This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft File: rXz7zh1tOmok8lZSBl0xV1go7bU.mft (raw, json) Hash identifier: EaCLI0qezHOFzhw7mjBImcRyB2O+Li2T04vi1HSi73k= Subject key identifier: E3:3D:58:EC:08:9B:8B:AB:05:14:E0:F7:A5:39:C1:47:A9:81:A0:31 Authority key identifier: AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5 Certificate issuer: /CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5 Certificate serial: 019B32D61151CD52B3F9B5C85D1DA0616E49 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft Manifest number: 0E94 Signing time: Thu 18 Dec 2025 19:00:48 +0000 Manifest this update: Thu 18 Dec 2025 19:00:48 +0000 Manifest next update: Fri 19 Dec 2025 19:00:48 +0000 Files and hashes: 1: Im3NuoFQdX7egdBojqG76hMiXq0.roa (hash: MBZCzXbY6/6xAtTJ9sYOEhNyw2Jnz8TgfEJHylhcfdM=) 2: rXz7zh1tOmok8lZSBl0xV1go7bU.crl (hash: J6QUTTvHx8MgVP7WGiVrG/90QEQ8NbQAQPO7Y1yp9Co=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 19:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:d6:11:51:cd:52:b3:f9:b5:c8:5d:1d:a0:61:6e:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5 Validity Not Before: Dec 18 19:00:48 2025 GMT Not After : Dec 19 19:00:48 2025 GMT Subject: CN=e33d58ec089b8bab0514e0f7a539c147a981a031 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:52:93:a8:a7:06:81:00:f1:a8:02:63:f7:e7: 47:6b:81:bc:a2:5b:c2:03:cb:38:43:58:8a:09:12: 5a:5d:a1:e3:9e:2a:a2:d1:37:f0:b3:06:c8:33:72: 55:95:d2:cc:3e:cc:3b:55:ac:09:fe:1b:b9:cd:32: 64:7a:98:53:3b:9e:06:21:cb:f2:66:04:19:cc:3a: 06:ce:59:fd:e8:14:9f:03:65:e0:6a:67:84:ef:7e: 63:af:b1:cd:d0:c2:13:ce:ea:e0:50:62:b6:22:6f: 5d:75:8e:ea:0a:e1:53:a0:d1:2a:9a:df:8d:83:18: 35:9c:7c:a0:c2:9a:7c:47:32:e8:78:97:15:2a:d0: 04:89:a1:65:eb:50:83:56:56:f2:94:74:49:af:9d: fb:8e:bf:c4:10:a6:a0:c0:35:b6:ef:29:3e:bf:80: 33:26:83:b0:83:f6:89:2e:3a:85:05:f1:43:81:0b: d0:f7:17:eb:17:21:ef:43:68:0a:63:c1:02:60:00: 48:5f:d3:09:fd:d8:2d:85:34:72:aa:d1:c8:a6:b7: cb:ac:61:7b:db:1b:a1:c7:25:6e:5c:81:38:fd:02: ac:00:dd:8d:2c:ed:3b:e2:93:16:23:70:8e:70:e7: 53:b5:67:45:e2:b6:3b:e3:6b:ec:cf:ae:c0:46:d6: 0a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:3D:58:EC:08:9B:8B:AB:05:14:E0:F7:A5:39:C1:47:A9:81:A0:31 X509v3 Authority Key Identifier: keyid:AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:26:4a:00:13:8f:07:58:98:4f:3e:17:e1:a2:1a:db:63:a6: 57:e6:14:7f:05:3d:8e:d8:03:8e:b6:ad:91:5a:be:0c:af:de: 