This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft File: sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft (raw, json) Hash identifier: P7j97E0deSvHryiMEEPsr8f0gpF4IGJ4ZyOPw33xvoE= Subject key identifier: 3C:73:29:4F:D8:07:BE:A6:AB:5A:B6:89:27:55:B7:16:0B:CF:22:BF Authority key identifier: B1:39:71:BF:EA:78:D6:AA:5B:49:ED:5A:C3:5C:77:B6:A3:0A:08:94 Certificate issuer: /CN=b13971bfea78d6aa5b49ed5ac35c77b6a30a0894 Certificate serial: 019B48156EF25755FE962B7AD072949A537C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft Manifest number: 0C72 Signing time: Mon 22 Dec 2025 22:02:02 +0000 Manifest this update: Mon 22 Dec 2025 22:02:02 +0000 Manifest next update: Tue 23 Dec 2025 22:02:02 +0000 Files and hashes: 1: Ewu_L9NGAMIn9J1bD2mKPYHfLN0.roa (hash: MPg//qxTuFJeVfIte2bOUUVJ5G8w+mQ6T68mV0V7xWY=) 2: sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl (hash: eXUA1jrJ+YNjiqasjLjOy2PXbYvTM8H9NWPzBvg1EDU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 22:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:48:15:6e:f2:57:55:fe:96:2b:7a:d0:72:94:9a:53:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b13971bfea78d6aa5b49ed5ac35c77b6a30a0894 Validity Not Before: Dec 22 22:02:02 2025 GMT Not After : Dec 23 22:02:02 2025 GMT Subject: CN=3c73294fd807bea6ab5ab6892755b7160bcf22bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:16:cb:59:e3:42:bd:f6:bc:6a:19:16:47:8c: b6:22:d3:bd:6e:c9:76:bc:c5:b5:2a:e7:1b:92:7f: d6:b2:a6:15:33:6a:9f:06:e7:02:dc:00:b4:e8:fb: 6c:df:7c:3d:21:7d:d0:b7:fe:5e:83:3a:e8:8a:1b: e7:70:59:1f:78:15:58:25:c3:62:33:c2:33:58:ea: f1:38:82:f9:b4:58:08:72:6c:1f:77:87:ab:e6:da: 69:61:0e:8f:19:4a:90:10:e0:02:ba:20:4d:89:45: ba:e2:01:13:7c:3d:d2:52:22:83:9b:61:13:11:75: 2a:f2:a7:30:f5:03:0e:f1:d8:ad:b1:d8:c9:31:62: eb:6d:07:cc:a5:8f:0a:46:af:de:63:f1:ef:3f:c9: d7:73:39:a0:63:71:fa:95:a9:51:97:99:bb:32:c7: 12:49:5b:f5:f7:6e:8c:00:e3:4e:3d:43:e7:8d:12: 08:b1:18:3e:bc:31:f4:a8:54:ee:e5:49:5e:67:9a: 4c:89:74:a9:ec:f2:24:38:ac:34:8a:cc:bc:4f:be: 03:27:ff:e5:51:63:ba:b1:0f:ec:ec:af:6e:ad:22: 04:5f:e1:1f:5a:72:5c:73:6f:d2:e4:70:b3:cc:03: 38:d4:4c:81:30:52:07:77:60:4d:86:64:cd:77:6c: dc:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:73:29:4F:D8:07:BE:A6:AB:5A:B6:89:27:55:B7:16:0B:CF:22:BF X509v3 Authority Key Identifier: keyid:B1:39:71:BF:EA:78:D6:AA:5B:49:ED:5A:C3:5C:77:B6:A3:0A:08:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:69:27:78:62:99:ce:fe:e6:73:d6:53:be:9a:10:eb:58:bc: 