This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft File: skTScYj-UmvXJjZzgZXR639gYzU.mft (raw, json) Hash identifier: aCD2+RY725KvQuyYe6OlKk/VdDxnEY1NFC136bgHDN0= Subject key identifier: 3B:DC:1D:14:7D:BF:F2:FD:EB:0E:E8:E6:E3:E4:50:36:92:BC:DC:7D Authority key identifier: B2:44:D2:71:88:FE:52:6B:D7:26:36:73:81:95:D1:EB:7F:60:63:35 Certificate issuer: /CN=b244d27188fe526bd72636738195d1eb7f606335 Certificate serial: 019B5787F16AD41FBB38064344BB589E5DA4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/skTScYj-UmvXJjZzgZXR639gYzU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft Manifest number: 1796 Signing time: Thu 25 Dec 2025 22:01:25 +0000 Manifest this update: Thu 25 Dec 2025 22:01:25 +0000 Manifest next update: Fri 26 Dec 2025 22:01:25 +0000 Files and hashes: 1: i9ojhRN5HPqLEONrX8zwsFoi9sk.roa (hash: MIYLI6ZlVjLLI/2sB5M12T0X1D0wb0+Le0eSAFyUiKg=) 2: skTScYj-UmvXJjZzgZXR639gYzU.crl (hash: lrngp1CZVlBIKOCnNbGAC9RFkU6td6UlWJ+AyaY5bEc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.crl rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft rsync://rpki.ripe.net/repository/DEFAULT/skTScYj-UmvXJjZzgZXR639gYzU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:57:87:f1:6a:d4:1f:bb:38:06:43:44:bb:58:9e:5d:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b244d27188fe526bd72636738195d1eb7f606335 Validity Not Before: Dec 25 22:01:25 2025 GMT Not After : Dec 26 22:01:25 2025 GMT Subject: CN=3bdc1d147dbff2fdeb0ee8e6e3e4503692bcdc7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:42:b7:32:01:83:2c:05:b1:66:30:bb:23:cf: 81:c2:d1:8e:70:24:4b:9e:14:d6:97:66:a9:d7:13: 32:a2:32:db:fc:b2:bb:ce:f9:80:d0:b8:d9:d9:4c: 84:9e:39:6c:4c:c6:4b:a8:cd:2c:58:16:fa:e2:18: a7:65:47:f4:d0:44:01:75:b3:34:4f:dd:2e:55:af: e8:20:56:94:af:37:60:a4:ba:da:b0:55:45:aa:4f: 1c:60:b7:32:fa:e3:b2:61:7c:d9:ad:ff:4a:bd:38: 24:0a:97:79:c3:80:39:8f:3a:6d:7c:46:d9:ff:0d: a0:f5:09:fb:cc:76:dc:1c:eb:cd:a0:22:51:2d:d0: 72:4e:4c:a2:8d:1a:69:53:f4:6b:93:a3:98:57:cb: 67:e6:84:77:07:76:72:db:9f:b2:d2:8f:90:92:57: b6:36:10:0a:90:bb:7b:b3:14:37:59:5a:06:47:88: 96:85:35:df:3e:ba:1f:ed:c1:26:1e:dd:54:d1:ef: fc:b1:fd:35:32:3a:64:70:f2:77:4e:1b:5b:1f:37: b9:bb:c8:49:ff:89:c0:3e:d0:d4:fe:25:54:76:7c: e2:9e:28:14:f7:07:b7:d3:d3:53:cd:59:ed:53:ef: 89:71:58:a4:9e:f1:bc:bc:f4:74:71:73:6c:0e:c0: f9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:DC:1D:14:7D:BF:F2:FD:EB:0E:E8:E6:E3:E4:50:36:92:BC:DC:7D X509v3 Authority Key Identifier: