This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.mft File: s4u2Kkexoq7bcPMvWMl5ugx3fwY.mft (raw, json) Hash identifier: QcOmhHINcyLEqdWV8Yw9vW7TBU6DQmwW5QAP5zKMD5w= Subject key identifier: 68:14:2F:CC:D8:EE:65:03:B2:F4:29:86:3F:76:43:D9:5F:DC:9A:EE Authority key identifier: B3:8B:B6:2A:47:B1:A2:AE:DB:70:F3:2F:58:C9:79:BA:0C:77:7F:06 Certificate issuer: /CN=b38bb62a47b1a2aedb70f32f58c979ba0c777f06 Certificate serial: 019B2407F0BE33CF2E6C3DFAAEB1337FCFAA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s4u2Kkexoq7bcPMvWMl5ugx3fwY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.mft Manifest number: 1784 Signing time: Mon 15 Dec 2025 22:00:58 +0000 Manifest this update: Mon 15 Dec 2025 22:00:58 +0000 Manifest next update: Tue 16 Dec 2025 22:00:58 +0000 Files and hashes: 1: 5WxXf6dS__Evv8ybNdjAs3Nto-g.roa (hash: y6JQKN1GUMZnwd9TH2DZ03UU+crYCRvw3vTZfmRAIuw=) 2: 8keuoYHRmEN7a8dM4R3KAZIUMn8.roa (hash: cqhsmkY13XgBA/8McBrRobM59idSx8HxeP3LI73UX3s=) 3: _g7tJv9RQ8GKBzh3JoIFLDhg6Os.roa (hash: lCKjV64dwqXs6VagiwwJOVKqACy5VCGM5CrdkZRYvvY=) 4: fMI-jCDaaLsxpmL0Z0hMaMI0pwA.roa (hash: Ft2AV1Fb/Osk91o2uc7E3/mf/b9LB0/k5lu+soQUSmI=) 5: o0jeoBjm6A2tZp_sdpXJQxSFq9g.roa (hash: 0tJFYrvs37c2RcoKNsABjGXFSJGBQds9qdtyJiQGJI4=) 6: s4u2Kkexoq7bcPMvWMl5ugx3fwY.crl (hash: YF9Itvl7ve4RfS92CM1acdawjsmR+jTyod9HzvMBiug=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.mft rsync://rpki.ripe.net/repository/DEFAULT/s4u2Kkexoq7bcPMvWMl5ugx3fwY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 22:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:24:07:f0:be:33:cf:2e:6c:3d:fa:ae:b1:33:7f:cf:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b38bb62a47b1a2aedb70f32f58c979ba0c777f06 Validity Not Before: Dec 15 22:00:58 2025 GMT Not After : Dec 16 22:00:58 2025 GMT Subject: CN=68142fccd8ee6503b2f429863f7643d95fdc9aee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fe:0b:c2:50:67:01:43:37:27:04:58:ff:20: e5:08:8d:ea:2b:7c:1f:ed:d9:04:6a:e1:a5:bf:9f: 16:7f:b8:29:84:6c:75:83:22:61:19:6a:dd:c1:c7: d5:56:4b:35:fe:12:94:b3:b1:7d:b5:f7:94:ac:dd: a6:c4:a7:5f:66:46:a5:20:d0:bd:1d:a8:15:78:b3: 88:3d:36:4b:fd:4b:1b:f7:b0:ee:ab:44:04:5d:38: 69:83:93:6c:f4:f5:54:87:f4:20:e1:78:4d:85:ef: 5f:83:97:f4:2c:cf:b1:e0:90:5e:00:be:cf:b8:4e: 65:b3:c2:d5:4b:4f:95:7b:09:53:38:a5:c0:e6:ac: 06:68:d1:1b:62:a3:7b:4e:95:0f:5e:10:90:91:08: 26:41:6c:54:6d:0f:65:b8:cd:c4:06:9a:4c:53:bf: 34:72:73:5d:05:5d:00:3f:c1:d0:d1:81:ba:99:18: c0:c2:fd:da:58:f0:1d:76:73:29:01:a4:e7:4c:94: 40:8c:89:42:01:9e:60:b9:06:8c:48:76:73:3a:78: 25:a1:a6:b0:85:ff:27:93:6b:5e:c7:ca:7d:bc:df: 4e:cd:cd:1d:d1:bb:42:18:d7:f9:86:e6:98:8d:69: c0:79:9d:2c:67:b0:52:42:e8:20:c8:8b:34:33:54: 15:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:14:2F:CC:D8:EE:65:03:B2:F4:29:86:3F:76:43:D9:5F:DC:9A:EE