This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft File: fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft (raw, json) Hash identifier: ZFtd/ub9JoF6hWVKp5GaQJCjHUsLMMsMWxKkoZKSJSU= Subject key identifier: 0F:91:1E:C7:6E:AA:E8:40:51:EE:68:44:BF:40:C2:3A:82:F5:7F:10 Authority key identifier: 7D:78:56:C9:7B:EB:97:C2:B3:86:FB:95:8C:2D:B1:22:C5:7D:B3:6C Certificate issuer: /CN=7d7856c97beb97c2b386fb958c2db122c57db36c Certificate serial: 019B3945EDF7925F30C035CDFF42C374B480 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft Manifest number: 05CF Signing time: Sat 20 Dec 2025 01:00:42 +0000 Manifest this update: Sat 20 Dec 2025 01:00:42 +0000 Manifest next update: Sun 21 Dec 2025 01:00:42 +0000 Files and hashes: 1: 7IU0huufqQxYxItg8zFZPOwzYRM.roa (hash: I4C8M2jxvU1m60xK7AT2Uz7jOA8Cd0LrtZ3lmEnNBLc=) 2: fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl (hash: +uUdJL1Qj1W83T+UpQU+EZzFFuZ280wdFPm4PhW/t4w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:45:ed:f7:92:5f:30:c0:35:cd:ff:42:c3:74:b4:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7d7856c97beb97c2b386fb958c2db122c57db36c Validity Not Before: Dec 20 01:00:42 2025 GMT Not After : Dec 21 01:00:42 2025 GMT Subject: CN=0f911ec76eaae84051ee6844bf40c23a82f57f10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9b:91:1d:a1:28:28:75:bd:8f:89:27:03:eb: 50:52:d3:c2:3a:6b:db:b0:6a:17:96:20:10:fe:d4: 5b:40:c7:b0:56:94:30:9b:4e:d2:3d:a7:a8:28:69: b6:95:26:2c:69:d4:e1:3a:d1:b1:9a:64:b3:06:85: 48:02:a1:2f:d0:e1:9b:c7:ba:fa:26:c2:91:e7:29: 2d:a3:a4:90:e1:7b:a2:9d:59:a2:d4:6d:6f:46:5c: 5f:77:83:a9:9b:73:d9:a8:48:10:7a:b0:98:5e:e7: 92:12:81:12:95:86:50:0f:43:c6:0d:70:61:ff:75: ab:34:06:49:be:5b:bf:e1:51:ab:b1:fa:71:26:eb: f8:04:b9:a7:81:46:74:ed:3d:24:11:ff:28:6d:65: 22:c2:59:9a:0c:c5:0f:28:19:f7:49:20:4c:e4:fd: 6f:cc:97:dc:eb:3a:42:a1:6e:3a:3c:ef:41:32:0e: 2f:01:2e:2f:f7:93:ca:76:6a:8d:e1:77:81:74:44: 0d:13:a6:8a:cc:05:3d:3f:e2:e5:6c:d3:62:5f:42: d7:c3:60:a0:46:04:a7:38:85:0b:c3:db:e0:e1:78: 4c:da:ef:3a:38:07:05:2c:5e:06:2f:97:23:db:5e: c7:5c:d6:69:d3:f1:f3:11:d9:64:78:79:b7:72:31: e1:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:91:1E:C7:6E:AA:E8:40:51:EE:68:44:BF:40:C2:3A:82:F5:7F:10 X509v3 Authority Key Identifier: keyid:7D:78:56:C9:7B:EB:97:C2:B3:86:FB:95:8C:2D:B1:22:C5:7D:B3:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:b2:63:64:16:c0:c0:c4:c1:fd:0f:6c:02:9e:8b:ec:ae:5f: 