This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft File: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft (raw, json) Hash identifier: 4r5pgkyGeCMz3KK7xLF+NH68wXmEUy6T6fhzJuS8Bfw= Subject key identifier: 58:83:68:3D:0E:EE:86:3F:73:62:EE:A2:D7:98:86:09:3A:99:49:BC Authority key identifier: C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E Certificate issuer: /CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e Certificate serial: 019B59760EE84682ECA97C0409683B344748 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft Manifest number: 0935 Signing time: Fri 26 Dec 2025 07:01:07 +0000 Manifest this update: Fri 26 Dec 2025 07:01:07 +0000 Manifest next update: Sat 27 Dec 2025 07:01:07 +0000 Files and hashes: 1: ZYhttRWwRR-QF8jloAZFKuhooqE.roa (hash: eO0V42mhSgtEZOqn/NTkR+4pbvAmlZ4nSZ0JyynFqN4=) 2: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl (hash: j3llAeZs/d4xOHVYat7dajF2suDow6L1FvQjucY8160=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:0e:e8:46:82:ec:a9:7c:04:09:68:3b:34:47:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e Validity Not Before: Dec 26 07:01:07 2025 GMT Not After : Dec 27 07:01:07 2025 GMT Subject: CN=5883683d0eee863f7362eea2d79886093a9949bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0c:7b:1c:b6:12:65:7f:68:92:e6:dd:d6:8a: ed:e8:79:aa:15:4f:3c:1a:b4:da:65:30:40:56:67: 8d:5f:ea:b7:90:2a:66:8d:d6:28:b3:3b:86:df:96: f0:7c:1d:60:73:41:91:62:f9:1b:71:84:8b:fa:db: 87:35:a7:b2:23:0d:3a:95:74:80:8a:87:dc:1b:e9: aa:f0:16:a5:30:a7:e6:f1:c6:b2:a7:41:2f:98:12: 98:4e:d3:40:02:60:3e:f2:ff:ca:5f:19:d6:0d:89: 0a:63:f2:5b:56:5c:7d:d0:00:a8:27:0e:6a:67:4a: 66:0c:d6:d2:b3:62:cf:d4:b7:45:d6:9d:aa:f4:6f: 36:c6:75:91:f8:9a:99:76:34:e1:ef:a9:fa:4a:19: d9:8b:06:ac:5c:c7:aa:6b:52:3c:c1:65:e4:38:f6: 5a:f3:3c:a9:bf:ce:c8:7b:44:ea:fc:e2:05:41:08: 9e:2a:d1:45:ff:24:50:dc:34:15:97:49:6f:2a:90: 9f:00:6b:15:24:d7:e4:39:08:89:a3:04:1c:b0:73: 37:6a:ef:95:f4:b0:83:1a:ba:36:92:e0:0c:68:67: 0c:24:dd:0c:78:f7:10:a9:93:7f:df:f4:ec:02:48: 8a:65:79:45:7a:ef:83:83:94:a6:5b:f2:03:b0:6f: fd:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:83:68:3D:0E:EE:86:3F:73:62:EE:A2:D7:98:86:09:3A:99:49:BC X509v3 Authority Key Identifier: keyid:C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:de:6d:1d:25:57:c5:73:e5:be:0c:d3:db:e8:49:e3:02:89: 8b:ef:b9:9c:56:02:91:55:5d:d9:82:38:3f:92:ba:0f:13:68: 3b:22:56:e9:41:12:20:c8:03:2f:a4:27:02:6f:1a:b2:c9:97: 36:0a:d8:a3:c9:e7:3a:30:58:67:cf:e5:c9:7b:ef:cb:7e:a7: 9f:f7:5c:3f:db:a2:35:20:a5:20:23:27:08:32:7d:3a:54:20: 15:d7:2e:b3:1b:9d:93:77:8c:32:b0:8b:b8:4b:8d:9b:59:b1: 2a:df:84:2f:ab:ff:39:c7:f5:62:23:b0:a3:c8:d1:a9:bd:34: 5f:48:6c:28:c1:d5:14:4b:f5:b5:e4:72:ee:45:fd:21:0c:0d: 83:e8:43:66:b3:e3:c6:ff:c4:0a:44:13:8f:7e:c5:d4:1c:c3: 89:54:b4:cb:c9:ba:5a:ff:70:a5:1a:fa:f0:57:a3:ce:1f:66: c8:d0:8d:bd:6e:35:90:0b:a3:15:90:5d:cb:22:86:e9:a3:8e: ed:15:a7:b9:55:6c:c1:81:9e:9e:5a:cd:0b:d2:94:f3:8f:f1: 07:c2:3f:1a:a8:ef:67:65:ad:fc:4d:90:9f:37:b0:fe:3a:a3: 4e:e1:0f:99:66:cb:6d:b5:7b:ec:08:2e:b1:1f:3b:4b:0f:ee: f8:74:ab:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdg7oRoLsqXwECWg7NEdIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM0M2M3NDAyMmNiYmYwYjNjZmZmNjAzMWQ2ZDJkZTAzNjlj OTllNGUwHhcNMjUxMjI2MDcwMTA3WhcNMjUxMjI3MDcwMTA3WjAzMTEwLwYDVQQD Eyg1ODgzNjgzZDBlZWU4NjNmNzM2MmVlYTJkNzk4ODYwOTNhOTk0OWJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsQx7HLYSZX9okubd1ort6HmqFU88 GrTaZTBAVmeNX+q3kCpmjdYoszuG35bwfB1gc0GRYvkbcYSL+tuHNaeyIw06lXSA iofcG+mq8BalMKfm8cayp0EvmBKYTtNAAmA+8v/KXxnWDYkKY/JbVlx90ACoJw5q Z0pmDNbSs2LP1LdF1p2q9G82xnWR+JqZdjTh76n6ShnZiwasXMeqa1I8wWXkOPZa 8zypv87Ie0Tq/OIFQQieKtFF/yRQ3DQVl0lvKpCfAGsVJNfkOQiJowQcsHM3au+V 9LCDGro2kuAMaGcMJN0MePcQqZN/3/TsAkiKZXlFeu+Dg5SmW/IDsG/9owIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFiDaD0O7oY/c2LuoteYhgk6mUm8MB8GA1UdIwQY MBaAFMQ8dAIsu/Czz/9gMdbS3gNpyZ5OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy9lZDVkM2EtYjg2OS00Y2RhLTlkMzIt MjUwZTU1YjlkNGE5LzEveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy9lZDVkM2EtYjg2OS00Y2RhLTlkMzItMjUwZTU1YjlkNGE5 LzEveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATd5tHSVX xXPlvgzT2+hJ4wKJi++5nFYCkVVd2YI4P5K6DxNoOyJW6UESIMgDL6QnAm8assmX NgrYo8nnOjBYZ8/lyXvvy36nn/dcP9uiNSClICMnCDJ9OlQgFdcusxudk3eMMrCL uEuNm1mxKt+EL6v/Ocf1YiOwo8jRqb00X0hsKMHVFEv1teRy7kX9IQwNg+hDZrPj xv/ECkQTj37F1BzDiVS0y8m6Wv9wpRr68Fejzh9myNCNvW41kAujFZBdyyKG6aOO 7RWnuVVswYGenlrNC9KU84/xB8I/GqjvZ2Wt/E2Qnzew/jqjTuEPmWbLbbV77Agu sR87Sw/u+HSrnA== -----END CERTIFICATE-----Generated at Fri Dec 26 16:06:16 2025 by rpki-client