This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft File: XVn0kNO2myLh4nwya69yMRBW3bg.mft (raw, json) Hash identifier: jc8UScxtg4cd52hTpqLrJGOSu1w0v03h25UnbKtzu/c= Subject key identifier: 6E:3A:BA:48:FC:F7:F3:94:D3:F9:C5:F8:C5:98:F5:25:50:96:6B:EE Authority key identifier: 5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8 Certificate issuer: /CN=5d59f490d3b69b22e1e27c326baf72311056ddb8 Certificate serial: 019AF19B211F3BAE488C84C5E9A22CC6A6C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft Manifest number: 0BEB Signing time: Sat 06 Dec 2025 03:01:06 +0000 Manifest this update: Sat 06 Dec 2025 03:01:06 +0000 Manifest next update: Sun 07 Dec 2025 03:01:06 +0000 Files and hashes: 1: VRTGeEzF5FtK76qOfPyLSRNqkOo.roa (hash: pOO7nnFTp0Qht5tDg13SMXctJEqxWl0GtVbovHy2WzY=) 2: XVn0kNO2myLh4nwya69yMRBW3bg.crl (hash: RxDNM0JnlEe9ON70Sp+E/mb/nn1bFJBhVivFZkfZViQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:21:1f:3b:ae:48:8c:84:c5:e9:a2:2c:c6:a6:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d59f490d3b69b22e1e27c326baf72311056ddb8 Validity Not Before: Dec 6 03:01:06 2025 GMT Not After : Dec 7 03:01:06 2025 GMT Subject: CN=6e3aba48fcf7f394d3f9c5f8c598f52550966bee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:81:ce:e4:7e:62:b2:12:b1:62:24:6f:cd:fd: 13:a1:0d:77:8e:57:d6:0d:8a:1d:54:da:16:26:3a: a7:6b:1e:a4:02:d8:15:6c:0c:c3:8c:2c:ca:1b:f5: df:7c:20:65:29:62:e5:98:71:d4:b2:d1:60:e8:ac: bd:95:b4:ee:d6:1f:ef:57:13:bd:d3:ef:de:e3:f7: 43:b5:53:2f:73:51:9a:e0:f5:08:55:50:a5:00:91: 4c:a8:2c:71:98:4c:b8:4d:d9:7c:34:41:02:ec:0b: 03:0f:51:66:f3:69:07:d8:d1:31:9b:50:db:b1:02: db:8e:e7:76:f8:4e:a1:11:ab:8b:4d:d0:eb:73:c9: b1:63:2d:7f:6e:b3:34:53:a8:a9:f8:a2:c2:7f:f3: 66:a1:e6:dc:bf:6f:d0:00:d7:8d:36:f4:97:c2:b0: 09:cd:ae:68:47:59:26:19:e4:cc:16:f1:a8:fd:2d: 55:29:d4:41:a2:2e:29:ab:00:5e:3d:6f:55:7e:5c: 74:12:0c:9f:54:d2:c2:4f:43:9c:66:96:b4:f8:d6: d5:91:cb:df:08:15:6f:60:b8:8d:a9:34:c9:69:d1: 32:39:c9:51:91:5c:fd:c0:e7:5d:29:33:52:f7:42: 26:e4:59:92:bf:6f:a8:a2:a7:fe:4e:62:2c:24:d1: 68:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:3A:BA:48:FC:F7:F3:94:D3:F9:C5:F8:C5:98:F5:25:50:96:6B:EE X509v3 Authority Key Identifier: keyid:5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:30:16:bf:50:58:9d:1d:4f:2c:19:5d:1e:88:d1:79:6e:93: 75:07:21:a7:80:10:16:39:82:da:81:ee:e6:c2:95:06:8c:e8: 