This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft File: 1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft (raw, json) Hash identifier: c2ZcORTjoU4La7nvCrnw7KQCn+iTUSPMHVk40uEfjLI= Subject key identifier: F8:E7:54:99:68:0C:E5:6E:A2:92:3C:67:CF:42:D6:46:F8:9D:08:EB Authority key identifier: F9:70:04:9C:BA:7F:39:AE:ED:31:D6:53:13:C7:B9:53:F3:FD:A1:35 Certificate issuer: /CN=f970049cba7f39aeed31d65313c7b953f3fda135 Certificate serial: 019B0DB6ADF1DB6BE488A87E04992717AB11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft Manifest number: 159E Signing time: Thu 11 Dec 2025 14:00:34 +0000 Manifest this update: Thu 11 Dec 2025 14:00:34 +0000 Manifest next update: Fri 12 Dec 2025 14:00:34 +0000 Files and hashes: 1: 1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.crl (hash: 58DfKOnj99AaPIcA+UpFFoZiJGRDIDVzAg/MOSLNoxo=) 2: CNq9H2OXEp4278EAIur7EjhdgiM.roa (hash: ezaoiiM4UlLTR0sbj1Fr7oZom9N7jm9fEV33MK67n/k=) 3: avwTDwXgj-XueUI8wn-hyOkB-tU.roa (hash: IktCfn+eBAhnVRfOZR4afgek+KYNeXmLk7tpJfljPc4=) 4: ei-lhbSyA6LHM30pnoTc676sVOk.roa (hash: BJvZcqOLIL3sVAhna5EPTZoiTPtvfxYPfeKNrqGIDHA=) 5: leLbvZk-ZLOHTx35H1teEVZvq_w.roa (hash: CF/SxDg4bOjmx2R5usAUeBgqRx+iarFbP3We+RdFgrY=) 6: uF3Ipp-IOmC2QxpujNdolHkmlLw.roa (hash: hlYEypQIjtWjQMSDZuN9bDWHcqbDbwOnFZm/mrxdTfU=) 7: vTpbvCLw317pUWZPp8_hDkh88VE.roa (hash: Xc88zcdf1KorCO6RA2gqcBm66DJNRYMneNP18O1Fg04=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0d:b6:ad:f1:db:6b:e4:88:a8:7e:04:99:27:17:ab:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f970049cba7f39aeed31d65313c7b953f3fda135 Validity Not Before: Dec 11 14:00:34 2025 GMT Not After : Dec 12 14:00:34 2025 GMT Subject: CN=f8e75499680ce56ea2923c67cf42d646f89d08eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:10:72:73:77:f3:57:e5:06:7b:fa:d4:14:4b: 2c:a1:10:94:46:b8:fc:b7:8c:67:ff:02:0f:93:66: f8:80:bd:89:5f:1b:03:99:d2:1c:3a:09:a0:09:2d: 76:5c:d6:ec:ed:29:3e:dc:75:86:ac:1a:39:23:bd: cc:aa:ce:f0:05:48:05:a9:41:ea:9d:32:44:a0:62: cd:51:8b:c3:d2:e8:b5:40:e9:6c:47:5d:89:5f:1d: a2:67:af:cb:db:d4:b7:a8:bb:3b:09:a5:38:2f:2d: a4:3c:84:2e:4b:5f:00:76:03:8a:0e:d2:f0:3b:9b: be:58:5d:03:6f:ac:76:1d:0b:ec:69:a4:d5:df:ae: 74:83:e9:5d:cc:41:8e:2d:5f:54:b9:9a:6c:81:d0: 5c:52:37:ce:fb:b4:77:11:ed:16:65:3b:ae:9c:c3: 70:f3:c7:1e:74:7f:ea:52:8f:fe:ed:75:b0:63:a9: bc:5f:b5:27:2f:85:e6:79:ca:c2:68:82:8d:43:9c: 94:77:79:3f:ad:76:77:88:c0:9b:84:22:76:ef:44: 5e:d0:2b:de:6d:45:99:de:7b:76:18:0b:a4:d8:1a: ab:ab:75:67:ac:c9:b7:ce:e2:83:dd:92:75:33:70: ec:e3:c4:3f:ad:62:ee:ec:3b:a4:12:97:1a:9d:dd: f0:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:E7:54:99:68:0C:E5:6E:A2:92:3C:67:CF:42:D6:46:F8:9D:08:EB X509v3 