This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft File: shna0BUe3wUqLxyX34hKWoeotfU.mft (raw, json) Hash identifier: ohj1QqEpVP6freqOXMsKsSqk7g3BAxNiivGv4ZoYeNM= Subject key identifier: F9:46:9D:BA:E8:DB:86:C1:53:C2:3B:C6:5D:D4:A4:E5:A8:ED:33:76 Authority key identifier: B2:19:DA:D0:15:1E:DF:05:2A:2F:1C:97:DF:88:4A:5A:87:A8:B5:F5 Certificate issuer: /CN=b219dad0151edf052a2f1c97df884a5a87a8b5f5 Certificate serial: 019B262DC371236FD00D8E48495BC4517A30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft Manifest number: 0920 Signing time: Tue 16 Dec 2025 08:01:31 +0000 Manifest this update: Tue 16 Dec 2025 08:01:31 +0000 Manifest next update: Wed 17 Dec 2025 08:01:31 +0000 Files and hashes: 1: shna0BUe3wUqLxyX34hKWoeotfU.crl (hash: +7UDQoYS81y2AKCdyrYrSXg5AmzEvMKs/tvCJLpgnXQ=) 2: yqdi2I4mvyqmB4-2BzPkMkJ3hIY.roa (hash: oTSjwH5eKf8we68+dtERfn9uiSN2W5Nb5pDWgRrwsxA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.crl rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 08:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:26:2d:c3:71:23:6f:d0:0d:8e:48:49:5b:c4:51:7a:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b219dad0151edf052a2f1c97df884a5a87a8b5f5 Validity Not Before: Dec 16 08:01:31 2025 GMT Not After : Dec 17 08:01:31 2025 GMT Subject: CN=f9469dbae8db86c153c23bc65dd4a4e5a8ed3376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:82:00:a2:85:59:59:bb:45:08:a8:d0:7f:f3: 52:88:aa:84:64:8a:d4:ec:f6:af:41:09:15:05:83: 16:75:b2:82:3a:00:8e:e3:d3:1f:7e:8d:44:82:76: ed:d6:0e:12:92:ac:2e:8d:0c:23:fc:95:69:fc:93: f7:9a:79:fe:4b:5a:0d:a8:da:0d:d8:31:f3:7b:7c: a8:44:32:bc:e7:60:e3:21:46:53:bb:8b:98:0c:6f: d6:50:2a:5d:10:0d:1c:ac:15:f3:19:09:4c:de:5e: 2b:19:cc:a1:85:5b:c7:58:02:25:90:5e:68:31:7c: 81:9c:c8:b3:28:b6:ae:6c:08:dc:75:51:db:c7:44: 2e:d6:4d:30:8c:12:c8:5e:c1:92:5c:62:c8:08:59: b0:83:9e:79:c1:53:c2:4f:82:c3:3c:a5:03:33:12: 44:03:9d:08:bc:68:36:00:7b:e4:3b:bf:9c:74:95: 14:8e:eb:47:0a:cf:e2:5c:7c:a8:02:da:9a:75:95: f9:8a:7d:8d:44:55:91:ee:70:8e:97:30:95:a8:90: 9c:cd:11:f4:ce:1a:18:33:52:36:f0:4e:13:14:83: 90:f2:9b:ba:7e:ef:02:83:d1:7e:c0:e7:ee:8f:18: ce:4c:ce:2a:db:8b:44:bd:06:61:4e:54:ad:11:69: 9f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:46:9D:BA:E8:DB:86:C1:53:C2:3B:C6:5D:D4:A4:E5:A8:ED:33:76 X509v3 Authority Key Identifier: keyid:B2:19:DA:D0:15:1E:DF:05:2A:2F:1C:97:DF:88:4A:5A:87:A8:B5:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:2a:db:c2:fc:9b:58:6e:fe:3b:95:d0:0c:48:14:f2:1f:37: 