This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft File: xHKa8T09FW9BGXaxduVU-mcddvc.mft (raw, json) Hash identifier: FsSubb2m1p1AH3ic3FFXbwrml+S/KnL5g/pfGk1xWrk= Subject key identifier: 4B:6D:DE:E2:AE:30:8A:16:B0:1B:54:A6:AF:C5:71:A0:17:E4:F9:94 Authority key identifier: C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7 Certificate issuer: /CN=c4729af13d3d156f411976b176e554fa671d76f7 Certificate serial: 019B5976379389B5640E69F23E9D9A4E221B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft Manifest number: 14DB Signing time: Fri 26 Dec 2025 07:01:18 +0000 Manifest this update: Fri 26 Dec 2025 07:01:18 +0000 Manifest next update: Sat 27 Dec 2025 07:01:18 +0000 Files and hashes: 1: qFZMGyq85ztg5ytAQ7RbzglxnGU.roa (hash: kMRZIxRuZxVhg2DxKXhubRuKlbKba7EMDPUaAyexKng=) 2: xHKa8T09FW9BGXaxduVU-mcddvc.crl (hash: 7ynmBKsRMArlvEwWTRY70XnClwzCNo30In+9KVfOXiw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:37:93:89:b5:64:0e:69:f2:3e:9d:9a:4e:22:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c4729af13d3d156f411976b176e554fa671d76f7 Validity Not Before: Dec 26 07:01:18 2025 GMT Not After : Dec 27 07:01:18 2025 GMT Subject: CN=4b6ddee2ae308a16b01b54a6afc571a017e4f994 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:54:49:12:78:66:4e:90:c5:9e:cb:f4:34:fd: 5a:91:d7:d9:79:df:70:da:47:21:90:6e:08:9a:d6: 9e:0e:b7:37:cd:b5:2b:5a:80:1c:4e:a6:f5:4e:b9: b2:c9:cd:d3:d5:5d:01:6f:ce:be:5b:4b:3a:02:85: 75:d4:59:38:e5:80:bd:92:0c:98:75:51:37:6f:69: 49:4b:74:c3:b9:ac:18:4b:d3:42:3f:9a:9d:64:06: eb:9a:7f:1f:1c:42:36:f7:ec:f4:7b:89:17:1f:fb: a1:ca:28:9a:52:44:af:dd:71:a5:e8:d5:62:2a:e4: 94:ea:7b:47:ff:12:4f:11:b0:74:ba:cf:0f:d1:aa: 25:37:98:34:19:98:df:06:3f:aa:aa:0a:46:b6:b2: d0:6d:68:83:42:a9:73:a8:1d:14:8d:1a:27:55:0c: 81:48:09:45:2a:b3:8c:fd:0f:a5:88:7c:61:89:90: 41:88:f2:1a:fd:0a:4e:ab:03:7b:cd:9f:0f:3a:4b: f4:09:48:a2:d3:d2:43:6f:0f:58:2c:9f:05:d2:c7: 71:7e:3e:a9:57:05:71:58:3c:76:ca:b6:32:c1:07: 4b:f8:e4:30:94:09:5e:f7:e0:e9:ad:a1:e7:4c:59: dd:8e:27:3a:27:0a:17:c8:95:9d:16:81:28:dd:e7: 19:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:6D:DE:E2:AE:30:8A:16:B0:1B:54:A6:AF:C5:71:A0:17:E4:F9:94 X509v3 Authority Key Identifier: keyid:C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:4b:ac:e2:92:29:5c:db:fd:02:54:ef:c9:db:75:9f:b1:a6: 07:8a:44:58:33:a5:3c:8b:18:b2:63:75:d2:f8:bb:8c:c2:f8: 