Authority Key Identifier: keyid:F9:70:04:9C:BA:7F:39:AE:ED:31:D6:53:13:C7:B9:53:F3:FD:A1:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:57:87:24:e5:dc:e9:b3:27:f9:f7:dd:3b:03:ec:7f:93:f1: 8c:4a:fe:15:cd:22:a2:24:4c:d6:da:0a:83:91:5f:2e:37:ba: 32:33:a3:c2:ed:22:18:43:3c:2b:ef:e8:35:4a:bf:38:ca:7d: 0c:0c:08:b8:64:62:16:9e:45:6c:b0:6d:2b:6b:0c:9f:22:75: bb:7b:1b:63:f4:89:9d:c8:03:6f:9a:a4:c5:8b:d7:f0:14:ab: 0c:cd:8b:5b:b4:6a:73:f6:a3:c2:4c:af:16:e9:9b:b0:51:d7: 5a:35:0e:8b:07:3c:9a:14:5c:f3:a9:a3:76:e8:95:2f:d0:5e: c1:1b:c6:b9:59:d7:22:79:82:bb:38:35:55:bd:36:de:96:6e: 84:ae:bc:25:89:c2:e7:75:eb:06:10:f2:77:13:db:40:d5:ec: d3:fa:3d:ba:34:76:36:11:2d:ea:14:4a:d5:80:12:8e:0f:9a: df:ff:97:e4:73:85:1d:e5:f8:53:73:95:e0:a6:b5:06:41:ed: 62:a8:91:8d:21:f3:97:81:43:63:36:79:ae:94:fe:99:c2:76: 45:cf:7a:14:fa:c9:f5:15:22:be:5f:e0:85:d0:52:7f:4c:fa: 14:b6:0e:2d:b4:e5:1a:5a:35:c0:8c:10:8b:97:d5:ad:e3:30: c4:3b:3b:59 -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZsNtq3x22vkiKh+BJknF6sRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY5NzAwNDljYmE3ZjM5YWVlZDMxZDY1MzEzYzdiOTUzZjNm ZGExMzUwHhcNMjUxMjExMTQwMDM0WhcNMjUxMjEyMTQwMDM0WjAzMTEwLwYDVQQD EyhmOGU3NTQ5OTY4MGNlNTZlYTI5MjNjNjdjZjQyZDY0NmY4OWQwOGViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmhByc3fzV+UGe/rUFEssoRCURrj8 t4xn/wIPk2b4gL2JXxsDmdIcOgmgCS12XNbs7Sk+3HWGrBo5I73Mqs7wBUgFqUHq nTJEoGLNUYvD0ui1QOlsR12JXx2iZ6/L29S3qLs7CaU4Ly2kPIQuS18AdgOKDtLw O5u+WF0Db6x2HQvsaaTV3650g+ldzEGOLV9UuZpsgdBcUjfO+7R3Ee0WZTuunMNw 88cedH/qUo/+7XWwY6m8X7UnL4XmecrCaIKNQ5yUd3k/rXZ3iMCbhCJ270Re0Cve bUWZ3nt2GAuk2Bqrq3VnrMm3zuKD3ZJ1M3Ds48Q/rWLu7DukEpcand3w0QIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFPjnVJloDOVuopI8Z89C1kb4nQjrMB8GA1UdIwQY MBaAFPlwBJy6fzmu7THWUxPHuVPz/aE1MA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1YQUVuTHBfT2E3dE1kWlRFOGU1VV9QOW9UVS5jZXIw gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTIvMTNmNWYxLTQ1YjYtNGJjMS1iNWE1 LTUyMWZhNDFkZmM5Ni8xLzEtWEFFbkxwX09hN3RNZFpURThlNVVfUDlvVFUubWZ0 MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np dG9yeS9ERUZBVUxUL2EyLzEzZjVmMS00NWI2LTRiYzEtYjVhNS01MjFmYTQxZGZj OTYvMS8xLVhBRW5McF9PYTd0TWRaVEU4ZTVVX1A5b1RVLmNybDAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHFeH JOXc6bMn+ffdOwPsf5PxjEr+Fc0ioiRM1toKg5FfLje6MjOjwu0iGEM8K+/oNUq/ OMp9DAwIuGRiFp5FbLBtK2sMnyJ1u3sbY/SJncgDb5qkxYvX8BSrDM2LW7Rqc/aj wkyvFumbsFHXWjUOiwc8mhRc86mjduiVL9BewRvGuVnXInmCuzg1Vb023pZuhK68 JYnC53XrBhDydxPbQNXs0/o9ujR2NhEt6hRK1YASjg+a3/+X5HOFHeX4U3OV4Ka1 BkHtYqiRjSHzl4FDYzZ5rpT+mcJ2Rc96FPrJ9RUivl/ghdBSf0z6FLYOLbTlGlo1 wIwQi5fVreMwxDs7WQ== -----END CERTIFICATE-----Generated at Fri Dec 12 00:59:28 2025 by rpki-client