This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft File: X32laK0Ce54knBPiI9MidpiBop8.mft (raw, json) Hash identifier: lrxTlYCJoXAkobqZeC3KKLrv4bof3M21PiLNpc3n7jM= Subject key identifier: 37:F7:C4:0A:CF:CE:83:3B:97:75:89:87:3A:21:9A:A6:4A:02:E6:99 Authority key identifier: 5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F Certificate issuer: /CN=5f7da568ad027b9e249c13e223d322769881a29f Certificate serial: 019B243F3C99BB435C940AD7A5C86F3B646E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft Manifest number: 0D00 Signing time: Mon 15 Dec 2025 23:01:22 +0000 Manifest this update: Mon 15 Dec 2025 23:01:22 +0000 Manifest next update: Tue 16 Dec 2025 23:01:22 +0000 Files and hashes: 1: 1-Cyzwb2XQqDkpOsGwOgAeJVNVbQ.roa (hash: DumSU40J40K0zKa52TzMzNWl0OO8xKRPkll5x5+k/cY=) 2: CiSXDCdW3LMwjv8iJ3B2mY7zojU.roa (hash: xoZ4D0sXI5qWTDuig3N1rhh1l7zRYo3/rWNsiYjXVLw=) 3: Dhg938LLNxihNYriqStR3oqs6Jg.roa (hash: Aj+6lvIDsodEZ6I55Us8ZFj5GtVjSmfFFjL8I/MfYqo=) 4: Ip8huaIK21qXcV1uFM12bMRhsAc.roa (hash: +deXUeKbtAB4FcOD/Fpx9fIrQPH8oKg+/d89Ce9TGGY=) 5: X32laK0Ce54knBPiI9MidpiBop8.crl (hash: Pm1+0TvP6Aj7PLHcYl2OW1B8yGSnimfu6q/ICFUHfeA=) 6: XjVu2IyXljFzhSvYma_h3-clfVU.roa (hash: nT21YokFB5zQvbm3JPkkRJDjEHGU38C24xQDpQHQGAI=) 7: khLj3siTURlsY89-Vmgedp1s5K4.roa (hash: xKMxdzBhNZmeRr32A6V0s5rbV7HKraIiuV6YTmkyQCI=) 8: oSGRjgd5g7uxmIyMg55GeDp1lcQ.roa (hash: yVVI9w+n8DQ5LZ0pU0EZPfP/S8D3Imwu6pg6ds8XII0=) 9: s84uwW_-i_SHLp2X5wNbbXCbos0.roa (hash: XmZwP1Dphpy/OpROhUP0RXS2PeMw5xbgxdsjXIheFhc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 22:36:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:24:3f:3c:99:bb:43:5c:94:0a:d7:a5:c8:6f:3b:64:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f7da568ad027b9e249c13e223d322769881a29f Validity Not Before: Dec 15 23:01:22 2025 GMT Not After : Dec 16 23:01:22 2025 GMT Subject: CN=37f7c40acfce833b977589873a219aa64a02e699 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b7:b6:14:8e:0b:b9:63:b3:76:2b:74:c9:9f: 64:ec:d8:6d:08:d8:d6:6c:41:a8:d3:27:51:44:c9: 4d:ff:c4:7b:7c:04:7b:92:33:ee:05:8c:ca:a0:95: f5:ff:b8:a5:82:d6:b4:3a:7a:bc:37:67:12:9d:1b: 08:fe:aa:a2:48:54:8d:81:ae:13:d6:fd:97:6d:35: ad:3b:7c:62:4c:f9:d7:52:bc:a9:3d:36:96:a7:41: 72:2f:12:8a:1e:35:48:fa:ed:55:c4:84:9f:b4:ab: bc:e1:c3:e8:22:58:c5:e1:80:0b:38:a6:49:f4:3d: a3:60:2d:8a:d4:f1:9b:95:e0:d3:67:fa:b5:4d:ad: 85:52:6d:09:0f:d2:84:a2:0c:6e:8d:46:0f:e3:90: 96:f8:29:f7:a8:a6:d1:36:04:bc:02:a6:2a:2c:3e: 83:19:8b:21:11:31:3b:fc:6c:9f:cd:66:23:e4:e2: 2c:d4:ba:2b:4e:97:98:2c:80:eb:91:23:3b:69:68: ed:9a:aa:12:ce:7b:56:b6:8a:cc:5d:d7:17:56:27: 29:c4:59:44:39:86:b2:79:7f:a3:38:34:65:d8:bf: 0d:30:a4:ec:42:8d:c6:4d:f7:d0:c0:f9:ad:46:c0: 