This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft File: S1KaTSL67yMTXW7_iRImZiPEklU.mft (raw, json) Hash identifier: vkRS4y0L3ST3qcInzQohJY5hQLhHrkAJRirmdePPFpQ= Subject key identifier: 99:3D:A6:7B:02:B1:13:1D:C6:5D:A5:09:65:74:CA:28:F4:EC:10:23 Authority key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55 Certificate issuer: /CN=4b529a4d22faef23135d6eff8912266623c49255 Certificate serial: 019B36454455112E25077E0D12DD5334BEC3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft Manifest number: 17A2 Signing time: Fri 19 Dec 2025 11:01:07 +0000 Manifest this update: Fri 19 Dec 2025 11:01:07 +0000 Manifest next update: Sat 20 Dec 2025 11:01:07 +0000 Files and hashes: 1: 1-dpFpZ66BUopKTWddAy3aYd5Q58.roa (hash: a/nFyI+oVdi7douUuLnGlPqM2YOH9iXTA2Ltk7+EQUM=) 2: DL1hBwC058Ly5gbOYmTudqMnhLY.roa (hash: ZP95RnK2lnoKaBDaVLfKRWdtbqYZIJodq0FZ93fqmj4=) 3: S1KaTSL67yMTXW7_iRImZiPEklU.crl (hash: ToPMn5RbRsJRe2Sj4wmya2ZbovO0f8gPPGfymK9PdL0=) 4: TSdQZeiJv87sxq_OJ-PJSQE8GTQ.roa (hash: zeHI0YzPke/O83NDkRPiKpR8/sA4EMZWB7tgWAf8HNc=) 5: YG4GH2kbor4nZ_HdlU4bXsM_ISU.roa (hash: orPHPnq001m59xqGhWWhOTcNNv+UhgU5D7ZAydlYwJ0=) 6: _YciLAUMll_l6Ad-S-3jEr-WUP0.roa (hash: YLNVgwBOiutPhe7HbfVw0eYS7E9cfJJEs9zT8+FOZFI=) 7: ct-_W27EwoC0fOGDJoYPaUOCh1k.roa (hash: Ry7d3ypfHQ+1XBY6nTPep5IZIfXf1osPEMavue76/1w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 11:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:45:44:55:11:2e:25:07:7e:0d:12:dd:53:34:be:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b529a4d22faef23135d6eff8912266623c49255 Validity Not Before: Dec 19 11:01:07 2025 GMT Not After : Dec 20 11:01:07 2025 GMT Subject: CN=993da67b02b1131dc65da5096574ca28f4ec1023 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:29:b3:65:33:af:90:e2:ee:8d:92:4c:13:2c: 67:40:b4:3b:fc:ad:cc:6f:08:25:60:17:5e:de:c6: 7a:98:cd:38:80:2d:09:81:f1:31:ce:da:f3:a5:fc: 48:a8:64:5a:63:9f:48:56:8e:18:d5:1b:b7:fa:03: e3:71:65:fa:e3:11:75:12:e1:db:09:57:7e:76:e2: da:bd:77:57:e1:e0:07:dd:00:c5:e1:df:c2:73:63: 25:74:06:c8:93:97:e9:39:27:f7:8a:e2:7a:71:f6: 45:76:81:25:d8:b2:4a:86:82:9a:12:8c:07:bf:98: 0f:5e:be:5c:91:fc:5f:26:9d:f0:d7:99:c4:35:38: 00:6a:63:70:44:72:bd:60:50:30:26:00:9e:41:53: 85:e7:63:00:e2:e9:73:37:f2:5b:c3:c4:0b:81:ed: c6:02:1b:ca:97:68:52:6a:2f:a9:da:a4:44:ef:53: 0e:e6:d7:4f:21:05:80:15:e0:d9:80:11:fe:1a:3b: 05:70:18:07:62:ad:94:c7:93:9d:34:b9:ec:fa:b3: 51:2f:64:48:63:5a:7c:30:c2:55:a8:36:d1:e5:7a: fa:cc:6d:26:11:2b:cb:94:ee:3c:3c:04:da:64:f4: 82:76:3b:4f:04:c1:95:1f:fa:45:fc:f9:8d:b2:92: 90:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:3D:A6:7B:02:B1:13:1D:C6:5D:A5:09:65:74:CA:28:F4:EC:10:23 