This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft File: sK0iZDwtl71x-LY0-40dT58B9Kc.mft (raw, json) Hash identifier: NKqCJBGsDrtWxOdxBd/f9OEzZXPfn4GWU1Xxg3rGIqY= Subject key identifier: EE:1B:77:67:A4:28:89:E0:09:2C:11:BF:09:9E:A1:11:50:95:84:46 Authority key identifier: B0:AD:22:64:3C:2D:97:BD:71:F8:B6:34:FB:8D:1D:4F:9F:01:F4:A7 Certificate issuer: /CN=b0ad22643c2d97bd71f8b634fb8d1d4f9f01f4a7 Certificate serial: 019B07EC379D5099C652799761E305FE03A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft Manifest number: 11CB Signing time: Wed 10 Dec 2025 11:01:19 +0000 Manifest this update: Wed 10 Dec 2025 11:01:19 +0000 Manifest next update: Thu 11 Dec 2025 11:01:19 +0000 Files and hashes: 1: 89qbXuP3JJGKzWaNZO3dqnt1pdw.roa (hash: obr33L2CB/OVnTXprqPZCOQ9LeK6vQA821ilRu8qFT0=) 2: sK0iZDwtl71x-LY0-40dT58B9Kc.crl (hash: tkPGH8EmW1/vnjYq4SZ3aRQ2kddD6a2xM1vbhiAe39s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:07:ec:37:9d:50:99:c6:52:79:97:61:e3:05:fe:03:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0ad22643c2d97bd71f8b634fb8d1d4f9f01f4a7 Validity Not Before: Dec 10 11:01:19 2025 GMT Not After : Dec 11 11:01:19 2025 GMT Subject: CN=ee1b7767a42889e0092c11bf099ea11150958446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:05:44:70:42:09:d3:61:79:3f:0e:2a:81:3c: 23:6a:ac:70:68:1d:3b:1c:1d:e4:d4:18:59:64:ad: f6:11:10:a7:de:06:80:00:55:0b:64:86:ee:3c:ee: 74:00:87:84:fc:ca:34:10:c6:52:c6:6c:50:40:ce: 8e:fd:25:7c:da:ad:23:ef:e3:50:ba:2e:5f:97:84: 1f:28:3b:79:de:a9:d6:e5:95:a0:44:e6:7a:e3:e6: 35:c3:73:78:c8:93:d4:1f:fc:f2:94:cc:24:9c:1d: e5:9c:99:a9:08:33:32:10:49:a4:8e:b0:8f:4a:dd: 7a:08:c5:ad:f9:d3:2d:f1:d8:65:70:06:ee:9c:f8: 40:cf:24:97:11:3b:c1:91:4a:dc:e0:67:c1:a4:fb: a5:af:93:96:9c:31:02:8e:fa:dd:79:01:55:c0:37: e8:fa:5d:db:e4:63:e1:f2:27:8d:bb:35:23:8b:96: a4:0c:e2:ae:f7:fc:73:6b:84:f8:2c:48:ce:20:9a: 7c:a5:3b:87:a6:06:47:63:aa:30:1e:85:45:ab:8b: cf:5c:54:8b:66:57:73:1a:a4:e4:5f:1e:b2:75:f4: 28:c5:60:d7:58:a7:2b:39:d7:40:bb:3b:73:57:18: 1c:29:1b:05:5d:6d:5c:79:b3:42:36:30:5e:31:dd: d8:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:1B:77:67:A4:28:89:E0:09:2C:11:BF:09:9E:A1:11:50:95:84:46 X509v3 Authority Key Identifier: keyid:B0:AD:22:64:3C:2D:97:BD:71:F8:B6:34:FB:8D:1D:4F:9F:01:F4:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:97:09:76:e0:40:15:e5:4f:08:3d:56:e6:c5:90:c2:e7:24: