This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft File: StzxlnKWX1GxbYevqxsUkILmw-4.mft (raw, json) Hash identifier: tJ9nmWVUgLEq3vJEQGd19FyukUHw0scnQds0IfKE9ZA= Subject key identifier: D9:6F:19:C6:C8:2E:FE:AA:D8:C8:D7:18:E8:DB:1C:A5:3C:E2:B5:4C Authority key identifier: 4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE Certificate issuer: /CN=4adcf19672965f51b16d87afab1b149082e6c3ee Certificate serial: 019B5C4030781AA2CAB122D4AD92501A9456 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft Manifest number: 1799 Signing time: Fri 26 Dec 2025 20:01:09 +0000 Manifest this update: Fri 26 Dec 2025 20:01:09 +0000 Manifest next update: Sat 27 Dec 2025 20:01:09 +0000 Files and hashes: 1: StzxlnKWX1GxbYevqxsUkILmw-4.crl (hash: +4w3nmNatLOLnG+GuwFGmJaOINRnFkEsbJEkFbvF6V8=) 2: rGUQbl63n9K0Wn_57q9XL0tQAuA.roa (hash: vyvu3YaIjRy8oAh1PUr3JRdMW+KlCqlVTwrvF8kfQF4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5c:40:30:78:1a:a2:ca:b1:22:d4:ad:92:50:1a:94:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4adcf19672965f51b16d87afab1b149082e6c3ee Validity Not Before: Dec 26 20:01:09 2025 GMT Not After : Dec 27 20:01:09 2025 GMT Subject: CN=d96f19c6c82efeaad8c8d718e8db1ca53ce2b54c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:14:c3:b4:9e:64:83:c0:58:0a:4d:35:9d:59: f9:53:82:4d:3d:3b:6f:22:1b:f4:db:63:4a:e7:c3: 58:d0:4c:fb:3d:8d:26:4e:da:de:50:a7:fe:6e:17: 7f:e0:f2:f2:bc:5b:f6:dc:ec:82:96:47:f2:03:f7: a7:c2:eb:22:31:8c:a2:de:5c:72:2a:af:a1:5f:1a: ec:1f:00:ce:17:69:b7:f8:9c:de:38:b4:92:87:f4: 40:bf:2b:bf:ef:e6:0d:05:04:93:42:9f:2f:4a:91: 85:3e:04:bd:f0:bd:56:c9:67:9a:f4:23:be:47:0c: 28:58:be:fa:79:ec:62:d4:94:fa:8a:30:51:0d:14: e7:af:48:09:73:02:eb:ad:37:41:cd:bd:0c:3e:12: d7:62:23:8f:b9:4b:dc:ec:57:13:30:16:89:9b:ba: 93:85:a4:6e:cd:a7:0e:95:48:43:42:d2:8c:a9:de: 8f:eb:40:e6:ec:76:a7:fa:38:a9:0e:8a:73:6b:4f: b7:a9:93:cd:ea:dc:ad:70:07:af:19:d7:60:50:bc: 28:3d:f5:5f:b9:df:a2:f9:67:5c:db:48:42:54:ff: 91:97:ff:d4:71:72:40:fe:ee:71:07:c8:ae:39:27: c5:1d:c6:fc:91:1a:70:4c:1a:cb:91:39:8e:c6:10: 15:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:6F:19:C6:C8:2E:FE:AA:D8:C8:D7:18:E8:DB:1C:A5:3C:E2:B5:4C X509v3 Authority Key Identifier: keyid:4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:7e:13:5e:a9:5b:2d:33:3c:60:71:68:95:20:ed:da:2a:a5: bb:99:8e:9b:03:af:53:70:71:5a:c0:01:fa:8a:60:8f:a5:ec: a0:f3:07:ce:5b:dc:a4:8d:84:b0:14:7f:92:72:cd:35:5c:6c: f1:61:0a:28:5a:6b:04:91:d9:5c:f8:8c:4c:d3:03:e2:52:fb: 02:dd:11:ad:d3:6b:4d:d0:28:06:b5:e4:86:dd:f2:4b:94:1e: 9c:ad:37:cb:48:87:e4:83:bf:77:c2:58:08:70:a3:59:cb:d3: ee:03:7e:31:b0:38:c5:af:7f:db:15:cc:1b:d1:cd:86:68:2d: cb:6f:5f:4a:03:af:85:9c:4c:c2:80:f5:df:70:ad:58:bb:d6: 86:ef:61:95:5d:44:7b:14:72:61:1e:36:bc:d3:36:3c:df:ec: e0:63:db:6c:31:1f:0a:94:a2:f2:26:a1:67:6a:46:52:85:9e: cf:9f:2c:ad:84:c6:2b:69:4b:37:73:16:fc:bc:b6:5d:67:c0: ab:59:d8:5b:5f:a7:59:38:09:c0:c2:a7:27:99:73:b4:41:d9: e6:74:b8:7f:55:94:15:8c:5c:46:df:8f:f1:f7:7e:be:0a:c5: 98:99:de:cf:d7:5d:d6:75:3f:82:78:70:b9:ba:50:9c:7a:de: d2:2c:82:94 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtcQDB4GqLKsSLUrZJQGpRWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhZGNmMTk2NzI5NjVmNTFiMTZkODdhZmFiMWIxNDkwODJl NmMzZWUwHhcNMjUxMjI2MjAwMTA5WhcNMjUxMjI3MjAwMTA5WjAzMTEwLwYDVQQD EyhkOTZmMTljNmM4MmVmZWFhZDhjOGQ3MThlOGRiMWNhNTNjZTJiNTRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvhTDtJ5kg8BYCk01nVn5U4JNPTtv Ihv022NK58NY0Ez7PY0mTtreUKf+bhd/4PLyvFv23OyClkfyA/enwusiMYyi3lxy Kq+hXxrsHwDOF2m3+JzeOLSSh/RAvyu/7+YNBQSTQp8vSpGFPgS98L1WyWea9CO+ RwwoWL76eexi1JT6ijBRDRTnr0gJcwLrrTdBzb0MPhLXYiOPuUvc7FcTMBaJm7qT haRuzacOlUhDQtKMqd6P60Dm7Han+jipDopza0+3qZPN6tytcAevGddgULwoPfVf ud+i+Wdc20hCVP+Rl//UcXJA/u5xB8iuOSfFHcb8kRpwTBrLkTmOxhAVNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNlvGcbILv6q2MjXGOjbHKU84rVMMB8GA1UdIwQY MBaAFErc8ZZyll9RsW2Hr6sbFJCC5sPuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU3R6eGxuS1dYMUd4YllldnF4c1VrSUxtdy00LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi8yZDJlYjYtMDVkNS00N2EwLThmZWQt ZWJmMzJhMDQ2OWM3LzEvU3R6eGxuS1dYMUd4YllldnF4c1VrSUxtdy00Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi8yZDJlYjYtMDVkNS00N2EwLThmZWQtZWJmMzJhMDQ2OWM3 LzEvU3R6eGxuS1dYMUd4YllldnF4c1VrSUxtdy00LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG34TXqlb LTM8YHFolSDt2iqlu5mOmwOvU3BxWsAB+opgj6XsoPMHzlvcpI2EsBR/knLNNVxs 8WEKKFprBJHZXPiMTNMD4lL7At0RrdNrTdAoBrXkht3yS5QenK03y0iH5IO/d8JY CHCjWcvT7gN+MbA4xa9/2xXMG9HNhmgty29fSgOvhZxMwoD133CtWLvWhu9hlV1E exRyYR42vNM2PN/s4GPbbDEfCpSi8iahZ2pGUoWez58srYTGK2lLN3MW/Ly2XWfA q1nYW1+nWTgJwMKnJ5lztEHZ5nS4f1WUFYxcRt+P8fd+vgrFmJnez9dd1nU/gnhw ubpQnHre0iyClA== -----END CERTIFICATE-----Generated at Sat Dec 27 05:40:07 2025 by rpki-client