This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/fd617b-b1ce-4993-a73a-15369cce5df5/1/x1KtRhPu9BzbgSTyfc-b-HJNHAw.mft File: x1KtRhPu9BzbgSTyfc-b-HJNHAw.mft (raw, json) Hash identifier: vAfsVHYTDYM5C8PVxPSNrZtwUuqUNF29gXtLyov1wRg= Subject key identifier: DA:5C:29:CF:11:3B:26:C9:B7:11:39:CC:72:CF:71:95:82:FF:A8:1D Authority key identifier: C7:52:AD:46:13:EE:F4:1C:DB:81:24:F2:7D:CF:9B:F8:72:4D:1C:0C Certificate issuer: /CN=c752ad4613eef41cdb8124f27dcf9bf8724d1c0c Certificate serial: 019B5A51D431E38AAAF9DD1CDCAAACCA5D6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x1KtRhPu9BzbgSTyfc-b-HJNHAw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/fd617b-b1ce-4993-a73a-15369cce5df5/1/x1KtRhPu9BzbgSTyfc-b-HJNHAw.mft Manifest number: 61 Signing time: Fri 26 Dec 2025 11:01:10 +0000 Manifest this update: Fri 26 Dec 2025 11:01:10 +0000 Manifest next update: Sat 27 Dec 2025 11:01:10 +0000 Files and hashes: 1: x1KtRhPu9BzbgSTyfc-b-HJNHAw.crl (hash: 3QN3MoowDVaKJk9jUQVCm2fy5Dvc8r8ffJf2aIpC/sU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/fd617b-b1ce-4993-a73a-15369cce5df5/1/x1KtRhPu9BzbgSTyfc-b-HJNHAw.crl rsync://rpki.ripe.net/repository/DEFAULT/75/fd617b-b1ce-4993-a73a-15369cce5df5/1/x1KtRhPu9BzbgSTyfc-b-HJNHAw.mft rsync://rpki.ripe.net/repository/DEFAULT/x1KtRhPu9BzbgSTyfc-b-HJNHAw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:51:d4:31:e3:8a:aa:f9:dd:1c:dc:aa:ac:ca:5d:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c752ad4613eef41cdb8124f27dcf9bf8724d1c0c Validity Not Before: Dec 26 11:01:10 2025 GMT Not After : Dec 27 11:01:10 2025 GMT Subject: CN=da5c29cf113b26c9b71139cc72cf719582ffa81d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:68:0c:f6:32:ba:71:1a:d4:3c:4e:ae:27:25: 13:f4:8c:d2:54:5f:a5:95:d5:b0:6c:85:f8:3d:59: 34:8a:19:d4:78:ae:2e:6b:fd:d8:72:2d:f3:39:73: 45:f9:ae:82:17:10:f8:f1:ea:f4:d4:ae:77:73:ca: 93:c4:28:d8:66:47:e4:08:33:7e:ef:03:8e:41:14: 57:d2:f4:62:68:7b:36:94:3e:0d:cd:ea:99:cb:ce: d7:42:b8:12:fb:45:59:91:3c:1a:ad:1a:5d:61:5f: 1f:a2:b3:1a:31:6f:dd:a6:8f:b8:8a:3f:64:4d:75: 6c:4d:8d:9a:e0:10:56:f6:88:1a:0e:ad:fb:67:48: ad:b1:ee:26:73:5d:f0:4e:d4:85:19:7d:3f:f1:ba: 13:9d:31:ea:a8:d5:11:3b:2c:c7:40:5d:d6:f7:89: a5:94:9d:06:08:86:50:95:7a:b3:66:b7:a2:ad:26: 65:18:22:03:56:36:84:92:d5:9d:89:86:7a:4b:4a: b8:14:ae:cf:45:c5:30:b0:a1:89:72:e9:d9:22:bc: a0:3b:ca:18:3e:2b:8f:a6:6c:a1:c2:46:73:2c:37: 44:89:1d:29:ed:f5:6a:80:ef:87:ee:df:a0:9b:39: 7d:54:27:78:28:7a:c3:1e:9a:e4:1d:e6:e9:57:bc: 5e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:5C:29:CF:11:3B:26:C9:B7:11:39:CC:72:CF:71:95:82:FF:A8:1D X509v3 Authority Key Identifier: keyid:C7:52:AD:46:13:EE:F4:1C:DB:81:24:F2:7D:CF:9B:F8:72:4D:1C:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x1KtRhPu9BzbgSTyfc-b-HJNHAw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/fd617b-b1ce-4993-a73a-15369cce5df5/1/x1KtRhPu9BzbgSTyfc-b-HJNHAw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/fd617b-b1ce-4993-a73a-15369cce5df5/1/x1KtRhPu9BzbgSTyfc-b-HJNHAw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:18:45:8e:b5:15:c7:1d:6e:ab:84:56:5c:7e:41:bb:2b:f7: 77:bf:b8:a5:5f:07:92:d7:31:6a:18:c1:1e:12:14:9d:f1:37: 5c:f5:3c:81:96:c2:5b:85:1d:24:76:5a:3d:ee:4b:8d:18:13: 49:d4:b7:95:6c:2a:39:34:32:0d:05:a6:68:a1:88:c8:33:10: c0:a1:93:35:90:9e:2c:8c:88:4b:dc:ec:16:c3:ab:e8:3c:40: 2b:f0:b9:48:6c:0f:16:e3:8e:38:e3:cf:33:4b:be:3c:73:e1: f6:70:8d:4c:55:0e:d9:b3:87:95:20:1a:c6:c9:8f:57:a2:4c: a5:3c:56:89:5b:43:b8:5a:f4:df:3d:9d:fb:2b:28:e5:2a:d4: 9b:a2:84:82:e3:f7:47:1b:f0:30:f1:4c:e2:28:d0:e7:86:db: 1b:e0:1e:e0:d2:1a:08:17:23:87:6d:cf:80:26:c7:0e:f6:7b: 36:27:c7:1e:d4:93:9b:2e:27:7e:85:1b:e8:be:92:8e:43:89: a0:93:96:d4:3d:dd:b8:22:ad:65:87:46:12:ff:f6:36:ed:53: 4c:08:ba:81:fe:1f:69:26:46:fe:ea:4f:4a:56:05:61:9a:61: 3c:e5:9e:c8:b1:48:0f:d5:ea:6b:51:c8:1a:d6:23:56:59:14: 3a:ff:ca:8e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaUdQx44qq+d0c3Kqsyl1qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3NTJhZDQ2MTNlZWY0MWNkYjgxMjRmMjdkY2Y5YmY4NzI0 ZDFjMGMwHhcNMjUxMjI2MTEwMTEwWhcNMjUxMjI3MTEwMTEwWjAzMTEwLwYDVQQD EyhkYTVjMjljZjExM2IyNmM5YjcxMTM5Y2M3MmNmNzE5NTgyZmZhODFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyWgM9jK6cRrUPE6uJyUT9IzSVF+l ldWwbIX4PVk0ihnUeK4ua/3Yci3zOXNF+a6CFxD48er01K53c8qTxCjYZkfkCDN+ 7wOOQRRX0vRiaHs2lD4NzeqZy87XQrgS+0VZkTwarRpdYV8forMaMW/dpo+4ij9k TXVsTY2a4BBW9ogaDq37Z0itse4mc13wTtSFGX0/8boTnTHqqNUROyzHQF3W94ml lJ0GCIZQlXqzZreirSZlGCIDVjaEktWdiYZ6S0q4FK7PRcUwsKGJcunZIrygO8oY PiuPpmyhwkZzLDdEiR0p7fVqgO+H7t+gmzl9VCd4KHrDHprkHebpV7xeIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNpcKc8ROybJtxE5zHLPcZWC/6gdMB8GA1UdIwQY MBaAFMdSrUYT7vQc24Ek8n3Pm/hyTRwMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveDFLdFJoUHU5QnpiZ1NUeWZjLWItSEpOSEF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS9mZDYxN2ItYjFjZS00OTkzLWE3M2Et MTUzNjljY2U1ZGY1LzEveDFLdFJoUHU5QnpiZ1NUeWZjLWItSEpOSEF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS9mZDYxN2ItYjFjZS00OTkzLWE3M2EtMTUzNjljY2U1ZGY1 LzEveDFLdFJoUHU5QnpiZ1NUeWZjLWItSEpOSEF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKBhFjrUV xx1uq4RWXH5Buyv3d7+4pV8HktcxahjBHhIUnfE3XPU8gZbCW4UdJHZaPe5LjRgT SdS3lWwqOTQyDQWmaKGIyDMQwKGTNZCeLIyIS9zsFsOr6DxAK/C5SGwPFuOOOOPP M0u+PHPh9nCNTFUO2bOHlSAaxsmPV6JMpTxWiVtDuFr03z2d+yso5SrUm6KEguP3 RxvwMPFM4ijQ54bbG+Ae4NIaCBcjh23PgCbHDvZ7NifHHtSTmy4nfoUb6L6SjkOJ oJOW1D3duCKtZYdGEv/2Nu1TTAi6gf4faSZG/upPSlYFYZphPOWeyLFID9Xqa1HI GtYjVlkUOv/Kjg== -----END CERTIFICATE-----Generated at Fri Dec 26 15:43:37 2025 by rpki-client