1e:6b:72:c6:4e:b8:87:5e:5d:b7:50:38:87:c8:87:27:cf:23: 8c:08:aa:c6:e2:30:98:8f:bc:c5:41:d2:2a:7c:d6:45:ff:29: 25:c4:9e:a4:fa:df:33:20:0f:40:be:ce:a8:4d:d4:5e:9f:0b: da:f7:55:6b:f4:ea:75:31:df:0f:eb:4c:9d:d0:a5:49:4a:98: 3e:07:61:d1:50:94:5a:19:cd:ce:d0:f8:ff:52:19:76:ee:16: 9e:09:70:c0:72:48:ed:01:98:ed:e1:29:8f:b6:ef:c0:d0:90: f2:24:88:68:14:ae:b6:60:51:99:b0:1f:16:3b:7f:2f:27:b3: ef:8a:bc:4a:36:44:7a:19:f9:63:d5:31:0e:01:89:5c:46:8e: 91:60:6a:ba:9b:44:d7:57:06:50:f3:1b:81:cf:99:fa:5a:64: 09:4c:47:5a:b7:3b:ae:b9:d3:48:40:41:56:47:10:94:bc:c2: a1:28:c5:43:2d:44:78:52:68:f0:f5:d9:4e:0d:1d:59:46:e3: e3:05:31:5b:7d:44:57:5a:21:13:98:24:fd:18:76:9e:b7:f7: 82:f3:de:2c:36:3e:3e:92:44:e7:46:49:4d:be:08:f7:2b:4b: 7c:15:c8:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsmLcNxI2/QDY5ISVvEUXowMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyMTlkYWQwMTUxZWRmMDUyYTJmMWM5N2RmODg0YTVhODdh OGI1ZjUwHhcNMjUxMjE2MDgwMTMxWhcNMjUxMjE3MDgwMTMxWjAzMTEwLwYDVQQD EyhmOTQ2OWRiYWU4ZGI4NmMxNTNjMjNiYzY1ZGQ0YTRlNWE4ZWQzMzc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtIIAooVZWbtFCKjQf/NSiKqEZIrU 7PavQQkVBYMWdbKCOgCO49Mffo1Egnbt1g4SkqwujQwj/JVp/JP3mnn+S1oNqNoN 2DHze3yoRDK852DjIUZTu4uYDG/WUCpdEA0crBXzGQlM3l4rGcyhhVvHWAIlkF5o MXyBnMizKLaubAjcdVHbx0Qu1k0wjBLIXsGSXGLICFmwg555wVPCT4LDPKUDMxJE A50IvGg2AHvkO7+cdJUUjutHCs/iXHyoAtqadZX5in2NRFWR7nCOlzCVqJCczRH0 zhoYM1I28E4TFIOQ8pu6fu8Cg9F+wOfujxjOTM4q24tEvQZhTlStEWmfGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPlGnbro24bBU8I7xl3UpOWo7TN2MB8GA1UdIwQY MBaAFLIZ2tAVHt8FKi8cl9+ISlqHqLX1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2huYTBCVWUzd1VxTHh5WDM0aEtXb2VvdGZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni83NzQ4MmQtNDgzMC00OWY3LWI2YmQt NzY1MGQ5NzMyYTUyLzEvc2huYTBCVWUzd1VxTHh5WDM0aEtXb2VvdGZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni83NzQ4MmQtNDgzMC00OWY3LWI2YmQtNzY1MGQ5NzMyYTUy LzEvc2huYTBCVWUzd1VxTHh5WDM0aEtXb2VvdGZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABSrbwvyb WG7+O5XQDEgU8h83Hmtyxk64h15dt1A4h8iHJ88jjAiqxuIwmI+8xUHSKnzWRf8p JcSepPrfMyAPQL7OqE3UXp8L2vdVa/TqdTHfD+tMndClSUqYPgdh0VCUWhnNztD4 /1IZdu4WnglwwHJI7QGY7eEpj7bvwNCQ8iSIaBSutmBRmbAfFjt/Lyez74q8SjZE ehn5Y9UxDgGJXEaOkWBquptE11cGUPMbgc+Z+lpkCUxHWrc7rrnTSEBBVkcQlLzC oSjFQy1EeFJo8PXZTg0dWUbj4wUxW31EV1ohE5gk/Rh2nrf3gvPeLDY+PpJE50ZJ Tb4I9ytLfBXIOw== -----END CERTIFICATE-----Generated at Tue Dec 16 15:02:24 2025 by rpki-client