This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.mft File: xZttw7wi9sNqA5hVU0stQauxJCM.mft (raw, json) Hash identifier: gWMewNHLliHdaKqWv24LAQey4Pjv70KhCs54sg6MIRc= Subject key identifier: 78:97:46:90:A1:60:D0:8E:84:17:17:A0:74:F1:A2:00:B3:42:32:91 Authority key identifier: C5:9B:6D:C3:BC:22:F6:C3:6A:03:98:55:53:4B:2D:41:AB:B1:24:23 Certificate issuer: /CN=c59b6dc3bc22f6c36a039855534b2d41abb12423 Certificate serial: 019B32687452366E78CB2BA809359844B32A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZttw7wi9sNqA5hVU0stQauxJCM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.mft Manifest number: 1782 Signing time: Thu 18 Dec 2025 17:01:04 +0000 Manifest this update: Thu 18 Dec 2025 17:01:04 +0000 Manifest next update: Fri 19 Dec 2025 17:01:04 +0000 Files and hashes: 1: WOcgzm6uQCs6AkEViYONoq1N374.roa (hash: nQFtl/WwmhlASNmPqjUWZCZ7o+laxk6LEJZG32/xqcY=) 2: xZttw7wi9sNqA5hVU0stQauxJCM.crl (hash: QUxC2eEi5/F7+AoEBdC6GAmoibtE4TX4EOsETSneHQk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.crl rsync://rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.mft rsync://rpki.ripe.net/repository/DEFAULT/xZttw7wi9sNqA5hVU0stQauxJCM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 17:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:68:74:52:36:6e:78:cb:2b:a8:09:35:98:44:b3:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c59b6dc3bc22f6c36a039855534b2d41abb12423 Validity Not Before: Dec 18 17:01:04 2025 GMT Not After : Dec 19 17:01:04 2025 GMT Subject: CN=78974690a160d08e841717a074f1a200b3423291 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b0:5a:38:9c:7b:64:00:47:4c:9e:7d:7f:58: 39:04:e1:b1:11:11:a2:e3:c5:98:3b:7a:5e:cb:22: fb:62:14:99:cd:c1:e2:7a:57:13:21:20:72:08:36: e7:75:20:06:45:ab:1b:b6:b5:58:ce:d7:5d:1b:4b: 53:8a:65:77:ef:85:72:5d:b3:a9:9e:8f:28:a1:47: d4:e8:8a:f5:d5:48:2a:c8:14:67:7b:e2:fb:ed:4d: ec:53:da:d4:bb:d9:be:e6:4c:bd:b3:a8:7b:b9:15: 68:c7:7f:a0:37:67:c3:a9:0e:9e:bc:ff:3b:12:ff: 5d:91:bf:b6:dd:9a:fb:cb:46:69:54:74:02:1b:79: f2:38:67:90:28:ce:0a:13:da:9b:4e:e0:d3:9d:d7: f6:74:d3:b6:4a:46:59:f4:f7:b3:aa:a4:c1:c9:6c: b6:7c:e2:54:7f:3f:da:59:14:f3:7e:ea:ea:39:cd: 8d:c1:fc:89:32:a7:00:33:cf:af:c1:fd:2c:35:ab: 42:87:2c:4f:11:da:45:7b:d4:0c:8e:0a:ff:97:95: d1:cb:97:98:0c:fd:50:a8:3e:d7:f5:48:82:84:c9: c3:6f:35:3e:70:6c:6d:f2:46:0c:53:87:7e:82:54: 1e:5c:c2:57:76:0e:73:2f:f4:21:c8:ef:28:4b:d2: 48:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:97:46:90:A1:60:D0:8E:84:17:17:A0:74:F1:A2:00:B3:42:32:91 X509v3 Authority Key Identifier: keyid:C5:9B:6D:C3:BC:22:F6:C3:6A:03:98:55:53:4B:2D:41:AB:B1:24:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZttw7wi9sNqA5hVU0stQauxJCM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:48:86:fc:d7:a3:f8:4e:d3:ea:ca:97:8d:b0:89:0b:10:46: b5:36:29:9a:14:de:24:1b:f3:66:ae:85:3f:0e:fb:40:b5:83: 40:f4:8c:0a:c7:56:93:bf:5a:09:61:b3:81:32:d2:3e:ec:e4: 7a:f4:1f:04:61:bf:ba:5f:36:f3:5e:25:d5:2f:bc:91:85:f1: 7c:af:99:97:71:9b:83:62:12:de:e4:a6:9d:ae:27:bb:64:8c: a8:81:f5:e0:76:bc:a2:17:fe:88:bc:ad:bf:bb:52:75:5d:94: 4b:41:07:f0:18:5b:5e:54:93:77:91:13:16:74:04:7e:b5:38: c2:75:c9:da:6c:1c:ca:37:01:66:c1:53:a3:c6:b4:46:de:e3: 06:10:93:96:4d:58:20:33:63:fb:0d:04:59:e8:85:d4:2c:fe: 41:17:6b:d8:cc:12:1b:a1:d2:4c:c3:25:45:3f:39:7a:e9:c7: 03:68:b5:b9:00:fd:39:f6:4b:9a:70:95:a4:56:20:4e:9f:1d: 9d:1e:b2:be:ae:67:c8:6a:e5:99:15:cf:50:97:d3:71:ef:2e: f4:e7:1a:0a:f5:21:3a:ec:f6:56:df:af:b3:3a:9e:78:53:69: ab:95:0c:3a:b4:f9:57:c8:d3:21:e2:f8:4a:05:eb:65:07:95: bd:34:fb:e8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsyaHRSNm54yyuoCTWYRLMqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1OWI2ZGMzYmMyMmY2YzM2YTAzOTg1NTUzNGIyZDQxYWJi MTI0MjMwHhcNMjUxMjE4MTcwMTA0WhcNMjUxMjE5MTcwMTA0WjAzMTEwLwYDVQQD Eyg3ODk3NDY5MGExNjBkMDhlODQxNzE3YTA3NGYxYTIwMGIzNDIzMjkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsrBaOJx7ZABHTJ59f1g5BOGxERGi 48WYO3peyyL7YhSZzcHielcTISByCDbndSAGRasbtrVYztddG0tTimV374VyXbOp no8ooUfU6Ir11UgqyBRne+L77U3sU9rUu9m+5ky9s6h7uRVox3+gN2fDqQ6evP87 Ev9dkb+23Zr7y0ZpVHQCG3nyOGeQKM4KE9qbTuDTndf2dNO2SkZZ9PezqqTByWy2 fOJUfz/aWRTzfurqOc2NwfyJMqcAM8+vwf0sNatChyxPEdpFe9QMjgr/l5XRy5eY DP1QqD7X9UiChMnDbzU+cGxt8kYMU4d+glQeXMJXdg5zL/QhyO8oS9JIIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHiXRpChYNCOhBcXoHTxogCzQjKRMB8GA1UdIwQY MBaAFMWbbcO8IvbDagOYVVNLLUGrsSQjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveFp0dHc3d2k5c05xQTVoVlUwc3RRYXV4SkNNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mMGVmZTMtNDEzYy00M2QyLWJiNjkt ZDJmNDBkZTA0OWI3LzEveFp0dHc3d2k5c05xQTVoVlUwc3RRYXV4SkNNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9mMGVmZTMtNDEzYy00M2QyLWJiNjktZDJmNDBkZTA0OWI3 LzEveFp0dHc3d2k5c05xQTVoVlUwc3RRYXV4SkNNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWUiG/Nej +E7T6sqXjbCJCxBGtTYpmhTeJBvzZq6FPw77QLWDQPSMCsdWk79aCWGzgTLSPuzk evQfBGG/ul82814l1S+8kYXxfK+Zl3Gbg2IS3uSmna4nu2SMqIH14Ha8ohf+iLyt v7tSdV2US0EH8BhbXlSTd5ETFnQEfrU4wnXJ2mwcyjcBZsFTo8a0Rt7jBhCTlk1Y IDNj+w0EWeiF1Cz+QRdr2MwSG6HSTMMlRT85eunHA2i1uQD9OfZLmnCVpFYgTp8d nR6yvq5nyGrlmRXPUJfTce8u9OcaCvUhOuz2Vt+vszqeeFNpq5UMOrT5V8jTIeL4 SgXrZQeVvTT76A== -----END CERTIFICATE-----Generated at Thu Dec 18 23:40:02 2025 by rpki-client