This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json) Hash identifier: u4Xth0BuSy73CLABVC6u5gL+s+/NXsnnADMZo6DX0Rw= Subject key identifier: 26:AE:5B:F3:F2:09:7E:6D:0B:06:9E:E8:36:0C:30:B5:67:B6:B7:CB Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb Certificate serial: 019B650D5804739B233AC47A53BD7B481447 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft Manifest number: 1730 Signing time: Sun 28 Dec 2025 13:02:11 +0000 Manifest this update: Sun 28 Dec 2025 13:02:11 +0000 Manifest next update: Mon 29 Dec 2025 13:02:11 +0000 Files and hashes: 1: kFAWzJxAiMhkm4NOvHOiD5PY66g.roa (hash: QJZEuzHLkJsVvRtJ8dcL8i0clH/1NRZmPUpPgEFazCw=) 2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: /g5gpM7v8OE6QMjSaujoe/p9zNVRUDhTk7Grfp4BFKo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:65:0d:58:04:73:9b:23:3a:c4:7a:53:bd:7b:48:14:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb Validity Not Before: Dec 28 13:02:11 2025 GMT Not After : Dec 29 13:02:11 2025 GMT Subject: CN=26ae5bf3f2097e6d0b069ee8360c30b567b6b7cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d0:16:ec:5c:9a:e3:0b:50:91:ec:6d:7b:dd: a8:69:a9:7a:30:cb:f5:f4:07:66:77:30:27:6f:f6: fc:07:03:eb:9a:d2:86:a8:d7:e8:5a:4b:2f:e7:6b: f8:7f:98:15:66:92:5d:b0:26:3a:50:f8:30:d6:11: d5:3d:1e:30:a0:22:0d:fc:af:fd:68:1c:10:b1:df: 60:22:47:a9:3a:68:e4:8f:cd:bd:32:8a:dd:a5:f7: f8:1a:40:c0:47:9c:66:aa:f4:11:47:8f:1f:ca:15: 26:a6:b2:cb:55:e6:bd:20:0a:93:95:fa:94:e7:1f: 7c:02:0c:78:ab:d8:13:8e:6a:82:38:56:c3:1f:a5: 78:bd:98:07:8a:5c:01:70:9b:4c:2f:42:3b:89:52: f8:2e:21:b6:33:17:4c:b8:73:04:57:d8:00:7a:74: 7a:ac:ca:30:6e:0e:1e:45:d8:e9:7b:72:a3:9f:0e: e0:ee:42:72:29:e7:b3:22:33:ee:58:64:ed:2b:62: a5:08:ee:a7:ca:56:e2:9f:a9:69:61:b2:5b:64:63: 11:82:c6:a1:09:4a:88:6f:42:8f:fe:53:37:46:41: 0f:14:ec:01:c9:11:7e:b0:f3:d4:b9:a0:95:2c:c6: 0b:0e:1f:4f:15:e0:22:8d:08:60:f3:e8:42:9f:31: 06:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:AE:5B:F3:F2:09:7E:6D:0B:06:9E:E8:36:0C:30:B5:67:B6:B7:CB X509v3 Authority Key Identifier: keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:7a:aa:11:f1:82:02:08:62:c0:88:2c:6f:42:21:e8:e8:65: 50:ad:5a:9a:e1:06:7a:bf:3e:b4:18:a2:84:91:03:4c:ec:96: 2b:bb:2b:9a:6a:df:a8:2e:57:de:88:71:0d:94:5e:17:05:cb: 85:ec:74:0d:60:53:b5:9c:9e:21:2c:5a:10:a6:71:ae:ac:6d: e3:2a:78:cb:50:0e:4e:1c:a1:2d:ed:3b:05:9f:4b:c8:bb:08: 3e:4d:03:ad:cc:94:54:66:87:03:f6:03:51:ea:ca:fb:0a:6a: 38:53:02:39:6f:54:25:dd:44:02:87:93:a8:b3:3a:9a:59:44: bd:86:81:4e:a1:e6:6d:ae:fd:20:e8:e5:17:53:06:17:2d:c3: 39:a8:38:ac:5b:f1:81:ed:18:28:42:f2:2d:69:3a:aa:5d:31: 0f:89:65:27:a7:84:91:a2:20:c8:1a:ea:24:98:94:26:14:be: 27:47:a5:59:30:57:3f:e2:a5:7a:f6:1f:e1:4a:b6:84:6b:fb: 07:ee:67:fd:90:b1:73:08:06:6b:bd:35:39:21:c2:b7:28:8e: 06:17:8f:7a:c5:b1:4c:9c:0a:d7:ad:a6:80:9c:87:89:f8:0c: cd:be:96:8b:97:46:b5:2f:3c:67:c8:af:96:85:c4:4c:f0:78: cb:6a:3a:ab -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtlDVgEc5sjOsR6U717SBRHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1YTAxOWNiNTRkNzAwYTFiMWM1MGU4ZjkwZWJlZTJhNWVl YTU3YmIwHhcNMjUxMjI4MTMwMjExWhcNMjUxMjI5MTMwMjExWjAzMTEwLwYDVQQD EygyNmFlNWJmM2YyMDk3ZTZkMGIwNjllZTgzNjBjMzBiNTY3YjZiN2NiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmdAW7Fya4wtQkexte92oaal6MMv1 9AdmdzAnb/b8BwPrmtKGqNfoWksv52v4f5gVZpJdsCY6UPgw1hHVPR4woCIN/K/9 aBwQsd9gIkepOmjkj829Mordpff4GkDAR5xmqvQRR48fyhUmprLLVea9IAqTlfqU 5x98Agx4q9gTjmqCOFbDH6V4vZgHilwBcJtML0I7iVL4LiG2MxdMuHMEV9gAenR6 rMowbg4eRdjpe3Kjnw7g7kJyKeezIjPuWGTtK2KlCO6nylbin6lpYbJbZGMRgsah CUqIb0KP/lM3RkEPFOwByRF+sPPUuaCVLMYLDh9PFeAijQhg8+hCnzEGhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCauW/PyCX5tCwae6DYMMLVntrfLMB8GA1UdIwQY MBaAFMWgGctU1wChscUOj5Dr7ipe6le7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQt MzFhM2VjZjFiZGI2LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQtMzFhM2VjZjFiZGI2 LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMnqqEfGC AghiwIgsb0Ih6OhlUK1amuEGer8+tBiihJEDTOyWK7srmmrfqC5X3ohxDZReFwXL hex0DWBTtZyeISxaEKZxrqxt4yp4y1AOThyhLe07BZ9LyLsIPk0DrcyUVGaHA/YD UerK+wpqOFMCOW9UJd1EAoeTqLM6mllEvYaBTqHmba79IOjlF1MGFy3DOag4rFvx ge0YKELyLWk6ql0xD4llJ6eEkaIgyBrqJJiUJhS+J0elWTBXP+KlevYf4Uq2hGv7 B+5n/ZCxcwgGa701OSHCtyiOBhePesWxTJwK162mgJyHifgMzb6Wi5dGtS88Z8iv loXETPB4y2o6qw== -----END CERTIFICATE-----Generated at Sun Dec 28 16:30:05 2025 by rpki-client