8a:97:67:9f:17:24:08:ef:81:28:e6:8b:72:cf:3e:57:ed:23: 89:27:14:2d:8c:32:f0:b3:2f:04:3a:b7:44:51:b3:c8:82:19: 7f:39:e4:46:5f:51:7d:00:5a:5b:9e:5e:f2:47:0c:8f:f0:6b: d1:0c:3e:5b:3a:4e:1c:5a:2a:49:94:7e:36:a0:12:e0:1c:fa: 04:77:89:7a:20:80:cf:37:b5:e0:e6:25:d3:00:5d:5b:b1:f0: f2:b4:27:8e:49:68:7d:78:81:87:d7:81:27:18:56:47:9d:da: ca:21:d4:ba:89:3b:89:bd:09:db:47:ed:7d:29:78:0a:0e:e9: 47:2e:a8:6b:3e:55:df:f2:ac:b0:8c:74:70:ce:95:e9:fe:0b: 41:69:4e:56:5d:48:01:83:16:76:ff:d3:fb:35:53:a3:2d:24: bc:ed:ce:30:e6:08:46:6d:80:bc:18:c6:3f:70:a1:af:a7:ae: f7:55:9b:02:50:1d:5d:0a:bd:5d:e8:67:2c:77:b3:1d:fe:84: 47:f1:49:33:ac:92:cf:8b:b0:78:80:94:cd:2b:5f:9f:41:6e: 47:5c:fc:0e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdjeTibVkDmnyPp2aTiIbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM0NzI5YWYxM2QzZDE1NmY0MTE5NzZiMTc2ZTU1NGZhNjcx ZDc2ZjcwHhcNMjUxMjI2MDcwMTE4WhcNMjUxMjI3MDcwMTE4WjAzMTEwLwYDVQQD Eyg0YjZkZGVlMmFlMzA4YTE2YjAxYjU0YTZhZmM1NzFhMDE3ZTRmOTk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjVRJEnhmTpDFnsv0NP1akdfZed9w 2kchkG4ImtaeDrc3zbUrWoAcTqb1Trmyyc3T1V0Bb86+W0s6AoV11Fk45YC9kgyY dVE3b2lJS3TDuawYS9NCP5qdZAbrmn8fHEI29+z0e4kXH/uhyiiaUkSv3XGl6NVi KuSU6ntH/xJPEbB0us8P0aolN5g0GZjfBj+qqgpGtrLQbWiDQqlzqB0UjRonVQyB SAlFKrOM/Q+liHxhiZBBiPIa/QpOqwN7zZ8POkv0CUii09JDbw9YLJ8F0sdxfj6p VwVxWDx2yrYywQdL+OQwlAle9+DpraHnTFndjic6JwoXyJWdFoEo3ecZSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEtt3uKuMIoWsBtUpq/FcaAX5PmUMB8GA1UdIwQY MBaAFMRymvE9PRVvQRl2sXblVPpnHXb3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveEhLYThUMDlGVzlCR1hheGR1VlUtbWNkZHZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC85NWUwNjAtZmEyYS00MDU3LTk1Nzgt YjA4OThmYmIxY2FiLzEveEhLYThUMDlGVzlCR1hheGR1VlUtbWNkZHZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC85NWUwNjAtZmEyYS00MDU3LTk1NzgtYjA4OThmYmIxY2Fi LzEveEhLYThUMDlGVzlCR1hheGR1VlUtbWNkZHZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhUus4pIp XNv9AlTvydt1n7GmB4pEWDOlPIsYsmN10vi7jML4ipdnnxckCO+BKOaLcs8+V+0j iScULYwy8LMvBDq3RFGzyIIZfznkRl9RfQBaW55e8kcMj/Br0Qw+WzpOHFoqSZR+ NqAS4Bz6BHeJeiCAzze14OYl0wBdW7Hw8rQnjklofXiBh9eBJxhWR53ayiHUuok7 ib0J20ftfSl4Cg7pRy6oaz5V3/KssIx0cM6V6f4LQWlOVl1IAYMWdv/T+zVToy0k vO3OMOYIRm2AvBjGP3Chr6eu91WbAlAdXQq9XehnLHezHf6ER/FJM6ySz4uweICU zStfn0FuR1z8Dg== -----END CERTIFICATE-----Generated at Fri Dec 26 16:00:58 2025 by rpki-client