This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft File: stCgxoogOf8MpRQCQRUnHIoEZgg.mft (raw, json) Hash identifier: PWzcdbOHLpDLyloEFaft49BnPbM/Rf9C/absSQCqSXw= Subject key identifier: 05:C9:75:C6:F4:25:A2:A8:85:8A:A8:6F:F8:88:20:11:9E:BE:34:EB Authority key identifier: B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08 Certificate issuer: /CN=b2d0a0c68a2039ff0ca514024115271c8a046608 Certificate serial: 019B345677BF9BDF64A49C77F1B2B9A6179F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft Manifest number: 1713 Signing time: Fri 19 Dec 2025 02:00:40 +0000 Manifest this update: Fri 19 Dec 2025 02:00:40 +0000 Manifest next update: Sat 20 Dec 2025 02:00:40 +0000 Files and hashes: 1: 98pSG03PsWjsaovooO14-BTQ9Vo.roa (hash: Nos0vMcOhKzLe90FJjKrPfa+9LXdDpzz5DlngxI3jBk=) 2: stCgxoogOf8MpRQCQRUnHIoEZgg.crl (hash: 3r41k1dgItWOqRwpSlqIBuIk9Xds4ayK9NktoNUhkFk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 01:23:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:56:77:bf:9b:df:64:a4:9c:77:f1:b2:b9:a6:17:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2d0a0c68a2039ff0ca514024115271c8a046608 Validity Not Before: Dec 19 02:00:40 2025 GMT Not After : Dec 20 02:00:40 2025 GMT Subject: CN=05c975c6f425a2a8858aa86ff88820119ebe34eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:89:75:18:2b:e9:23:37:a2:a8:c8:29:27:46: 2e:4e:49:51:7b:a7:fe:15:0c:ae:2d:88:cd:e4:ed: c9:c3:0b:cd:21:ec:19:82:7a:07:e0:44:fa:42:80: 2a:e4:df:6f:84:01:d3:64:90:08:a8:51:b9:c7:fb: 69:bc:f8:02:f0:c4:35:5a:da:3c:09:0b:1c:29:78: 80:4e:30:bd:1b:9e:c0:f3:8c:17:8f:db:e8:8b:17: a4:11:55:26:b4:ec:cc:cc:c8:3a:4c:e2:7f:e1:54: 4f:04:01:e4:9f:b0:4f:4a:d0:44:ce:76:23:25:73: 01:4f:d8:e5:57:82:18:53:77:9f:70:d4:1d:38:b6: 2c:94:8a:91:8b:74:07:ed:3a:09:c1:8d:38:33:6e: 98:33:36:2a:d2:4c:04:ea:03:f2:89:fd:4e:9f:b9: 27:86:5b:8d:ff:10:fe:a2:99:62:20:18:66:62:84: e8:33:dc:81:b1:ff:b1:44:b1:70:e1:ec:77:6e:d5: 66:ed:0e:40:43:34:62:52:a5:45:c2:d0:d9:7a:44: ea:0c:89:03:32:6e:8d:b4:54:3a:7b:42:63:60:95: b7:71:25:5e:52:d6:05:e2:79:19:fb:3e:1f:af:4b: af:ea:6a:3e:28:f1:85:87:e2:db:07:eb:47:92:b1: 1b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:C9:75:C6:F4:25:A2:A8:85:8A:A8:6F:F8:88:20:11:9E:BE:34:EB X509v3 Authority Key Identifier: keyid:B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b1:96:e1:47:43:c4:ea:d4:b7:81:00:ff:47:e6:7a:47:c4:56: e7:6e:53:88:f2:f6:45:7e:76:03:65:57:53:07:09:fd:fc:50: 2f:ef:6f:4e:ba:06:e2:4a:b5:98:f3:b0:ab:06:fb:d7:0d:18: 18:0f:39:c2:c6:5c:ad:1e:61:1e:97:de:24:49:c5:8c:d9:0e: 5f:f1:ac:6b:a2:41:00:e6:2a:d9:c3:dd:0e:57:75:9c:85:d7: ad:bf:de:96:3f:b3:11:d7:bd:08:7e:ba:d0:a1:c7:1b:a8:0d: 5c:06:e7:05:09:72:15:3a:de:7b:ee:d8:56:65:96:46:88:b0: 3d:fd:11:b1:de:dc:6c:86:27:35:37:14:ac:c1:f8:f6:e7:b5: 92:9c:ab:2f:83:78:39:2c:bf:d6:56:9d:1f:6a:9e:65:65:ea: 19:3e:cc:d0:c4:b6:48:72:0f:c4:88:e4:9b:45:a7:2d:53:97: 48:55:37:34:19:8b:bc:f7:b9:2e:56:2e:e8:e7:bb:14:e6:72: ee:e6:5b:de:9f:a4:19:1c:a9:6e:7d:41:21:74:7a:8e:98:d1: bf:39:7f:23:c6:56:e1:9a:22:03:92:34:00:d4:38:4e:63:20: 68:36:7c:14:ca:28:4f:16:88:60:dc:64:51:86:bc:48:e7:6f: 45:6a:1b:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0Vne/m99kpJx38bK5phefMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyZDBhMGM2OGEyMDM5ZmYwY2E1MTQwMjQxMTUyNzFjOGEw NDY2MDgwHhcNMjUxMjE5MDIwMDQwWhcNMjUxMjIwMDIwMDQwWjAzMTEwLwYDVQQD EygwNWM5NzVjNmY0MjVhMmE4ODU4YWE4NmZmODg4MjAxMTllYmUzNGViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtYl1GCvpIzeiqMgpJ0YuTklRe6f+ FQyuLYjN5O3JwwvNIewZgnoH4ET6QoAq5N9vhAHTZJAIqFG5x/tpvPgC8MQ1Wto8 CQscKXiATjC9G57A84wXj9voixekEVUmtOzMzMg6TOJ/4VRPBAHkn7BPStBEznYj JXMBT9jlV4IYU3efcNQdOLYslIqRi3QH7ToJwY04M26YMzYq0kwE6gPyif1On7kn hluN/xD+opliIBhmYoToM9yBsf+xRLFw4ex3btVm7Q5AQzRiUqVFwtDZekTqDIkD Mm6NtFQ6e0JjYJW3cSVeUtYF4nkZ+z4fr0uv6mo+KPGFh+LbB+tHkrEbCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAXJdcb0JaKohYqob/iIIBGevjTrMB8GA1UdIwQY MBaAFLLQoMaKIDn/DKUUAkEVJxyKBGYIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3RDZ3hvb2dPZjhNcFJRQ1FSVW5ISW9FWmdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9iM2QwZDctZTEwYS00ODZmLTg4NWQt NDFhYjdjODcyZmVhLzEvc3RDZ3hvb2dPZjhNcFJRQ1FSVW5ISW9FWmdnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny9iM2QwZDctZTEwYS00ODZmLTg4NWQtNDFhYjdjODcyZmVh LzEvc3RDZ3hvb2dPZjhNcFJRQ1FSVW5ISW9FWmdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsZbhR0PE 6tS3gQD/R+Z6R8RW525TiPL2RX52A2VXUwcJ/fxQL+9vTroG4kq1mPOwqwb71w0Y GA85wsZcrR5hHpfeJEnFjNkOX/Gsa6JBAOYq2cPdDld1nIXXrb/elj+zEde9CH66 0KHHG6gNXAbnBQlyFTree+7YVmWWRoiwPf0Rsd7cbIYnNTcUrMH49ue1kpyrL4N4 OSy/1ladH2qeZWXqGT7M0MS2SHIPxIjkm0WnLVOXSFU3NBmLvPe5LlYu6Oe7FOZy 7uZb3p+kGRypbn1BIXR6jpjRvzl/I8ZW4ZoiA5I0ANQ4TmMgaDZ8FMooTxaIYNxk UYa8SOdvRWobdA== -----END CERTIFICATE-----Generated at Fri Dec 19 08:53:25 2025 by rpki-client