This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.mft File: s4u2Kkexoq7bcPMvWMl5ugx3fwY.mft (raw, json) Hash identifier: Jr2Q1n2NfQpu3Km7nH1c0B+SX9Fkd/gRN+JOC/bH5LY= Subject key identifier: 44:AF:44:DE:30:AF:9A:A5:AF:4E:76:AE:D8:7A:73:CF:CE:38:3B:8D Authority key identifier: B3:8B:B6:2A:47:B1:A2:AE:DB:70:F3:2F:58:C9:79:BA:0C:77:7F:06 Certificate issuer: /CN=b38bb62a47b1a2aedb70f32f58c979ba0c777f06 Certificate serial: 019B0EC9B18DEAA84D4E8761E38FEE549E6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s4u2Kkexoq7bcPMvWMl5ugx3fwY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.mft Manifest number: 1779 Signing time: Thu 11 Dec 2025 19:00:57 +0000 Manifest this update: Thu 11 Dec 2025 19:00:57 +0000 Manifest next update: Fri 12 Dec 2025 19:00:57 +0000 Files and hashes: 1: 5WxXf6dS__Evv8ybNdjAs3Nto-g.roa (hash: y6JQKN1GUMZnwd9TH2DZ03UU+crYCRvw3vTZfmRAIuw=) 2: 8keuoYHRmEN7a8dM4R3KAZIUMn8.roa (hash: cqhsmkY13XgBA/8McBrRobM59idSx8HxeP3LI73UX3s=) 3: _g7tJv9RQ8GKBzh3JoIFLDhg6Os.roa (hash: lCKjV64dwqXs6VagiwwJOVKqACy5VCGM5CrdkZRYvvY=) 4: fMI-jCDaaLsxpmL0Z0hMaMI0pwA.roa (hash: Ft2AV1Fb/Osk91o2uc7E3/mf/b9LB0/k5lu+soQUSmI=) 5: o0jeoBjm6A2tZp_sdpXJQxSFq9g.roa (hash: 0tJFYrvs37c2RcoKNsABjGXFSJGBQds9qdtyJiQGJI4=) 6: s4u2Kkexoq7bcPMvWMl5ugx3fwY.crl (hash: gfVZsQ8NMr8F8QsdSGbXfRpZn/3Xfjs83H+a63GVhyQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.mft rsync://rpki.ripe.net/repository/DEFAULT/s4u2Kkexoq7bcPMvWMl5ugx3fwY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:c9:b1:8d:ea:a8:4d:4e:87:61:e3:8f:ee:54:9e:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b38bb62a47b1a2aedb70f32f58c979ba0c777f06 Validity Not Before: Dec 11 19:00:57 2025 GMT Not After : Dec 12 19:00:57 2025 GMT Subject: CN=44af44de30af9aa5af4e76aed87a73cfce383b8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:33:73:8c:e9:8c:ed:02:f2:77:c7:03:75:da: ba:7d:3d:77:56:1c:8e:96:de:73:57:d1:d2:0f:ff: d5:8b:56:29:a3:42:d6:4d:65:af:ff:f8:6c:83:e6: 8d:cb:b7:42:dd:2e:9c:af:dd:9e:15:d0:7c:a3:b8: fd:9c:99:4d:0f:77:7d:a8:b7:a5:d1:c6:09:16:03: 4a:1f:76:60:27:a0:15:66:3e:30:22:9b:09:e1:16: 66:62:2c:07:75:26:74:f6:3b:c7:b4:2e:b0:56:ab: b9:bd:b5:0d:c3:92:24:fc:0c:3d:f8:e6:ee:8b:2a: b0:23:6c:0a:9c:cb:b0:df:55:f4:2a:51:87:9d:2f: bb:b4:cf:25:de:9b:21:29:27:f2:11:c2:11:e8:46: 7e:5e:4d:e5:74:19:8a:6a:f2:78:85:2c:d0:41:2f: b5:6e:7a:7e:b7:8a:fa:50:d7:d6:06:25:7a:93:3e: 80:57:bf:b1:20:90:e3:64:02:74:57:f9:84:cd:53: 2c:ed:1a:b4:b1:35:bf:e6:dd:b9:d3:7c:48:3c:5c: 1a:03:51:01:f5:54:34:38:e2:83:a0:71:16:5d:c2: 17:b1:cc:76:16:73:e9:e7:1e:9b:98:ad:b7:0a:51: 44:86:1a:e1:1e:5e:c6:96:05:cd:72:b8:b9:36:a3: 94:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:AF:44:DE:30:AF:9A:A5:AF:4E:76:AE:D8:7A:73:CF:CE:38:3B:8D