This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.mft File: sXtEkEx2lKVAig0pcsOf8LGwPqU.mft (raw, json) Hash identifier: VpOGJ/zu9Zk4Q8XUeLydFLxgQUQP9GpEMqjxJbtKi0E= Subject key identifier: 9E:67:30:F9:69:9D:88:66:DE:8C:96:DE:C5:9B:1C:7E:F3:F5:EF:A8 Authority key identifier: B1:7B:44:90:4C:76:94:A5:40:8A:0D:29:72:C3:9F:F0:B1:B0:3E:A5 Certificate issuer: /CN=b17b44904c7694a5408a0d2972c39ff0b1b03ea5 Certificate serial: 019B0E92C370C7F17BDE651472FF7CB49F06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXtEkEx2lKVAig0pcsOf8LGwPqU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.mft Manifest number: 0FBA Signing time: Thu 11 Dec 2025 18:00:57 +0000 Manifest this update: Thu 11 Dec 2025 18:00:57 +0000 Manifest next update: Fri 12 Dec 2025 18:00:57 +0000 Files and hashes: 1: UDhX8BuvHOYMS5e9vYOFjWjGBYk.roa (hash: C1cyztzqKdd1lIZCQFArU9xrG3gU6hCt1VPEU5YkilM=) 2: sXtEkEx2lKVAig0pcsOf8LGwPqU.crl (hash: aGEd2kFQNGImVzaqP19CIh3lalOj4mV6o1G657RdPTc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.crl rsync://rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.mft rsync://rpki.ripe.net/repository/DEFAULT/sXtEkEx2lKVAig0pcsOf8LGwPqU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:92:c3:70:c7:f1:7b:de:65:14:72:ff:7c:b4:9f:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b17b44904c7694a5408a0d2972c39ff0b1b03ea5 Validity Not Before: Dec 11 18:00:57 2025 GMT Not After : Dec 12 18:00:57 2025 GMT Subject: CN=9e6730f9699d8866de8c96dec59b1c7ef3f5efa8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e5:1a:36:f7:84:cc:7d:8a:13:f6:c9:7b:20: a0:d2:20:6f:6e:b1:22:67:18:42:92:ec:5a:85:43: 92:b3:b2:8a:cc:95:eb:27:0f:5d:bc:ed:9d:06:e4: e8:7b:90:0f:49:bf:5a:97:c6:96:75:78:68:ae:c5: fa:b5:7d:bd:50:9e:92:08:5a:f7:83:34:06:d5:4e: 68:72:ba:a9:9a:ca:be:fd:b8:ea:a1:65:d5:68:2d: c0:a1:eb:6a:03:73:87:8f:64:da:86:5a:61:f9:c9: df:37:a5:df:d0:99:e9:4e:45:a6:2d:b1:6f:28:64: 3d:60:8c:25:be:28:57:21:04:58:a9:94:ab:4d:e0: d6:af:98:6f:27:8b:ec:4e:8c:a4:a8:83:0b:0b:44: 7d:2d:50:9a:8f:fe:7c:6c:a9:62:1b:74:fd:1a:41: 1a:7d:05:cb:95:dd:05:79:1d:71:b5:f4:a5:76:e1: 3a:11:25:09:5c:77:f6:2c:da:c5:69:a9:fb:08:67: 1d:7f:06:ba:72:8b:41:4e:f9:b9:26:db:d5:f5:4a: 73:b9:c2:3f:43:47:58:d1:4f:8e:14:94:4b:c1:63: 33:b7:b1:37:b1:7d:27:22:0f:bc:6d:a8:e1:e2:b7: 10:f8:3d:cd:22:09:c6:1b:a1:56:23:8a:4d:0b:ea: cf:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:67:30:F9:69:9D:88:66:DE:8C:96:DE:C5:9B:1C:7E:F3:F5:EF:A8 X509v3 Authority Key Identifier: keyid:B1:7B:44:90:4C:76:94:A5:40:8A:0D:29:72:C3:9F:F0:B1:B0:3E:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXtEkEx2lKVAig0pcsOf8LGwPqU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:63:da:c8:b0:d3:18:1d:4c:ca:83:4c:b2:14:61:99:e3:f2: 24:9b:67:4d:26:44:87:f4:4f:7e:e8:27:c6:e3:6e:ec:78:ef: bf:bc:0e:33:87:34:1d:74:c0:cd:b3:5b:24:3a:04:b7:6d:05: b8:59:ad:62:a8:1f:43:e3:5a:63:fe:d4:6a:e4:b0:1a:7b:9c: d0:e1:0e:a9:7e:83:15:3e:b9:da:47:53:e0:08:1b:da:f9:d3: 65:3c:57:57:df:a0:45:36:1d:dc:e8:8c:13:f4:89:06:7e:ea: 1b:68:f9:4d:0f:3d:59:59:b3:0b:77:9e:6e:bd:90:c0:48:88: c4:e1:4f:dc:07:11:4b:1c:f8:f2:68:01:7d:13:52:45:ba:cd: df:db:27:d6:02:18:5f:c7:79:ba:19:81:db:12:66:67:e5:76: 2c:aa:e1:fb:2c:2b:7f:a6:33:58:80:61:1e:1e:ce:5b:25:9c: 95:21:24:d9:68:3b:3c:58:50:4a:fd:2f:06:de:78:46:25:7b: b6:41:9e:51:ba:95:b4:10:75:79:f4:8f:74:df:66:cb:47:f9: ba:28:aa:a9:f5:f1:89:20:87:1c:60:1f:d0:81:70:81:82:16: 0f:0e:ca:b1:a1:e7:8f:4c:94:10:11:80:dc:f8:a2:e6:9e:1f: b2:76:c2:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOksNwx/F73mUUcv98tJ8GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxN2I0NDkwNGM3Njk0YTU0MDhhMGQyOTcyYzM5ZmYwYjFi MDNlYTUwHhcNMjUxMjExMTgwMDU3WhcNMjUxMjEyMTgwMDU3WjAzMTEwLwYDVQQD Eyg5ZTY3MzBmOTY5OWQ4ODY2ZGU4Yzk2ZGVjNTliMWM3ZWYzZjVlZmE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy+UaNveEzH2KE/bJeyCg0iBvbrEi ZxhCkuxahUOSs7KKzJXrJw9dvO2dBuToe5APSb9al8aWdXhorsX6tX29UJ6SCFr3 gzQG1U5ocrqpmsq+/bjqoWXVaC3AoetqA3OHj2Tahlph+cnfN6Xf0JnpTkWmLbFv KGQ9YIwlvihXIQRYqZSrTeDWr5hvJ4vsToykqIMLC0R9LVCaj/58bKliG3T9GkEa fQXLld0FeR1xtfSlduE6ESUJXHf2LNrFaan7CGcdfwa6cotBTvm5JtvV9UpzucI/ Q0dY0U+OFJRLwWMzt7E3sX0nIg+8bajh4rcQ+D3NIgnGG6FWI4pNC+rPuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ5nMPlpnYhm3oyW3sWbHH7z9e+oMB8GA1UdIwQY MBaAFLF7RJBMdpSlQIoNKXLDn/CxsD6lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1h0RWtFeDJsS1ZBaWcwcGNzT2Y4TEd3UHFVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC85MTgyNDUtN2I1MC00OTUyLWEzYTct YTQ1OTE2OTU1ZTZmLzEvc1h0RWtFeDJsS1ZBaWcwcGNzT2Y4TEd3UHFVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZC85MTgyNDUtN2I1MC00OTUyLWEzYTctYTQ1OTE2OTU1ZTZm LzEvc1h0RWtFeDJsS1ZBaWcwcGNzT2Y4TEd3UHFVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOmPayLDT GB1MyoNMshRhmePyJJtnTSZEh/RPfugnxuNu7Hjvv7wOM4c0HXTAzbNbJDoEt20F uFmtYqgfQ+NaY/7UauSwGnuc0OEOqX6DFT652kdT4Agb2vnTZTxXV9+gRTYd3OiM E/SJBn7qG2j5TQ89WVmzC3eebr2QwEiIxOFP3AcRSxz48mgBfRNSRbrN39sn1gIY X8d5uhmB2xJmZ+V2LKrh+ywrf6YzWIBhHh7OWyWclSEk2Wg7PFhQSv0vBt54RiV7 tkGeUbqVtBB1efSPdN9my0f5uiiqqfXxiSCHHGAf0IFwgYIWDw7KsaHnj0yUEBGA 3Pii5p4fsnbCSQ== -----END CERTIFICATE-----Generated at Thu Dec 11 23:57:43 2025 by rpki-client