This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft File: Xo0HtF99gxJMn4wPrAO-wCRos34.mft (raw, json) Hash identifier: o7nI9NEid9RsLdTWoDAVj5ZuRcp+4g4IyhNnbgB2Z10= Subject key identifier: EA:23:F8:99:7B:79:23:F0:83:91:14:9B:51:E8:B6:0F:A2:C1:C7:92 Authority key identifier: 5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E Certificate issuer: /CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e Certificate serial: 019AF1D20A080BE7C6F4453648E6C91D39F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft Manifest number: 177A Signing time: Sat 06 Dec 2025 04:01:05 +0000 Manifest this update: Sat 06 Dec 2025 04:01:05 +0000 Manifest next update: Sun 07 Dec 2025 04:01:05 +0000 Files and hashes: 1: 42NnB3jW5n3RbWWrHMDd_7NubAY.roa (hash: bZyySLXxgMQfpoBtEuXSmgHgMgLKQxBjV3IqMenXg0E=) 2: EuMIVvtjfwcw4H_1qN_NTTYxtB0.roa (hash: GstL7gwAEgcyBOR5WEEQ3UJ45LkAklqubcGaSv86PEM=) 3: U3GEel-_AheBYgIYIVYL9mt_5dg.roa (hash: qjeuuOD21NigMG6GkIxT7OwP2vU0izG4cg6tV2NDSPY=) 4: Xo0HtF99gxJMn4wPrAO-wCRos34.crl (hash: ys1ODt/TIsjbDk+fdYi2+mjDHaMnG2myFluK5phGqQ0=) 5: ZvRJrTWQfMOoVK-yV_Cqwkgeu5A.roa (hash: hHz6N7J+wTDqY/Lm+M/7LMn5tnMNWvw100eCFcrE1zM=) 6: hMxFbe2_woNux6m3JkElwux-E5g.roa (hash: nrSIsPwWOsAGq4mrEG8bp4vhnLrScT5iVl2b8ClElOk=) 7: olCZzHEOZSOjj4yqtahX2zJkhMQ.roa (hash: aXtBhSkmw714xAy5wT1PAT7ELEpsc4omuqROu4g4WE8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:0a:08:0b:e7:c6:f4:45:36:48:e6:c9:1d:39:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e Validity Not Before: Dec 6 04:01:05 2025 GMT Not After : Dec 7 04:01:05 2025 GMT Subject: CN=ea23f8997b7923f08391149b51e8b60fa2c1c792 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:78:cc:e5:c1:a3:c8:20:08:91:f0:1e:a1:1a: 63:95:4c:ee:a3:a4:3a:af:9a:1f:1a:27:16:74:00: 39:50:ce:92:36:13:f7:d2:15:1c:05:ac:f2:1f:01: 00:83:3c:3a:19:e9:94:71:5a:7c:d6:ef:1c:e8:58: 8a:00:a5:b7:5c:52:a3:60:1b:c8:21:f7:77:0f:30: 8e:67:3b:43:15:e1:0a:92:05:89:4c:de:47:a1:82: bd:b5:55:cf:3d:f6:91:21:66:f8:c8:32:77:9b:16: 39:ab:83:62:23:cd:ab:a6:45:48:f1:de:9a:d3:c3: 56:fd:4f:96:ba:a7:23:59:c2:a2:c7:de:76:f8:b4: a7:4a:8f:a4:60:c4:29:f5:ad:44:63:ce:2b:68:bb: 01:95:13:ec:16:6e:23:c2:6d:22:b5:c8:6c:df:21: ed:cb:d8:cf:b4:b1:db:39:e4:8a:5b:1d:54:31:d9: fa:c6:06:c5:38:35:61:f4:dc:a8:25:f5:b7:9f:a7: 53:23:ca:c0:3c:e1:7a:44:3a:a6:80:f2:cd:95:d3: 1b:8e:29:65:d8:bc:d4:af:80:9e:3f:a2:da:f6:57: c6:74:83:0d:4a:8d:39:7f:e3:8c:62:c1:15:f4:ed: 4e:ff:48:fb:14:d8:62:99:af:68:da:2a:92:7b:08: 