This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.mft File: SM83s2Rv2pPL3QuKrM__MTpvcY8.mft (raw, json) Hash identifier: yhdAukYT9LhLJXXr7BVghhpK5yzPmm3vzrz0kPrWY2k= Subject key identifier: 41:78:6D:E2:29:76:17:A2:3F:9F:2E:98:B0:C6:72:38:2B:1D:65:78 Authority key identifier: 48:CF:37:B3:64:6F:DA:93:CB:DD:0B:8A:AC:CF:FF:31:3A:6F:71:8F Certificate issuer: /CN=48cf37b3646fda93cbdd0b8aaccfff313a6f718f Certificate serial: 019B3DC75B4348446402DAE8A772A17AB412 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SM83s2Rv2pPL3QuKrM__MTpvcY8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.mft Manifest number: 1721 Signing time: Sat 20 Dec 2025 22:00:33 +0000 Manifest this update: Sat 20 Dec 2025 22:00:33 +0000 Manifest next update: Sun 21 Dec 2025 22:00:33 +0000 Files and hashes: 1: Os6xDD1H4LsrEU2Pwmq0YT-o8IM.roa (hash: 9WTAK5WFdauUxfw4Aw74xq8JjOOgRjy/Qe/px+Cijao=) 2: SM83s2Rv2pPL3QuKrM__MTpvcY8.crl (hash: 9KCGqylPn6nasAqjZc5jx59ll73hJCqa/tAt0SVuXbI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.mft rsync://rpki.ripe.net/repository/DEFAULT/SM83s2Rv2pPL3QuKrM__MTpvcY8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 22:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:c7:5b:43:48:44:64:02:da:e8:a7:72:a1:7a:b4:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=48cf37b3646fda93cbdd0b8aaccfff313a6f718f Validity Not Before: Dec 20 22:00:33 2025 GMT Not After : Dec 21 22:00:33 2025 GMT Subject: CN=41786de2297617a23f9f2e98b0c672382b1d6578 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f7:d9:cc:c3:2f:bc:cb:31:ff:39:18:ad:f1: d7:b1:48:71:3d:21:15:84:bc:a7:50:33:70:84:c0: 88:02:f2:a7:b8:10:13:4f:2c:b0:3b:36:e9:87:53: 15:51:57:49:8c:65:50:37:08:54:d7:6f:62:e3:de: bb:6d:30:a1:ea:c0:7b:cb:3b:d1:7f:21:10:9c:da: 4a:f3:6a:59:66:0d:9f:a6:d2:64:03:1f:a5:fd:9a: e0:75:e9:e2:40:3e:d8:7e:6c:52:38:70:f6:61:34: 37:59:22:35:a6:fd:2f:c2:f3:d0:b4:83:96:72:00: b0:8d:18:3b:23:6e:16:18:f0:98:71:54:19:8e:63: 9f:19:7f:2e:b8:03:bc:78:d3:58:13:16:bc:87:57: d5:8a:55:df:f6:36:38:db:67:3d:e1:82:a4:6f:77: df:83:e2:a6:6e:e5:2b:86:35:dd:e1:a8:ac:c1:7f: af:a7:4a:9e:64:e8:6b:c9:19:91:a9:86:c6:78:82: 36:05:c6:04:bf:0e:2e:1a:0b:5e:b1:aa:5c:6a:5c: 75:37:03:22:68:cf:bb:95:98:41:a8:81:79:19:95: 11:08:e8:65:20:77:d3:d1:4b:ae:d0:83:33:9c:21: 06:ca:87:40:e9:83:2d:68:b5:35:89:4e:29:88:17: 51:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:78:6D:E2:29:76:17:A2:3F:9F:2E:98:B0:C6:72:38:2B:1D:65:78 X509v3 Authority Key Identifier: keyid:48:CF:37:B3:64:6F:DA:93:CB:DD:0B:8A:AC:CF:FF:31:3A:6F:71:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SM83s2Rv2pPL3QuKrM__MTpvcY8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/20d593-723f-4963-901d-17e3158954da/1/SM83s2Rv2pPL3QuKrM__MTpvcY8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:45:54:ab:42:f9:09:51:78:11:d4:4f:ff:a1:ca:b8:c0:8d: 7e:d3:33:bf:65:6d:13:02:9b:d6:fa:37:4c:a0:28:92:46:3a: 38:57:af:68:b3:f7:20:23:31:3e:0e:ee:b3:6b:3e:9d:4d:b9: 2e:09:13:e9:94:b0:48:fe:cb:d8:d1:f4:76:13:3d:b3:67:9d: 1f:ce:d9:5a:b5:77:ac:bf:4b:a8:21:4a:4c:f1:6c:2a:18:e4: 13:9a:89:af:73:b7:c0:1b:ab:ba:79:91:4b:7c:ab:ae:e1:10: d6:67:02:e7:e1:56:c9:96:b5:09:d0:e5:12:59:43:81:26:06: 07:5e:88:73:61:50:02:f5:66:ef:71:e7:be:76:24:fc:b1:d7: 95:d6:2f:90:40:84:68:92:55:22:29:6c:22:29:63:06:c8:d9: 49:d4:13:73:9f:5d:3c:c9:a3:33:60:ce:b6:8a:a3:dc:69:32: 15:dd:1d:2d:7e:be:e2:a3:a4:d4:40:c8:47:02:26:65:c5:8a: 05:6b:53:97:e3:51:93:ce:26:7d:70:27:1d:0a:05:e9:8b:d3: 6e:50:22:68:90:98:4c:f2:36:fe:d7:49:76:e1:6e:a6:40:0b: 1a:9a:4d:7d:4c:26:fe:1b:89:fd:a6:64:49:19:50:40:86:77: 4e:c9:c3:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9x1tDSERkAtrop3KherQSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ4Y2YzN2IzNjQ2ZmRhOTNjYmRkMGI4YWFjY2ZmZjMxM2E2 ZjcxOGYwHhcNMjUxMjIwMjIwMDMzWhcNMjUxMjIxMjIwMDMzWjAzMTEwLwYDVQQD Eyg0MTc4NmRlMjI5NzYxN2EyM2Y5ZjJlOThiMGM2NzIzODJiMWQ2NTc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxffZzMMvvMsx/zkYrfHXsUhxPSEV hLynUDNwhMCIAvKnuBATTyywOzbph1MVUVdJjGVQNwhU129i4967bTCh6sB7yzvR fyEQnNpK82pZZg2fptJkAx+l/ZrgdeniQD7YfmxSOHD2YTQ3WSI1pv0vwvPQtIOW cgCwjRg7I24WGPCYcVQZjmOfGX8uuAO8eNNYExa8h1fVilXf9jY422c94YKkb3ff g+KmbuUrhjXd4aiswX+vp0qeZOhryRmRqYbGeII2BcYEvw4uGgtesapcalx1NwMi aM+7lZhBqIF5GZURCOhlIHfT0Uuu0IMznCEGyodA6YMtaLU1iU4piBdRVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEF4beIpdheiP58umLDGcjgrHWV4MB8GA1UdIwQY MBaAFEjPN7Nkb9qTy90LiqzP/zE6b3GPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU004M3MyUnYycFBMM1F1S3JNX19NVHB2Y1k4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8yMGQ1OTMtNzIzZi00OTYzLTkwMWQt MTdlMzE1ODk1NGRhLzEvU004M3MyUnYycFBMM1F1S3JNX19NVHB2Y1k4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS8yMGQ1OTMtNzIzZi00OTYzLTkwMWQtMTdlMzE1ODk1NGRh LzEvU004M3MyUnYycFBMM1F1S3JNX19NVHB2Y1k4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMkVUq0L5 CVF4EdRP/6HKuMCNftMzv2VtEwKb1vo3TKAokkY6OFevaLP3ICMxPg7us2s+nU25 LgkT6ZSwSP7L2NH0dhM9s2edH87ZWrV3rL9LqCFKTPFsKhjkE5qJr3O3wBurunmR S3yrruEQ1mcC5+FWyZa1CdDlEllDgSYGB16Ic2FQAvVm73HnvnYk/LHXldYvkECE aJJVIilsIiljBsjZSdQTc59dPMmjM2DOtoqj3GkyFd0dLX6+4qOk1EDIRwImZcWK BWtTl+NRk84mfXAnHQoF6YvTblAiaJCYTPI2/tdJduFupkALGppNfUwm/huJ/aZk SRlQQIZ3TsnDBw== -----END CERTIFICATE-----Generated at Sun Dec 21 06:44:28 2025 by rpki-client