f3:38:08:f9:da:bf:46:93:fe:bf:d0:12:af:9f:e2:ae:e0:c7: c0:60:71:bf:0c:a8:e1:37:7d:98:12:df:df:26:7a:15:c6:a4: cd:24:61:04:5f:bc:b7:61:74:b0:0d:a2:d2:cb:31:e4:22:28: 77:0d:e6:60:5a:52:10:78:83:ae:7e:32:ce:0a:e2:cf:e4:90: 57:f3:2e:cf:7f:4a:16:c7:54:6c:6d:eb:ef:40:e3:75:93:dc: 3c:57:ce:a2:fe:5b:7c:95:49:08:92:46:6c:7f:a3:5e:7f:18: 55:47:e0:1b:1b:e0:a1:6b:50:11:b4:da:b0:12:b8:0d:89:77: c7:03:52:6e:79:44:df:da:ee:8c:13:00:5b:a7:bf:84:be:68: b3:02:73:8d:9f:f2:10:dd:a4:8d:9f:09:6c:9f:1c:2a:2e:b7: dd:41:8c:23:99:89:2a:38:ac:68:17:8b:37:33:ed:50:79:e9: a8:8f:ea:36:ed:2a:e6:a4:a1:db:cf:0c:70:c2:61:8f:ee:fd: f0:98:dc:be:8f:17:76:3e:6e:7e:23:bf:a4:1f:ba:57:27:8e: 4c:65:e0:e5:50:98:8a:7b:c0:66:0a:7d:3f:44:c7:61:5a:e2: bf:b2:9b:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsH7DedUJnGUnmXYeMF/gOkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwYWQyMjY0M2MyZDk3YmQ3MWY4YjYzNGZiOGQxZDRmOWYw MWY0YTcwHhcNMjUxMjEwMTEwMTE5WhcNMjUxMjExMTEwMTE5WjAzMTEwLwYDVQQD EyhlZTFiNzc2N2E0Mjg4OWUwMDkyYzExYmYwOTllYTExMTUwOTU4NDQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtQVEcEIJ02F5Pw4qgTwjaqxwaB07 HB3k1BhZZK32ERCn3gaAAFULZIbuPO50AIeE/Mo0EMZSxmxQQM6O/SV82q0j7+NQ ui5fl4QfKDt53qnW5ZWgROZ64+Y1w3N4yJPUH/zylMwknB3lnJmpCDMyEEmkjrCP St16CMWt+dMt8dhlcAbunPhAzySXETvBkUrc4GfBpPulr5OWnDECjvrdeQFVwDfo +l3b5GPh8ieNuzUji5akDOKu9/xza4T4LEjOIJp8pTuHpgZHY6owHoVFq4vPXFSL ZldzGqTkXx6ydfQoxWDXWKcrOddAuztzVxgcKRsFXW1cebNCNjBeMd3YgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO4bd2ekKIngCSwRvwmeoRFQlYRGMB8GA1UdIwQY MBaAFLCtImQ8LZe9cfi2NPuNHU+fAfSnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0swaVpEd3RsNzF4LUxZMC00MGRUNThCOUtjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi8zMGIzZmYtNzAzNi00YTJlLThlYjUt MDc0ZmZiNDIzYzEzLzEvc0swaVpEd3RsNzF4LUxZMC00MGRUNThCOUtjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi8zMGIzZmYtNzAzNi00YTJlLThlYjUtMDc0ZmZiNDIzYzEz LzEvc0swaVpEd3RsNzF4LUxZMC00MGRUNThCOUtjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB5cJduBA FeVPCD1W5sWQwuck8zgI+dq/RpP+v9ASr5/iruDHwGBxvwyo4Td9mBLf3yZ6Fcak zSRhBF+8t2F0sA2i0ssx5CIodw3mYFpSEHiDrn4yzgriz+SQV/Muz39KFsdUbG3r 70DjdZPcPFfOov5bfJVJCJJGbH+jXn8YVUfgGxvgoWtQEbTasBK4DYl3xwNSbnlE 39rujBMAW6e/hL5oswJzjZ/yEN2kjZ8JbJ8cKi633UGMI5mJKjisaBeLNzPtUHnp qI/qNu0q5qSh288McMJhj+798Jjcvo8Xdj5ufiO/pB+6VyeOTGXg5VCYinvAZgp9 P0THYVriv7Kbzw== -----END CERTIFICATE-----Generated at Wed Dec 10 18:24:44 2025 by rpki-client