This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/f16c15-de76-433d-b97f-62f9f446ad01/1/SzgbqgoK3TKp-UFPmyyaWjIlNC4.mft File: SzgbqgoK3TKp-UFPmyyaWjIlNC4.mft (raw, json) Hash identifier: MmhvqE3u6CYtaZyTuiWPWAIW/vUWv+bUdZMP0dd5QBk= Subject key identifier: F8:13:96:0C:2E:0A:C9:F0:30:E5:EC:8A:C1:77:E3:86:D9:28:D1:48 Authority key identifier: 4B:38:1B:AA:0A:0A:DD:32:A9:F9:41:4F:9B:2C:9A:5A:32:25:34:2E Certificate issuer: /CN=4b381baa0a0add32a9f9414f9b2c9a5a3225342e Certificate serial: 019B3155883FCAE87C9CD63025EA382C982B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SzgbqgoK3TKp-UFPmyyaWjIlNC4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/f16c15-de76-433d-b97f-62f9f446ad01/1/SzgbqgoK3TKp-UFPmyyaWjIlNC4.mft Manifest number: 100A Signing time: Thu 18 Dec 2025 12:00:47 +0000 Manifest this update: Thu 18 Dec 2025 12:00:47 +0000 Manifest next update: Fri 19 Dec 2025 12:00:47 +0000 Files and hashes: 1: SzgbqgoK3TKp-UFPmyyaWjIlNC4.crl (hash: dNG4H/pB/Jkr+vlIPd8WhcG/HAZPVA90B/f8Uh7FK8k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/f16c15-de76-433d-b97f-62f9f446ad01/1/SzgbqgoK3TKp-UFPmyyaWjIlNC4.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/f16c15-de76-433d-b97f-62f9f446ad01/1/SzgbqgoK3TKp-UFPmyyaWjIlNC4.mft rsync://rpki.ripe.net/repository/DEFAULT/SzgbqgoK3TKp-UFPmyyaWjIlNC4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 12:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:55:88:3f:ca:e8:7c:9c:d6:30:25:ea:38:2c:98:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b381baa0a0add32a9f9414f9b2c9a5a3225342e Validity Not Before: Dec 18 12:00:47 2025 GMT Not After : Dec 19 12:00:47 2025 GMT Subject: CN=f813960c2e0ac9f030e5ec8ac177e386d928d148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c4:ec:3f:5c:4d:4a:0a:56:76:a8:47:97:ff: 6c:a2:01:51:e9:31:6c:97:6e:66:2d:69:a4:ad:1e: c8:14:c9:15:2d:8d:a0:85:44:07:77:71:75:fb:8d: 31:44:27:06:37:9e:82:d0:b0:b6:9a:9e:ab:94:d6: ec:c6:b6:4f:be:b0:6e:7a:f4:fb:9a:8f:96:2f:52: 4f:74:f2:04:6d:91:d7:9b:81:c1:7c:de:2e:5c:12: 30:9c:97:9c:ad:00:da:2b:a0:28:30:fb:3d:cb:f2: 7d:73:ed:a9:8d:eb:ed:98:b2:e8:48:5e:ed:c5:e1: 56:df:bb:f6:6d:93:ce:33:ef:d0:87:0c:9f:d0:c6: 15:95:77:44:25:55:77:97:86:78:26:e2:3d:c8:47: 96:8c:cc:19:aa:f7:19:97:2a:9e:19:da:37:b4:8f: c9:73:e5:a9:0c:15:de:35:83:de:56:e5:c0:d4:78: 6a:70:c3:ab:5d:d9:a7:a7:0a:47:85:f7:31:b6:8a: fa:9e:c0:b3:8c:56:d5:04:1b:3f:52:e4:f7:48:65: 4a:99:2f:42:9f:0b:2b:fd:48:ab:c1:f0:27:e4:7a: 9e:12:0c:af:ca:70:71:a5:7d:2b:29:04:0a:70:9e: 4a:27:0e:de:2a:78:ce:72:ce:60:c7:4a:25:f9:39: 31:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:13:96:0C:2E:0A:C9:F0:30:E5:EC:8A:C1:77:E3:86:D9:28:D1:48 X509v3 Authority Key Identifier: keyid:4B:38:1B:AA:0A:0A:DD:32:A9:F9:41:4F:9B:2C:9A:5A:32:25:34:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SzgbqgoK3TKp-UFPmyyaWjIlNC4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f16c15-de76-433d-b97f-62f9f446ad01/1/SzgbqgoK3TKp-UFPmyyaWjIlNC4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f16c15-de76-433d-b97f-62f9f446ad01/1/SzgbqgoK3TKp-UFPmyyaWjIlNC4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:ed:79:92:f0:a0:af:5f:0b:96:80:29:9a:f5:62:26:5d:14: 84:b3:8b:f1:71:8d:e8:31:bb:92:1b:66:24:31:8a:52:76:9a: fa:0f:73:f7:8a:36:b1:a1:a8:97:27:9a:66:75:3e:68:c6:73: a8:58:3b:f8:9c:35:91:68:cb:87:2d:60:93:10:40:22:fc:c4: fa:aa:a3:d0:d7:57:83:b4:db:ff:6f:04:91:fd:50:73:d0:51: 81:d3:15:d3:b8:6e:5b:a0:26:9c:3a:39:9e:dd:25:3a:88:86: 70:38:d0:e2:16:2e:f5:58:79:5d:0c:b0:e5:2c:1c:3f:f2:d0: 70:4c:87:4b:01:29:c1:98:6d:df:e9:98:18:b6:7d:64:c6:c4: 55:e7:c5:7b:41:7b:11:9d:0e:01:0b:d3:3a:03:48:fe:28:f6: c0:ab:9f:03:67:4e:6c:a1:be:0c:7a:3c:6b:b1:00:34:ae:d1: c6:f3:bd:c7:16:af:8f:bc:52:2f:73:f5:8a:dd:f4:e6:d0:f1: 17:aa:c8:fc:6c:6a:ef:e8:cc:20:39:0d:0b:a8:be:11:58:f8: a0:ca:4b:c5:9d:f2:69:16:58:6d:a8:e5:10:7a:2b:a7:4a:e1: a3:96:13:4d:5f:68:42:d6:78:72:87:f3:71:a3:cb:3c:1a:28: 00:45:74:c9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsxVYg/yuh8nNYwJeo4LJgrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiMzgxYmFhMGEwYWRkMzJhOWY5NDE0ZjliMmM5YTVhMzIy NTM0MmUwHhcNMjUxMjE4MTIwMDQ3WhcNMjUxMjE5MTIwMDQ3WjAzMTEwLwYDVQQD EyhmODEzOTYwYzJlMGFjOWYwMzBlNWVjOGFjMTc3ZTM4NmQ5MjhkMTQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAssTsP1xNSgpWdqhHl/9sogFR6TFs l25mLWmkrR7IFMkVLY2ghUQHd3F1+40xRCcGN56C0LC2mp6rlNbsxrZPvrBuevT7 mo+WL1JPdPIEbZHXm4HBfN4uXBIwnJecrQDaK6AoMPs9y/J9c+2pjevtmLLoSF7t xeFW37v2bZPOM+/Qhwyf0MYVlXdEJVV3l4Z4JuI9yEeWjMwZqvcZlyqeGdo3tI/J c+WpDBXeNYPeVuXA1HhqcMOrXdmnpwpHhfcxtor6nsCzjFbVBBs/UuT3SGVKmS9C nwsr/UirwfAn5HqeEgyvynBxpX0rKQQKcJ5KJw7eKnjOcs5gx0ol+TkxBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPgTlgwuCsnwMOXsisF344bZKNFIMB8GA1UdIwQY MBaAFEs4G6oKCt0yqflBT5ssmloyJTQuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU3pnYnFnb0szVEtwLVVGUG15eWFXaklsTkM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9mMTZjMTUtZGU3Ni00MzNkLWI5N2Yt NjJmOWY0NDZhZDAxLzEvU3pnYnFnb0szVEtwLVVGUG15eWFXaklsTkM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi9mMTZjMTUtZGU3Ni00MzNkLWI5N2YtNjJmOWY0NDZhZDAx LzEvU3pnYnFnb0szVEtwLVVGUG15eWFXaklsTkM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZe15kvCg r18LloApmvViJl0UhLOL8XGN6DG7khtmJDGKUnaa+g9z94o2saGolyeaZnU+aMZz qFg7+Jw1kWjLhy1gkxBAIvzE+qqj0NdXg7Tb/28Ekf1Qc9BRgdMV07huW6AmnDo5 nt0lOoiGcDjQ4hYu9Vh5XQyw5SwcP/LQcEyHSwEpwZht3+mYGLZ9ZMbEVefFe0F7 EZ0OAQvTOgNI/ij2wKufA2dObKG+DHo8a7EANK7RxvO9xxavj7xSL3P1it305tDx F6rI/Gxq7+jMIDkNC6i+EVj4oMpLxZ3yaRZYbajlEHorp0rho5YTTV9oQtZ4cofz caPLPBooAEV0yQ== -----END CERTIFICATE-----Generated at Thu Dec 18 18:37:17 2025 by rpki-client