This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft File: sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft (raw, json) Hash identifier: HQdo3s3WopAZQWAURqj+kBrSLiM/c/WNehu2ZvP3kWE= Subject key identifier: 28:0B:8B:E5:D3:C0:E3:5B:7C:F2:F3:AD:41:B1:F1:62:0A:52:50:6C Authority key identifier: B1:11:57:C9:8F:26:27:9F:C3:EE:D2:DA:B3:CF:11:83:72:BD:BE:1B Certificate issuer: /CN=b11157c98f26279fc3eed2dab3cf118372bdbe1b Certificate serial: 019B3B34CAE06B169F7DC797E11FF732A63F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft Manifest number: 0481 Signing time: Sat 20 Dec 2025 10:01:14 +0000 Manifest this update: Sat 20 Dec 2025 10:01:14 +0000 Manifest next update: Sun 21 Dec 2025 10:01:14 +0000 Files and hashes: 1: TCbT2lKvimmPca_tcJyE61X19LM.roa (hash: qkxwRBCeRtuFBBppHywPPyPUPj2kdHg3WbKwG9y9ays=) 2: cutf0Yk4GqOLANVUSKcxrSdUxug.roa (hash: Q8Q4U3gD48zecWRmDv6Pw0MZwpRvb60BHrR0/Xs/Hmo=) 3: sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl (hash: KcY0NWgojisq5zqPiaoY6D95dp+j+XLrOc4VidYRuII=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:34:ca:e0:6b:16:9f:7d:c7:97:e1:1f:f7:32:a6:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b11157c98f26279fc3eed2dab3cf118372bdbe1b Validity Not Before: Dec 20 10:01:14 2025 GMT Not After : Dec 21 10:01:14 2025 GMT Subject: CN=280b8be5d3c0e35b7cf2f3ad41b1f1620a52506c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1c:d6:c1:08:07:8f:24:6f:64:a1:f9:88:77: df:2b:b4:4f:bb:73:01:c4:91:46:fb:4e:66:32:49: 7d:1c:e9:64:1a:91:e3:17:e6:cc:ae:5c:e4:f3:35: 91:a0:93:b0:dc:b2:0e:b1:50:cf:83:82:82:52:3e: e3:2f:55:b8:02:29:98:99:08:ab:1a:d3:43:ce:f0: d6:0d:18:4f:08:60:5f:f0:6d:89:60:64:3c:5e:f7: 85:8d:a1:b5:f7:63:b1:ec:24:ca:e2:cf:f2:ac:38: ee:92:ef:85:98:f3:bb:cb:04:6b:32:7e:85:2f:97: 6a:6b:76:d5:c3:d1:ac:33:77:fb:bb:ca:d9:5a:48: 56:35:f1:71:65:39:64:ed:8a:61:b8:37:40:87:a1: b6:53:98:33:63:38:11:4a:5c:4c:d4:88:25:bf:1c: 58:bb:9a:4d:65:45:b3:d8:46:c6:37:9c:d3:dc:0e: b9:85:ef:1f:74:b2:d3:42:85:63:2e:a1:8b:b7:10: 65:12:9e:6e:e7:17:c3:94:35:94:2f:f1:2a:75:ff: 2a:69:07:bc:30:42:d6:4e:1d:1f:06:e2:2c:74:95: 1c:9f:4c:4c:10:34:62:90:81:61:64:cc:40:4e:39: 21:1b:71:0a:87:7f:ed:ca:7a:7c:03:89:9d:bc:5d: 77:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:0B:8B:E5:D3:C0:E3:5B:7C:F2:F3:AD:41:B1:F1:62:0A:52:50:6C X509v3 Authority Key Identifier: keyid:B1:11:57:C9:8F:26:27:9F:C3:EE:D2:DA:B3:CF:11:83:72:BD:BE:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:3d:b2:2d:e4:20:78:7b:43:4c:a8:0c:d3:20:99:5b:9f:8c: c1:64:94:a0:b3:88:a3:90:da:12:48:da:7e:f2:c2:38:99:bd: 2d:06:f2:8e:26:21:21:aa:58:5d:27:2f:a2:e5:22:cf:a1:3c: 3a:bd:fb:ea:2f:03:e1:18:ac:08:9c:d2:15:a5:ef:64:dc:c0: f0:3b:7d:22:e5:bc:52:b1:9d:1e:bd:69:cd:2f:d7:6b:d7:d4: a4:b9:21:fb:56:fb:af:20:e0:da:f0:11:ac:ea:1e:ef:88:23: a8:07:86:e5:cb:90:83:b5:e0:89:bb:e8:4a:9b:96:30:18:58: d5:37:1a:65:21:b3:80:03:3e:de:29:e2:cc:57:a2:bb:11:d1: f5:49:cf:ea:5a:63:66:25:12:2e:70:ac:e8:c4:1b:81:3f:b2: d8:1e:6e:97:08:47:55:9a:db:e2:b3:87:0d:ed:bd:81:16:fb: 08:7d:20:56:fd:13:08:6e:ed:fc:9d:77:a1:87:f9:44:30:26: 6a:28:92:1e:79:10:03:dc:7f:61:65:48:90:21:3a:1a:33:79: d7:71:50:6f:c8:53:ed:b8:e7:b3:7d:18:d1:d2:07:84:db:b3: 1c:ec:dd:fd:0d:10:12:cc:34:71:39:88:24:80:96:c9:88:1c: e9:70:32:5b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs7NMrgaxaffceX4R/3MqY/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxMTE1N2M5OGYyNjI3OWZjM2VlZDJkYWIzY2YxMTgzNzJi ZGJlMWIwHhcNMjUxMjIwMTAwMTE0WhcNMjUxMjIxMTAwMTE0WjAzMTEwLwYDVQQD EygyODBiOGJlNWQzYzBlMzViN2NmMmYzYWQ0MWIxZjE2MjBhNTI1MDZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvxzWwQgHjyRvZKH5iHffK7RPu3MB xJFG+05mMkl9HOlkGpHjF+bMrlzk8zWRoJOw3LIOsVDPg4KCUj7jL1W4AimYmQir GtNDzvDWDRhPCGBf8G2JYGQ8XveFjaG192Ox7CTK4s/yrDjuku+FmPO7ywRrMn6F L5dqa3bVw9GsM3f7u8rZWkhWNfFxZTlk7YphuDdAh6G2U5gzYzgRSlxM1IglvxxY u5pNZUWz2EbGN5zT3A65he8fdLLTQoVjLqGLtxBlEp5u5xfDlDWUL/Eqdf8qaQe8 MELWTh0fBuIsdJUcn0xMEDRikIFhZMxATjkhG3EKh3/tynp8A4mdvF132QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCgLi+XTwONbfPLzrUGx8WIKUlBsMB8GA1UdIwQY MBaAFLERV8mPJiefw+7S2rPPEYNyvb4bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1JGWHlZOG1KNV9EN3RMYXM4OFJnM0s5dmhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy81MjFhNzQtZWJjOS00MjY3LWIwNDYt ZTBhY2FjYzEwZWY1LzEvc1JGWHlZOG1KNV9EN3RMYXM4OFJnM0s5dmhzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy81MjFhNzQtZWJjOS00MjY3LWIwNDYtZTBhY2FjYzEwZWY1 LzEvc1JGWHlZOG1KNV9EN3RMYXM4OFJnM0s5dmhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQj2yLeQg eHtDTKgM0yCZW5+MwWSUoLOIo5DaEkjafvLCOJm9LQbyjiYhIapYXScvouUiz6E8 Or376i8D4RisCJzSFaXvZNzA8Dt9IuW8UrGdHr1pzS/Xa9fUpLkh+1b7ryDg2vAR rOoe74gjqAeG5cuQg7XgibvoSpuWMBhY1TcaZSGzgAM+3inizFeiuxHR9UnP6lpj ZiUSLnCs6MQbgT+y2B5ulwhHVZrb4rOHDe29gRb7CH0gVv0TCG7t/J13oYf5RDAm aiiSHnkQA9x/YWVIkCE6GjN513FQb8hT7bjns30Y0dIHhNuzHOzd/Q0QEsw0cTmI JICWyYgc6XAyWw== -----END CERTIFICATE-----Generated at Sat Dec 20 18:27:08 2025 by rpki-client