This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.mft File: xFyYQwiFYolxMHxZtc8kFoIQI3g.mft (raw, json) Hash identifier: iuxebpFUUV/WCP4IoYmxrT87jmyvWxQFw5KtzUJ1j3M= Subject key identifier: 0A:92:3A:A7:CA:6D:79:3F:B6:9B:A6:AB:0F:88:5E:89:24:09:9B:E5 Authority key identifier: C4:5C:98:43:08:85:62:89:71:30:7C:59:B5:CF:24:16:82:10:23:78 Certificate issuer: /CN=c45c98430885628971307c59b5cf241682102378 Certificate serial: 019B353241B24F37FB0F2F06098A0DE60645 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xFyYQwiFYolxMHxZtc8kFoIQI3g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.mft Manifest number: 1785 Signing time: Fri 19 Dec 2025 06:00:44 +0000 Manifest this update: Fri 19 Dec 2025 06:00:44 +0000 Manifest next update: Sat 20 Dec 2025 06:00:44 +0000 Files and hashes: 1: jvr-TtmshyO-21Athyko7-oCA0g.roa (hash: YbFNgrbQ4nYeYFpzPZPmunVsALPP8JY0whWvWBRLdqk=) 2: xFyYQwiFYolxMHxZtc8kFoIQI3g.crl (hash: vRGGGAQBj7JTzziIZcGJFhviSUcu2r0KsNNOhVR1T/M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.crl rsync://rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.mft rsync://rpki.ripe.net/repository/DEFAULT/xFyYQwiFYolxMHxZtc8kFoIQI3g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 06:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:32:41:b2:4f:37:fb:0f:2f:06:09:8a:0d:e6:06:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c45c98430885628971307c59b5cf241682102378 Validity Not Before: Dec 19 06:00:44 2025 GMT Not After : Dec 20 06:00:44 2025 GMT Subject: CN=0a923aa7ca6d793fb69ba6ab0f885e8924099be5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:10:77:44:37:14:e3:8a:a0:07:c7:04:22:4f: a8:7d:a3:76:20:0e:87:ba:9c:d2:88:74:61:86:32: 72:3c:ee:9b:d7:87:cb:2a:aa:8e:ab:73:2f:82:cd: 60:1e:d2:0c:a9:05:bd:4e:76:d6:96:eb:58:cd:88: 94:2a:0a:c8:ca:f4:7b:b6:92:86:2e:4e:50:03:ff: 93:ec:34:dd:a7:26:1e:2a:21:aa:f1:a8:04:c3:cd: 90:ec:30:95:67:2e:18:ff:dd:4c:18:c7:0b:79:7f: e5:c9:3d:3c:4d:7d:e0:74:b2:40:f4:61:11:41:db: 1b:d5:f2:81:27:28:a6:cf:6d:9e:04:e0:19:8d:45: f1:ee:4e:14:8b:45:cf:c1:4e:c3:e0:dd:0b:78:1e: 34:9b:41:c2:e4:53:9d:90:47:9b:76:c9:5c:40:2b: 0d:57:df:06:e5:e6:06:f5:de:26:d8:7f:9c:58:0e: 53:2b:04:b5:ce:1d:dc:11:78:e6:a5:b9:d6:0d:b6: d9:a5:b5:53:7f:e5:82:44:cb:51:51:a5:e1:68:42: 4c:69:4f:88:97:f5:07:1a:d1:1b:8a:1e:af:d6:e7: e6:9d:6e:88:b7:f4:e2:42:d4:67:8b:fe:8e:22:bb: 59:96:7b:53:fe:16:13:c8:32:65:47:b7:aa:d9:18: 52:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:92:3A:A7:CA:6D:79:3F:B6:9B:A6:AB:0F:88:5E:89:24:09:9B:E5 X509v3 Authority Key Identifier: keyid:C4:5C:98:43:08:85:62:89:71:30:7C:59:B5:CF:24:16:82:10:23:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xFyYQwiFYolxMHxZtc8kFoIQI3g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:26:55:3f:53:fb:cd:b3:c0:f9:49:34:8a:38:6c:49:be:fe: 6e:a3:62:42:14:bb:ff:25:1e:57:4d:49:f8:0b:ac:ff:5d:92: 78:20:68:f1:d6:f7:38:99:67:80:a9:0b:53:84:9a:d3:1d:45: ac:dc:48:38:92:c1:44:8d:2e:56:d9:fd:9b:e9:33:61:cc:6b: 71:53:44:52:ed:f0:43:f3:25:f4:a0:3f:b0:28:00:b4:08:01: 3c:d5:6d:93:70:b2:48:fb:dc:49:f2:ba:d6:2b:21:4e:c3:69: bc:94:ce:25:32:f1:df:b5:ea:ac:d1:2d:8b:40:9d:32:be:71: 99:cd:98:ee:91:c0:7f:8f:82:91:7a:d7:cd:6e:91:67:29:54: 0d:10:b6:ac:91:fe:36:a7:64:bc:48:5e:0f:d1:10:17:45:ff: c1:f3:be:94:5f:6e:98:d9:79:23:e4:4a:4c:dd:25:5c:49:46: 79:3e:2b:ab:19:2d:3d:75:d4:3f:5e:27:8d:c4:04:32:99:06: 9d:31:cc:23:f0:1c:2b:3a:e9:96:98:ee:f8:15:ea:40:5d:88: 5d:fb:c5:9c:69:ee:72:ac:b3:51:70:5b:5d:1d:5b:90:63:f0: f0:9f:50:1f:27:98:29:b8:60:c9:91:b2:30:bd:c6:8a:24:7a: 18:6c:e3:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1MkGyTzf7Dy8GCYoN5gZFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM0NWM5ODQzMDg4NTYyODk3MTMwN2M1OWI1Y2YyNDE2ODIx MDIzNzgwHhcNMjUxMjE5MDYwMDQ0WhcNMjUxMjIwMDYwMDQ0WjAzMTEwLwYDVQQD EygwYTkyM2FhN2NhNmQ3OTNmYjY5YmE2YWIwZjg4NWU4OTI0MDk5YmU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2RB3RDcU44qgB8cEIk+ofaN2IA6H upzSiHRhhjJyPO6b14fLKqqOq3Mvgs1gHtIMqQW9TnbWlutYzYiUKgrIyvR7tpKG Lk5QA/+T7DTdpyYeKiGq8agEw82Q7DCVZy4Y/91MGMcLeX/lyT08TX3gdLJA9GER Qdsb1fKBJyimz22eBOAZjUXx7k4Ui0XPwU7D4N0LeB40m0HC5FOdkEebdslcQCsN V98G5eYG9d4m2H+cWA5TKwS1zh3cEXjmpbnWDbbZpbVTf+WCRMtRUaXhaEJMaU+I l/UHGtEbih6v1ufmnW6It/TiQtRni/6OIrtZlntT/hYTyDJlR7eq2RhSnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAqSOqfKbXk/tpumqw+IXokkCZvlMB8GA1UdIwQY MBaAFMRcmEMIhWKJcTB8WbXPJBaCECN4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveEZ5WVF3aUZZb2x4TUh4WnRjOGtGb0lRSTNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC8zMDdjMzMtMzhhNy00ZmRhLTlhMDgt OWFiZGNhMzlkNGY3LzEveEZ5WVF3aUZZb2x4TUh4WnRjOGtGb0lRSTNnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMC8zMDdjMzMtMzhhNy00ZmRhLTlhMDgtOWFiZGNhMzlkNGY3 LzEveEZ5WVF3aUZZb2x4TUh4WnRjOGtGb0lRSTNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkiZVP1P7 zbPA+Uk0ijhsSb7+bqNiQhS7/yUeV01J+Aus/12SeCBo8db3OJlngKkLU4Sa0x1F rNxIOJLBRI0uVtn9m+kzYcxrcVNEUu3wQ/Ml9KA/sCgAtAgBPNVtk3CySPvcSfK6 1ishTsNpvJTOJTLx37XqrNEti0CdMr5xmc2Y7pHAf4+CkXrXzW6RZylUDRC2rJH+ NqdkvEheD9EQF0X/wfO+lF9umNl5I+RKTN0lXElGeT4rqxktPXXUP14njcQEMpkG nTHMI/AcKzrplpju+BXqQF2IXfvFnGnucqyzUXBbXR1bkGPw8J9QHyeYKbhgyZGy ML3GiiR6GGzjfw== -----END CERTIFICATE-----Generated at Fri Dec 19 10:36:41 2025 by rpki-client