keyid:B2:44:D2:71:88:FE:52:6B:D7:26:36:73:81:95:D1:EB:7F:60:63:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/skTScYj-UmvXJjZzgZXR639gYzU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:90:ab:cb:68:94:41:dc:11:d1:36:3e:2f:57:3c:07:e7:21: f8:35:9b:52:83:81:96:ff:25:13:10:88:e0:e6:08:c4:f6:e1: 80:ff:10:83:69:f9:96:db:ab:0a:90:c4:0d:6f:2d:e9:ae:dc: dd:00:26:c0:72:bd:32:18:d2:f7:f4:21:05:b9:33:5d:6b:9b: 3f:f0:48:be:9d:ba:1f:e6:a5:9e:9f:6d:45:25:8b:d3:58:60: 38:8f:b1:95:a4:5b:ea:8a:a8:4d:64:da:e5:29:da:56:fd:f0: 76:8b:2e:59:7a:af:0e:22:b4:17:40:80:7d:9f:fb:4d:36:fa: 45:e7:ff:66:6f:d2:b2:ee:13:79:f7:60:1e:20:f1:3e:f6:4f: f0:62:11:79:0c:b5:1f:d7:9d:d3:11:5c:bd:95:0e:36:78:e8: 41:a2:31:71:f4:20:f5:65:07:84:ce:45:89:f4:66:d8:72:56: 7a:32:ac:cf:ac:b8:4f:a7:ac:8a:1f:d5:d9:2b:a9:6e:d8:c0: 75:60:66:f6:18:fd:37:2b:cf:ff:67:45:d9:5a:93:fe:e3:70: 8d:20:02:ae:b6:0a:ff:56:ee:0e:08:42:c6:06:67:6b:45:bd: 8e:e0:b6:8e:d8:da:73:ca:ee:e0:63:a4:bf:e8:80:73:33:6c: f0:4d:f5:75 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtXh/Fq1B+7OAZDRLtYnl2kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyNDRkMjcxODhmZTUyNmJkNzI2MzY3MzgxOTVkMWViN2Y2 MDYzMzUwHhcNMjUxMjI1MjIwMTI1WhcNMjUxMjI2MjIwMTI1WjAzMTEwLwYDVQQD EygzYmRjMWQxNDdkYmZmMmZkZWIwZWU4ZTZlM2U0NTAzNjkyYmNkYzdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA50K3MgGDLAWxZjC7I8+BwtGOcCRL nhTWl2ap1xMyojLb/LK7zvmA0LjZ2UyEnjlsTMZLqM0sWBb64hinZUf00EQBdbM0 T90uVa/oIFaUrzdgpLrasFVFqk8cYLcy+uOyYXzZrf9KvTgkCpd5w4A5jzptfEbZ /w2g9Qn7zHbcHOvNoCJRLdByTkyijRppU/Rrk6OYV8tn5oR3B3Zy25+y0o+Qkle2 NhAKkLt7sxQ3WVoGR4iWhTXfProf7cEmHt1U0e/8sf01MjpkcPJ3ThtbHze5u8hJ /4nAPtDU/iVUdnzinigU9we309NTzVntU++JcViknvG8vPR0cXNsDsD56QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDvcHRR9v/L96w7o5uPkUDaSvNx9MB8GA1UdIwQY MBaAFLJE0nGI/lJr1yY2c4GV0et/YGM1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2tUU2NZai1VbXZYSmpaemdaWFI2MzlnWXpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy8yYTcyN2ItYTc0NS00MzM5LTkyNWEt NGQwMGQ2MDMyYWZlLzEvc2tUU2NZai1VbXZYSmpaemdaWFI2MzlnWXpVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy8yYTcyN2ItYTc0NS00MzM5LTkyNWEtNGQwMGQ2MDMyYWZl LzEvc2tUU2NZai1VbXZYSmpaemdaWFI2MzlnWXpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApJCry2iU QdwR0TY+L1c8B+ch+DWbUoOBlv8lExCI4OYIxPbhgP8Qg2n5lturCpDEDW8t6a7c 3QAmwHK9MhjS9/QhBbkzXWubP/BIvp26H+alnp9tRSWL01hgOI+xlaRb6oqoTWTa 5SnaVv3wdosuWXqvDiK0F0CAfZ/7TTb6Ref/Zm/Ssu4TefdgHiDxPvZP8GIReQy1 H9ed0xFcvZUONnjoQaIxcfQg9WUHhM5FifRm2HJWejKsz6y4T6esih/V2SupbtjA dWBm9hj9NyvP/2dF2VqT/uNwjSACrrYK/1buDghCxgZna0W9juC2jtjac8ru4GOk v+iAczNs8E31dQ== -----END CERTIFICATE-----Generated at Fri Dec 26 01:29:50 2025 by rpki-client