18:91:3d:a5:11:39:73:a3:02:3f:4f:0c:77:18:49:68:20:53: c1:0d:0d:f6:f2:62:f0:74:1a:da:ea:52:3c:7c:36:35:7c:68: e1:a5:20:41:00:8f:0c:7b:ae:7c:58:74:eb:61:f2:63:a2:5e: 4a:11:02:b1:67:ab:00:34:de:9d:61:2e:76:ca:5f:d4:ea:32: c6:fc:e6:9d:3c:7c:a2:42:97:c6:31:f8:8b:2b:0c:58:b5:37: c5:73:6f:b4:0c:54:38:85:0c:32:3d:3a:d2:09:93:83:70:72: 39:50:c5:d4:47:cc:ab:45:1d:1b:7f:28:3a:b0:f2:b7:68:11: ad:c2:d2:c1:a4:7a:5f:5f:ab:14:0d:88:b1:36:23:4f:09:8a: a4:39:34:68:04:c0:a0:78:fa:b8:76:44:8d:1d:33:4f:92:b5: 92:25:7a:63:4f:6d:97:22:f7:4b:6f:b4:2a:53:fe:28:5f:28: f2:24:92:65:4c:38:d6:f5:27:6b:eb:37:ae:ca:d5:45:d2:2e: 0c:04:37:5d:c9:d8:f0:c9:d2:7f:fd:f9:5f:d2:48:0e:9e:a4: 78:da:61:a4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsy1hFRzVKz+bXIXR2gYW5JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkN2NmYmNlMWQ2ZDNhNmEyNGYyNTY1MjA2NWQzMTU3NTgy OGVkYjUwHhcNMjUxMjE4MTkwMDQ4WhcNMjUxMjE5MTkwMDQ4WjAzMTEwLwYDVQQD EyhlMzNkNThlYzA4OWI4YmFiMDUxNGUwZjdhNTM5YzE0N2E5ODFhMDMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFKTqKcGgQDxqAJj9+dHa4G8olvC A8s4Q1iKCRJaXaHjniqi0TfwswbIM3JVldLMPsw7VawJ/hu5zTJkephTO54GIcvy ZgQZzDoGzln96BSfA2XgameE735jr7HN0MITzurgUGK2Im9ddY7qCuFToNEqmt+N gxg1nHygwpp8RzLoeJcVKtAEiaFl61CDVlbylHRJr537jr/EEKagwDW27yk+v4Az JoOwg/aJLjqFBfFDgQvQ9xfrFyHvQ2gKY8ECYABIX9MJ/dgthTRyqtHIprfLrGF7 2xuhxyVuXIE4/QKsAN2NLO074pMWI3COcOdTtWdF4rY742vsz67ARtYKuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOM9WOwIm4urBRTg96U5wUepgaAxMB8GA1UdIwQY MBaAFK18+84dbTpqJPJWUgZdMVdYKO21MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclh6N3poMXRPbW9rOGxaU0JsMHhWMWdvN2JVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8xMTQzNDAtMmM3MC00MWZjLWFiZTct MmZhN2M5YjExMWIxLzEvclh6N3poMXRPbW9rOGxaU0JsMHhWMWdvN2JVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS8xMTQzNDAtMmM3MC00MWZjLWFiZTctMmZhN2M5YjExMWIx LzEvclh6N3poMXRPbW9rOGxaU0JsMHhWMWdvN2JVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKCZKABOP B1iYTz4X4aIa22OmV+YUfwU9jtgDjratkVq+DK/eGJE9pRE5c6MCP08MdxhJaCBT wQ0N9vJi8HQa2upSPHw2NXxo4aUgQQCPDHuufFh062HyY6JeShECsWerADTenWEu dspf1OoyxvzmnTx8okKXxjH4iysMWLU3xXNvtAxUOIUMMj060gmTg3ByOVDF1EfM q0UdG38oOrDyt2gRrcLSwaR6X1+rFA2IsTYjTwmKpDk0aATAoHj6uHZEjR0zT5K1 kiV6Y09tlyL3S2+0KlP+KF8o8iSSZUw41vUna+s3rsrVRdIuDAQ3XcnY8MnSf/35 X9JIDp6keNphpA== -----END CERTIFICATE-----Generated at Thu Dec 18 23:41:08 2025 by rpki-client