X509v3 Authority Key Identifier: keyid:B3:8B:B6:2A:47:B1:A2:AE:DB:70:F3:2F:58:C9:79:BA:0C:77:7F:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s4u2Kkexoq7bcPMvWMl5ugx3fwY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:f7:34:5c:9d:9f:2d:96:5c:e0:73:a1:fb:b6:32:d0:79:2e: 02:7e:97:f9:fa:7e:fd:4d:06:22:e2:25:61:6c:df:40:2d:d3: e8:1c:ed:dc:e1:a7:b3:a6:9e:8c:c1:29:b9:7a:30:41:2f:91: 5d:85:99:5f:67:e1:86:ce:d4:3b:2b:2f:04:14:4d:51:ad:97: d4:4d:67:48:75:32:0a:7e:90:5e:b5:1b:be:fc:24:b4:81:d1: 2d:f9:e3:3b:16:02:5e:f7:75:03:be:15:1f:b1:38:7b:32:0b: 77:7c:96:d8:24:78:6d:e9:27:af:21:d7:0e:59:28:4a:29:fd: f8:08:e9:3c:f7:9b:18:22:0d:3f:3e:05:46:4d:60:ee:b3:03: 58:ba:0f:21:91:62:11:0e:50:6f:ec:6a:5b:d6:6b:af:c3:30: a0:32:76:24:0a:61:d1:6c:d7:b2:f2:2a:41:59:a3:5b:50:07: e2:c6:18:2d:b5:5e:ca:60:ff:15:99:42:e7:11:44:58:3e:1e: e8:4c:e9:e5:80:c4:13:a2:1d:2c:16:16:20:62:b2:74:3e:25: 0f:94:35:68:18:e1:c6:5a:ee:cd:69:34:24:62:b9:ea:b6:30: 47:c8:af:10:32:39:a6:37:e4:34:9d:49:41:0b:4a:1c:9e:d5: 73:4e:6e:2f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOybGN6qhNTodh44/uVJ5qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzOGJiNjJhNDdiMWEyYWVkYjcwZjMyZjU4Yzk3OWJhMGM3 NzdmMDYwHhcNMjUxMjExMTkwMDU3WhcNMjUxMjEyMTkwMDU3WjAzMTEwLwYDVQQD Eyg0NGFmNDRkZTMwYWY5YWE1YWY0ZTc2YWVkODdhNzNjZmNlMzgzYjhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnTNzjOmM7QLyd8cDddq6fT13VhyO lt5zV9HSD//Vi1Ypo0LWTWWv//hsg+aNy7dC3S6cr92eFdB8o7j9nJlND3d9qLel 0cYJFgNKH3ZgJ6AVZj4wIpsJ4RZmYiwHdSZ09jvHtC6wVqu5vbUNw5Ik/Aw9+Obu iyqwI2wKnMuw31X0KlGHnS+7tM8l3pshKSfyEcIR6EZ+Xk3ldBmKavJ4hSzQQS+1 bnp+t4r6UNfWBiV6kz6AV7+xIJDjZAJ0V/mEzVMs7Rq0sTW/5t2503xIPFwaA1EB 9VQ0OOKDoHEWXcIXscx2FnPp5x6bmK23ClFEhhrhHl7GlgXNcri5NqOUswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFESvRN4wr5qlr052rth6c8/OODuNMB8GA1UdIwQY MBaAFLOLtipHsaKu23DzL1jJeboMd38GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczR1MktrZXhvcTdiY1BNdldNbDV1Z3gzZndZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi85ZjY4MmMtMWM1Ny00Y2U1LWJiOTgt MDYwNWMwODlmYzM4LzEvczR1MktrZXhvcTdiY1BNdldNbDV1Z3gzZndZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi85ZjY4MmMtMWM1Ny00Y2U1LWJiOTgtMDYwNWMwODlmYzM4 LzEvczR1MktrZXhvcTdiY1BNdldNbDV1Z3gzZndZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABvc0XJ2f LZZc4HOh+7Yy0HkuAn6X+fp+/U0GIuIlYWzfQC3T6Bzt3OGns6aejMEpuXowQS+R XYWZX2fhhs7UOysvBBRNUa2X1E1nSHUyCn6QXrUbvvwktIHRLfnjOxYCXvd1A74V H7E4ezILd3yW2CR4beknryHXDlkoSin9+AjpPPebGCINPz4FRk1g7rMDWLoPIZFi EQ5Qb+xqW9Zrr8MwoDJ2JAph0WzXsvIqQVmjW1AH4sYYLbVeymD/FZlC5xFEWD4e 6Ezp5YDEE6IdLBYWIGKydD4lD5Q1aBjhxlruzWk0JGK56rYwR8ivEDI5pjfkNJ1J QQtKHJ7Vc05uLw== -----END CERTIFICATE-----Generated at Fri Dec 12 01:33:22 2025 by rpki-client