This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft File: Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft (raw, json) Hash identifier: u5DhYkUnK8dqNvSS/poLuVrmBl76EpNs6nRQi/oJpyM= Subject key identifier: 08:83:BD:12:A2:84:F4:55:0B:F9:E1:75:27:8C:CE:E6:B8:1C:25:31 Authority key identifier: 4A:3C:36:0C:36:4B:B6:6D:C6:35:17:19:35:68:F5:BA:85:17:AC:E8 Certificate issuer: /CN=4a3c360c364bb66dc63517193568f5ba8517ace8 Certificate serial: 019ABD3F827CD016E319E994417FAC6156E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft Manifest number: 1593 Signing time: Tue 25 Nov 2025 23:00:47 +0000 Manifest this update: Tue 25 Nov 2025 23:00:47 +0000 Manifest next update: Wed 26 Nov 2025 23:00:47 +0000 Files and hashes: 1: 4HxC1YnWdGWm4g8pwWn_Hlow4Qo.roa (hash: qpMp8mE7oIuGxE7UiKhcFCXTbJmQfeSevFyEhmL5FpM=) 2: Sjw2DDZLtm3GNRcZNWj1uoUXrOg.crl (hash: +8Q2oa+0HwAtnnb1CzCs0WomoYWMl6E9CQnEytkCeDA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft rsync://rpki.ripe.net/repository/DEFAULT/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 26 Nov 2025 23:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:bd:3f:82:7c:d0:16:e3:19:e9:94:41:7f:ac:61:56:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4a3c360c364bb66dc63517193568f5ba8517ace8 Validity Not Before: Nov 25 23:00:47 2025 GMT Not After : Nov 26 23:00:47 2025 GMT Subject: CN=0883bd12a284f4550bf9e175278ccee6b81c2531 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:dd:e9:0e:7c:f7:c1:63:74:53:5a:d3:47:db: d7:6e:5c:ac:0e:1e:53:1b:9d:57:fe:f5:1e:ef:14: 14:bc:ab:12:ce:48:5a:fd:5e:94:56:5f:6c:06:a1: 71:87:45:10:9e:f6:46:11:45:c8:b3:e2:5d:b2:54: 02:80:77:09:f8:9a:8c:19:63:01:f0:21:df:c5:f1: 22:1a:12:5b:ad:40:83:52:27:0a:f5:d8:dd:c1:2c: 71:5a:45:c8:d3:22:8e:21:b6:9e:d5:dd:05:cd:10: 56:86:6a:53:11:27:ef:7f:2e:93:a4:18:6a:c1:c5: fd:e5:4d:a1:b1:2f:70:1e:12:8d:91:87:89:42:b5: a3:88:f7:ad:07:e4:8b:ab:56:0b:82:8a:b3:12:9a: cc:d8:3f:6a:84:a6:3d:0b:fd:96:7c:9c:9e:4a:89: cc:39:c6:88:07:00:3e:f0:f7:dd:d5:15:88:26:d8: 6e:db:75:13:81:47:83:ea:1f:bb:8c:23:02:ac:6f: ee:9d:b4:5d:b2:dc:78:2a:79:04:1e:35:88:e4:e4: e1:32:9b:2a:4a:59:65:4a:fa:9f:50:3b:52:3e:28: 47:db:38:83:41:2b:a0:47:a4:e0:66:1c:34:cb:80: ef:6b:58:34:d2:30:99:e0:73:a9:1d:3a:24:e8:29: 9a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:83:BD:12:A2:84:F4:55:0B:F9:E1:75:27:8C:CE:E6:B8:1C:25:31 X509v3 Authority Key Identifier: keyid:4A:3C:36:0C:36:4B:B6:6D:C6:35:17:19:35:68:F5:BA:85:17:AC:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:4e:9e:c7:9e:1f:7e:e1:5b:60:f6:a4:92:8d:2d:50:f7:52: 