This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft File: 9XpIEqFZ72qekpcudXKtZi1yIVo.mft (raw, json) Hash identifier: tYJunl6EzBT4VYky10LMwuHVrSMjlbqjRbH5gyfiztw= Subject key identifier: 55:24:AF:80:CD:5A:ED:59:F7:AF:57:43:FF:EB:47:05:4E:28:16:AE Authority key identifier: F5:7A:48:12:A1:59:EF:6A:9E:92:97:2E:75:72:AD:66:2D:72:21:5A Certificate issuer: /CN=f57a4812a159ef6a9e92972e7572ad662d72215a Certificate serial: 019B4A70BA2887DB66D74C036AD803798F19 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9XpIEqFZ72qekpcudXKtZi1yIVo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft Manifest number: 107A Signing time: Tue 23 Dec 2025 09:01:00 +0000 Manifest this update: Tue 23 Dec 2025 09:01:00 +0000 Manifest next update: Wed 24 Dec 2025 09:01:00 +0000 Files and hashes: 1: 9XpIEqFZ72qekpcudXKtZi1yIVo.crl (hash: +XaSLueVx9U+W6a8TOmyC5qNYqbEF0q+nabNb3Wps+Q=) 2: Wwn9-ZCeqmzjX68bfgDgANWQIBU.roa (hash: SXq1+cMpW/SHgqnUXdFiB1yUFLsr835szRqOWcz8MK8=) 3: uiAj7bl-SXv7JRxYm2NXVOyGIhs.roa (hash: a//eeH8sFnN4/flxUlmU/77Maqj7B9717/MAcvQSTcQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft rsync://rpki.ripe.net/repository/DEFAULT/9XpIEqFZ72qekpcudXKtZi1yIVo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 09:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4a:70:ba:28:87:db:66:d7:4c:03:6a:d8:03:79:8f:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f57a4812a159ef6a9e92972e7572ad662d72215a Validity Not Before: Dec 23 09:01:00 2025 GMT Not After : Dec 24 09:01:00 2025 GMT Subject: CN=5524af80cd5aed59f7af5743ffeb47054e2816ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:80:08:cd:b5:4b:2f:e6:ec:fc:ad:9f:c1:f6: b9:bd:83:2d:a0:a6:9e:ae:6b:62:78:cc:df:d7:2f: 11:ce:8b:44:81:d3:f6:a8:0f:3b:ab:ee:76:99:12: 94:86:4c:08:3e:34:a2:a7:d9:9b:86:2e:28:96:71: d3:65:11:5b:4f:a6:af:51:8e:3d:71:40:63:60:7b: 83:78:8e:b9:62:cf:05:4b:dd:3b:03:6e:e0:8e:77: 9f:65:ba:41:16:17:27:17:8e:d2:45:09:d5:11:d3: cb:9a:04:4a:31:53:3f:8b:bd:45:e4:95:73:a6:6e: ca:ed:14:fe:ee:f1:3f:86:7c:22:5d:4b:e1:06:02: 2f:9b:18:6b:f8:42:cf:48:7e:78:88:aa:1e:3a:3e: 0d:5f:f4:9d:41:65:f1:2d:43:97:16:13:1e:f4:1a: 09:ad:93:46:f2:fe:31:9c:c0:c3:6f:52:9b:02:b0: 03:8c:23:5a:53:ce:dc:8a:ff:3c:c3:93:1f:f2:05: f1:2d:56:c7:e1:9e:77:84:dd:24:7c:bd:22:c8:cb: 75:a9:54:df:21:f9:bf:47:47:96:b7:87:72:01:72: 07:f3:43:ba:f9:ea:e2:cf:e3:af:bb:ae:ed:92:fa: f2:22:43:1b:79:ad:a9:79:b4:33:d9:10:88:52:eb: fa:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:24:AF:80:CD:5A:ED:59:F7:AF:57:43:FF:EB:47:05:4E:28:16:AE X509v3 Authority Key Identifier: keyid:F5:7A:48:12:A1:59:EF:6A:9E:92:97:2E:75:72:AD:66:2D:72:21:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9XpIEqFZ72qekpcudXKtZi1yIVo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:ae:c0:57:c1:59:f9:e3:ea:09:42:22:03:13:86:db:b5:3f: 54:1d:12:19:b0:09:f4:c4:cd:8b:e9:a8:cf:fc:16:60:8c:f5: 9d:3c:46:f7:ed:ec:c2:e1:35:a8:ae:0e:fd:49:48:82:75:6d: ab:a1:a1:e9:6f:31:19:4e:0e:22:89:37:35:7a:27:67:6e:83: ff:cf:22:ec:34:60:30:07:23:e3:e4:41:52:50:a1:7f:57:5e: 4d:31:c8:b8:3f:35:05:27:f1:74:7d:50:ed:8f:56:de:b1:65: 68:d1:c6:8e:01:e3:78:cd:7f:c4:bc:84:14:2a:5b:05:5e:bf: 1c:4c:ac:47:b7:e0:a2:ce:70:a9:02:93:44:4a:ef:d0:1a:5a: a2:90:0b:e4:53:48:61:c2:93:3c:3d:07:3b:6d:88:90:9a:3d: b0:ee:98:b1:6e:fa:af:e0:b4:da:c9:ad:20:ca:f7:1b:c3:85: 46:b9:bc:48:b3:a6:b2:89:62:11:b6:76:31:54:d8:22:f0:82: eb:78:11:82:50:c0:2c:0d:38:92:1d:34:d6:ff:51:2e:37:f6: 80:2d:82:a5:88:11:10:6a:a0:92:df:43:c8:3f:3f:e3:d9:6d: a1:7d:b7:61:7e:cc:0d:e6:4f:96:7e:a9:39:4f:a0:7e:49:79: 02:ee:d5:09 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtKcLooh9tm10wDatgDeY8ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY1N2E0ODEyYTE1OWVmNmE5ZTkyOTcyZTc1NzJhZDY2MmQ3 MjIxNWEwHhcNMjUxMjIzMDkwMTAwWhcNMjUxMjI0MDkwMTAwWjAzMTEwLwYDVQQD Eyg1NTI0YWY4MGNkNWFlZDU5ZjdhZjU3NDNmZmViNDcwNTRlMjgxNmFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3IAIzbVLL+bs/K2fwfa5vYMtoKae rmtieMzf1y8RzotEgdP2qA87q+52mRKUhkwIPjSip9mbhi4olnHTZRFbT6avUY49 cUBjYHuDeI65Ys8FS907A27gjnefZbpBFhcnF47SRQnVEdPLmgRKMVM/i71F5JVz pm7K7RT+7vE/hnwiXUvhBgIvmxhr+ELPSH54iKoeOj4NX/SdQWXxLUOXFhMe9BoJ rZNG8v4xnMDDb1KbArADjCNaU87civ88w5Mf8gXxLVbH4Z53hN0kfL0iyMt1qVTf Ifm/R0eWt4dyAXIH80O6+eriz+Ovu67tkvryIkMbea2pebQz2RCIUuv6LQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFUkr4DNWu1Z969XQ//rRwVOKBauMB8GA1UdIwQY MBaAFPV6SBKhWe9qnpKXLnVyrWYtciFaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOVhwSUVxRlo3MnFla3BjdWRYS3RaaTF5SVZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy80ZmJlMTAtOTQ4Ny00MTE1LTk4NTYt YmViNzBmZDQxNWNhLzEvOVhwSUVxRlo3MnFla3BjdWRYS3RaaTF5SVZvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy80ZmJlMTAtOTQ4Ny00MTE1LTk4NTYtYmViNzBmZDQxNWNh LzEvOVhwSUVxRlo3MnFla3BjdWRYS3RaaTF5SVZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFa7AV8FZ +ePqCUIiAxOG27U/VB0SGbAJ9MTNi+moz/wWYIz1nTxG9+3swuE1qK4O/UlIgnVt q6Gh6W8xGU4OIok3NXonZ26D/88i7DRgMAcj4+RBUlChf1deTTHIuD81BSfxdH1Q 7Y9W3rFlaNHGjgHjeM1/xLyEFCpbBV6/HEysR7fgos5wqQKTRErv0BpaopAL5FNI YcKTPD0HO22IkJo9sO6YsW76r+C02smtIMr3G8OFRrm8SLOmsoliEbZ2MVTYIvCC 63gRglDALA04kh001v9RLjf2gC2CpYgREGqgkt9DyD8/49ltoX23YX7MDeZPln6p OU+gfkl5Au7VCQ== -----END CERTIFICATE-----Generated at Tue Dec 23 16:10:06 2025 by rpki-client