This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.mft File: su7525PeEaAlPVqoxT7Mrg-cPTM.mft (raw, json) Hash identifier: VWS1oUUuHF8P77Yr+r5eNELa6IMuwvidVRIQPHyMMTc= Subject key identifier: 61:DC:B6:A3:4A:9E:4A:4F:92:31:6D:E7:6E:79:E2:5C:C8:BF:92:8E Authority key identifier: B2:EE:F9:DB:93:DE:11:A0:25:3D:5A:A8:C5:3E:CC:AE:0F:9C:3D:33 Certificate issuer: /CN=b2eef9db93de11a0253d5aa8c53eccae0f9c3d33 Certificate serial: 019B5B9B2152A35D9C1AF2FA2C9F00522ACF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/su7525PeEaAlPVqoxT7Mrg-cPTM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.mft Manifest number: 0B0A Signing time: Fri 26 Dec 2025 17:00:51 +0000 Manifest this update: Fri 26 Dec 2025 17:00:51 +0000 Manifest next update: Sat 27 Dec 2025 17:00:51 +0000 Files and hashes: 1: HmEXSyMzNsE6ZXWyBUFqSz_-J_I.roa (hash: QHoycNdEbZMja0gAvjEgeC3E4wx2OI9vc9S4Y873m1w=) 2: su7525PeEaAlPVqoxT7Mrg-cPTM.crl (hash: HHYuSIDsPdCJlUlA9+yiTCAyhsiAotQiTYNF7RFZVnQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.mft rsync://rpki.ripe.net/repository/DEFAULT/su7525PeEaAlPVqoxT7Mrg-cPTM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 17:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5b:9b:21:52:a3:5d:9c:1a:f2:fa:2c:9f:00:52:2a:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2eef9db93de11a0253d5aa8c53eccae0f9c3d33 Validity Not Before: Dec 26 17:00:51 2025 GMT Not After : Dec 27 17:00:51 2025 GMT Subject: CN=61dcb6a34a9e4a4f92316de76e79e25cc8bf928e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:0a:a6:cb:22:ea:13:31:13:19:1e:cc:a3:12: d0:e7:28:7b:82:ba:e2:3e:be:5e:d7:32:59:5c:42: 42:0d:3e:2a:3f:e2:c4:ff:bb:c5:50:79:8c:d4:84: f0:bd:bb:6f:15:be:94:5c:9c:51:35:26:02:33:6d: c0:89:04:11:95:c8:9d:f0:b4:c2:85:f7:76:46:25: 6e:f9:17:1b:cb:0e:d0:c4:14:60:fc:6c:38:95:8f: 42:89:0d:a4:ab:bb:f4:2d:ed:4b:90:aa:9e:02:75: bc:7c:cf:85:8f:dd:81:bc:be:97:c5:a3:c1:6f:c2: 1a:dd:e2:7d:e2:10:45:5e:70:f1:ef:69:85:96:d3: 2a:28:c3:00:80:4e:56:2d:c8:6f:97:be:99:60:92: 8b:cc:97:1a:f4:f7:0c:b3:70:af:01:02:29:36:0c: 40:4d:99:e7:d2:2a:c8:6d:f9:51:d7:3b:e1:81:ac: 73:c5:6f:9d:88:27:1f:41:8a:cd:51:52:21:ed:71: ce:22:a0:4b:4c:33:0b:0f:20:c6:70:70:f5:a7:3f: b2:e6:8f:45:3b:96:1b:e0:a3:7e:e4:13:b5:09:a5: 5d:ba:81:c1:50:80:ae:07:40:03:de:da:db:14:a8: 5e:aa:09:0a:13:4a:b3:b9:98:0a:bf:34:86:96:f7: 9f:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:DC:B6:A3:4A:9E:4A:4F:92:31:6D:E7:6E:79:E2:5C:C8:BF:92:8E X509v3 Authority Key Identifier: keyid:B2:EE:F9:DB:93:DE:11:A0:25:3D:5A:A8:C5:3E:CC:AE:0F:9C:3D:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/su7525PeEaAlPVqoxT7Mrg-cPTM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:3d:90:fb:19:a1:f3:1d:e5:22:00:39:63:ea:3e:f1:20:fa: ac:13:b2:20:53:fa:c8:04:31:db:c4:c1:87:67:25:01:bb:ec: 18:e2:84:13:64:4b:bf:37:c7:9b:96:d9:67:64:87:21:c3:6c: 59:3b:6c:1f:5d:fa:10:00:54:a5:63:89:11:20:59:5b:fc:1e: e3:c1:69:7c:2b:52:42:df:d2:ed:92:87:5a:8f:e8:ca:a2:a1: 8e:ef:25:bd:6f:d2:f1:77:87:c5:6b:3c:91:d8:59:f6:00:59: e4:22:3c:de:a8:b0:89:9d:2f:8c:93:c3:7d:58:60:3e:c4:0d: 81:7f:3f:7e:1c:b6:73:dc:26:aa:b4:d9:5a:9b:cd:cc:15:f3: 14:6d:06:6b:cc:c1:89:27:9e:35:82:35:4d:bb:1e:01:62:de: b9:cd:eb:1d:ed:11:c5:76:df:d4:7e:c6:bb:39:65:0c:c9:e0: 5d:ea:1b:7f:9c:ac:ae:54:06:12:6c:aa:06:56:c6:3f:65:0a: a8:f0:fd:c8:52:00:2c:70:8f:45:6d:d5:a7:ce:77:34:e3:f4: 2e:2a:73:e4:3b:86:f1:c5:7a:39:aa:12:7c:18:c7:e0:f6:f0: 5d:06:19:90:c8:89:3c:bb:ae:f6:f8:ce:51:ae:57:11:af:9c: e0:08:07:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtbmyFSo12cGvL6LJ8AUirPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyZWVmOWRiOTNkZTExYTAyNTNkNWFhOGM1M2VjY2FlMGY5 YzNkMzMwHhcNMjUxMjI2MTcwMDUxWhcNMjUxMjI3MTcwMDUxWjAzMTEwLwYDVQQD Eyg2MWRjYjZhMzRhOWU0YTRmOTIzMTZkZTc2ZTc5ZTI1Y2M4YmY5MjhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+gqmyyLqEzETGR7MoxLQ5yh7grri Pr5e1zJZXEJCDT4qP+LE/7vFUHmM1ITwvbtvFb6UXJxRNSYCM23AiQQRlcid8LTC hfd2RiVu+Rcbyw7QxBRg/Gw4lY9CiQ2kq7v0Le1LkKqeAnW8fM+Fj92BvL6XxaPB b8Ia3eJ94hBFXnDx72mFltMqKMMAgE5WLchvl76ZYJKLzJca9PcMs3CvAQIpNgxA TZnn0irIbflR1zvhgaxzxW+diCcfQYrNUVIh7XHOIqBLTDMLDyDGcHD1pz+y5o9F O5Yb4KN+5BO1CaVduoHBUICuB0AD3trbFKheqgkKE0qzuZgKvzSGlvefqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGHctqNKnkpPkjFt52554lzIv5KOMB8GA1UdIwQY MBaAFLLu+duT3hGgJT1aqMU+zK4PnD0zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3U3NTI1UGVFYUFsUFZxb3hUN01yZy1jUFRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy83M2U5MGQtMDU1My00ZmU2LTk2ZGUt ZGVlZjhkMTU0OTUwLzEvc3U3NTI1UGVFYUFsUFZxb3hUN01yZy1jUFRNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy83M2U5MGQtMDU1My00ZmU2LTk2ZGUtZGVlZjhkMTU0OTUw LzEvc3U3NTI1UGVFYUFsUFZxb3hUN01yZy1jUFRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANT2Q+xmh 8x3lIgA5Y+o+8SD6rBOyIFP6yAQx28TBh2clAbvsGOKEE2RLvzfHm5bZZ2SHIcNs WTtsH136EABUpWOJESBZW/we48FpfCtSQt/S7ZKHWo/oyqKhju8lvW/S8XeHxWs8 kdhZ9gBZ5CI83qiwiZ0vjJPDfVhgPsQNgX8/fhy2c9wmqrTZWpvNzBXzFG0Ga8zB iSeeNYI1TbseAWLeuc3rHe0RxXbf1H7GuzllDMngXeobf5ysrlQGEmyqBlbGP2UK qPD9yFIALHCPRW3Vp853NOP0Lipz5DuG8cV6OaoSfBjH4PbwXQYZkMiJPLuu9vjO Ua5XEa+c4AgHpg== -----END CERTIFICATE-----Generated at Sat Dec 27 02:34:31 2025 by rpki-client