85:ba:ce:d9:a9:89:7f:de:54:69:aa:9e:3e:b7:7a:26:fe:65: 2b:6f:42:e2:21:6c:85:0b:93:2a:42:00:5f:d6:a7:2e:37:7a: fe:d6:6c:9b:44:1c:ba:35:a7:67:c8:8e:f9:b6:d5:2b:61:b4: 2c:48:72:7d:09:68:6c:24:2f:fd:ef:b4:0e:51:4b:ec:d2:85: 56:53:42:fa:da:bf:67:b2:34:fa:bb:a2:23:93:b4:99:5b:94: 2f:90:cb:32:b2:14:a2:8e:5f:e6:74:eb:cd:ff:6d:a6:10:c9: 9f:bb:df:4c:6d:7d:da:2b:77:b6:b5:e5:94:87:ff:d0:03:10: 97:85:b0:9b:b3:b6:ac:bc:b0:1b:c5:d8:41:d0:ef:21:14:15: 86:cb:88:ec:45:40:a7:b5:52:da:47:be:ed:0f:53:25:44:91: 97:b3:99:cf:ad:99:b1:6e:18:94:b8:3b:b1:f5:28:6e:e2:d5: fc:98:03:29:4c:2e:33:78:f9:d5:12:3c:10:91:cc:4f:1d:f0: b1:e0:4b:56:62:b4:87:ea:93:24:a4:26:87:b4:58:48:5f:6f: 6b:7f:91:ef:d1:80:26:cd:e6:b1:37:9e:83:c0:dc:60:d5:d6: e0:78:28:be -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZq9P4J80BbjGemUQX+sYVbnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhM2MzNjBjMzY0YmI2NmRjNjM1MTcxOTM1NjhmNWJhODUx N2FjZTgwHhcNMjUxMTI1MjMwMDQ3WhcNMjUxMTI2MjMwMDQ3WjAzMTEwLwYDVQQD EygwODgzYmQxMmEyODRmNDU1MGJmOWUxNzUyNzhjY2VlNmI4MWMyNTMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu93pDnz3wWN0U1rTR9vXblysDh5T G51X/vUe7xQUvKsSzkha/V6UVl9sBqFxh0UQnvZGEUXIs+JdslQCgHcJ+JqMGWMB 8CHfxfEiGhJbrUCDUicK9djdwSxxWkXI0yKOIbae1d0FzRBWhmpTESfvfy6TpBhq wcX95U2hsS9wHhKNkYeJQrWjiPetB+SLq1YLgoqzEprM2D9qhKY9C/2WfJyeSonM OcaIBwA+8Pfd1RWIJthu23UTgUeD6h+7jCMCrG/unbRdstx4KnkEHjWI5OThMpsq SlllSvqfUDtSPihH2ziDQSugR6TgZhw0y4Dva1g00jCZ4HOpHTok6Cma7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAiDvRKihPRVC/nhdSeMzua4HCUxMB8GA1UdIwQY MBaAFEo8Ngw2S7ZtxjUXGTVo9bqFF6zoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU2p3MkREWkx0bTNHTlJjWk5XajF1b1VYck9nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi84YWQ0ZTUtZDljOS00M2U3LWJlMGYt MWQ5Yzg2NDE2ZTliLzEvU2p3MkREWkx0bTNHTlJjWk5XajF1b1VYck9nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi84YWQ0ZTUtZDljOS00M2U3LWJlMGYtMWQ5Yzg2NDE2ZTli LzEvU2p3MkREWkx0bTNHTlJjWk5XajF1b1VYck9nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATU6ex54f fuFbYPakko0tUPdShbrO2amJf95UaaqePrd6Jv5lK29C4iFshQuTKkIAX9anLjd6 /tZsm0QcujWnZ8iO+bbVK2G0LEhyfQlobCQv/e+0DlFL7NKFVlNC+tq/Z7I0+rui I5O0mVuUL5DLMrIUoo5f5nTrzf9tphDJn7vfTG192it3trXllIf/0AMQl4Wwm7O2 rLywG8XYQdDvIRQVhsuI7EVAp7VS2ke+7Q9TJUSRl7OZz62ZsW4YlLg7sfUobuLV /JgDKUwuM3j51RI8EJHMTx3wseBLVmK0h+qTJKQmh7RYSF9va3+R79GAJs3msTee g8DcYNXW4Hgovg== -----END CERTIFICATE-----Generated at Wed Nov 26 03:46:35 2025 by rpki-client