This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.mft File: FXaJHPKx2OxWwDvHqW3pWKDgADI.mft (raw, json) Hash identifier: PiniEeeZfdOqacCibSSEx/C7DwdRLxPAZzcFIn2W4hw= Subject key identifier: 8E:48:4F:FD:F2:DF:0F:27:C8:15:9C:93:C9:FD:D1:D9:89:FA:A3:5D Authority key identifier: 15:76:89:1C:F2:B1:D8:EC:56:C0:3B:C7:A9:6D:E9:58:A0:E0:00:32 Certificate issuer: /CN=1576891cf2b1d8ec56c03bc7a96de958a0e00032 Certificate serial: 019B59E3FA8081652BE1028B175ACA97A431 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FXaJHPKx2OxWwDvHqW3pWKDgADI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.mft Manifest number: 0540 Signing time: Fri 26 Dec 2025 09:01:11 +0000 Manifest this update: Fri 26 Dec 2025 09:01:11 +0000 Manifest next update: Sat 27 Dec 2025 09:01:11 +0000 Files and hashes: 1: FXaJHPKx2OxWwDvHqW3pWKDgADI.crl (hash: H67YPrXRb24LX/dndiruLbUAA34itrWITbkYIBWY0Do=) 2: pkUWU7hoqn1MoMfV_e6H2-KJHtM.roa (hash: pNc3IO7oSLkfW6eqPtj4TJMlIbS8z2hqWPYZAIIHzEM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.mft rsync://rpki.ripe.net/repository/DEFAULT/FXaJHPKx2OxWwDvHqW3pWKDgADI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e3:fa:80:81:65:2b:e1:02:8b:17:5a:ca:97:a4:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1576891cf2b1d8ec56c03bc7a96de958a0e00032 Validity Not Before: Dec 26 09:01:11 2025 GMT Not After : Dec 27 09:01:11 2025 GMT Subject: CN=8e484ffdf2df0f27c8159c93c9fdd1d989faa35d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f7:34:98:41:ee:6a:1a:be:14:91:0b:dd:09: 1b:53:8c:72:b1:fa:d1:a5:cc:d9:b2:45:15:63:33: 96:d5:53:c8:81:21:45:69:bb:64:28:53:1e:37:1f: 2f:23:9f:ff:f4:16:f6:56:8b:59:3b:65:c9:0c:ed: e7:2b:88:10:37:8d:1f:27:d9:02:d5:13:ae:7b:40: cd:bb:05:f3:e7:92:2c:54:aa:63:cd:c9:cb:67:ca: 49:de:29:9b:e8:c7:53:6e:e3:51:73:35:6d:fd:22: c4:44:7d:de:fb:a5:1a:33:34:37:47:98:4b:09:27: 7c:91:08:93:06:55:0c:d9:54:ef:6b:18:a1:6a:e3: fe:49:2a:b0:99:3f:cc:bd:b0:94:c9:3c:88:07:8c: 35:be:fa:41:2b:b9:10:ad:9a:6a:60:ad:ac:fa:c8: 27:6c:08:e9:a3:02:ef:22:83:5b:f3:1b:de:dc:c9: 5f:38:51:9a:20:83:5b:4d:3d:08:63:c5:4e:b3:2a: f9:74:ce:03:ef:be:6b:61:2c:10:05:cf:4b:e2:df: 1f:c4:17:b8:75:13:10:e4:5d:7d:07:28:f3:e0:91: f3:42:ba:86:ba:9c:6b:cf:a8:8f:68:aa:66:81:e7: 62:5f:d1:5d:7a:7f:aa:c7:4e:d5:3d:2b:a6:b6:11: 42:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:48:4F:FD:F2:DF:0F:27:C8:15:9C:93:C9:FD:D1:D9:89:FA:A3:5D X509v3 Authority Key Identifier: keyid:15:76:89:1C:F2:B1:D8:EC:56:C0:3B:C7:A9:6D:E9:58:A0:E0:00:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FXaJHPKx2OxWwDvHqW3pWKDgADI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:93:0f:f4:33:1f:72:ae:98:99:7f:f9:9d:5a:15:7d:cb:08: 