15:8a:61:bb:3c:85:a1:38:cb:a4:66:5f:ab:3c:6f: 49:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:F7:C4:0A:CF:CE:83:3B:97:75:89:87:3A:21:9A:A6:4A:02:E6:99 X509v3 Authority Key Identifier: keyid:5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:19:86:71:bc:e3:99:b9:4a:d8:65:71:54:02:91:b2:a9:1c: 9a:2a:5e:68:32:8d:c1:24:53:a9:4f:24:fd:df:82:07:4d:c8: 11:0d:1e:1e:5e:9b:60:d8:c1:c0:d5:b4:74:a5:86:cc:23:a5: 4f:3b:be:36:25:c0:48:8f:68:4d:71:0c:b7:19:71:27:e2:11: 62:46:8e:3e:72:9a:a6:0d:ed:78:fa:b0:87:ce:5a:6d:13:b1: 10:78:ab:f9:2e:05:73:8b:ed:a8:21:e4:68:f2:58:50:a6:54: a9:aa:3a:79:33:bf:2e:66:38:98:ab:a2:98:d0:01:90:00:60: 93:3d:9c:a5:13:86:fc:82:30:36:75:74:4e:f0:9c:9f:9c:01: 78:8f:41:c7:02:a8:ad:a8:b3:80:1b:57:19:3d:78:a8:87:24: 80:68:2d:a8:19:4c:47:42:f4:42:5c:48:87:99:3d:7f:03:21: 65:d4:fc:2d:d0:2d:3e:55:87:5d:fa:b7:48:cc:47:71:60:55: fd:31:2b:29:a5:71:4a:f7:db:d6:4f:9f:0c:c4:dd:75:d6:ab: 5f:ad:3b:c9:ae:c0:13:41:8c:3d:1e:3f:26:8e:e5:4d:9e:57: cb:47:bf:01:8d:a9:ec:8f:10:6e:fc:53:06:2b:db:f8:da:c5: 1a:65:f1:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZskPzyZu0NclArXpchvO2RuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmN2RhNTY4YWQwMjdiOWUyNDljMTNlMjIzZDMyMjc2OTg4 MWEyOWYwHhcNMjUxMjE1MjMwMTIyWhcNMjUxMjE2MjMwMTIyWjAzMTEwLwYDVQQD EygzN2Y3YzQwYWNmY2U4MzNiOTc3NTg5ODczYTIxOWFhNjRhMDJlNjk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLe2FI4LuWOzdit0yZ9k7NhtCNjW bEGo0ydRRMlN/8R7fAR7kjPuBYzKoJX1/7ilgta0Onq8N2cSnRsI/qqiSFSNga4T 1v2XbTWtO3xiTPnXUrypPTaWp0FyLxKKHjVI+u1VxISftKu84cPoIljF4YALOKZJ 9D2jYC2K1PGbleDTZ/q1Ta2FUm0JD9KEogxujUYP45CW+Cn3qKbRNgS8AqYqLD6D GYshETE7/GyfzWYj5OIs1LorTpeYLIDrkSM7aWjtmqoSzntWtorMXdcXVicpxFlE OYayeX+jODRl2L8NMKTsQo3GTffQwPmtRsAVimG7PIWhOMukZl+rPG9JZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDf3xArPzoM7l3WJhzohmqZKAuaZMB8GA1UdIwQY MBaAFF99pWitAnueJJwT4iPTInaYgaKfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWDMybGFLMENlNTRrbkJQaUk5TWlkcGlCb3A4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS8wNTQ4OGYtZjRlMC00ZTZjLTk0ZjUt Mzc1NzUzOWMyYWM5LzEvWDMybGFLMENlNTRrbkJQaUk5TWlkcGlCb3A4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS8wNTQ4OGYtZjRlMC00ZTZjLTk0ZjUtMzc1NzUzOWMyYWM5 LzEvWDMybGFLMENlNTRrbkJQaUk5TWlkcGlCb3A4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABhmGcbzj mblK2GVxVAKRsqkcmipeaDKNwSRTqU8k/d+CB03IEQ0eHl6bYNjBwNW0dKWGzCOl Tzu+NiXASI9oTXEMtxlxJ+IRYkaOPnKapg3tePqwh85abROxEHir+S4Fc4vtqCHk aPJYUKZUqao6eTO/LmY4mKuimNABkABgkz2cpROG/IIwNnV0TvCcn5wBeI9BxwKo raizgBtXGT14qIckgGgtqBlMR0L0QlxIh5k9fwMhZdT8LdAtPlWHXfq3SMxHcWBV /TErKaVxSvfb1k+fDMTdddarX607ya7AE0GMPR4/Jo7lTZ5Xy0e/AY2p7I8QbvxT Bivb+NrFGmXxow== -----END CERTIFICATE-----Generated at Tue Dec 16 04:07:36 2025 by rpki-client