This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft File: SFk-QNpaUvMi21oEwg-0htThVQI.mft (raw, json) Hash identifier: 2KclM8fnLnpK7WzTvQfv56VyUsSFCakUPRdd3TwBFjI= Subject key identifier: 27:3B:3E:B0:3E:F4:EE:C1:68:C2:52:99:BF:1B:33:90:4E:A3:39:1C Authority key identifier: 48:59:3E:40:DA:5A:52:F3:22:DB:5A:04:C2:0F:B4:86:D4:E1:55:02 Certificate issuer: /CN=48593e40da5a52f322db5a04c20fb486d4e15502 Certificate serial: 019B3E6C372D163D4060D340D5B5D49D6659 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft Manifest number: 1444 Signing time: Sun 21 Dec 2025 01:00:37 +0000 Manifest this update: Sun 21 Dec 2025 01:00:37 +0000 Manifest next update: Mon 22 Dec 2025 01:00:37 +0000 Files and hashes: 1: SFk-QNpaUvMi21oEwg-0htThVQI.crl (hash: BP+5Sjr0TkYmSKBC0y3clxwdS2KK5CesKQ/cFvjY2O8=) 2: Xe1gxuRIIOL95lwNFDlJJ4LeD98.roa (hash: E3ThdKoNF/zSVQO/0Rh8O4e1tJqwTsPdKIVV0WmD0l8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:6c:37:2d:16:3d:40:60:d3:40:d5:b5:d4:9d:66:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=48593e40da5a52f322db5a04c20fb486d4e15502 Validity Not Before: Dec 21 01:00:37 2025 GMT Not After : Dec 22 01:00:37 2025 GMT Subject: CN=273b3eb03ef4eec168c25299bf1b33904ea3391c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:24:d7:ef:55:75:4c:fb:80:ae:2e:62:b7:e7: 15:83:4c:25:24:fd:70:dc:c9:12:46:a3:ce:a6:5b: 5b:23:ac:b9:95:65:cc:78:cb:ca:cc:31:1b:b0:28: 43:23:1e:38:fe:12:78:d2:d5:ac:ad:d1:fa:33:5a: 53:bf:e8:0b:2e:b2:d2:0a:1e:35:d4:90:04:4e:13: 36:60:d8:f5:66:b6:6a:f8:f1:c0:73:08:73:d1:4a: 1f:6c:b1:87:c7:06:53:eb:79:3e:1f:6f:40:99:d1: 0e:16:33:e3:45:26:48:5e:48:5f:01:13:1e:42:6e: cc:f2:72:46:44:13:cd:2e:dc:e8:0c:ee:9c:a2:3d: a5:1d:1a:24:d2:17:fa:13:87:02:c1:c1:04:62:71: 04:09:38:53:64:19:78:34:88:6f:25:6a:32:9e:c3: 2b:1a:66:6f:9a:bf:e4:2e:57:97:6c:a5:8b:5e:eb: 07:85:7f:ae:d0:15:a0:c3:a2:74:a0:9e:2d:6f:4b: 35:f1:fa:19:11:01:22:c7:9e:40:31:dd:16:18:40: 1b:20:31:2e:28:d6:97:1a:4d:96:d2:ce:40:b3:a6: ee:b2:42:e6:71:27:fe:1e:b6:19:35:c8:8d:f9:d4: 57:fa:e0:ae:22:a7:ac:66:63:e4:94:56:83:aa:8a: 00:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:3B:3E:B0:3E:F4:EE:C1:68:C2:52:99:BF:1B:33:90:4E:A3:39:1C X509v3 Authority Key Identifier: keyid:48:59:3E:40:DA:5A:52:F3:22:DB:5A:04:C2:0F:B4:86:D4:E1:55:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:d1:a0:af:8d:c7:f4:59:84:2a:33:78:5d:0c:67:7d:5e:ce: 