This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.mft File: _SHLS6oVhi0bV3O_K-YMpfT8JNQ.mft (raw, json) Hash identifier: 8g9D1FHgcTqiVDyROihzCpe+zA6z12UEMBa++CYH3xU= Subject key identifier: 9C:45:8E:6E:88:17:71:52:92:44:65:3B:AA:52:2B:4F:FA:CA:E5:B3 Authority key identifier: FD:21:CB:4B:AA:15:86:2D:1B:57:73:BF:2B:E6:0C:A5:F4:FC:24:D4 Certificate issuer: /CN=fd21cb4baa15862d1b5773bf2be60ca5f4fc24d4 Certificate serial: 019AF954673347EE06446DF20E34691AF129 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.mft Manifest number: 1276 Signing time: Sun 07 Dec 2025 15:00:49 +0000 Manifest this update: Sun 07 Dec 2025 15:00:49 +0000 Manifest next update: Mon 08 Dec 2025 15:00:49 +0000 Files and hashes: 1: 5ZcLxiewB6SlgnkXrkL_qV-6c70.roa (hash: GbaGUbv69G2XGzJlZWZreb/2hT1CRKa032XRQqRiLc0=) 2: I1O4inp7HBvWNe9o3Cdiqxo24PI.roa (hash: w0+4BIRKhD7XUvL36J282b0/EXDqyGM8URO+oQQ/ReM=) 3: QUq_as-wJbivzxLijTmqQSzAeeM.roa (hash: Obggdbq+FXYocjRAbiQV6ufwU9548OHhlSGKsE0Fnq0=) 4: _SHLS6oVhi0bV3O_K-YMpfT8JNQ.crl (hash: YQPzfQapszixCQwxtXoacLYY+iVZsPKlHzjn86XD5mM=) 5: fUAyjzobbYqY4LtTx9KW62S7ym8.roa (hash: IdzdGJHWpk15Q0jGSrpbWLOfiHsRudIY06wcbYibU3s=) 6: rSVe0qwmHRmRSbc-BqRXWgwo8xg.roa (hash: r3p05wO+xtEje8UL55zhFJYQg8/aaGUGyXfpX1tlFYY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.crl rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.mft rsync://rpki.ripe.net/repository/DEFAULT/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 08 Dec 2025 15:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f9:54:67:33:47:ee:06:44:6d:f2:0e:34:69:1a:f1:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fd21cb4baa15862d1b5773bf2be60ca5f4fc24d4 Validity Not Before: Dec 7 15:00:49 2025 GMT Not After : Dec 8 15:00:49 2025 GMT Subject: CN=9c458e6e881771529244653baa522b4ffacae5b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d8:90:9f:bb:52:f0:b9:c9:f4:05:cd:43:41: 2b:9c:17:56:49:dc:06:ec:4f:7a:90:e7:e2:29:24: 09:f9:e6:fe:d4:63:4d:27:d0:6f:47:ca:a7:72:0d: ef:e4:da:9e:d1:6d:05:e2:df:00:57:56:95:1e:f4: 92:40:19:1c:1f:26:8b:6e:f3:28:19:1f:74:02:f3: 20:17:21:02:be:c0:34:dc:c1:63:af:b3:48:16:dd: ec:a3:7a:38:79:88:f0:ed:32:5c:f1:bb:a9:0e:bf: 66:db:ea:9b:2b:e1:d7:ec:88:40:e8:b6:b0:20:52: 7a:6e:8a:26:0b:ca:e2:79:08:50:e7:92:15:80:e5: 60:58:af:7f:3d:35:bb:ff:33:df:0b:a2:2a:4b:75: eb:b7:91:c8:86:94:1b:4e:fb:e8:1b:c1:3a:9c:88: b8:6a:61:07:59:20:37:7d:27:4e:33:95:bb:ac:17: a8:b6:af:b9:84:8a:4b:91:c8:93:2d:49:c7:89:42: 7d:fd:1a:d5:50:45:35:6b:b6:4f:53:7c:a1:29:d7: b0:3d:c4:86:83:70:a0:b4:64:60:50:c8:47:6c:ba: e7:f3:c8:1e:ef:23:02:50:ca:b7:03:46:7c:40:b2: 80:88:90:f7:ea:52:57:ea:e8:b9:72:a8:07:b4:24: 17:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:45:8E:6E:88:17:71:52:92:44:65:3B:AA:52:2B:4F:FA:CA:E5:B3 X509v3 Authority Key Identifier: keyid:FD:21:CB:4B:AA:15:86:2D:1B:57:73:BF:2B:E6:0C:A5:F4:FC:24:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bd:67:13:fb:f3:75:0b:61:a6:6d:68:7e:0b:43:a6:6a:e3:29: f7:b3:54:d0:0b:89:f7:4f:6f:9c:66:16:f7:bb:b5:50:6c:aa: f5:73:e2:75:27:f2:90:9c:2f:95:d5:e5:5c:13:23:80:7e:5b: 0a:3d:f5:b2:96:30:df:06:7b:50:90:f9:a4:6a:6c:56:0c:76: e8:15:ae:ab:2b:6b:1c:b0:35:04:95:5b:c4:39:ca:eb:63:56: 23:f4:d6:61:5c:e4:1c:47:dc:0d:89:12:51:cd:87:28:83:73: 65:78:78:f8:7b:15:60:a1:9e:1e:d1:2a:e0:15:f2:26:09:a2: fc:26:7a:82:20:df:a8:72:ff:c7:45:24:e1:22:62:49:23:80: 32:2f:8b:3a:34:a5:9b:24:a0:6f:0c:0a:84:3f:6b:7b:06:a9: 56:d3:83:e0:a3:57:51:1b:e9:51:10:d4:36:00:76:4c:33:a4: b0:f2:0a:62:16:35:02:0f:2e:4a:de:83:2e:55:b8:9d:e4:f9: bb:82:00:a4:73:7b:6f:45:26:14:90:83:b0:3c:82:bb:04:22: dc:c9:86:eb:76:fa:6b:90:8f:cd:7d:d9:7e:a4:76:ff:85:d3: 40:c6:71:5f:d0:85:89:ba:c1:67:34:95:d5:8a:e0:bc:8c:eb: 91:dd:34:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr5VGczR+4GRG3yDjRpGvEpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkMjFjYjRiYWExNTg2MmQxYjU3NzNiZjJiZTYwY2E1ZjRm YzI0ZDQwHhcNMjUxMjA3MTUwMDQ5WhcNMjUxMjA4MTUwMDQ5WjAzMTEwLwYDVQQD Eyg5YzQ1OGU2ZTg4MTc3MTUyOTI0NDY1M2JhYTUyMmI0ZmZhY2FlNWIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoNiQn7tS8LnJ9AXNQ0ErnBdWSdwG 7E96kOfiKSQJ+eb+1GNNJ9BvR8qncg3v5Nqe0W0F4t8AV1aVHvSSQBkcHyaLbvMo GR90AvMgFyECvsA03MFjr7NIFt3so3o4eYjw7TJc8bupDr9m2+qbK+HX7IhA6Law IFJ6boomC8rieQhQ55IVgOVgWK9/PTW7/zPfC6IqS3Xrt5HIhpQbTvvoG8E6nIi4 amEHWSA3fSdOM5W7rBeotq+5hIpLkciTLUnHiUJ9/RrVUEU1a7ZPU3yhKdewPcSG g3CgtGRgUMhHbLrn88ge7yMCUMq3A0Z8QLKAiJD36lJX6ui5cqgHtCQXtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJxFjm6IF3FSkkRlO6pSK0/6yuWzMB8GA1UdIwQY MBaAFP0hy0uqFYYtG1dzvyvmDKX0/CTUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX1NITFM2b1ZoaTBiVjNPX0stWU1wZlQ4Sk5RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8zMjY2MDYtMTRiYS00NDM2LTk5ODUt YmU1NTIwYTVjODIxLzEvX1NITFM2b1ZoaTBiVjNPX0stWU1wZlQ4Sk5RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny8zMjY2MDYtMTRiYS00NDM2LTk5ODUtYmU1NTIwYTVjODIx LzEvX1NITFM2b1ZoaTBiVjNPX0stWU1wZlQ4Sk5RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvWcT+/N1 C2GmbWh+C0OmauMp97NU0AuJ909vnGYW97u1UGyq9XPidSfykJwvldXlXBMjgH5b Cj31spYw3wZ7UJD5pGpsVgx26BWuqytrHLA1BJVbxDnK62NWI/TWYVzkHEfcDYkS Uc2HKINzZXh4+HsVYKGeHtEq4BXyJgmi/CZ6giDfqHL/x0Uk4SJiSSOAMi+LOjSl mySgbwwKhD9rewapVtOD4KNXURvpURDUNgB2TDOksPIKYhY1Ag8uSt6DLlW4neT5 u4IApHN7b0UmFJCDsDyCuwQi3MmG63b6a5CPzX3ZfqR2/4XTQMZxX9CFibrBZzSV 1YrgvIzrkd00+Q== -----END CERTIFICATE-----Generated at Sun Dec 7 22:12:11 2025 by rpki-client