This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft File: _XTetBhEJvpiIlthIMNnBvc3uOI.mft (raw, json) Hash identifier: KAdnwQnK3oywuGLSHI1k7LqZxe5nPSpZr+4tFxDhx/M= Subject key identifier: 3B:63:C0:05:00:44:FD:E4:05:1A:D2:EA:4F:21:E1:C4:1A:A4:D6:25 Authority key identifier: FD:74:DE:B4:18:44:26:FA:62:22:5B:61:20:C3:67:06:F7:37:B8:E2 Certificate issuer: /CN=fd74deb4184426fa62225b6120c36706f737b8e2 Certificate serial: 019B3A21C033C9BAE361AAE698B30B097930 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XTetBhEJvpiIlthIMNnBvc3uOI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft Manifest number: 1787 Signing time: Sat 20 Dec 2025 05:00:48 +0000 Manifest this update: Sat 20 Dec 2025 05:00:48 +0000 Manifest next update: Sun 21 Dec 2025 05:00:48 +0000 Files and hashes: 1: K3K73SOKoUl1BbH2-VG761We22I.roa (hash: JYStvIUn6egbkb0Wps8aA9dlj6GWDzxPYmBqdWiziOs=) 2: _XTetBhEJvpiIlthIMNnBvc3uOI.crl (hash: NFrF5ble1+Hvp63Zj5fAnjAuYtJeYjZvSiq86/DpoVA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.crl rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft rsync://rpki.ripe.net/repository/DEFAULT/_XTetBhEJvpiIlthIMNnBvc3uOI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:21:c0:33:c9:ba:e3:61:aa:e6:98:b3:0b:09:79:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fd74deb4184426fa62225b6120c36706f737b8e2 Validity Not Before: Dec 20 05:00:48 2025 GMT Not After : Dec 21 05:00:48 2025 GMT Subject: CN=3b63c0050044fde4051ad2ea4f21e1c41aa4d625 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:1c:c0:ce:37:00:bd:d8:26:28:98:80:8f:0f: ad:71:8e:0f:43:15:23:f5:84:88:65:b4:2b:53:01: 52:ec:dc:f0:e8:2e:1f:65:4b:b3:3c:66:d2:3a:95: 86:cd:e1:50:0d:ac:42:19:7a:89:96:a4:72:39:19: 6f:21:5a:b1:af:f8:e8:94:29:5f:91:ca:96:2f:61: 4e:a2:e5:89:0a:9c:e2:25:29:76:ac:77:ef:d7:fc: 64:61:5f:12:93:10:a9:76:89:76:64:3a:be:6e:43: 24:f9:8f:ea:28:62:c2:ef:b5:17:15:09:6b:29:25: 44:c0:9b:08:42:74:fe:b3:52:58:01:19:4f:ab:f4: 59:5c:b2:a6:c8:d0:88:ab:56:4c:f1:0d:fb:7f:40: 58:35:e4:ec:38:ff:07:2b:77:97:ba:c1:3a:e9:12: ef:22:22:b4:13:94:4c:be:b2:3d:50:76:cb:bf:08: 02:73:1c:b7:e0:75:22:2c:77:29:e8:5d:94:73:39: c1:e1:8b:c6:b3:b3:95:29:be:df:3f:a7:26:f4:79: 86:75:ae:50:3b:b9:70:ef:70:3e:ca:2a:21:8f:20: 49:ec:a9:55:bb:50:dc:2a:a3:5a:0c:64:99:12:18: cc:4b:97:4d:ee:ef:ef:9c:36:42:76:15:67:12:f6: 9f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:63:C0:05:00:44:FD:E4:05:1A:D2:EA:4F:21:E1:C4:1A:A4:D6:25 X509v3 Authority Key Identifier: keyid:FD:74:DE:B4:18:44:26:FA:62:22:5B:61:20:C3:67:06:F7:37:B8:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XTetBhEJvpiIlthIMNnBvc3uOI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:57:39:65:66:6c:ba:60:01:42:8d:e5:27:f1:6c:d0:0c:29: fa:e1:c8:c1:59:59:54:5e:1b:1c:58:54:8c:0e:04:21:91:7f: bb:b5:1c:f1:94:47:d3:b8:1a:7a:94:cf:fe:46:93:65:bc:a8: ba:64:e6:0c:e5:49:d6:cb:66:f3:23:d2:15:c0:94:3c:98:34: a0:87:73:0d:b4:8f:c8:60:cd:55:3c:c8:2c:24:94:2c:fc:38: a8:36:d5:eb:01:6f:03:1a:88:7f:95:5b:23:03:67:66:a1:91: 01:1c:ca:7c:16:ed:5e:01:c9:48:5c:c7:98:7b:69:e8:64:39: ea:7a:d8:ef:0a:48:a4:a7:70:67:05:d0:ed:ae:77:70:cd:ea: 85:cc:9c:cf:e7:f6:14:72:9f:87:a2:7f:62:4e:0a:4a:82:38: 75:8c:90:00:16:b3:12:51:d2:f6:ec:0a:b2:61:77:8b:d7:2b: 80:96:ff:06:13:71:2d:68:ce:d4:f0:f2:35:d2:7e:0a:99:37: ec:e6:f9:d7:97:75:81:6f:a1:1a:9f:56:f3:f8:89:9a:8d:fa: f1:0c:f7:34:4f:88:5c:0e:87:c7:c0:61:64:44:95:90:af:2e: 49:4d:d6:12:df:31:96:73:a9:f9:6d:e8:19:ba:6d:8d:33:0e: 0d:09:c9:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6IcAzybrjYarmmLMLCXkwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkNzRkZWI0MTg0NDI2ZmE2MjIyNWI2MTIwYzM2NzA2Zjcz N2I4ZTIwHhcNMjUxMjIwMDUwMDQ4WhcNMjUxMjIxMDUwMDQ4WjAzMTEwLwYDVQQD EygzYjYzYzAwNTAwNDRmZGU0MDUxYWQyZWE0ZjIxZTFjNDFhYTRkNjI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3xzAzjcAvdgmKJiAjw+tcY4PQxUj 9YSIZbQrUwFS7Nzw6C4fZUuzPGbSOpWGzeFQDaxCGXqJlqRyORlvIVqxr/jolClf kcqWL2FOouWJCpziJSl2rHfv1/xkYV8SkxCpdol2ZDq+bkMk+Y/qKGLC77UXFQlr KSVEwJsIQnT+s1JYARlPq/RZXLKmyNCIq1ZM8Q37f0BYNeTsOP8HK3eXusE66RLv IiK0E5RMvrI9UHbLvwgCcxy34HUiLHcp6F2UcznB4YvGs7OVKb7fP6cm9HmGda5Q O7lw73A+yiohjyBJ7KlVu1DcKqNaDGSZEhjMS5dN7u/vnDZCdhVnEvafyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDtjwAUARP3kBRrS6k8h4cQapNYlMB8GA1UdIwQY MBaAFP103rQYRCb6YiJbYSDDZwb3N7jiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX1hUZXRCaEVKdnBpSWx0aElNTm5CdmMzdU9JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8xODQ5MWYtYjA0ZC00YjBkLTkwN2It ZDU3MDVhZTM3MDE0LzEvX1hUZXRCaEVKdnBpSWx0aElNTm5CdmMzdU9JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi8xODQ5MWYtYjA0ZC00YjBkLTkwN2ItZDU3MDVhZTM3MDE0 LzEvX1hUZXRCaEVKdnBpSWx0aElNTm5CdmMzdU9JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn1c5ZWZs umABQo3lJ/Fs0Awp+uHIwVlZVF4bHFhUjA4EIZF/u7Uc8ZRH07gaepTP/kaTZbyo umTmDOVJ1stm8yPSFcCUPJg0oIdzDbSPyGDNVTzILCSULPw4qDbV6wFvAxqIf5Vb IwNnZqGRARzKfBbtXgHJSFzHmHtp6GQ56nrY7wpIpKdwZwXQ7a53cM3qhcycz+f2 FHKfh6J/Yk4KSoI4dYyQABazElHS9uwKsmF3i9crgJb/BhNxLWjO1PDyNdJ+Cpk3 7Ob515d1gW+hGp9W8/iJmo368Qz3NE+IXA6Hx8BhZESVkK8uSU3WEt8xlnOp+W3o GbptjTMODQnJRw== -----END CERTIFICATE-----Generated at Sat Dec 20 10:06:44 2025 by rpki-client