This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.mft File: sffQCUrcmNmwMnIOgePbWqdYHHQ.mft (raw, json) Hash identifier: 0nBC65MUpZYeEuGTKqDBaCKzaPB2NgxakHoaT4LBhpY= Subject key identifier: BC:15:60:31:38:4A:69:A0:50:9D:FC:BA:3E:D6:E8:5A:EA:08:D8:B1 Authority key identifier: B1:F7:D0:09:4A:DC:98:D9:B0:32:72:0E:81:E3:DB:5A:A7:58:1C:74 Certificate issuer: /CN=b1f7d0094adc98d9b032720e81e3db5aa7581c74 Certificate serial: 019B66558C4CB86EB8FCEE052B265BB699C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sffQCUrcmNmwMnIOgePbWqdYHHQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.mft Manifest number: 0D25 Signing time: Sun 28 Dec 2025 19:00:41 +0000 Manifest this update: Sun 28 Dec 2025 19:00:41 +0000 Manifest next update: Mon 29 Dec 2025 19:00:41 +0000 Files and hashes: 1: sffQCUrcmNmwMnIOgePbWqdYHHQ.crl (hash: f7Fe37gQLlcpN8PtdhqvDQoiyesVRIcAcQIvUzLuAic=) 2: tkngR5wwQ6qh3iGid8LqkeZO0Sg.roa (hash: XAoboSbFoG6N+OZ4mfDqaXa/N9sFsWbZUGbRzqL5oH0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.mft rsync://rpki.ripe.net/repository/DEFAULT/sffQCUrcmNmwMnIOgePbWqdYHHQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 19:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:66:55:8c:4c:b8:6e:b8:fc:ee:05:2b:26:5b:b6:99:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1f7d0094adc98d9b032720e81e3db5aa7581c74 Validity Not Before: Dec 28 19:00:41 2025 GMT Not After : Dec 29 19:00:41 2025 GMT Subject: CN=bc156031384a69a0509dfcba3ed6e85aea08d8b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:cc:dd:72:19:a5:8b:de:95:0f:e2:60:7d:8f: 48:c0:b8:9d:1f:b0:08:7a:e6:7d:4b:68:52:b0:5b: 75:12:57:e1:f1:fc:30:39:16:1d:8b:93:f4:30:4e: e2:b2:21:ba:0a:23:f4:86:36:3a:64:fd:24:5e:67: a3:f3:84:59:be:3c:c0:61:91:2b:0d:6e:45:a7:c9: 56:c0:17:13:24:f6:54:41:23:ec:ae:a4:45:da:7a: 67:1e:bb:88:b8:97:7d:36:df:21:de:11:04:df:2a: 1d:ab:d5:7f:e4:d9:d7:f4:8c:38:fb:28:ef:9a:05: cb:62:12:3a:7c:cf:3b:d3:ba:9a:9d:1f:ca:84:ad: 81:3f:82:6a:48:1b:fc:f6:0f:5a:0e:15:73:30:93: 43:f9:26:94:41:58:13:82:71:64:02:17:75:48:9a: 3c:f7:25:39:c3:3b:ae:51:fd:f4:dc:4c:5c:64:db: e1:98:6f:72:e0:d2:38:0c:40:96:81:69:58:ca:8d: 80:f9:7d:f8:a3:d5:f3:b2:ae:68:28:8c:0d:0f:ca: c0:95:3c:0e:39:26:56:30:89:2f:f1:05:11:6a:a7: e9:1e:66:08:db:f5:41:70:00:f4:f4:52:2a:34:1f: 34:df:38:df:c1:87:0e:8d:e8:9e:49:af:2d:16:68: c4:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:15:60:31:38:4A:69:A0:50:9D:FC:BA:3E:D6:E8:5A:EA:08:D8:B1 X509v3 Authority Key Identifier: keyid:B1:F7:D0:09:4A:DC:98:D9:B0:32:72:0E:81:E3:DB:5A:A7:58:1C:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sffQCUrcmNmwMnIOgePbWqdYHHQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:81:31:b8:7b:9e:e6:e8:c1:ba:8d:9e:41:33:0f:25:2a:94: 26:6d:34:a2:03:b1:27:28:4c:1a:85:cf:89:0e:e8:74:fd:03: 53:c6:51:1f:ee:34:a8:c3:11:02:22:44:6c:80:c2:a2:1f:cc: dd:64:20:1c:ff:31:bc:d9:a7:a7:b7:ac:10:79:8c:ff:26:2c: 40:94:e8:15:b5:f3:a4:08:79:88:e3:0b:77:72:ac:38:48:2f: f2:5b:e6:2e:d5:0e:80:b3:db:0a:9c:84:e5:0e:0c:7e:f0:95: 45:b2:79:81:f6:5c:74:8e:8c:3a:e2:37:cc:f8:c6:5d:10:6d: d8:35:5b:ea:36:72:12:98:11:17:22:b1:0f:e2:06:75:07:77: d0:0a:81:3e:fb:c2:9c:ca:85:b5:df:48:a0:a6:8e:39:92:f7: 33:95:35:ab:60:15:e4:4d:db:63:f5:b3:16:f5:3f:d6:d4:77: 1c:24:39:53:02:ca:6f:ea:f8:79:7c:c2:37:a9:23:35:7a:34: fa:5a:d0:3c:1b:0a:4a:c2:3a:d3:f6:3d:9a:5c:26:37:06:a1: 18:3e:95:3e:24:25:aa:28:4a:a6:28:52:33:50:8a:26:bf:f5: e3:57:cc:4c:e6:fd:0d:9a:0d:6c:f0:63:39:76:94:03:ed:b4: 22:35:d1:71 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtmVYxMuG64/O4FKyZbtpnGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxZjdkMDA5NGFkYzk4ZDliMDMyNzIwZTgxZTNkYjVhYTc1 ODFjNzQwHhcNMjUxMjI4MTkwMDQxWhcNMjUxMjI5MTkwMDQxWjAzMTEwLwYDVQQD EyhiYzE1NjAzMTM4NGE2OWEwNTA5ZGZjYmEzZWQ2ZTg1YWVhMDhkOGIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmczdchmli96VD+JgfY9IwLidH7AI euZ9S2hSsFt1Elfh8fwwORYdi5P0ME7isiG6CiP0hjY6ZP0kXmej84RZvjzAYZEr DW5Fp8lWwBcTJPZUQSPsrqRF2npnHruIuJd9Nt8h3hEE3yodq9V/5NnX9Iw4+yjv mgXLYhI6fM8707qanR/KhK2BP4JqSBv89g9aDhVzMJND+SaUQVgTgnFkAhd1SJo8 9yU5wzuuUf303ExcZNvhmG9y4NI4DECWgWlYyo2A+X34o9Xzsq5oKIwND8rAlTwO OSZWMIkv8QURaqfpHmYI2/VBcAD09FIqNB803zjfwYcOjeieSa8tFmjEZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLwVYDE4SmmgUJ38uj7W6FrqCNixMB8GA1UdIwQY MBaAFLH30AlK3JjZsDJyDoHj21qnWBx0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2ZmUUNVcmNtTm13TW5JT2dlUGJXcWRZSEhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC9lOGRkNmItNDYyNy00YTNjLWJhNzMt YTU0Yjg2OWRjZDI3LzEvc2ZmUUNVcmNtTm13TW5JT2dlUGJXcWRZSEhRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC9lOGRkNmItNDYyNy00YTNjLWJhNzMtYTU0Yjg2OWRjZDI3 LzEvc2ZmUUNVcmNtTm13TW5JT2dlUGJXcWRZSEhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgYExuHue 5ujBuo2eQTMPJSqUJm00ogOxJyhMGoXPiQ7odP0DU8ZRH+40qMMRAiJEbIDCoh/M 3WQgHP8xvNmnp7esEHmM/yYsQJToFbXzpAh5iOMLd3KsOEgv8lvmLtUOgLPbCpyE 5Q4MfvCVRbJ5gfZcdI6MOuI3zPjGXRBt2DVb6jZyEpgRFyKxD+IGdQd30AqBPvvC nMqFtd9IoKaOOZL3M5U1q2AV5E3bY/WzFvU/1tR3HCQ5UwLKb+r4eXzCN6kjNXo0 +lrQPBsKSsI60/Y9mlwmNwahGD6VPiQlqihKpihSM1CKJr/141fMTOb9DZoNbPBj OXaUA+20IjXRcQ== -----END CERTIFICATE-----Generated at Sun Dec 28 23:39:10 2025 by rpki-client