This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft File: x02iHagDioIFQrOvr76qqmZreyc.mft (raw, json) Hash identifier: 4T6YQ644eCCcV4xvalJ15tqwg5MvLT126RNsAbzmchs= Subject key identifier: 87:6D:88:20:83:22:7E:87:35:53:F3:47:42:43:FE:8C:34:2D:8F:9D Authority key identifier: C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27 Certificate issuer: /CN=c74da21da8038a820542b3afafbeaaaa666b7b27 Certificate serial: 019B2A0A5628DA8C68BDDD7291F388EFCDC2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft Manifest number: 1712 Signing time: Wed 17 Dec 2025 02:01:18 +0000 Manifest this update: Wed 17 Dec 2025 02:01:18 +0000 Manifest next update: Thu 18 Dec 2025 02:01:18 +0000 Files and hashes: 1: 2t0GWwoe7mmFS83bQQPX5JNcD34.roa (hash: hxRzouLeq4ys7uUoj+7mRAVC8MeKAFWBUYqAcz4n5d0=) 2: x02iHagDioIFQrOvr76qqmZreyc.crl (hash: /NSaPdSGpYfaDRQeBph4OMpl6LGTbdwAHroNN0+N+ig=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 02:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2a:0a:56:28:da:8c:68:bd:dd:72:91:f3:88:ef:cd:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c74da21da8038a820542b3afafbeaaaa666b7b27 Validity Not Before: Dec 17 02:01:18 2025 GMT Not After : Dec 18 02:01:18 2025 GMT Subject: CN=876d882083227e873553f3474243fe8c342d8f9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:6e:48:66:d5:b5:4c:59:73:1a:2c:d8:d2:2b: f1:9e:9c:a2:a3:26:63:87:e9:2a:78:7e:4c:6c:02: f7:eb:33:5b:1d:d9:42:64:e6:62:14:4d:73:cc:28: 9b:5e:10:2c:50:d6:3c:aa:59:2a:02:63:ac:38:2b: 71:4a:4d:dd:2e:3e:8f:af:14:34:c6:eb:d1:8b:fc: 4b:76:a7:31:40:70:67:c1:71:36:a2:a0:5c:14:7e: cc:82:8c:88:13:c1:38:9e:2b:20:09:5e:05:51:82: c5:b3:28:c4:a9:a0:95:f9:93:13:6e:db:f3:0d:30: 3e:2b:81:f0:c8:63:85:50:eb:08:26:54:b2:1c:24: 8a:19:2f:51:c9:d6:d7:bf:5a:32:d5:da:8d:0a:c7: 57:9d:8c:7a:17:59:72:65:87:1d:fd:14:90:d3:91: 36:f3:6a:79:77:4f:ff:d7:62:0e:5d:c3:8d:5a:26: 78:df:92:92:e3:64:57:0c:21:75:31:e2:9d:52:51: 87:5e:96:11:41:19:61:ff:00:9e:b8:18:59:04:4a: c3:08:bc:c7:29:25:cf:b4:54:d3:ba:5f:2e:2b:c7: 58:08:e7:63:2c:7f:8a:36:90:a6:f2:70:7c:3c:c1: d5:51:fd:7e:2f:24:29:28:63:97:d9:ea:c7:61:13: dc:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:6D:88:20:83:22:7E:87:35:53:F3:47:42:43:FE:8C:34:2D:8F:9D X509v3 Authority Key Identifier: keyid:C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:4c:77:9d:48:56:a0:48:60:d6:56:d1:d7:90:3b:38:7e:ec: ce:65:3c:46:9f:df:c6:8a:0d:ce:5e:90:d1:01:2a:58:fe:c8: e5:ff:e5:a5:f2:f7:4d:4c:6c:65:e4:74:77:da:07:35:9c:bb: 1f:04:f8:30:65:9b:73:a5:f4:d2:7f:06:75:91:6e:9a:d1:99: db:b4:0a:20:40:09:3d:e7:63:01:b5:8c:5a:5f:df:6d:ef:c4: aa:b9:1f:2e:34:dd:f7:00:22:0a:db:21:2f:f2:93:8d:96:60: c9:e1:a2:7d:4f:73:bd:22:22:a9:ff:89:61:16:c4:74:c9:c9: b3:b2:b0:ad:66:20:88:2f:c1:4b:01:fb:28:ad:37:99:13:d2: b6:9f:df:35:91:e5:55:7f:c5:c3:80:26:a1:d1:43:1e:84:b6: fe:54:1b:6a:ef:e2:cf:da:98:e6:46:bd:4b:46:72:11:41:d7: f0:38:d7:2d:ae:34:55:29:a8:9b:fc:d1:c0:e1:9f:68:79:85: 0a:f1:ab:3b:72:e4:78:04:37:bd:47:9a:a4:b2:39:73:66:c2: 3b:d3:34:86:3b:6a:51:64:64:00:c1:a9:99:b0:4b:a1:ba:c7: 0a:6b:a6:5f:bd:3f:fc:c0:95:71:c5:24:78:2f:13:58:d5:28: f8:d3:b5:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsqClYo2oxovd1ykfOI783CMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3NGRhMjFkYTgwMzhhODIwNTQyYjNhZmFmYmVhYWFhNjY2 YjdiMjcwHhcNMjUxMjE3MDIwMTE4WhcNMjUxMjE4MDIwMTE4WjAzMTEwLwYDVQQD Eyg4NzZkODgyMDgzMjI3ZTg3MzU1M2YzNDc0MjQzZmU4YzM0MmQ4ZjlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlW5IZtW1TFlzGizY0ivxnpyioyZj h+kqeH5MbAL36zNbHdlCZOZiFE1zzCibXhAsUNY8qlkqAmOsOCtxSk3dLj6PrxQ0 xuvRi/xLdqcxQHBnwXE2oqBcFH7MgoyIE8E4nisgCV4FUYLFsyjEqaCV+ZMTbtvz DTA+K4HwyGOFUOsIJlSyHCSKGS9RydbXv1oy1dqNCsdXnYx6F1lyZYcd/RSQ05E2 82p5d0//12IOXcONWiZ435KS42RXDCF1MeKdUlGHXpYRQRlh/wCeuBhZBErDCLzH KSXPtFTTul8uK8dYCOdjLH+KNpCm8nB8PMHVUf1+LyQpKGOX2erHYRPcBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIdtiCCDIn6HNVPzR0JD/ow0LY+dMB8GA1UdIwQY MBaAFMdNoh2oA4qCBUKzr6++qqpma3snMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveDAyaUhhZ0Rpb0lGUXJPdnI3NnFxbVpyZXljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC80Zjg0NDQtMmMzZC00NTkyLTk0NTgt ODAxZDg5ZDczNjZkLzEveDAyaUhhZ0Rpb0lGUXJPdnI3NnFxbVpyZXljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC80Zjg0NDQtMmMzZC00NTkyLTk0NTgtODAxZDg5ZDczNjZk LzEveDAyaUhhZ0Rpb0lGUXJPdnI3NnFxbVpyZXljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhEx3nUhW oEhg1lbR15A7OH7szmU8Rp/fxooNzl6Q0QEqWP7I5f/lpfL3TUxsZeR0d9oHNZy7 HwT4MGWbc6X00n8GdZFumtGZ27QKIEAJPedjAbWMWl/fbe/EqrkfLjTd9wAiCtsh L/KTjZZgyeGifU9zvSIiqf+JYRbEdMnJs7KwrWYgiC/BSwH7KK03mRPStp/fNZHl VX/Fw4AmodFDHoS2/lQbau/iz9qY5ka9S0ZyEUHX8DjXLa40VSmom/zRwOGfaHmF CvGrO3LkeAQ3vUeapLI5c2bCO9M0hjtqUWRkAMGpmbBLobrHCmumX70//MCVccUk eC8TWNUo+NO1dg== -----END CERTIFICATE-----Generated at Wed Dec 17 09:24:23 2025 by rpki-client