1b:24:39:51:df:72:14:d8:8b:11:13:2e:50:12:f5:9b:eb:90: 2a:ea:9a:9d:dc:18:ec:5b:67:a5:41:37:8e:25:92:7f:5a:3e: 7d:64:08:2f:61:f5:a2:8a:25:eb:8f:55:24:4d:e7:ac:ae:b1: 2b:79:08:9f:8e:a4:3f:0c:61:53:11:af:d8:af:62:97:bd:c6: da:7a:6f:11:cf:92:0f:1d:66:2a:14:21:c0:85:a6:94:61:f1: 1e:35:13:66:5b:95:67:fa:d3:18:93:d3:66:1b:3b:8c:e3:4c: e5:ae:ca:a4:ef:4d:58:f4:bc:29:61:34:84:5f:03:0b:6c:2b: 03:24:9f:50:0f:7f:86:28:dc:a2:92:93:f9:12:95:05:9f:0a: 34:b7:5d:74:24:2b:37:dc:61:03:61:bd:c8:f5:f4:4d:f8:4d: 0b:c0:1e:b5:df:71:35:f3:f6:51:61:56:d4:58:5d:6f:1c:7b: b5:12:69:87:1f:5c:3c:6d:bc:56:1a:36:d0:0a:fa:be:81:fe: bf:57:d9:32:ec:d4:ba:b9:2f:bf:51:51:e3:f5:87:33:32:d6: 57:fd:c1:61:40:91:96:37:ba:de:ad:2a:6a:44:43:ce:6a:4a: 0c:96:cc:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs5Re33kl8wwDXN/0LDdLSAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkNzg1NmM5N2JlYjk3YzJiMzg2ZmI5NThjMmRiMTIyYzU3 ZGIzNmMwHhcNMjUxMjIwMDEwMDQyWhcNMjUxMjIxMDEwMDQyWjAzMTEwLwYDVQQD EygwZjkxMWVjNzZlYWFlODQwNTFlZTY4NDRiZjQwYzIzYTgyZjU3ZjEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxpuRHaEoKHW9j4knA+tQUtPCOmvb sGoXliAQ/tRbQMewVpQwm07SPaeoKGm2lSYsadThOtGxmmSzBoVIAqEv0OGbx7r6 JsKR5ykto6SQ4XuinVmi1G1vRlxfd4Opm3PZqEgQerCYXueSEoESlYZQD0PGDXBh /3WrNAZJvlu/4VGrsfpxJuv4BLmngUZ07T0kEf8obWUiwlmaDMUPKBn3SSBM5P1v zJfc6zpCoW46PO9BMg4vAS4v95PKdmqN4XeBdEQNE6aKzAU9P+LlbNNiX0LXw2Cg RgSnOIULw9vg4XhM2u86OAcFLF4GL5cj217HXNZp0/HzEdlkeHm3cjHhbwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA+RHsduquhAUe5oRL9AwjqC9X8QMB8GA1UdIwQY MBaAFH14Vsl765fCs4b7lYwtsSLFfbNsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZlhoV3lYdnJsOEt6aHZ1VmpDMnhJc1Y5czJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9jMDNkMzctNGVmYy00YzNjLTgyODEt M2M3Mzg1NDQ0ODJlLzEvZlhoV3lYdnJsOEt6aHZ1VmpDMnhJc1Y5czJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy9jMDNkMzctNGVmYy00YzNjLTgyODEtM2M3Mzg1NDQ0ODJl LzEvZlhoV3lYdnJsOEt6aHZ1VmpDMnhJc1Y5czJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAObJjZBbA wMTB/Q9sAp6L7K5fGyQ5Ud9yFNiLERMuUBL1m+uQKuqandwY7FtnpUE3jiWSf1o+ fWQIL2H1oool649VJE3nrK6xK3kIn46kPwxhUxGv2K9il73G2npvEc+SDx1mKhQh wIWmlGHxHjUTZluVZ/rTGJPTZhs7jONM5a7KpO9NWPS8KWE0hF8DC2wrAySfUA9/ hijcopKT+RKVBZ8KNLdddCQrN9xhA2G9yPX0TfhNC8Aetd9xNfP2UWFW1Fhdbxx7 tRJphx9cPG28Vho20Ar6voH+v1fZMuzUurkvv1FR4/WHMzLWV/3BYUCRlje63q0q akRDzmpKDJbMtg== -----END CERTIFICATE-----Generated at Sat Dec 20 09:14:03 2025 by rpki-client