This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft File: CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft (raw, json) Hash identifier: uqkzUwdWAMKWb0YRoxoeiSB0eEZLbmFtpbCeDLoZby8= Subject key identifier: EA:F1:79:BC:FB:05:84:BC:D5:44:F3:D2:47:DF:19:BE:C1:6F:C4:65 Authority key identifier: 08:A5:C3:AB:A4:21:B7:8A:7D:5D:09:B7:5B:4C:E3:BE:52:73:CA:AC Certificate issuer: /CN=08a5c3aba421b78a7d5d09b75b4ce3be5273caac Certificate serial: 019B0F6E7F4A072AC3021A5B6485792EBE90 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft Manifest number: 1775 Signing time: Thu 11 Dec 2025 22:00:58 +0000 Manifest this update: Thu 11 Dec 2025 22:00:58 +0000 Manifest next update: Fri 12 Dec 2025 22:00:58 +0000 Files and hashes: 1: CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl (hash: CFukGsbFkW1GeB/a2FD+nHEX+hwXBB7b0dk2+BstzpQ=) 2: yW1cS9Mx29vTOamtTRsFT6bLIXw.roa (hash: PZBuxnii3Pq+stD6k3qQUstIcPbrvHDexZJKpw32ONQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 22:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:6e:7f:4a:07:2a:c3:02:1a:5b:64:85:79:2e:be:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08a5c3aba421b78a7d5d09b75b4ce3be5273caac Validity Not Before: Dec 11 22:00:58 2025 GMT Not After : Dec 12 22:00:58 2025 GMT Subject: CN=eaf179bcfb0584bcd544f3d247df19bec16fc465 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c5:ed:b8:66:e4:82:6f:59:71:98:17:0b:b4: a2:a4:74:38:c3:ab:41:32:f1:04:cc:4a:0d:00:1b: e9:52:d0:20:a7:cd:e0:0f:06:d1:4c:c8:68:a7:dc: 6b:86:f0:77:ee:6c:a6:13:dc:79:42:ad:57:b7:3a: 18:09:24:a3:b7:5e:ad:40:cb:a4:6c:cf:f5:a8:ee: 57:00:ba:a6:0b:46:b2:49:91:3d:4e:d2:50:c7:5f: cc:1e:b7:78:32:81:b7:2b:49:3e:1d:1c:01:29:83: 40:5a:85:29:dd:aa:6a:97:f2:a3:e4:04:78:0a:10: 16:b0:a5:26:38:b4:5f:79:b9:3a:51:be:d3:5e:7d: 16:f0:25:99:c6:41:4a:e1:6a:79:b6:06:6c:b7:da: f2:7a:1e:de:dd:de:c4:1f:42:39:05:15:b0:92:d6: 32:26:7d:5c:eb:6a:f9:d4:e2:94:c2:73:76:e0:0f: dc:5f:c1:a4:2f:5b:a4:62:a1:e1:ae:7b:14:71:37: e3:13:af:79:35:ca:ee:0e:8f:8b:d2:ac:7c:e7:17: 26:94:cf:e6:3f:c6:82:f5:47:c5:28:60:e4:0b:12: 5b:18:8d:e6:af:4a:41:a2:19:f5:c1:1f:c4:ba:29: 58:ca:e4:ea:c6:72:23:38:98:5d:41:95:d9:a0:72: 51:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F1:79:BC:FB:05:84:BC:D5:44:F3:D2:47:DF:19:BE:C1:6F:C4:65 X509v3 Authority Key Identifier: keyid:08:A5:C3:AB:A4:21:B7:8A:7D:5D:09:B7:5B:4C:E3:BE:52:73:CA:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:cb:e6:bd:92:c7:fa:77:48:d9:b7:1d:39:de:7d:42:b5:12: 