1d:b2:b8:5a:6a:56:73:5f:02:1a:26:fd:82:f9:8e:f5:ad:20: 57:33:59:fd:19:28:a7:c2:77:1e:d1:1c:ca:37:51:c2:66:b6: b5:5c:54:1a:cd:d2:59:66:be:c4:b8:ad:13:20:74:b8:07:45: 1a:6c:fa:19:04:c7:a7:69:99:73:88:c5:ce:32:4e:43:a5:e2: 60:06:e2:24:61:08:e7:de:d8:26:ea:49:b2:a7:39:38:3b:66: b4:e3:17:7a:82:99:43:8e:e5:c3:a7:b5:cd:a8:c2:80:c1:04: 6b:02:d9:85:76:6b:80:c8:6f:4e:0b:c3:67:51:2f:07:63:21: c3:5d:dd:d8:14:ec:c9:3d:6e:f2:7b:c8:51:3f:eb:de:13:0a: 1d:e3:63:c0:fe:1c:ec:3a:dc:ce:92:8c:f6:1f:3d:10:85:8a: af:35:70:30:13:04:d0:37:fd:b1:78:bd:60:3f:54:5f:94:1b: 24:e4:8c:76:8f:59:14:4e:e7:18:59:9d:78:0b:4f:da:8d:3d: 26:3e:a7:5b:11:86:6a:50:da:c6:0e:1c:5f:5e:e9:bf:cb:98: 88:8e:e8:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmyEfO65IjITF6aIsxqbJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkNTlmNDkwZDNiNjliMjJlMWUyN2MzMjZiYWY3MjMxMTA1 NmRkYjgwHhcNMjUxMjA2MDMwMTA2WhcNMjUxMjA3MDMwMTA2WjAzMTEwLwYDVQQD Eyg2ZTNhYmE0OGZjZjdmMzk0ZDNmOWM1ZjhjNTk4ZjUyNTUwOTY2YmVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxIHO5H5ishKxYiRvzf0ToQ13jlfW DYodVNoWJjqnax6kAtgVbAzDjCzKG/XffCBlKWLlmHHUstFg6Ky9lbTu1h/vVxO9 0+/e4/dDtVMvc1Ga4PUIVVClAJFMqCxxmEy4Tdl8NEEC7AsDD1Fm82kH2NExm1Db sQLbjud2+E6hEauLTdDrc8mxYy1/brM0U6ip+KLCf/Nmoebcv2/QANeNNvSXwrAJ za5oR1kmGeTMFvGo/S1VKdRBoi4pqwBePW9Vflx0EgyfVNLCT0OcZpa0+NbVkcvf CBVvYLiNqTTJadEyOclRkVz9wOddKTNS90Im5FmSv2+ooqf+TmIsJNFoIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG46ukj89/OU0/nF+MWY9SVQlmvuMB8GA1UdIwQY MBaAFF1Z9JDTtpsi4eJ8MmuvcjEQVt24MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFZuMGtOTzJteUxoNG53eWE2OXlNUkJXM2JnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS8yYWViNzktMzU4Mi00ZWJmLWIxOWEt NzkzNDhlODM2NmJjLzEvWFZuMGtOTzJteUxoNG53eWE2OXlNUkJXM2JnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS8yYWViNzktMzU4Mi00ZWJmLWIxOWEtNzkzNDhlODM2NmJj LzEvWFZuMGtOTzJteUxoNG53eWE2OXlNUkJXM2JnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIzAWv1BY nR1PLBldHojReW6TdQchp4AQFjmC2oHu5sKVBozoHbK4WmpWc18CGib9gvmO9a0g VzNZ/Rkop8J3HtEcyjdRwma2tVxUGs3SWWa+xLitEyB0uAdFGmz6GQTHp2mZc4jF zjJOQ6XiYAbiJGEI597YJupJsqc5ODtmtOMXeoKZQ47lw6e1zajCgMEEawLZhXZr gMhvTgvDZ1EvB2Mhw13d2BTsyT1u8nvIUT/r3hMKHeNjwP4c7DrczpKM9h89EIWK rzVwMBME0Df9sXi9YD9UX5QbJOSMdo9ZFE7nGFmdeAtP2o09Jj6nWxGGalDaxg4c X17pv8uYiI7okA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:40:02 2025 by rpki-client