X509v3 Authority Key Identifier: keyid:B3:8B:B6:2A:47:B1:A2:AE:DB:70:F3:2F:58:C9:79:BA:0C:77:7F:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s4u2Kkexoq7bcPMvWMl5ugx3fwY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:d4:df:4e:f3:db:a9:37:7a:f4:a6:1c:28:71:a3:86:2e:6e: 15:51:5f:de:0e:25:7b:4d:2d:1c:ab:bc:d5:e0:b9:11:d5:be: f8:82:09:0c:ba:29:c0:28:fc:e6:41:ae:b9:ac:52:b4:a9:98: 58:72:15:94:f9:4a:eb:35:66:89:3a:50:32:66:0f:8a:ed:0e: a3:99:0d:c8:35:7d:5a:5a:a0:b7:4e:cc:cd:30:69:78:65:cc: 4a:b5:4c:40:ce:e8:9e:8c:46:e2:06:f4:a3:63:fd:53:06:d3: 95:b2:57:76:26:86:c7:03:f9:6c:77:be:44:3e:e3:c8:e1:97: ef:73:26:d1:d6:0c:c1:c5:71:41:a1:6e:3c:a8:de:ef:60:c3: 04:c1:5e:51:aa:53:7f:13:aa:0e:f3:0f:d5:35:61:7c:d6:94: 8a:8b:eb:d5:28:e5:ae:d8:ab:56:cd:38:43:80:0a:9e:3c:62: 04:3a:02:a3:f7:84:9c:cb:4e:71:6f:87:ad:fd:bb:37:93:72: 3a:06:2b:f0:a9:29:4f:c8:91:a2:a5:ca:92:4e:4a:9c:08:37: ce:97:10:d3:04:15:27:72:e8:e6:b6:3d:6b:1f:e7:6c:8e:ba: 8d:7c:de:fe:af:2c:34:c8:73:8d:91:15:99:1e:a4:b6:0c:38: 53:36:1b:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZskB/C+M88ubD36rrEzf8+qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzOGJiNjJhNDdiMWEyYWVkYjcwZjMyZjU4Yzk3OWJhMGM3 NzdmMDYwHhcNMjUxMjE1MjIwMDU4WhcNMjUxMjE2MjIwMDU4WjAzMTEwLwYDVQQD Eyg2ODE0MmZjY2Q4ZWU2NTAzYjJmNDI5ODYzZjc2NDNkOTVmZGM5YWVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtv4LwlBnAUM3JwRY/yDlCI3qK3wf 7dkEauGlv58Wf7gphGx1gyJhGWrdwcfVVks1/hKUs7F9tfeUrN2mxKdfZkalINC9 HagVeLOIPTZL/Usb97Duq0QEXThpg5Ns9PVUh/Qg4XhNhe9fg5f0LM+x4JBeAL7P uE5ls8LVS0+VewlTOKXA5qwGaNEbYqN7TpUPXhCQkQgmQWxUbQ9luM3EBppMU780 cnNdBV0AP8HQ0YG6mRjAwv3aWPAddnMpAaTnTJRAjIlCAZ5guQaMSHZzOngloaaw hf8nk2tex8p9vN9Ozc0d0btCGNf5huaYjWnAeZ0sZ7BSQuggyIs0M1QVlwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGgUL8zY7mUDsvQphj92Q9lf3JruMB8GA1UdIwQY MBaAFLOLtipHsaKu23DzL1jJeboMd38GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczR1MktrZXhvcTdiY1BNdldNbDV1Z3gzZndZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi85ZjY4MmMtMWM1Ny00Y2U1LWJiOTgt MDYwNWMwODlmYzM4LzEvczR1MktrZXhvcTdiY1BNdldNbDV1Z3gzZndZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi85ZjY4MmMtMWM1Ny00Y2U1LWJiOTgtMDYwNWMwODlmYzM4 LzEvczR1MktrZXhvcTdiY1BNdldNbDV1Z3gzZndZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeNTfTvPb qTd69KYcKHGjhi5uFVFf3g4le00tHKu81eC5EdW++IIJDLopwCj85kGuuaxStKmY WHIVlPlK6zVmiTpQMmYPiu0Oo5kNyDV9Wlqgt07MzTBpeGXMSrVMQM7onoxG4gb0 o2P9UwbTlbJXdiaGxwP5bHe+RD7jyOGX73Mm0dYMwcVxQaFuPKje72DDBMFeUapT fxOqDvMP1TVhfNaUiovr1SjlrtirVs04Q4AKnjxiBDoCo/eEnMtOcW+Hrf27N5Ny OgYr8KkpT8iRoqXKkk5KnAg3zpcQ0wQVJ3Lo5rY9ax/nbI66jXze/q8sNMhzjZEV mR6ktgw4UzYbow== -----END CERTIFICATE-----Generated at Tue Dec 16 06:25:57 2025 by rpki-client