This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft File: MXvyYLzaMCviwgdijPsWRHhhT-U.mft (raw, json) Hash identifier: lYMQ6P4f52ZRbUKqpIooB5IMh1r9KE2mp7hxLsqJkiQ= Subject key identifier: 95:46:02:AC:8B:68:40:8D:1F:C3:F6:4E:15:D1:94:19:F6:89:A2:D9 Authority key identifier: 31:7B:F2:60:BC:DA:30:2B:E2:C2:07:62:8C:FB:16:44:78:61:4F:E5 Certificate issuer: /CN=317bf260bcda302be2c207628cfb164478614fe5 Certificate serial: 019AF19B3EF14F81188CF4AF5F199478A7A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXvyYLzaMCviwgdijPsWRHhhT-U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft Manifest number: 0ED5 Signing time: Sat 06 Dec 2025 03:01:14 +0000 Manifest this update: Sat 06 Dec 2025 03:01:14 +0000 Manifest next update: Sun 07 Dec 2025 03:01:14 +0000 Files and hashes: 1: MXvyYLzaMCviwgdijPsWRHhhT-U.crl (hash: Ws/AK4vX5hHcPdLqJZ3+xRrWIqVgmfT7x4/99iqU79I=) 2: penXvalgbMBLZqcx96rUayqK3NQ.roa (hash: vb/Iw29Kb6TCjGenAwHcr/Ra62ZOMD3/iU+HDEP/27c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.crl rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft rsync://rpki.ripe.net/repository/DEFAULT/MXvyYLzaMCviwgdijPsWRHhhT-U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:3e:f1:4f:81:18:8c:f4:af:5f:19:94:78:a7:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=317bf260bcda302be2c207628cfb164478614fe5 Validity Not Before: Dec 6 03:01:14 2025 GMT Not After : Dec 7 03:01:14 2025 GMT Subject: CN=954602ac8b68408d1fc3f64e15d19419f689a2d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:af:ea:2d:c5:6a:3d:8f:a9:80:60:0d:d5:7a: 5c:4b:25:52:83:47:f7:a2:76:b4:d9:b4:eb:76:9d: 4c:95:e7:62:9d:44:b8:eb:86:4f:4c:76:2a:71:75: 80:4f:92:a8:9f:86:18:66:ec:a0:4d:9e:70:e8:b4: 5b:b1:6f:44:c0:76:58:ca:18:f6:e5:69:1e:a5:73: ad:78:9f:0b:13:b1:4f:b1:da:ee:99:b3:5b:a7:35: b3:35:94:da:8f:48:b4:b3:9d:7f:d2:77:dd:d1:c6: ee:dc:bd:90:2a:73:a4:3f:27:b9:92:1e:06:20:ec: c3:c5:07:36:bb:eb:21:ff:46:64:38:c1:ba:23:8f: 7e:2c:f2:2b:93:81:77:32:ba:df:82:89:66:4d:a4: a9:4c:6e:e6:7d:7f:5d:91:d2:bb:a1:97:c7:c3:b3: a2:74:f0:7a:d2:b4:f5:a3:7b:cf:ca:0f:49:07:12: 68:04:42:b9:63:a3:fa:6c:cc:99:cc:91:09:a0:07: c9:b5:55:6c:b3:aa:ed:58:1a:4d:ae:68:86:8e:d7: 8a:6c:c2:51:34:dc:33:60:26:c5:ed:87:07:ad:04: cf:57:a8:fc:b7:4b:7e:79:c8:de:3d:f6:a1:eb:1c: 96:6a:63:bf:0e:fb:ee:c3:a4:5c:fe:1e:c6:2b:29: 9a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:46:02:AC:8B:68:40:8D:1F:C3:F6:4E:15:D1:94:19:F6:89:A2:D9 X509v3 Authority Key Identifier: keyid:31:7B:F2:60:BC:DA:30:2B:E2:C2:07:62:8C:FB:16:44:78:61:4F:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXvyYLzaMCviwgdijPsWRHhhT-U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:27:16:05:16:de:7f:b0:d2:fd:32:22:3d:42:8e:3b:89:8a: 43:12:5b:1d:35:5b:c1:9a:bd:a0:ff:b0:67:c8:57:24:d1:d9: 42:e5:f2:2f:2d:c9:29:fc:ae:65:92:2b:de:b4:0d:4c:48:02: d5:ef:e9:55:68:45:38:d8:72:69:e6:40:f2:e6:4d:81:7e:75: eb:86:0a:a4:23:ec:8d:40:0e:93:9c:e9:ee:c2:61:51:48:21: 3e:8d:e6:c0:18:26:21:35:69:eb:a7:69:6b:3d:d2:a1:45:f8: 11:21:9f:40:9e:e9:4e:5c:9d:2c:49:25:70:20:4e:16:eb:52: ee:fc:62:50:c8:62:a2:16:7b:aa:e1:22:5c:27:bd:81:e1:ea: 74:ca:81:8d:bb:a9:85:bf:45:25:e4:b7:0e:80:7c:1d:15:03: 3a:c9:f8:7e:09:1f:ac:1f:27:a6:22:81:20:69:cd:a4:d8:73: 99:e7:9a:42:0b:c6:ed:0f:44:ac:80:15:20:e6:51:56:cb:8a: fd:4a:08:b4:dd:51:8b:21:5d:8c:f7:1f:59:0b:97:51:2a:db: e5:de:cd:47:a6:a1:bf:89:11:cb:8d:37:26:58:64:5b:c3:11: 0e:81:71:59:27:d8:55:08:5c:0b:ec:1d:6d:56:3b:2e:5c:3a: ae:52:ba:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmz7xT4EYjPSvXxmUeKenMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxN2JmMjYwYmNkYTMwMmJlMmMyMDc2MjhjZmIxNjQ0Nzg2 MTRmZTUwHhcNMjUxMjA2MDMwMTE0WhcNMjUxMjA3MDMwMTE0WjAzMTEwLwYDVQQD Eyg5NTQ2MDJhYzhiNjg0MDhkMWZjM2Y2NGUxNWQxOTQxOWY2ODlhMmQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl6/qLcVqPY+pgGAN1XpcSyVSg0f3 ona02bTrdp1MledinUS464ZPTHYqcXWAT5Kon4YYZuygTZ5w6LRbsW9EwHZYyhj2 5WkepXOteJ8LE7FPsdrumbNbpzWzNZTaj0i0s51/0nfd0cbu3L2QKnOkPye5kh4G IOzDxQc2u+sh/0ZkOMG6I49+LPIrk4F3MrrfgolmTaSpTG7mfX9dkdK7oZfHw7Oi dPB60rT1o3vPyg9JBxJoBEK5Y6P6bMyZzJEJoAfJtVVss6rtWBpNrmiGjteKbMJR NNwzYCbF7YcHrQTPV6j8t0t+ecjePfah6xyWamO/Dvvuw6Rc/h7GKymauwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJVGAqyLaECNH8P2ThXRlBn2iaLZMB8GA1UdIwQY MBaAFDF78mC82jAr4sIHYoz7FkR4YU/lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTVh2eVlMemFNQ3Zpd2dkaWpQc1dSSGhoVC1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy8wN2QxNDYtZWYyMi00ZTVjLWJkNWMt NDJlZDNlMzczNjc5LzEvTVh2eVlMemFNQ3Zpd2dkaWpQc1dSSGhoVC1VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy8wN2QxNDYtZWYyMi00ZTVjLWJkNWMtNDJlZDNlMzczNjc5 LzEvTVh2eVlMemFNQ3Zpd2dkaWpQc1dSSGhoVC1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdycWBRbe f7DS/TIiPUKOO4mKQxJbHTVbwZq9oP+wZ8hXJNHZQuXyLy3JKfyuZZIr3rQNTEgC 1e/pVWhFONhyaeZA8uZNgX5164YKpCPsjUAOk5zp7sJhUUghPo3mwBgmITVp66dp az3SoUX4ESGfQJ7pTlydLEklcCBOFutS7vxiUMhiohZ7quEiXCe9geHqdMqBjbup hb9FJeS3DoB8HRUDOsn4fgkfrB8npiKBIGnNpNhzmeeaQgvG7Q9ErIAVIOZRVsuK /UoItN1RiyFdjPcfWQuXUSrb5d7NR6ahv4kRy403JlhkW8MRDoFxWSfYVQhcC+wd bVY7Llw6rlK6pg== -----END CERTIFICATE-----Generated at Sat Dec 6 12:16:23 2025 by rpki-client