This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json) Hash identifier: rEf33Kz5X9+FBmIBIVPf7hYdElc57jsjaRwXIigcDwc= Subject key identifier: 07:44:CC:6F:DF:F4:C2:AC:7B:4D:AB:73:25:A6:C7:59:E5:53:55:96 Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb Certificate serial: 019B0E2505723E2080955E083E68D9889F1C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft Manifest number: 1703 Signing time: Thu 11 Dec 2025 16:01:05 +0000 Manifest this update: Thu 11 Dec 2025 16:01:05 +0000 Manifest next update: Fri 12 Dec 2025 16:01:05 +0000 Files and hashes: 1: kFAWzJxAiMhkm4NOvHOiD5PY66g.roa (hash: QJZEuzHLkJsVvRtJ8dcL8i0clH/1NRZmPUpPgEFazCw=) 2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: k1uzZd026x8zN9vI6AV5Xjpa0+EEGTNJHu6s9Elp22o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:25:05:72:3e:20:80:95:5e:08:3e:68:d9:88:9f:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb Validity Not Before: Dec 11 16:01:05 2025 GMT Not After : Dec 12 16:01:05 2025 GMT Subject: CN=0744cc6fdff4c2ac7b4dab7325a6c759e5535596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2d:57:f4:b2:24:27:f0:03:7b:ec:6f:ba:d0: 9a:20:9c:51:3d:c5:7e:80:93:07:8d:b3:5a:56:d3: 66:7b:15:7a:82:11:47:60:32:a6:91:79:ef:a7:70: 6f:2e:dd:3c:97:3f:72:e6:a0:4f:51:b5:31:cd:d2: c5:a2:67:cd:36:53:bc:f0:04:da:d0:7a:e1:b9:a5: dc:57:9a:8c:40:77:70:d2:58:83:6f:dc:b8:0d:0e: ff:9e:1c:9a:15:c0:02:d6:fe:ff:c9:bc:31:d9:c9: 6a:fb:ea:d2:9a:cd:bf:af:ec:c3:ba:53:95:45:d5: d9:a8:75:ae:8b:a7:38:f1:c0:97:94:fc:1b:f6:a6: 44:26:65:73:96:1b:a1:94:ae:b1:78:53:c7:17:68: f8:1d:52:b2:7b:40:68:ce:ae:58:35:43:ee:87:48: 75:9b:3a:4f:1e:b6:a4:a2:7c:a5:ac:30:43:ca:c5: 79:fa:02:e3:0e:90:32:43:ae:26:cc:6a:eb:28:40: 73:d0:4c:b8:b2:f0:42:88:cd:92:4e:01:a4:b1:e2: f5:60:13:72:81:71:96:17:40:9e:08:5f:95:39:a6: ac:93:37:fd:9c:4c:9c:c7:aa:f1:03:51:32:cf:43: 04:43:d8:9d:8c:4a:7e:95:84:84:d9:70:f3:78:27: 54:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:44:CC:6F:DF:F4:C2:AC:7B:4D:AB:73:25:A6:C7:59:E5:53:55:96 X509v3 Authority Key Identifier: keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:ad:bf:fa:6e:ea:45:e8:04:59:db:76:3e:80:d0:04:bd:e6: d8:75:15:ea:d6:43:0e:ec:d9:6b:9c:64:29:a7:bb:9c:c6:46: bf:7d:a3:c8:b3:62:9b:f6:a0:87:b3:05:20:df:44:6a:8c:68: bd:50:01:ac:4b:bb:55:d4:89:8a:ce:d7:c0:17:73:bf:c3:8d: b0:07:04:4f:05:04:e8:00:22:81:09:05:b4:28:a3:2a:ef:b2: ca:95:73:86:8f:8c:ed:16:0e:1e:6e:7b:40:85:51:6d:87:b3: 9d:db:4e:9c:00:79:31:24:1f:ac:b6:7b:91:ee:70:a9:b6:e8: 13:7a:27:ef:83:39:31:b8:28:41:6c:1d:88:db:d3:00:07:3d: 92:60:8d:f3:85:b3:9b:2d:48:b4:d8:9e:f9:4b:c2:c6:6e:a7: 98:ac:e2:3a:e6:7f:51:11:d6:7b:f0:7b:b5:e7:26:28:4b:23: b9:c2:04:b4:86:1e:b1:a0:75:25:e2:19:ac:83:6d:9d:54:e6: a2:35:3f:f3:c7:67:2f:1a:6b:af:0a:d3:39:4b:ed:fb:e2:1a: 18:27:15:fa:25:fa:34:78:d8:3f:e0:21:14:cf:61:a9:c5:ad: 1c:73:68:a4:6b:6c:0b:7e:74:1f:ea:c6:14:a4:5b:d3:da:5a: dd:f1:f4:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOJQVyPiCAlV4IPmjZiJ8cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1YTAxOWNiNTRkNzAwYTFiMWM1MGU4ZjkwZWJlZTJhNWVl YTU3YmIwHhcNMjUxMjExMTYwMTA1WhcNMjUxMjEyMTYwMTA1WjAzMTEwLwYDVQQD EygwNzQ0Y2M2ZmRmZjRjMmFjN2I0ZGFiNzMyNWE2Yzc1OWU1NTM1NTk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuS1X9LIkJ/ADe+xvutCaIJxRPcV+ gJMHjbNaVtNmexV6ghFHYDKmkXnvp3BvLt08lz9y5qBPUbUxzdLFomfNNlO88ATa 0HrhuaXcV5qMQHdw0liDb9y4DQ7/nhyaFcAC1v7/ybwx2clq++rSms2/r+zDulOV RdXZqHWui6c48cCXlPwb9qZEJmVzlhuhlK6xeFPHF2j4HVKye0Bozq5YNUPuh0h1 mzpPHrakonylrDBDysV5+gLjDpAyQ64mzGrrKEBz0Ey4svBCiM2STgGkseL1YBNy gXGWF0CeCF+VOaaskzf9nEycx6rxA1Eyz0MEQ9idjEp+lYSE2XDzeCdUNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAdEzG/f9MKse02rcyWmx1nlU1WWMB8GA1UdIwQY MBaAFMWgGctU1wChscUOj5Dr7ipe6le7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQt MzFhM2VjZjFiZGI2LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQtMzFhM2VjZjFiZGI2 LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWK2/+m7q RegEWdt2PoDQBL3m2HUV6tZDDuzZa5xkKae7nMZGv32jyLNim/agh7MFIN9Eaoxo vVABrEu7VdSJis7XwBdzv8ONsAcETwUE6AAigQkFtCijKu+yypVzho+M7RYOHm57 QIVRbYezndtOnAB5MSQfrLZ7ke5wqbboE3on74M5MbgoQWwdiNvTAAc9kmCN84Wz my1ItNie+UvCxm6nmKziOuZ/URHWe/B7tecmKEsjucIEtIYesaB1JeIZrINtnVTm ojU/88dnLxprrwrTOUvt++IaGCcV+iX6NHjYP+AhFM9hqcWtHHNopGtsC350H+rG FKRb09pa3fH09A== -----END CERTIFICATE-----Generated at Thu Dec 11 23:08:03 2025 by rpki-client