43:27:e3:11:3e:85:8b:a4:20:96:d5:da:4e:6a:c0:5b:95:e4: 2e:1a:ec:34:e8:1a:11:e4:d4:e2:26:fa:3f:3b:98:a5:24:ac: 29:aa:8d:3b:34:74:27:a7:61:0c:b5:b1:a4:c9:2a:6d:da:2c: 5a:44:7d:8d:76:3a:c9:47:88:19:be:34:17:bc:79:ab:4f:85: 5f:46:86:28:19:dc:cd:17:9f:bf:aa:b3:97:3c:f2:07:28:88: e6:f8:00:bb:b7:28:a3:6f:a4:6f:05:a7:7d:31:ad:30:5c:0f: 81:fc:fa:37:b1:de:41:32:0e:a6:a1:88:0d:c1:49:c3:f1:f3: ce:c1:dd:84:79:a1:ee:18:09:80:b3:7c:ec:c8:36:2d:df:de: 0c:ae:73:51:0d:e7:c4:ff:19:bb:85:b9:a9:0e:1b:9c:dd:e7: ce:56:33:12:5e:dd:b6:df:f5:90:9b:6d:e6:84:36:dc:95:11: 8e:83:ea:99:19:e1:13:d7:04:c3:fb:5d:b8:6a:47:b6:0b:c8: 28:a0:b6:fd:30:7f:1b:8a:f6:11:02:40:6f:9d:7b:d1:a8:ab: 91:9d:ca:54:2f:fc:43:94:30:06:a7:77:bf:6d:a7:61:83:3e: 22:36:92:dd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPbn9KByrDAhpbZIV5Lr6QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4YTVjM2FiYTQyMWI3OGE3ZDVkMDliNzViNGNlM2JlNTI3 M2NhYWMwHhcNMjUxMjExMjIwMDU4WhcNMjUxMjEyMjIwMDU4WjAzMTEwLwYDVQQD EyhlYWYxNzliY2ZiMDU4NGJjZDU0NGYzZDI0N2RmMTliZWMxNmZjNDY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvcXtuGbkgm9ZcZgXC7SipHQ4w6tB MvEEzEoNABvpUtAgp83gDwbRTMhop9xrhvB37mymE9x5Qq1XtzoYCSSjt16tQMuk bM/1qO5XALqmC0aySZE9TtJQx1/MHrd4MoG3K0k+HRwBKYNAWoUp3apql/Kj5AR4 ChAWsKUmOLRfebk6Ub7TXn0W8CWZxkFK4Wp5tgZst9ryeh7e3d7EH0I5BRWwktYy Jn1c62r51OKUwnN24A/cX8GkL1ukYqHhrnsUcTfjE695NcruDo+L0qx85xcmlM/m P8aC9UfFKGDkCxJbGI3mr0pBohn1wR/EuilYyuTqxnIjOJhdQZXZoHJReQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOrxebz7BYS81UTz0kffGb7Bb8RlMB8GA1UdIwQY MBaAFAilw6ukIbeKfV0Jt1tM475Sc8qsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0tYRHE2UWh0NHA5WFFtM1cwemp2bEp6eXF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My83YmQ4Y2YtMmE2MS00Yjc0LTg2MGQt MzY0ZmFlN2M3MmM0LzEvQ0tYRHE2UWh0NHA5WFFtM1cwemp2bEp6eXF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My83YmQ4Y2YtMmE2MS00Yjc0LTg2MGQtMzY0ZmFlN2M3MmM0 LzEvQ0tYRHE2UWh0NHA5WFFtM1cwemp2bEp6eXF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB8vmvZLH +ndI2bcdOd59QrUSQyfjET6Fi6QgltXaTmrAW5XkLhrsNOgaEeTU4ib6PzuYpSSs KaqNOzR0J6dhDLWxpMkqbdosWkR9jXY6yUeIGb40F7x5q0+FX0aGKBnczRefv6qz lzzyByiI5vgAu7coo2+kbwWnfTGtMFwPgfz6N7HeQTIOpqGIDcFJw/HzzsHdhHmh 7hgJgLN87Mg2Ld/eDK5zUQ3nxP8Zu4W5qQ4bnN3nzlYzEl7dtt/1kJtt5oQ23JUR joPqmRnhE9cEw/tduGpHtgvIKKC2/TB/G4r2EQJAb5170airkZ3KVC/8Q5QwBqd3 v22nYYM+IjaS3Q== -----END CERTIFICATE-----Generated at Fri Dec 12 08:28:48 2025 by rpki-client