This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json) Hash identifier: gOB2Hrl+FUB+P6zEfAgW0NNoZ+jy4gytO9A3iouRdrM= Subject key identifier: FC:19:EB:5F:79:FE:11:63:D3:E5:C2:CB:3E:7D:6D:1B:99:19:E8:13 Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb Certificate serial: 019B15DE3A566D5E9DEC79134493F769AB9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft Manifest number: 1707 Signing time: Sat 13 Dec 2025 04:00:44 +0000 Manifest this update: Sat 13 Dec 2025 04:00:44 +0000 Manifest next update: Sun 14 Dec 2025 04:00:44 +0000 Files and hashes: 1: kFAWzJxAiMhkm4NOvHOiD5PY66g.roa (hash: QJZEuzHLkJsVvRtJ8dcL8i0clH/1NRZmPUpPgEFazCw=) 2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: JT45G76LGjH8BSbGNnf0fYF+MZSYJrIF3xHgYwkRvO0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 04:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:15:de:3a:56:6d:5e:9d:ec:79:13:44:93:f7:69:ab:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb Validity Not Before: Dec 13 04:00:44 2025 GMT Not After : Dec 14 04:00:44 2025 GMT Subject: CN=fc19eb5f79fe1163d3e5c2cb3e7d6d1b9919e813 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:cb:20:7c:57:da:de:58:0b:a3:a6:5e:b2:33: c8:4a:47:fc:cf:56:9e:d8:6c:0c:4a:a6:8a:76:07: a1:a2:ca:e8:fe:6c:ad:44:25:6d:27:a9:0b:a7:73: 89:49:c2:e6:7c:f5:43:47:54:00:f8:18:d5:a8:22: e2:16:a5:d2:1b:b2:2b:8b:91:36:aa:88:0f:15:c7: 2a:20:41:08:6f:a0:4b:de:13:41:30:b3:39:37:1d: e0:f8:66:81:8b:56:a0:0f:3e:74:43:65:f4:61:91: 53:42:1e:6d:ef:5b:d1:b6:e7:fc:f6:51:9c:68:45: 91:06:44:22:82:21:06:34:29:1b:cf:47:72:62:84: 32:7e:26:8f:d5:48:b4:44:df:b6:dc:3b:5c:79:b1: 95:fc:f5:47:4f:53:c8:2e:ae:0d:11:b7:09:2c:64: 0b:9f:92:25:72:6e:2f:93:33:86:db:ba:74:13:14: f2:35:6a:54:4e:6a:66:4f:38:ad:b7:89:6c:a8:ba: d2:2d:ab:8a:9b:57:71:bd:2d:05:d0:83:79:2f:b7: 5f:a7:a5:65:e5:28:9f:c3:a3:57:ac:a3:18:fe:c5: 70:cf:52:c4:2a:a7:74:c3:a8:64:dc:5b:29:ee:77: 61:41:22:8d:1e:7c:0c:95:15:ac:63:4d:b3:ab:2c: 30:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:19:EB:5F:79:FE:11:63:D3:E5:C2:CB:3E:7D:6D:1B:99:19:E8:13 X509v3 Authority Key Identifier: keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:15:37:1e:30:f2:a2:0a:67:29:a3:59:03:14:de:bc:90:a4: f5:15:30:23:12:6b:e9:f7:e0:d1:a0:5b:9f:68:33:74:9a:c9: c0:fa:95:23:5b:e4:f6:34:c5:94:ba:57:09:94:3b:f5:04:be: d3:97:c8:01:c7:3a:44:96:c2:8f:17:73:11:6c:6a:06:05:1b: 75:6e:a0:dc:a6:d7:80:09:ee:bb:d9:20:c0:b8:dc:4c:cd:71: 55:bd:5b:42:66:0e:a6:29:e8:3c:ab:62:40:00:76:bb:78:4f: b8:09:86:8c:6e:4d:6f:e0:03:10:82:89:43:5e:bc:ed:8c:ac: 11:b3:02:2c:98:dd:81:64:08:96:f4:10:4e:fb:eb:a6:2c:30: 19:52:82:46:e2:77:64:e6:1c:91:40:eb:d8:3a:a6:c9:d2:50: e4:6c:51:09:e7:7a:63:e6:b6:df:03:fb:93:60:51:9f:de:ef: 68:e9:66:fb:8f:dc:1b:96:93:b1:82:57:64:1f:69:08:09:0a: 09:39:e0:36:f2:40:01:03:09:fb:9a:a3:57:fa:5e:6f:42:ad: 02:20:9e:3c:33:30:cd:23:17:2a:7e:e9:9f:5a:dd:67:49:be: 8a:9f:c4:a9:0b:2a:10:b3:f6:2f:ac:5c:6b:58:65:02:d7:65: 6a:85:93:2d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsV3jpWbV6d7HkTRJP3aaubMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1YTAxOWNiNTRkNzAwYTFiMWM1MGU4ZjkwZWJlZTJhNWVl YTU3YmIwHhcNMjUxMjEzMDQwMDQ0WhcNMjUxMjE0MDQwMDQ0WjAzMTEwLwYDVQQD EyhmYzE5ZWI1Zjc5ZmUxMTYzZDNlNWMyY2IzZTdkNmQxYjk5MTllODEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8sgfFfa3lgLo6ZesjPISkf8z1ae 2GwMSqaKdgehosro/mytRCVtJ6kLp3OJScLmfPVDR1QA+BjVqCLiFqXSG7Iri5E2 qogPFccqIEEIb6BL3hNBMLM5Nx3g+GaBi1agDz50Q2X0YZFTQh5t71vRtuf89lGc aEWRBkQigiEGNCkbz0dyYoQyfiaP1Ui0RN+23DtcebGV/PVHT1PILq4NEbcJLGQL n5Ilcm4vkzOG27p0ExTyNWpUTmpmTzitt4lsqLrSLauKm1dxvS0F0IN5L7dfp6Vl 5Sifw6NXrKMY/sVwz1LEKqd0w6hk3Fsp7ndhQSKNHnwMlRWsY02zqywwhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPwZ6195/hFj0+XCyz59bRuZGegTMB8GA1UdIwQY MBaAFMWgGctU1wChscUOj5Dr7ipe6le7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQt MzFhM2VjZjFiZGI2LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQtMzFhM2VjZjFiZGI2 LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgBU3HjDy ogpnKaNZAxTevJCk9RUwIxJr6ffg0aBbn2gzdJrJwPqVI1vk9jTFlLpXCZQ79QS+ 05fIAcc6RJbCjxdzEWxqBgUbdW6g3KbXgAnuu9kgwLjcTM1xVb1bQmYOpinoPKti QAB2u3hPuAmGjG5Nb+ADEIKJQ1687YysEbMCLJjdgWQIlvQQTvvrpiwwGVKCRuJ3 ZOYckUDr2DqmydJQ5GxRCed6Y+a23wP7k2BRn97vaOlm+4/cG5aTsYJXZB9pCAkK CTngNvJAAQMJ+5qjV/peb0KtAiCePDMwzSMXKn7pn1rdZ0m+ip/EqQsqELP2L6xc a1hlAtdlaoWTLQ== -----END CERTIFICATE-----Generated at Sat Dec 13 12:44:45 2025 by rpki-client