99:9d:10:6f:28:9e:be:5c:a0:74:0f:56:6a:29:68:ca:f9:77: 3e:3f:31:a6:30:df:67:05:5b:1f:ca:d4:cf:3e:ee:6a:10:57: 7a:9a:01:77:b1:1d:84:a5:c6:72:f6:65:71:f3:6b:ee:ed:4a: 84:dd:c9:a4:64:e4:14:05:13:7c:89:15:ea:6a:f3:29:b4:c2: 99:9a:de:43:19:f9:41:34:4b:3a:22:a6:f5:0f:95:c6:8d:11: 7f:1c:bd:36:be:2f:ba:b8:b4:ff:30:e2:d8:8a:d9:6d:92:78: 58:d6:9c:fa:aa:3d:1a:f5:af:14:31:21:d9:f0:a3:31:c8:bf: 6e:c7:c5:ef:92:3f:8f:fd:b4:cf:d2:c7:8a:f7:29:01:df:81: 05:00:71:40:4a:b7:f4:e1:91:90:c2:47:5b:03:d3:2e:0f:28: f9:16:7d:b7:dc:33:8e:22:ad:45:6c:0c:bc:35:72:8c:9b:b8: 1c:a7:b8:99:ab:47:48:60:99:db:10:79:7a:83:6a:f0:cd:ae: 92:98:14:de:95:0b:85:a7:44:06:8e:78:f4:8a:10:f6:46:6b: a6:87:9f:b7:0f:1b:f4:bd:fa:7b:b5:78:c1:e4:59:6a:75:66: 15:3e:9d:13 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+bDctFj1AYNNA1bXUnWZZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ4NTkzZTQwZGE1YTUyZjMyMmRiNWEwNGMyMGZiNDg2ZDRl MTU1MDIwHhcNMjUxMjIxMDEwMDM3WhcNMjUxMjIyMDEwMDM3WjAzMTEwLwYDVQQD EygyNzNiM2ViMDNlZjRlZWMxNjhjMjUyOTliZjFiMzM5MDRlYTMzOTFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAviTX71V1TPuAri5it+cVg0wlJP1w 3MkSRqPOpltbI6y5lWXMeMvKzDEbsChDIx44/hJ40tWsrdH6M1pTv+gLLrLSCh41 1JAEThM2YNj1ZrZq+PHAcwhz0UofbLGHxwZT63k+H29AmdEOFjPjRSZIXkhfARMe Qm7M8nJGRBPNLtzoDO6coj2lHRok0hf6E4cCwcEEYnEECThTZBl4NIhvJWoynsMr GmZvmr/kLleXbKWLXusHhX+u0BWgw6J0oJ4tb0s18foZEQEix55AMd0WGEAbIDEu KNaXGk2W0s5As6buskLmcSf+HrYZNciN+dRX+uCuIqesZmPklFaDqooA8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCc7PrA+9O7BaMJSmb8bM5BOozkcMB8GA1UdIwQY MBaAFEhZPkDaWlLzIttaBMIPtIbU4VUCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU0ZrLVFOcGFVdk1pMjFvRXdnLTBodFRoVlFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi85NzAwYzgtZjlhYi00MmE3LWIxZmEt ZTY4YTA4ZDllNTRmLzEvU0ZrLVFOcGFVdk1pMjFvRXdnLTBodFRoVlFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi85NzAwYzgtZjlhYi00MmE3LWIxZmEtZTY4YTA4ZDllNTRm LzEvU0ZrLVFOcGFVdk1pMjFvRXdnLTBodFRoVlFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArtGgr43H 9FmEKjN4XQxnfV7OmZ0QbyievlygdA9Wailoyvl3Pj8xpjDfZwVbH8rUzz7uahBX epoBd7EdhKXGcvZlcfNr7u1KhN3JpGTkFAUTfIkV6mrzKbTCmZreQxn5QTRLOiKm 9Q+Vxo0Rfxy9Nr4vuri0/zDi2IrZbZJ4WNac+qo9GvWvFDEh2fCjMci/bsfF75I/ j/20z9LHivcpAd+BBQBxQEq39OGRkMJHWwPTLg8o+RZ9t9wzjiKtRWwMvDVyjJu4 HKe4matHSGCZ2xB5eoNq8M2ukpgU3pULhadEBo549IoQ9kZrpoeftw8b9L36e7V4 weRZanVmFT6dEw== -----END CERTIFICATE-----Generated at Sun Dec 21 04:04:06 2025 by rpki-client