This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft File: mXyCWBNDX7ARVDjuP2B2N869jo4.mft (raw, json) Hash identifier: WiJFRqFpG3d+j2vAbKmAmDRbk2AjW6Qcuc7Xu/5mUZA= Subject key identifier: B7:2C:A2:62:C4:EE:B4:15:8E:9A:45:32:05:8E:02:B7:EB:38:2B:00 Authority key identifier: 99:7C:82:58:13:43:5F:B0:11:54:38:EE:3F:60:76:37:CE:BD:8E:8E Certificate issuer: /CN=997c825813435fb0115438ee3f607637cebd8e8e Certificate serial: 019AD0FDD40DF5E37F070FF7C1554F4C8446 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft Manifest number: 30 Signing time: Sat 29 Nov 2025 19:01:26 +0000 Manifest this update: Sat 29 Nov 2025 19:01:26 +0000 Manifest next update: Sun 30 Nov 2025 19:01:26 +0000 Files and hashes: 1: PqvM7y_EnO197blIAFWJlGm7zPg.roa (hash: j3Px2lMJPmqVRk9ekcnvnW8pxUt/aHjy6HcH1LT7SIs=) 2: mXyCWBNDX7ARVDjuP2B2N869jo4.crl (hash: mUQ3jR4s3XwKNm52wJq+Sja1n7n31JeUNyW4Kp3YjjU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.crl rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 30 Nov 2025 19:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:d0:fd:d4:0d:f5:e3:7f:07:0f:f7:c1:55:4f:4c:84:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=997c825813435fb0115438ee3f607637cebd8e8e Validity Not Before: Nov 29 19:01:26 2025 GMT Not After : Nov 30 19:01:26 2025 GMT Subject: CN=b72ca262c4eeb4158e9a4532058e02b7eb382b00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:77:66:97:a7:05:3b:a9:6f:cb:ba:f0:ce:a5: a4:fa:17:cf:74:ca:9a:58:bc:76:56:6a:1a:c9:11: b5:d4:6f:21:ac:e2:4f:bd:c6:c9:ba:35:a3:27:77: bd:60:18:37:59:b5:5c:9b:95:30:37:0f:a3:4e:15: f9:74:1a:b5:8d:99:cc:ba:aa:5f:8a:ee:8d:f9:ec: 82:25:2e:bd:7f:9c:b0:e7:70:b7:ab:99:61:ca:70: 07:f4:27:5d:65:75:ea:cd:1d:04:27:f0:d7:9e:32: f3:ec:13:5d:f0:6a:16:1c:fd:77:e7:6d:d3:f1:2e: 81:17:d7:a7:fd:a1:ee:11:66:51:0c:2b:e4:b0:63: 62:54:a6:f4:fc:b4:ea:42:33:14:4d:89:ca:20:ca: b0:53:fa:41:cf:e7:49:6b:cc:39:a9:5b:cc:78:68: b2:3d:b5:6a:1a:8d:82:22:bc:68:b5:1e:0c:c1:41: 2c:fa:d1:e0:89:b3:4b:3d:75:91:95:4f:2f:ca:43: 9c:97:f4:71:a0:89:87:2a:f3:9f:29:3d:88:93:6d: e3:6a:b8:3a:23:c4:92:35:9d:b4:8d:51:6c:71:6f: ae:5f:50:e1:85:3d:25:85:06:af:b9:2e:b2:74:e6: e8:18:a2:00:25:76:aa:b5:b9:c2:90:21:e7:bc:cc: 55:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:2C:A2:62:C4:EE:B4:15:8E:9A:45:32:05:8E:02:B7:EB:38:2B:00 X509v3 Authority Key Identifier: keyid:99:7C:82:58:13:43:5F:B0:11:54:38:EE:3F:60:76:37:CE:BD:8E:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:f0:64:fa:e5:3e:87:ba:70:d9:a4:2c:ff:6e:66:b8:50:92: 