This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.mft File: srQdL319OFfgdfKk8vnT4ETy5TY.mft (raw, json) Hash identifier: 03ROk094oki4LOU743cXMtDEbjAlAC5R5nFXEXj5Tj8= Subject key identifier: C1:85:B4:C5:19:BD:F8:F9:64:B1:57:FB:84:99:12:F4:E7:4A:25:07 Authority key identifier: B2:B4:1D:2F:7D:7D:38:57:E0:75:F2:A4:F2:F9:D3:E0:44:F2:E5:36 Certificate issuer: /CN=b2b41d2f7d7d3857e075f2a4f2f9d3e044f2e536 Certificate serial: 019B311E77A75605D7AE605374FA61C5CA3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/srQdL319OFfgdfKk8vnT4ETy5TY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.mft Manifest number: 0777 Signing time: Thu 18 Dec 2025 11:00:38 +0000 Manifest this update: Thu 18 Dec 2025 11:00:38 +0000 Manifest next update: Fri 19 Dec 2025 11:00:38 +0000 Files and hashes: 1: Ypuf3qV0JE2AXfUrk2eNRiGtQN0.roa (hash: AxG4SgT0VS5arc9FHux7pFhrFyFYGK0/0AgX9zPeSBE=) 2: srQdL319OFfgdfKk8vnT4ETy5TY.crl (hash: +agA+lUEzUTY9bRdZNQB5oW4oezB7A31nn68i/XKPZI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.mft rsync://rpki.ripe.net/repository/DEFAULT/srQdL319OFfgdfKk8vnT4ETy5TY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 11:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:1e:77:a7:56:05:d7:ae:60:53:74:fa:61:c5:ca:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2b41d2f7d7d3857e075f2a4f2f9d3e044f2e536 Validity Not Before: Dec 18 11:00:38 2025 GMT Not After : Dec 19 11:00:38 2025 GMT Subject: CN=c185b4c519bdf8f964b157fb849912f4e74a2507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a3:de:5b:a8:99:3f:f8:c4:89:52:df:71:df: 8e:69:22:a2:9d:26:1a:66:82:bc:ab:a8:29:88:7d: 8b:ae:74:a7:22:05:4e:3b:b0:6d:8e:94:16:46:96: 3f:48:f4:22:14:da:77:f0:9d:c3:43:bb:d2:b7:c2: c7:df:d5:62:2d:bb:b4:5b:1d:20:a7:23:0c:71:2c: bb:74:9c:42:3c:a3:6a:71:ae:ab:b5:88:9c:18:6e: bd:e7:f8:76:15:56:b6:a5:8c:6f:08:d0:5a:82:28: c1:ee:2b:ab:fa:ec:98:16:b5:81:c0:c5:d2:a1:83: d9:0a:55:6c:6d:b7:cc:8c:5d:7e:1b:9a:f5:d9:15: 8c:5a:52:96:21:d8:3d:4b:9d:02:1e:b4:9c:79:a4: d5:53:b9:a5:e4:49:93:fc:c9:cb:df:5a:f5:d6:8c: dc:a1:25:7e:e1:a8:ec:05:d3:1d:66:33:c4:36:a5: bf:aa:0f:3a:fe:a6:45:6e:2f:4d:01:1b:b8:1d:51: f4:d0:12:46:4e:53:3e:50:76:ad:9d:d5:ff:83:4a: c0:44:cf:47:b0:5e:19:9c:a8:ef:29:59:3d:1d:43: b4:f4:78:b0:c0:ad:e7:8f:62:e0:9b:1f:18:be:46: bb:21:15:a1:06:85:61:9d:1d:69:26:3b:42:83:39: d4:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:85:B4:C5:19:BD:F8:F9:64:B1:57:FB:84:99:12:F4:E7:4A:25:07 X509v3 Authority Key Identifier: keyid:B2:B4:1D:2F:7D:7D:38:57:E0:75:F2:A4:F2:F9:D3:E0:44:F2:E5:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/srQdL319OFfgdfKk8vnT4ETy5TY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b6:98:4f:3d:7d:5c:a9:93:24:e7:48:ce:fe:75:3c:c8:6c:84: 6d:d5:7e:43:d3:9a:4a:82:c3:62:6b:d7:f8:ef:77:45:f5:e0: 91:05:89:ad:c8:87:77:92:90:38:6f:d6:1e:df:66:ca:bd:49: 63:dc:e3:89:72:58:92:6d:85:d2:84:4f:6a:20:c9:ca:f1:2f: 56:fa:43:bc:77:cc:86:5d:cb:84:9c:f1:77:ed:0a:2d:a2:05: 5f:08:9d:ad:84:a3:db:d6:ed:99:57:60:9a:fe:ca:13:45:86: e9:bb:cc:db:65:17:66:a2:86:cd:5c:d4:e1:08:cb:31:86:fb: 91:bb:cc:ab:87:e5:a7:90:00:6d:0f:3f:2b:b0:c6:92:82:ea: 7e:24:3c:ff:08:59:bd:0c:c4:91:51:fb:18:53:a1:34:38:07: 18:92:80:03:e2:e5:38:83:b9:9a:93:29:c1:8c:71:fd:63:b0: 2a:78:b6:a5:4d:27:0f:75:ab:89:ed:fb:7c:82:c8:c7:b8:6d: bb:52:6a:d2:79:72:47:0b:82:3c:24:c5:ef:95:b9:34:61:b7: ec:c5:ea:74:c1:59:9f:16:cd:71:38:85:57:ce:df:66:98:05: 3e:e2:d3:db:8e:c9:ed:f9:b1:d3:14:5b:de:0c:51:c0:e9:b6: af:d6:f2:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsxHnenVgXXrmBTdPphxco8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyYjQxZDJmN2Q3ZDM4NTdlMDc1ZjJhNGYyZjlkM2UwNDRm MmU1MzYwHhcNMjUxMjE4MTEwMDM4WhcNMjUxMjE5MTEwMDM4WjAzMTEwLwYDVQQD EyhjMTg1YjRjNTE5YmRmOGY5NjRiMTU3ZmI4NDk5MTJmNGU3NGEyNTA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqPeW6iZP/jEiVLfcd+OaSKinSYa ZoK8q6gpiH2LrnSnIgVOO7BtjpQWRpY/SPQiFNp38J3DQ7vSt8LH39ViLbu0Wx0g pyMMcSy7dJxCPKNqca6rtYicGG695/h2FVa2pYxvCNBagijB7iur+uyYFrWBwMXS oYPZClVsbbfMjF1+G5r12RWMWlKWIdg9S50CHrSceaTVU7ml5EmT/MnL31r11ozc oSV+4ajsBdMdZjPENqW/qg86/qZFbi9NARu4HVH00BJGTlM+UHatndX/g0rARM9H sF4ZnKjvKVk9HUO09HiwwK3nj2Lgmx8Yvka7IRWhBoVhnR1pJjtCgznUJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMGFtMUZvfj5ZLFX+4SZEvTnSiUHMB8GA1UdIwQY MBaAFLK0HS99fThX4HXypPL50+BE8uU2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3JRZEwzMTlPRmZnZGZLazh2blQ0RVR5NVRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9kNzdhYzQtZGM2Ni00MzRmLTg0MjMt YzllMjBjY2Q0NzZmLzEvc3JRZEwzMTlPRmZnZGZLazh2blQ0RVR5NVRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy9kNzdhYzQtZGM2Ni00MzRmLTg0MjMtYzllMjBjY2Q0NzZm LzEvc3JRZEwzMTlPRmZnZGZLazh2blQ0RVR5NVRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtphPPX1c qZMk50jO/nU8yGyEbdV+Q9OaSoLDYmvX+O93RfXgkQWJrciHd5KQOG/WHt9myr1J Y9zjiXJYkm2F0oRPaiDJyvEvVvpDvHfMhl3LhJzxd+0KLaIFXwidrYSj29btmVdg mv7KE0WG6bvM22UXZqKGzVzU4QjLMYb7kbvMq4flp5AAbQ8/K7DGkoLqfiQ8/whZ vQzEkVH7GFOhNDgHGJKAA+LlOIO5mpMpwYxx/WOwKni2pU0nD3Wrie37fILIx7ht u1Jq0nlyRwuCPCTF75W5NGG37MXqdMFZnxbNcTiFV87fZpgFPuLT247J7fmx0xRb 3gxRwOm2r9bygA== -----END CERTIFICATE-----Generated at Thu Dec 18 15:41:24 2025 by rpki-client