This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.mft File: sKEzNsOO66EMusnCjK8e_PRKyGM.mft (raw, json) Hash identifier: OwYg0CzQ8yI6WxntGGGcffbTLluHyHeqORiq9I3o+vw= Subject key identifier: 6B:06:25:ED:85:96:54:D1:EA:B6:F4:5E:0D:0F:83:F9:AF:77:97:91 Authority key identifier: B0:A1:33:36:C3:8E:EB:A1:0C:BA:C9:C2:8C:AF:1E:FC:F4:4A:C8:63 Certificate issuer: /CN=b0a13336c38eeba10cbac9c28caf1efcf44ac863 Certificate serial: 019B2A77E1EE216EAEA431D9963BDB218F47 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sKEzNsOO66EMusnCjK8e_PRKyGM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.mft Manifest number: 0A48 Signing time: Wed 17 Dec 2025 04:00:58 +0000 Manifest this update: Wed 17 Dec 2025 04:00:58 +0000 Manifest next update: Thu 18 Dec 2025 04:00:58 +0000 Files and hashes: 1: sKEzNsOO66EMusnCjK8e_PRKyGM.crl (hash: MTdoKYhSOfau/s07Tjjj3uegst/p9zLj1KFP8bXrueM=) 2: y3LlHCcHKFo-BQ_p86jxyc013sQ.roa (hash: 70W6ragDKntXJcQVl89iuaUr+4h8ye/EbsXthKhbWqg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.mft rsync://rpki.ripe.net/repository/DEFAULT/sKEzNsOO66EMusnCjK8e_PRKyGM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2a:77:e1:ee:21:6e:ae:a4:31:d9:96:3b:db:21:8f:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0a13336c38eeba10cbac9c28caf1efcf44ac863 Validity Not Before: Dec 17 04:00:58 2025 GMT Not After : Dec 18 04:00:58 2025 GMT Subject: CN=6b0625ed859654d1eab6f45e0d0f83f9af779791 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f3:ab:a5:9b:bc:1c:87:4d:0c:c8:c6:1b:7f: 0e:16:cf:aa:cf:94:9f:1f:f6:a2:0f:4a:d4:74:f6: 0e:b1:60:24:3e:5a:d1:5e:48:a8:f8:e5:08:14:b8: 4c:58:53:65:ba:60:ff:63:66:18:a0:31:8e:48:99: c0:11:88:a9:ce:b8:b7:3b:24:35:0f:e2:ee:f8:a6: 76:06:87:de:6e:d2:c8:c1:fd:00:0c:f2:50:36:39: 16:12:c3:8a:f7:b6:a7:1f:de:36:16:1e:a4:55:a0: 18:66:24:8b:8f:8b:97:ff:be:18:0b:e3:1d:48:d0: bd:ce:e4:6c:e9:27:e3:15:db:1b:4d:a1:d3:92:d1: 0d:17:bb:68:78:22:0b:43:49:f0:f0:a6:bd:ee:ae: b0:c1:14:34:8c:82:de:ba:dd:3c:27:b6:dc:12:e3: b7:9d:2f:b8:14:64:93:0b:c8:87:38:6f:40:03:99: 5f:f9:14:85:31:da:28:72:65:1f:0c:7d:60:29:9d: 6c:ab:cd:f0:f1:45:68:d9:a4:32:08:dd:e7:a2:a4: 23:f6:ad:69:48:15:bb:2e:79:b1:d3:16:2f:fd:cd: c8:6e:99:2b:55:23:eb:c5:52:91:82:fa:80:b2:94: b6:e0:58:61:d7:bf:c1:56:28:5c:42:49:ca:25:ab: a9:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:06:25:ED:85:96:54:D1:EA:B6:F4:5E:0D:0F:83:F9:AF:77:97:91 X509v3 Authority Key Identifier: keyid:B0:A1:33:36:C3:8E:EB:A1:0C:BA:C9:C2:8C:AF:1E:FC:F4:4A:C8:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sKEzNsOO66EMusnCjK8e_PRKyGM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:ef:f9:36:25:d6:e1:5a:42:62:b6:d0:06:43:2b:63:65:39: e5:86:6e:46:2a:d0:3b:c9:fa:27:b9:89:43:e2:6b:fd:ea:4c: d1:ae:dd:d8:33:fd:8a:14:95:e0:89:70:8e:35:94:bf:dc:d1: 22:50:00:a6:5b:a9:a3:89:7e:fc:a8:93:fd:a3:92:e7:26:c2: 65:a9:17:46:d5:58:53:0e:18:16:08:53:9b:97:1f:8b:05:61: 79:27:4b:c1:40:ac:a2:20:a7:a0:6e:9f:45:f4:07:25:79:4e: b2:81:20:9d:2f:2d:fb:e7:c8:60:f8:75:57:7e:b7:c0:0d:fc: 22:cb:ce:4f:79:7f:36:58:10:a5:44:ce:4f:d5:8d:06:ef:4b: cb:03:ee:a9:08:02:49:f5:fa:fb:9d:2b:3c:79:1b:39:b7:6e: 74:e1:e7:97:d8:53:c9:ac:78:a0:aa:fd:af:a6:ee:4b:01:bf: 7c:44:fc:1c:a9:64:af:fe:48:11:06:92:83:cb:d2:8a:10:da: 7a:a7:ce:17:da:39:f5:a4:a4:ff:57:8a:4d:43:57:8a:6a:be: 6b:36:06:a3:38:80:00:51:f6:20:0e:8a:44:75:40:84:1e:5e: 77:e5:bb:41:5a:33:b1:d9:d5:01:fe:93:ad:4d:1d:3b:84:50: 56:1e:ca:2b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsqd+HuIW6upDHZljvbIY9HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwYTEzMzM2YzM4ZWViYTEwY2JhYzljMjhjYWYxZWZjZjQ0 YWM4NjMwHhcNMjUxMjE3MDQwMDU4WhcNMjUxMjE4MDQwMDU4WjAzMTEwLwYDVQQD Eyg2YjA2MjVlZDg1OTY1NGQxZWFiNmY0NWUwZDBmODNmOWFmNzc5NzkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1vOrpZu8HIdNDMjGG38OFs+qz5Sf H/aiD0rUdPYOsWAkPlrRXkio+OUIFLhMWFNlumD/Y2YYoDGOSJnAEYipzri3OyQ1 D+Lu+KZ2BofebtLIwf0ADPJQNjkWEsOK97anH942Fh6kVaAYZiSLj4uX/74YC+Md SNC9zuRs6SfjFdsbTaHTktENF7toeCILQ0nw8Ka97q6wwRQ0jILeut08J7bcEuO3 nS+4FGSTC8iHOG9AA5lf+RSFMdoocmUfDH1gKZ1sq83w8UVo2aQyCN3noqQj9q1p SBW7Lnmx0xYv/c3IbpkrVSPrxVKRgvqAspS24Fhh17/BVihcQknKJaupswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGsGJe2FllTR6rb0Xg0Pg/mvd5eRMB8GA1UdIwQY MBaAFLChMzbDjuuhDLrJwoyvHvz0SshjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0tFek5zT082NkVNdXNuQ2pLOGVfUFJLeUdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS8yMzg0ODYtM2U4ZC00YmMzLWExOWQt MGE3NjhiMjQxMjVhLzEvc0tFek5zT082NkVNdXNuQ2pLOGVfUFJLeUdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS8yMzg0ODYtM2U4ZC00YmMzLWExOWQtMGE3NjhiMjQxMjVh LzEvc0tFek5zT082NkVNdXNuQ2pLOGVfUFJLeUdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX+/5NiXW 4VpCYrbQBkMrY2U55YZuRirQO8n6J7mJQ+Jr/epM0a7d2DP9ihSV4IlwjjWUv9zR IlAAplupo4l+/KiT/aOS5ybCZakXRtVYUw4YFghTm5cfiwVheSdLwUCsoiCnoG6f RfQHJXlOsoEgnS8t++fIYPh1V363wA38IsvOT3l/NlgQpUTOT9WNBu9LywPuqQgC SfX6+50rPHkbObdudOHnl9hTyax4oKr9r6buSwG/fET8HKlkr/5IEQaSg8vSihDa eqfOF9o59aSk/1eKTUNXimq+azYGoziAAFH2IA6KRHVAhB5ed+W7QVozsdnVAf6T rU0dO4RQVh7KKw== -----END CERTIFICATE-----Generated at Wed Dec 17 09:11:29 2025 by rpki-client