This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.mft File: pxoqLbTXQY6b9Pk8jARqAWFmPGI.mft (raw, json) Hash identifier: eqmKjvdrwvIpsK0z2eRSdzgSiKTj2kkFwgOmDuuHTOY= Subject key identifier: 4C:43:CB:95:41:91:0F:38:F8:6D:B0:0F:F3:E3:50:3B:AC:22:B8:E4 Authority key identifier: A7:1A:2A:2D:B4:D7:41:8E:9B:F4:F9:3C:8C:04:6A:01:61:66:3C:62 Certificate issuer: /CN=a71a2a2db4d7418e9bf4f93c8c046a0161663c62 Certificate serial: 019AF95546BAF5DB1E43E312CA81B5009143 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.mft Manifest number: 1773 Signing time: Sun 07 Dec 2025 15:01:46 +0000 Manifest this update: Sun 07 Dec 2025 15:01:46 +0000 Manifest next update: Mon 08 Dec 2025 15:01:46 +0000 Files and hashes: 1: Clf1O67BMO2Rhs6Zi3d5eqYtS78.roa (hash: gEsGT+BkcxrPL5LEXQ9nd6Eso8OhYDY6ncvwiqyMT9o=) 2: pxoqLbTXQY6b9Pk8jARqAWFmPGI.crl (hash: R37rB2rBaQbqwNnZCYBPVaL9ITFUNyUXvgdkKKgBOw4=) 3: yedVX2Bb1fw9QHeEL7aMz-eiDBc.roa (hash: nTi5nmxACtrhi4lwIaboxq43TOZLUrk6W1f8QXWcQkQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.mft rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 08 Dec 2025 15:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f9:55:46:ba:f5:db:1e:43:e3:12:ca:81:b5:00:91:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a71a2a2db4d7418e9bf4f93c8c046a0161663c62 Validity Not Before: Dec 7 15:01:46 2025 GMT Not After : Dec 8 15:01:46 2025 GMT Subject: CN=4c43cb9541910f38f86db00ff3e3503bac22b8e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f3:69:6c:e1:b1:34:53:59:4f:16:4c:7d:da: 7f:77:cc:b8:fc:24:c7:c2:11:2f:ac:78:cf:60:35: 18:84:ca:c2:84:cd:e7:87:50:3f:28:2e:3c:a9:dc: c7:44:e7:fa:28:76:b0:fc:97:16:12:fd:3c:35:45: 2d:14:2b:a0:6f:45:3c:ed:7d:9b:12:71:4a:e6:fb: a0:33:10:c4:a4:8d:4c:5a:83:5b:62:26:ae:27:60: 81:49:32:49:72:91:8c:c2:ef:15:89:71:e5:5a:0f: 7b:be:4f:ed:4b:8c:05:74:38:ce:6e:a3:f5:46:4a: 0b:5c:0b:62:12:d2:c9:2e:3c:5a:6b:a4:09:1e:dc: 66:5c:a7:23:cd:f9:08:6f:6d:47:4a:b7:9f:e2:b6: 7d:af:51:15:c8:31:e0:d9:07:98:84:2f:79:d3:b7: 82:47:9a:e4:df:a9:5a:fa:e7:54:3c:c9:a9:eb:6f: 77:f9:04:9c:ff:08:f4:1e:f4:2e:ad:5c:90:f9:8b: ea:58:f0:99:f8:25:b3:aa:6b:bd:38:d7:2b:84:f3: 2e:b1:e4:3c:4f:cc:75:2f:fe:0c:f5:c0:37:ef:eb: 8d:91:15:4b:28:8c:72:2e:95:ed:12:24:9a:f5:05: 8a:2c:95:9c:df:34:af:04:98:1b:87:fb:32:00:d9: 39:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:43:CB:95:41:91:0F:38:F8:6D:B0:0F:F3:E3:50:3B:AC:22:B8:E4 X509v3 Authority Key Identifier: keyid:A7:1A:2A:2D:B4:D7:41:8E:9B:F4:F9:3C:8C:04:6A:01:61:66:3C:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:9b:e8:68:63:d3:ea:73:7d:5f:61:09:a4:bc:c3:2e:53:9d: 96:09:f8:3c:c4:3e:d9:2c:b9:b1:8a:69:d0:60:15:8f:ce:bc: 32:aa:d6:fc:ae:f6:d3:39:f8:f1:c5:87:e8:a8:4c:c6:4a:7e: 70:04:45:72:bf:b9:27:fb:28:94:84:e3:69:b6:74:a9:ad:42: d0:3e:0f:49:db:5e:2e:31:42:2d:ba:c4:ca:4a:71:58:46:0f: ce:45:48:88:9a:de:0d:84:be:6a:ee:45:1b:48:c2:b7:09:a8: 4f:d1:fe:d3:48:5e:48:62:8d:81:98:ab:6d:27:3b:33:43:a0: 5a:19:c6:94:39:ab:7e:2e:bc:41:bb:44:9b:4f:1d:4e:94:19: 3d:24:6f:18:ed:4c:2a:d4:ed:4f:c0:b2:ca:1b:4b:0b:10:f1: e4:51:10:ca:02:4a:69:5f:1b:c9:45:9e:88:4a:62:f6:90:55: 2f:4c:3b:56:e4:78:19:bc:37:a6:cf:49:c3:c8:b1:45:cb:65: 8e:0a:f5:73:d5:87:23:ef:93:27:47:62:a1:28:05:46:3b:17: 40:55:d6:2d:57:00:dd:b9:e1:a1:d8:a8:98:b4:81:99:22:dd: a9:bf:cf:01:49:7d:06:43:27:58:94:0d:7f:c4:66:be:31:df: 0b:e7:3b:ab -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr5VUa69dseQ+MSyoG1AJFDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3MWEyYTJkYjRkNzQxOGU5YmY0ZjkzYzhjMDQ2YTAxNjE2 NjNjNjIwHhcNMjUxMjA3MTUwMTQ2WhcNMjUxMjA4MTUwMTQ2WjAzMTEwLwYDVQQD Eyg0YzQzY2I5NTQxOTEwZjM4Zjg2ZGIwMGZmM2UzNTAzYmFjMjJiOGU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxfNpbOGxNFNZTxZMfdp/d8y4/CTH whEvrHjPYDUYhMrChM3nh1A/KC48qdzHROf6KHaw/JcWEv08NUUtFCugb0U87X2b EnFK5vugMxDEpI1MWoNbYiauJ2CBSTJJcpGMwu8ViXHlWg97vk/tS4wFdDjObqP1 RkoLXAtiEtLJLjxaa6QJHtxmXKcjzfkIb21HSref4rZ9r1EVyDHg2QeYhC9507eC R5rk36la+udUPMmp6293+QSc/wj0HvQurVyQ+YvqWPCZ+CWzqmu9ONcrhPMuseQ8 T8x1L/4M9cA37+uNkRVLKIxyLpXtEiSa9QWKLJWc3zSvBJgbh/syANk5CQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFExDy5VBkQ84+G2wD/PjUDusIrjkMB8GA1UdIwQY MBaAFKcaKi2010GOm/T5PIwEagFhZjxiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcHhvcUxiVFhRWTZiOVBrOGpBUnFBV0ZtUEdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9iN2FiZGYtM2JlMS00NjQyLTlmM2Ut ZjFmMGI5NTk4ZjMyLzEvcHhvcUxiVFhRWTZiOVBrOGpBUnFBV0ZtUEdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy9iN2FiZGYtM2JlMS00NjQyLTlmM2UtZjFmMGI5NTk4ZjMy LzEvcHhvcUxiVFhRWTZiOVBrOGpBUnFBV0ZtUEdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOZvoaGPT 6nN9X2EJpLzDLlOdlgn4PMQ+2Sy5sYpp0GAVj868MqrW/K720zn48cWH6KhMxkp+ cARFcr+5J/solITjabZ0qa1C0D4PSdteLjFCLbrEykpxWEYPzkVIiJreDYS+au5F G0jCtwmoT9H+00heSGKNgZirbSc7M0OgWhnGlDmrfi68QbtEm08dTpQZPSRvGO1M KtTtT8CyyhtLCxDx5FEQygJKaV8byUWeiEpi9pBVL0w7VuR4Gbw3ps9Jw8ixRctl jgr1c9WHI++TJ0dioSgFRjsXQFXWLVcA3bnhodiomLSBmSLdqb/PAUl9BkMnWJQN f8RmvjHfC+c7qw== -----END CERTIFICATE-----Generated at Sun Dec 7 22:43:03 2025 by rpki-client