dd:6b:6d:9f: 73:47:ac:6b:99:02:d7:f9:ed:10:1d:28:92:8d:b1: ad:57:0d:c8:f3:a6:04:c9:98:77:f3:cd:4d:99:f3: 26:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:86:9E:93:C3:56:39:3A:25:87:F4:DB:2D:59:2F:13:4F:59:1A:9F X509v3 Authority Key Identifier: keyid:B1:31:5F:13:16:8A:22:88:3D:A0:4B:84:08:06:60:73:B1:F3:F0:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sTFfExaKIog9oEuECAZgc7Hz8Nw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/a32c29-4087-4f87-89d9-9e4d1376ba31/1/sTFfExaKIog9oEuECAZgc7Hz8Nw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/a32c29-4087-4f87-89d9-9e4d1376ba31/1/sTFfExaKIog9oEuECAZgc7Hz8Nw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:63:62:e4:7d:d6:ed:c9:3f:28:be:dc:7a:6d:47:ec:82:ef: b9:78:bb:51:a2:82:3e:51:43:46:44:6b:3f:13:63:c4:27:e3: e2:92:72:69:9e:44:e5:79:77:08:e2:6c:cd:cc:fb:c7:a0:bd: bf:f9:5c:5c:25:db:0e:2b:d1:8a:45:eb:c3:c2:39:85:eb:75: bb:4d:96:ad:60:49:61:d6:f0:44:61:5d:35:55:67:4d:47:ba: ad:d3:66:71:23:fe:b1:3f:b3:95:6a:bb:8d:03:fa:72:0a:c5: b2:fb:c2:90:78:04:a4:32:59:33:29:e9:1f:ec:d8:a0:42:38: 2d:c1:30:44:87:5d:88:85:c2:99:74:f7:70:00:56:e6:9f:2b: 03:f2:a9:52:cd:0e:95:ea:02:cc:37:f5:d9:f6:0a:f6:04:0e: 9a:b8:0a:d0:3e:7f:78:04:68:44:c9:ba:10:82:cc:df:ad:86: fa:13:dd:4f:1d:2f:68:12:e9:25:e7:2c:48:c2:ad:e9:a5:27: ac:ef:52:31:ca:82:a5:aa:54:b1:1a:95:cf:d8:29:37:91:91: 66:be:96:4b:97:6d:fe:e6:ae:9e:c3:ac:83:af:2e:4f:50:7d: 03:e5:46:37:ec:33:39:74:e8:ea:86:b4:74:71:aa:87:4f:81: 70:58:b8:3d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsy1/V9qEG8ZYbPosIdglHqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxMzE1ZjEzMTY4YTIyODgzZGEwNGI4NDA4MDY2MDczYjFm M2YwZGMwHhcNMjUxMjE4MTkwMjUyWhcNMjUxMjE5MTkwMjUyWjAzMTEwLwYDVQQD EygwZDg2OWU5M2MzNTYzOTNhMjU4N2Y0ZGIyZDU5MmYxMzRmNTkxYTlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtSCxRekZbrIjAu7CHVxSd7ucm0TK Cj9Id0zMvAeC997EdvRERgb0EK2u1/RaNPCF86BzKq5eqMCoBiL2K5olvLbVsjWU 7ANfAHNnke7e/BxWVgPIGDqgp1P1RPwM/3cVAxbceEnm3TwtoT4WdMWCqXYPaO9l 96sV4sIgduAUgtBAA8i1Y6D4SYIKZutJr72JLbZ6t7pE5kvwo6eSO0em9ADeHxXN ZyJyZGZXlDQEYNDOZ2cX96iXwyegj28wCxHfz9RmPiHPUhC2mvc+xuvRDEEpI1Bo CP3dge9Fa91rbZ9zR6xrmQLX+e0QHSiSjbGtVw3I86YEyZh3881NmfMm4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA2GnpPDVjk6JYf02y1ZLxNPWRqfMB8GA1UdIwQY MBaAFLExXxMWiiKIPaBLhAgGYHOx8/DcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1RGZkV4YUtJb2c5b0V1RUNBWmdjN0h6OE53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy9hMzJjMjktNDA4Ny00Zjg3LTg5ZDkt OWU0ZDEzNzZiYTMxLzEvc1RGZkV4YUtJb2c5b0V1RUNBWmdjN0h6OE53Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yy9hMzJjMjktNDA4Ny00Zjg3LTg5ZDktOWU0ZDEzNzZiYTMx LzEvc1RGZkV4YUtJb2c5b0V1RUNBWmdjN0h6OE53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeGNi5H3W 7ck/KL7cem1H7ILvuXi7UaKCPlFDRkRrPxNjxCfj4pJyaZ5E5Xl3COJszcz7x6C9 v/lcXCXbDivRikXrw8I5het1u02WrWBJYdbwRGFdNVVnTUe6rdNmcSP+sT+zlWq7 jQP6cgrFsvvCkHgEpDJZMynpH+zYoEI4LcEwRIddiIXCmXT3cABW5p8rA/KpUs0O leoCzDf12fYK9gQOmrgK0D5/eARoRMm6EILM362G+hPdTx0vaBLpJecsSMKt6aUn rO9SMcqCpapUsRqVz9gpN5GRZr6WS5dt/uaunsOsg68uT1B9A+VGN+wzOXTo6oa0 dHGqh0+BcFi4PQ== -----END CERTIFICATE-----Generated at Fri Dec 19 04:50:05 2025 by rpki-client