X509v3 Authority Key Identifier: keyid:4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:3e:33:6d:63:4b:03:b2:0c:dc:ec:b1:1b:6a:42:39:12:04: 48:9c:93:7e:c5:e5:55:d6:a2:d2:66:34:2f:ea:2b:2f:74:76: cb:85:b0:d9:14:ba:36:11:de:eb:49:c9:e5:bd:8a:99:76:53: 84:67:f8:b0:68:01:e8:e4:d3:c2:99:74:d0:17:6c:87:fa:ac: 7e:78:6f:29:e3:35:89:da:9b:9e:84:2b:bb:6e:4c:58:50:c0: 40:55:d2:c9:60:3d:15:05:c7:75:f3:07:9d:cf:a6:76:d2:5d: 33:b9:67:3c:4c:a5:33:0e:de:61:bf:25:c1:d9:99:1a:fa:26: 68:31:58:6d:4b:e1:92:b6:79:f0:f6:26:c4:27:eb:25:43:64: 20:13:da:14:a2:4f:5e:75:d2:fe:7a:46:e8:f2:8f:41:c2:45: d1:30:33:69:e6:1d:74:df:12:31:7e:f8:57:8f:ab:3b:36:96: 4b:99:ce:6c:49:a8:31:85:b7:c8:9e:27:8d:61:ce:27:6f:47: 8c:ce:ad:32:b9:5a:73:58:7f:0c:bd:11:e6:61:16:e9:85:01: 4d:a3:0f:48:ba:58:9e:64:44:96:cf:d8:4a:ee:05:eb:3a:ce: 6a:08:f8:d6:f2:79:29:bc:14:46:d1:ed:e4:7e:e5:f0:ad:dd: 61:cf:06:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs2RURVES4lB34NEt1TNL7DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiNTI5YTRkMjJmYWVmMjMxMzVkNmVmZjg5MTIyNjY2MjNj NDkyNTUwHhcNMjUxMjE5MTEwMTA3WhcNMjUxMjIwMTEwMTA3WjAzMTEwLwYDVQQD Eyg5OTNkYTY3YjAyYjExMzFkYzY1ZGE1MDk2NTc0Y2EyOGY0ZWMxMDIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtymzZTOvkOLujZJMEyxnQLQ7/K3M bwglYBde3sZ6mM04gC0JgfExztrzpfxIqGRaY59IVo4Y1Ru3+gPjcWX64xF1EuHb CVd+duLavXdX4eAH3QDF4d/Cc2MldAbIk5fpOSf3iuJ6cfZFdoEl2LJKhoKaEowH v5gPXr5ckfxfJp3w15nENTgAamNwRHK9YFAwJgCeQVOF52MA4ulzN/Jbw8QLge3G AhvKl2hSai+p2qRE71MO5tdPIQWAFeDZgBH+GjsFcBgHYq2Ux5OdNLns+rNRL2RI Y1p8MMJVqDbR5Xr6zG0mESvLlO48PATaZPSCdjtPBMGVH/pF/PmNspKQ1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJk9pnsCsRMdxl2lCWV0yij07BAjMB8GA1UdIwQY MBaAFEtSmk0i+u8jE11u/4kSJmYjxJJVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzFLYVRTTDY3eU1UWFc3X2lSSW1aaVBFa2xVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8xZDliMDUtZWM2MS00YzMzLWEwOTct MzZhZTc2ZWU5ODNlLzEvUzFLYVRTTDY3eU1UWFc3X2lSSW1aaVBFa2xVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy8xZDliMDUtZWM2MS00YzMzLWEwOTctMzZhZTc2ZWU5ODNl LzEvUzFLYVRTTDY3eU1UWFc3X2lSSW1aaVBFa2xVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbT4zbWNL A7IM3OyxG2pCORIESJyTfsXlVdai0mY0L+orL3R2y4Ww2RS6NhHe60nJ5b2KmXZT hGf4sGgB6OTTwpl00Bdsh/qsfnhvKeM1idqbnoQru25MWFDAQFXSyWA9FQXHdfMH nc+mdtJdM7lnPEylMw7eYb8lwdmZGvomaDFYbUvhkrZ58PYmxCfrJUNkIBPaFKJP XnXS/npG6PKPQcJF0TAzaeYddN8SMX74V4+rOzaWS5nObEmoMYW3yJ4njWHOJ29H jM6tMrlac1h/DL0R5mEW6YUBTaMPSLpYnmREls/YSu4F6zrOagj41vJ5KbwURtHt 5H7l8K3dYc8GOw== -----END CERTIFICATE-----Generated at Fri Dec 19 18:51:59 2025 by rpki-client