This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft File: s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft (raw, json) Hash identifier: sV63JxiPnWsgEf7xKC0CUd1BoZ6maN0Xye+ibGK6pX4= Subject key identifier: 01:28:A4:FB:2F:1C:4E:53:BE:01:13:D1:2A:5E:3A:CF:5C:7D:87:42 Authority key identifier: B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 Certificate issuer: /CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Certificate serial: 019B3A90C9E039FCC136A89C6F7A45176C5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft Manifest number: 17A9 Signing time: Sat 20 Dec 2025 07:02:05 +0000 Manifest this update: Sat 20 Dec 2025 07:02:05 +0000 Manifest next update: Sun 21 Dec 2025 07:02:05 +0000 Files and hashes: 1: 8G17Uj9AIXGxXZ66yfJHOLsxPo8.roa (hash: qU/6T++9LyINzVzJ8CV6sT+MweAHyZF0SIUnm5bIRYg=) 2: Hrw24NCuWIUCpkj_ixSA3ykRPr4.roa (hash: EL86DxycBZAbHkapsC+FVYde7DJDbg6IvsLrlIhK4Mg=) 3: HzkqLbs1liYqOOnORyYsONDUWCk.roa (hash: uXYRvHJ6LJgN5jTlxHsTjXJyetqQoAXwubqH0//UAWg=) 4: N8YU9P6afQ3l1ax9yLIDe6D0fIk.roa (hash: EU77Dk5F7GrtkJ85p7yvIHvzXNj6aNgdhN+Tn5j+zs0=) 5: NxaezdRi3ofV0Ea6FtmKMCg4Xno.roa (hash: OxfdQ+cdMI49CYY0Q1jeMkKHuJPcs1w/NoTD4eAZ2MA=) 6: TO40FjbIwGNQNwtqPj8kwc1ZTTA.roa (hash: CxCIaev63Gqq5Rl8++kPvXMtj4T/C8ceRG4EudeHUmA=) 7: g0-0qeR0lc1LsLxknNYR3dnvEBA.roa (hash: EXsDcqkvYGuTEAGM2nI2WIcOnpMXlYj8og8Md2Id59Q=) 8: gG0DNUP64NYeP7QJN-nJ3HYb71o.roa (hash: TdYqV2WNRnqL2XDaa0pYRnVh8SMGr720PVd0f0ZigsI=) 9: jGaeQ05R3hLIsxNTb7dpc8FaO6w.roa (hash: 4TEbxdiinYCpm4mycPqOwDmBBxQQxUxqZfGO0t4kbOg=) 10: oRsHwl0lqDdQsW8I1c5igLUyNzs.roa (hash: 8g9A+Hdue1idAErOv1qWZKgEKPMgG/A4+RlDqNfgnkI=) 11: oreGjQwv74g6OpxObQTCv-MnU1M.roa (hash: d1IJwSRdqQjA5VA/VLC7+miffsmnB8Nxer6G7ClHfMc=) 12: p2_R78qfiRDhzvxPsVGCBtVmaJE.roa (hash: AfONkYdMNZkN9Er/D4pbys1uxPQQYlJm+sdpKa5QxNI=) 13: s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl (hash: RpXTAnoOoR4YsVJ1q28E4RzLwOmc5zYcFK0pRstJUZw=) 14: wjy1-qmg6rYR0UilXbPOrktmKnc.roa (hash: OCHLZL4VOIDtWxajhki14b+EkeW6juZq6cOYKpzs8QI=) 15: xMcgE5el8x0M_rTEbVyhY3X3x1c.roa (hash: PGLJrZJLBXcLan5LC1jzJXTcMWQ+drrbyWZOiA3GgNU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 07:02:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:90:c9:e0:39:fc:c1:36:a8:9c:6f:7a:45:17:6c:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Validity Not Before: Dec 20 07:02:05 2025 GMT Not After : Dec 21 07:02:05 2025 GMT Subject: CN=0128a4fb2f1c4e53be0113d12a5e3acf5c7d8742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8c:ad:21:ae:cb:4c:8f:49:bc:68:ab:c4:56: af:bf:3e:89:51:7c:ae:9f:eb:17:ab:d5:59:7b:f1: ba:5b:e3:b2:b2:3e:c3:0c:c1:a1:ed:cc:ac:c4:3c: 17:e0:10:bf:08:a1:4c:21:60:4e:27:5a:5c:86:d2: fa:0a:1e:15:00:a4:d4:14:4e:1f:18:92:4f:0f:e5: 62:a0:16:52:47:05:51:fd:7a:7a:26:b1:7d:7c:a8: 1e:c0:8f:a3:6f:29:5d:e4:5b:4a:98:e3:cd:7b:bb: 85:81:58:9d:a8:a4:3f:bd:61:4b:3c:93:1f:05:d7: 