This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/75ad91-fcfc-4cf4-ab22-d0f9804a9f1e/1/xa0QdigFcZJWQLKu2jnMCXTAbOI.mft File: xa0QdigFcZJWQLKu2jnMCXTAbOI.mft (raw, json) Hash identifier: zWyg6I6yugNjIZZcpHyTVhEXtruARlq7qtR/b8N6QEs= Subject key identifier: C2:FA:4B:D2:24:7B:A5:0C:4E:66:40:AA:AB:56:2F:EB:C4:0B:53:2B Authority key identifier: C5:AD:10:76:28:05:71:92:56:40:B2:AE:DA:39:CC:09:74:C0:6C:E2 Certificate issuer: /CN=c5ad1076280571925640b2aeda39cc0974c06ce2 Certificate serial: 019B593EDA0F6000DAEF26726BF7CEF8DCCD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xa0QdigFcZJWQLKu2jnMCXTAbOI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/75ad91-fcfc-4cf4-ab22-d0f9804a9f1e/1/xa0QdigFcZJWQLKu2jnMCXTAbOI.mft Manifest number: 0130 Signing time: Fri 26 Dec 2025 06:00:49 +0000 Manifest this update: Fri 26 Dec 2025 06:00:49 +0000 Manifest next update: Sat 27 Dec 2025 06:00:49 +0000 Files and hashes: 1: TUdbI3fTIue2IS2nP7PyiMKvzpA.roa (hash: +rF1e9gIJIKIRSdOUzoKGO5Eq8f3G2LeMwZHkFAE720=) 2: xa0QdigFcZJWQLKu2jnMCXTAbOI.crl (hash: ivnbSePz1CPHdKxNFx9ocMMFakfWG8vaEamJEV9KMOU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/75ad91-fcfc-4cf4-ab22-d0f9804a9f1e/1/xa0QdigFcZJWQLKu2jnMCXTAbOI.crl rsync://rpki.ripe.net/repository/DEFAULT/11/75ad91-fcfc-4cf4-ab22-d0f9804a9f1e/1/xa0QdigFcZJWQLKu2jnMCXTAbOI.mft rsync://rpki.ripe.net/repository/DEFAULT/xa0QdigFcZJWQLKu2jnMCXTAbOI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:3e:da:0f:60:00:da:ef:26:72:6b:f7:ce:f8:dc:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c5ad1076280571925640b2aeda39cc0974c06ce2 Validity Not Before: Dec 26 06:00:49 2025 GMT Not After : Dec 27 06:00:49 2025 GMT Subject: CN=c2fa4bd2247ba50c4e6640aaab562febc40b532b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:3b:3d:d5:5f:25:14:13:d0:ff:0e:1e:33:df: 05:a9:97:4f:16:40:b2:fd:0a:50:dd:05:58:4f:a5: bc:d0:9f:d8:b3:7c:68:ef:28:dc:80:46:b8:67:e5: 81:a1:13:dd:85:a3:b8:ab:eb:48:f9:e1:bd:94:a4: cb:52:9a:56:5f:5a:16:08:64:24:20:91:a4:6d:ce: 33:33:2b:02:f2:d0:1d:f0:0d:d3:aa:a7:7b:71:d6: 5d:c9:2d:0d:ed:02:bc:d4:2f:1c:28:6e:68:5e:09: 45:89:04:b5:3c:8e:f7:ec:ef:eb:68:6f:a1:9a:e6: d8:87:9d:55:ee:d6:01:98:60:d6:1c:66:d8:d7:6a: 9c:7a:1c:8b:b5:4d:43:33:e2:fb:af:ff:4e:07:cd: 97:34:79:06:d3:31:b2:d4:3d:d2:0e:8c:f3:6b:c0: 50:46:73:b8:ec:d1:68:a1:2f:b4:80:e6:7e:35:55: 9d:b8:bd:ac:5a:72:3d:10:8f:63:d6:c5:70:5b:2d: 6c:08:03:06:ba:f4:37:de:b2:c8:b9:32:56:58:9f: 42:a3:bd:74:d6:74:7e:a2:e0:fd:06:f9:34:c9:ad: f1:36:34:1a:ae:1b:6f:00:b9:f5:b5:35:97:72:24: 50:be:5a:97:8e:31:e3:99:c2:2d:4c:27:05:29:16: 51:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:FA:4B:D2:24:7B:A5:0C:4E:66:40:AA:AB:56:2F:EB:C4:0B:53:2B X509v3 Authority Key Identifier: keyid:C5:AD:10:76:28:05:71:92:56:40:B2:AE:DA:39:CC:09:74:C0:6C:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xa0QdigFcZJWQLKu2jnMCXTAbOI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/75ad91-fcfc-4cf4-ab22-d0f9804a9f1e/1/xa0QdigFcZJWQLKu2jnMCXTAbOI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/75ad91-fcfc-4cf4-ab22-d0f9804a9f1e/1/xa0QdigFcZJWQLKu2jnMCXTAbOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:73:8b:c9:67:91:34:4c:a3:57:c5:2e:72:c0:f4:67:99:4b: 5e:3b:a7:5b:7b:31:37:3f:41:66:0a:17:4f:20:cd:5f:c2:7e: d9:ce:bf:a3:fa:86:f4:99:35:3f:97:e1:24:c1:b6:83:ca:9b: 8d:91:c6:42:ae:7e:a3:77:0a:35:6d:a8:1f:b9:1d:d4:e0:b8: 65:7d:71:d2:f5:c2:5b:11:83:e2:ba:65:05:40:4c:cc:32:c1: 6c:2e:9d:87:50:d0:85:a9:ab:58:c6:bb:0a:a0:64:ba:29:31: ea:79:7d:dd:48:bc:bc:9b:29:49:6e:7f:0a:c4:dd:d5:36:bb: e4:85:83:db:09:7c:ca:65:7e:67:9f:6f:52:83:48:9d:3f:31: 29:56:14:3e:43:8d:4d:f8:0c:b8:ac:02:b4:d0:f9:e8:a3:43: 98:53:11:64:93:1c:00:46:26:64:9d:59:da:4d:66:c8:0f:e5: e6:1e:0b:3a:65:bf:62:c8:3e:97:6b:3d:1a:ad:79:86:db:d1: 8b:ec:b0:85:b3:48:6e:b8:87:54:c4:be:7e:7d:9b:42:7c:d7: bd:79:c7:cc:cf:5d:22:ba:69:d7:56:e2:ee:f4:46:82:74:c6: c6:4f:ce:62:80:34:64:c5:04:c7:63:05:b6:d9:68:2d:dc:28: 25:41:9b:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZPtoPYADa7yZya/fO+NzNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1YWQxMDc2MjgwNTcxOTI1NjQwYjJhZWRhMzljYzA5NzRj MDZjZTIwHhcNMjUxMjI2MDYwMDQ5WhcNMjUxMjI3MDYwMDQ5WjAzMTEwLwYDVQQD EyhjMmZhNGJkMjI0N2JhNTBjNGU2NjQwYWFhYjU2MmZlYmM0MGI1MzJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyzs91V8lFBPQ/w4eM98FqZdPFkCy /QpQ3QVYT6W80J/Ys3xo7yjcgEa4Z+WBoRPdhaO4q+tI+eG9lKTLUppWX1oWCGQk IJGkbc4zMysC8tAd8A3Tqqd7cdZdyS0N7QK81C8cKG5oXglFiQS1PI737O/raG+h mubYh51V7tYBmGDWHGbY12qcehyLtU1DM+L7r/9OB82XNHkG0zGy1D3SDozza8BQ RnO47NFooS+0gOZ+NVWduL2sWnI9EI9j1sVwWy1sCAMGuvQ33rLIuTJWWJ9Co710 1nR+ouD9Bvk0ya3xNjQarhtvALn1tTWXciRQvlqXjjHjmcItTCcFKRZRpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFML6S9Ike6UMTmZAqqtWL+vEC1MrMB8GA1UdIwQY MBaAFMWtEHYoBXGSVkCyrto5zAl0wGziMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGEwUWRpZ0ZjWkpXUUxLdTJqbk1DWFRBYk9JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NWFkOTEtZmNmYy00Y2Y0LWFiMjIt ZDBmOTgwNGE5ZjFlLzEveGEwUWRpZ0ZjWkpXUUxLdTJqbk1DWFRBYk9JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS83NWFkOTEtZmNmYy00Y2Y0LWFiMjItZDBmOTgwNGE5ZjFl LzEveGEwUWRpZ0ZjWkpXUUxLdTJqbk1DWFRBYk9JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeXOLyWeR NEyjV8UucsD0Z5lLXjunW3sxNz9BZgoXTyDNX8J+2c6/o/qG9Jk1P5fhJMG2g8qb jZHGQq5+o3cKNW2oH7kd1OC4ZX1x0vXCWxGD4rplBUBMzDLBbC6dh1DQhamrWMa7 CqBkuikx6nl93Ui8vJspSW5/CsTd1Ta75IWD2wl8ymV+Z59vUoNInT8xKVYUPkON TfgMuKwCtND56KNDmFMRZJMcAEYmZJ1Z2k1myA/l5h4LOmW/Ysg+l2s9Gq15htvR i+ywhbNIbriHVMS+fn2bQnzXvXnHzM9dIrpp11bi7vRGgnTGxk/OYoA0ZMUEx2MF ttloLdwoJUGbIw== -----END CERTIFICATE-----Generated at Fri Dec 26 15:47:27 2025 by rpki-client