4e:df:73:bd:ff:f6:08:2e:ec:3b:b7:3d:b7:c7:83:46:68:b5: f3:4c:d8:a7:86:8a:36:8d:04:0d:d4:cb:d5:ad:dc:eb:5f:d9: 5c:a2:3a:9a:2a:a1:aa:0d:35:13:30:18:c2:66:c1:27:27:ea: 45:92:61:89:44:d3:b5:f1:95:6f:ed:cc:e9:d8:5d:0d:ef:40: 27:b9:11:11:66:de:0a:4f:53:ba:8c:02:3a:f1:f3:d0:0f:94: fe:33:00:6b:b9:eb:1c:0b:77:e2:c8:c8:7b:62:c9:3c:1e:70: 1e:69:a3:10:f6:87:49:75:19:97:28:0c:f5:3b:d3:4f:fc:c5: 6e:b9:11:26:db:46:ad:6c:d3:f5:8f:93:53:6e:fd:70:c4:7e: 0b:da:15:58:cc:7a:f7:6c:67:18:03:3e:fe:84:b3:ad:54:fc: 35:d9:70:80:83:d4:a6:5c:b4:f2:85:1f:95:04:02:fe:cf:ae: 48:39:b4:64:fe:d5:d5:45:6f:89:60:a0:a3:43:13:f0:8d:bc: 24:7c:61:45:75:4a:84:ba:b1:8b:2a:95:44:00:75:78:7e:89: d0:64:de:95:07:2b:81:2d:f0:5d:ee:10:ce:aa:b2:a2:d9:9e: d0:43:a5:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrQ/dQN9eN/Bw/3wVVPTIRGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5N2M4MjU4MTM0MzVmYjAxMTU0MzhlZTNmNjA3NjM3Y2Vi ZDhlOGUwHhcNMjUxMTI5MTkwMTI2WhcNMjUxMTMwMTkwMTI2WjAzMTEwLwYDVQQD EyhiNzJjYTI2MmM0ZWViNDE1OGU5YTQ1MzIwNThlMDJiN2ViMzgyYjAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAindml6cFO6lvy7rwzqWk+hfPdMqa WLx2VmoayRG11G8hrOJPvcbJujWjJ3e9YBg3WbVcm5UwNw+jThX5dBq1jZnMuqpf iu6N+eyCJS69f5yw53C3q5lhynAH9CddZXXqzR0EJ/DXnjLz7BNd8GoWHP13523T 8S6BF9en/aHuEWZRDCvksGNiVKb0/LTqQjMUTYnKIMqwU/pBz+dJa8w5qVvMeGiy PbVqGo2CIrxotR4MwUEs+tHgibNLPXWRlU8vykOcl/RxoImHKvOfKT2Ik23jarg6 I8SSNZ20jVFscW+uX1DhhT0lhQavuS6ydOboGKIAJXaqtbnCkCHnvMxVZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLcsomLE7rQVjppFMgWOArfrOCsAMB8GA1UdIwQY MBaAFJl8glgTQ1+wEVQ47j9gdjfOvY6OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVh5Q1dCTkRYN0FSVkRqdVAyQjJOODY5am80LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni8yZjU1MDItMDA3YS00NjgzLTk4NzIt MjhmNzFhYmJhMDNhLzEvbVh5Q1dCTkRYN0FSVkRqdVAyQjJOODY5am80Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni8yZjU1MDItMDA3YS00NjgzLTk4NzItMjhmNzFhYmJhMDNh LzEvbVh5Q1dCTkRYN0FSVkRqdVAyQjJOODY5am80LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVPBk+uU+ h7pw2aQs/25muFCSTt9zvf/2CC7sO7c9t8eDRmi180zYp4aKNo0EDdTL1a3c61/Z XKI6miqhqg01EzAYwmbBJyfqRZJhiUTTtfGVb+3M6dhdDe9AJ7kREWbeCk9TuowC OvHz0A+U/jMAa7nrHAt34sjIe2LJPB5wHmmjEPaHSXUZlygM9TvTT/zFbrkRJttG rWzT9Y+TU279cMR+C9oVWMx692xnGAM+/oSzrVT8NdlwgIPUply08oUflQQC/s+u SDm0ZP7V1UVviWCgo0MT8I28JHxhRXVKhLqxiyqVRAB1eH6J0GTelQcrgS3wXe4Q zqqyotme0EOlVw== -----END CERTIFICATE-----Generated at Sun Nov 30 05:16:25 2025 by rpki-client