6e:39:7f:cd:77:7f:25:bd:b2:66:a3:ed:77:81:23: 3b:ad:22:b7:2b:23:ea:f0:c1:e9:cd:e9:97:19:f9: af:6d:bb:26:96:d9:87:d7:06:53:0b:2c:0d:7b:dc: 2c:7b:7a:9c:5d:a1:01:52:d9:15:99:0f:91:24:47: a5:98:98:f1:2d:b2:e1:01:a7:ad:f2:3d:f2:83:b8: b0:bb:4c:5b:d1:42:be:37:59:72:8c:ea:69:dc:5f: 74:b9:55:a4:f5:0c:b7:68:bb:7e:ee:14:b9:aa:49: 6a:36:63:3d:94:a0:60:e5:a3:f2:03:00:0e:67:18: 6b:e7:b5:ac:3f:c2:93:ea:17:b0:01:45:c4:28:79: a9:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:28:A4:FB:2F:1C:4E:53:BE:01:13:D1:2A:5E:3A:CF:5C:7D:87:42 X509v3 Authority Key Identifier: keyid:B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:4e:f7:a3:b5:85:e7:d4:d3:92:ef:c6:89:c3:c2:ae:d2:d2: 35:c5:16:4d:94:4d:2c:db:4e:87:ad:36:00:3e:14:e9:9e:fc: 23:10:7b:8e:0e:ba:13:b7:a2:51:a7:09:eb:41:c5:d7:22:d9: 7f:b2:ea:ae:0d:22:9a:2c:db:47:16:c7:8f:98:15:60:ec:23: d5:75:c5:1f:95:a8:38:1e:79:f4:ba:47:9e:98:bd:d1:ec:b7: 15:6e:33:15:ec:bf:d9:d6:3e:2f:16:a9:79:46:71:22:5e:af: 4b:7f:68:01:c2:10:33:25:93:d0:93:32:1a:28:bf:8c:51:06: cd:0b:dd:0e:21:57:b0:03:36:02:9b:82:b0:0e:e3:ad:7a:f5: 49:8e:31:b4:48:2a:18:fb:7d:c3:60:d0:fc:94:06:f6:fc:56: a5:6e:72:cb:88:88:20:15:63:73:93:66:72:7b:62:7e:c9:a9: b2:78:d9:76:3d:82:31:a7:45:07:9e:6d:40:ef:ab:e0:ff:33: 1b:65:79:ac:58:90:c6:64:bd:09:28:00:c2:d7:30:c4:fb:eb: be:56:68:b8:c4:a8:7c:41:30:50:92:a4:1d:2a:26:9e:61:83: 32:f7:bf:ff:e8:01:37:9a:96:d6:62:69:25:d1:b4:fe:4d:af: 5a:37:1b:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6kMngOfzBNqicb3pFF2xfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzYTVkOTk4NjNkYjJlNDliNDRmNmMzMjRlYjA0Mzg4ZmM3 NTE1ZDIwHhcNMjUxMjIwMDcwMjA1WhcNMjUxMjIxMDcwMjA1WjAzMTEwLwYDVQQD EygwMTI4YTRmYjJmMWM0ZTUzYmUwMTEzZDEyYTVlM2FjZjVjN2Q4NzQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1IytIa7LTI9JvGirxFavvz6JUXyu n+sXq9VZe/G6W+Oysj7DDMGh7cysxDwX4BC/CKFMIWBOJ1pchtL6Ch4VAKTUFE4f GJJPD+VioBZSRwVR/Xp6JrF9fKgewI+jbyld5FtKmOPNe7uFgVidqKQ/vWFLPJMf BdduOX/Nd38lvbJmo+13gSM7rSK3KyPq8MHpzemXGfmvbbsmltmH1wZTCywNe9ws e3qcXaEBUtkVmQ+RJEelmJjxLbLhAaet8j3yg7iwu0xb0UK+N1lyjOpp3F90uVWk 9Qy3aLt+7hS5qklqNmM9lKBg5aPyAwAOZxhr57WsP8KT6hewAUXEKHmp9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAEopPsvHE5TvgET0SpeOs9cfYdCMB8GA1UdIwQY MBaAFLOl2Zhj2y5JtE9sMk6wQ4j8dRXSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAt ZWVjNWQ1MGVmYTk0LzEvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAtZWVjNWQ1MGVmYTk0 LzEvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn073o7WF 59TTku/GicPCrtLSNcUWTZRNLNtOh602AD4U6Z78IxB7jg66E7eiUacJ60HF1yLZ f7Lqrg0imizbRxbHj5gVYOwj1XXFH5WoOB559LpHnpi90ey3FW4zFey/2dY+Lxap eUZxIl6vS39oAcIQMyWT0JMyGii/jFEGzQvdDiFXsAM2ApuCsA7jrXr1SY4xtEgq GPt9w2DQ/JQG9vxWpW5yy4iIIBVjc5NmcntifsmpsnjZdj2CMadFB55tQO+r4P8z G2V5rFiQxmS9CSgAwtcwxPvrvlZouMSofEEwUJKkHSomnmGDMve//+gBN5qW1mJp JdG0/k2vWjcbqg== -----END CERTIFICATE-----Generated at Sat Dec 20 13:57:42 2025 by rpki-client