2d:3f:cf:8d:89:0e:fb:fc:82:f8:a9:5f:ee:25:42:4c:b5:53: ab:ba:38:e7:d9:5e:8d:c7:72:24:11:81:33:ed:91:28:0f:4c: e0:4a:dd:ac:41:99:ed:d8:60:20:7b:8a:71:ed:78:9a:f0:e9: 89:68:0a:c6:64:c2:80:39:26:52:2f:96:5e:3f:65:11:15:8f: bc:b7:43:03:3b:a8:05:6f:bd:d6:00:4a:90:4b:50:c5:0b:ff: 81:3d:f5:31:a6:31:7b:01:a5:55:86:e3:7a:bf:27:12:c8:51: f3:37:6f:96:69:09:dd:34:df:15:92:55:cc:97:7e:62:24:d6: bf:92:b8:c9:43:31:db:e4:5a:89:c9:4a:7b:41:3a:11:49:38: 2e:55:4c:f9:a5:57:09:7f:86:ac:29:0b:d9:8f:9b:c4:a3:83: c0:4c:4a:b8:04:a0:e5:84:fc:e3:cf:cf:8b:85:1e:0d:01:53: a1:a0:4a:c9:75:1d:34:d3:7f:30:65:ea:95:b7:f4:17:b6:b8: be:18:82:58:08:4a:17:48:d5:c3:fb:aa:5a:5a:eb:43:32:1a: c7:e3:62:43:33:55:d2:aa:1b:41:22:a0:e5:1c:35:50:ce:de: 92:af:a5:09 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtIFW7yV1X+lit60HKUmlN8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxMzk3MWJmZWE3OGQ2YWE1YjQ5ZWQ1YWMzNWM3N2I2YTMw YTA4OTQwHhcNMjUxMjIyMjIwMjAyWhcNMjUxMjIzMjIwMjAyWjAzMTEwLwYDVQQD EygzYzczMjk0ZmQ4MDdiZWE2YWI1YWI2ODkyNzU1YjcxNjBiY2YyMmJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoxbLWeNCvfa8ahkWR4y2ItO9bsl2 vMW1Kucbkn/WsqYVM2qfBucC3AC06Pts33w9IX3Qt/5egzroihvncFkfeBVYJcNi M8IzWOrxOIL5tFgIcmwfd4er5tppYQ6PGUqQEOACuiBNiUW64gETfD3SUiKDm2ET EXUq8qcw9QMO8ditsdjJMWLrbQfMpY8KRq/eY/HvP8nXczmgY3H6lalRl5m7MscS SVv1926MAONOPUPnjRIIsRg+vDH0qFTu5UleZ5pMiXSp7PIkOKw0isy8T74DJ//l UWO6sQ/s7K9urSIEX+EfWnJcc2/S5HCzzAM41EyBMFIHd2BNhmTNd2zcJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDxzKU/YB76mq1q2iSdVtxYLzyK/MB8GA1UdIwQY MBaAFLE5cb/qeNaqW0ntWsNcd7ajCgiUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1RseHYtcDQxcXBiU2UxYXcxeDN0cU1LQ0pRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8zZjAwODMtNTlkNy00MzNhLTkwNWEt NDdiMWJkZjhkNTMwLzEvc1RseHYtcDQxcXBiU2UxYXcxeDN0cU1LQ0pRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC8zZjAwODMtNTlkNy00MzNhLTkwNWEtNDdiMWJkZjhkNTMw LzEvc1RseHYtcDQxcXBiU2UxYXcxeDN0cU1LQ0pRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAamkneGKZ zv7mc9ZTvpoQ61i8LT/PjYkO+/yC+Klf7iVCTLVTq7o459lejcdyJBGBM+2RKA9M 4ErdrEGZ7dhgIHuKce14mvDpiWgKxmTCgDkmUi+WXj9lERWPvLdDAzuoBW+91gBK kEtQxQv/gT31MaYxewGlVYbjer8nEshR8zdvlmkJ3TTfFZJVzJd+YiTWv5K4yUMx 2+RaiclKe0E6EUk4LlVM+aVXCX+GrCkL2Y+bxKODwExKuASg5YT848/Pi4UeDQFT oaBKyXUdNNN/MGXqlbf0F7a4vhiCWAhKF0jVw/uqWlrrQzIax+NiQzNV0qobQSKg 5Rw1UM7ekq+lCQ== -----END CERTIFICATE-----Generated at Tue Dec 23 06:49:24 2025 by rpki-client