49:f6:00:83:9a:65:91:38:96:aa:f3:29:c3:ee:5d:e5:c3:78: 5c:a6:00:f7:04:ac:c1:71:cc:55:6a:06:cf:36:a0:c9:9f:08: 1f:d1:b8:bf:b7:b3:35:78:5c:d4:fd:70:b8:76:45:40:b4:50: b8:c6:f2:ff:65:c2:dd:40:16:26:b8:16:a2:3f:1d:70:a2:c2: 45:b9:76:4c:18:a2:2b:c3:be:81:17:02:a0:55:f6:80:aa:0c: a3:bd:7e:89:d4:ed:02:6d:b9:94:51:96:da:35:0a:ba:e7:90: 2d:85:61:ce:ce:5c:d3:8a:de:56:53:47:60:fa:2e:bb:e8:5c: b5:2d:85:9c:54:9c:01:3f:7a:5e:9e:19:9b:b7:9d:be:8b:f4: 7f:ec:de:ab:7b:14:d0:2a:54:0d:41:7a:18:02:79:ce:97:49: 9b:6f:e2:db:e5:50:85:7f:31:ac:52:1b:8d:1e:e4:18:42:fc: cf:1c:aa:89:53:34:10:12:54:23:62:cd:20:8f:57:b9:ac:8f: b8:b3:17:b4:bf:b6:0e:60:1e:82:f7:00:33:8e:48:f4:0e:08: 9d:b4:29:13:7c:f8:0f:7d:7b:6a:37:90:95:18:2c:64:fc:d5: 44:76:42:e2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ4/qAgWUr4QKLF1rKl6QxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE1NzY4OTFjZjJiMWQ4ZWM1NmMwM2JjN2E5NmRlOTU4YTBl MDAwMzIwHhcNMjUxMjI2MDkwMTExWhcNMjUxMjI3MDkwMTExWjAzMTEwLwYDVQQD Eyg4ZTQ4NGZmZGYyZGYwZjI3YzgxNTljOTNjOWZkZDFkOTg5ZmFhMzVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu/c0mEHuahq+FJEL3QkbU4xysfrR pczZskUVYzOW1VPIgSFFabtkKFMeNx8vI5//9Bb2VotZO2XJDO3nK4gQN40fJ9kC 1ROue0DNuwXz55IsVKpjzcnLZ8pJ3imb6MdTbuNRczVt/SLERH3e+6UaMzQ3R5hL CSd8kQiTBlUM2VTvaxihauP+SSqwmT/MvbCUyTyIB4w1vvpBK7kQrZpqYK2s+sgn bAjpowLvIoNb8xve3MlfOFGaIINbTT0IY8VOsyr5dM4D775rYSwQBc9L4t8fxBe4 dRMQ5F19Byjz4JHzQrqGupxrz6iPaKpmgediX9Fden+qx07VPSumthFCSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI5IT/3y3w8nyBWck8n90dmJ+qNdMB8GA1UdIwQY MBaAFBV2iRzysdjsVsA7x6lt6Vig4AAyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRlhhSkhQS3gyT3hXd0R2SHFXM3BXS0RnQURJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS8xYmY1ZmEtZjY5Yi00MTdjLWJjMGIt NWQ1YmI3ZmU1NzFhLzEvRlhhSkhQS3gyT3hXd0R2SHFXM3BXS0RnQURJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS8xYmY1ZmEtZjY5Yi00MTdjLWJjMGItNWQ1YmI3ZmU1NzFh LzEvRlhhSkhQS3gyT3hXd0R2SHFXM3BXS0RnQURJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf5MP9DMf cq6YmX/5nVoVfcsISfYAg5plkTiWqvMpw+5d5cN4XKYA9wSswXHMVWoGzzagyZ8I H9G4v7ezNXhc1P1wuHZFQLRQuMby/2XC3UAWJrgWoj8dcKLCRbl2TBiiK8O+gRcC oFX2gKoMo71+idTtAm25lFGW2jUKuueQLYVhzs5c04reVlNHYPouu+hctS2FnFSc AT96Xp4Zm7edvov0f+zeq3sU0CpUDUF6GAJ5zpdJm2/i2+VQhX8xrFIbjR7kGEL8 zxyqiVM0EBJUI2LNII9XuayPuLMXtL+2DmAegvcAM45I9A4InbQpE3z4D317ajeQ lRgsZPzVRHZC4g== -----END CERTIFICATE-----Generated at Fri Dec 26 14:17:01 2025 by rpki-client