9b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:23:F8:99:7B:79:23:F0:83:91:14:9B:51:E8:B6:0F:A2:C1:C7:92 X509v3 Authority Key Identifier: keyid:5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:98:ef:72:81:c8:13:8d:8d:55:c5:ed:61:aa:61:ed:1c:ca: 82:68:e0:87:27:81:58:7c:11:18:7d:d1:f7:da:22:6a:f4:33: b3:e1:38:23:e5:ea:21:0a:29:10:00:0e:2a:7f:74:50:18:c8: 43:df:a6:93:20:03:04:09:ab:c9:86:8e:ec:54:28:4c:d6:7f: d2:73:7d:e5:01:dd:fa:8d:c6:59:88:1f:69:76:eb:45:cc:35: f1:9b:87:20:db:21:9a:d8:3d:43:b6:a5:b2:bf:d3:9b:d5:9e: 1c:61:b2:2a:fe:a8:e5:07:db:a5:0b:c3:55:d8:07:17:f2:0e: c5:f4:ff:19:62:df:c3:81:3d:18:4f:37:f8:62:37:d6:5a:b1: 1e:4b:2b:e9:b2:35:ef:ef:ca:26:71:ed:f3:74:be:ca:e0:53: 4d:00:12:8e:da:a9:f6:f4:c5:ac:53:4b:d6:97:b6:ff:35:e9: e3:c1:e7:7f:a2:a2:e6:a7:5c:cf:0f:cd:7a:05:0a:10:00:24: 6a:f8:6d:27:99:f5:cb:ec:e6:1b:c6:98:ff:21:65:4c:dc:40: b9:b6:db:3a:5e:1a:26:02:d2:63:bd:17:fb:0e:4a:2f:90:91: 4a:0a:09:60:f1:99:2c:d7:89:00:6e:84:87:48:50:b1:dc:69: e7:a5:97:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0goIC+fG9EU2SObJHTn3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlOGQwN2I0NWY3ZDgzMTI0YzlmOGMwZmFjMDNiZWMwMjQ2 OGIzN2UwHhcNMjUxMjA2MDQwMTA1WhcNMjUxMjA3MDQwMTA1WjAzMTEwLwYDVQQD EyhlYTIzZjg5OTdiNzkyM2YwODM5MTE0OWI1MWU4YjYwZmEyYzFjNzkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1HjM5cGjyCAIkfAeoRpjlUzuo6Q6 r5ofGicWdAA5UM6SNhP30hUcBazyHwEAgzw6GemUcVp81u8c6FiKAKW3XFKjYBvI Ifd3DzCOZztDFeEKkgWJTN5HoYK9tVXPPfaRIWb4yDJ3mxY5q4NiI82rpkVI8d6a 08NW/U+WuqcjWcKix952+LSnSo+kYMQp9a1EY84raLsBlRPsFm4jwm0itchs3yHt y9jPtLHbOeSKWx1UMdn6xgbFODVh9NyoJfW3n6dTI8rAPOF6RDqmgPLNldMbjill 2LzUr4CeP6La9lfGdIMNSo05f+OMYsEV9O1O/0j7FNhima9o2iqSewibTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOoj+Jl7eSPwg5EUm1Hotg+iwceSMB8GA1UdIwQY MBaAFF6NB7RffYMSTJ+MD6wDvsAkaLN+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWG8wSHRGOTlneEpNbjR3UHJBTy13Q1JvczM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9hMTY4ZTktZDA3MC00NGUwLTk0YTQt NmM4ZmQ4NGJiNWY1LzEvWG8wSHRGOTlneEpNbjR3UHJBTy13Q1JvczM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9hMTY4ZTktZDA3MC00NGUwLTk0YTQtNmM4ZmQ4NGJiNWY1 LzEvWG8wSHRGOTlneEpNbjR3UHJBTy13Q1JvczM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALpjvcoHI E42NVcXtYaph7RzKgmjghyeBWHwRGH3R99oiavQzs+E4I+XqIQopEAAOKn90UBjI Q9+mkyADBAmryYaO7FQoTNZ/0nN95QHd+o3GWYgfaXbrRcw18ZuHINshmtg9Q7al sr/Tm9WeHGGyKv6o5QfbpQvDVdgHF/IOxfT/GWLfw4E9GE83+GI31lqxHksr6bI1 7+/KJnHt83S+yuBTTQASjtqp9vTFrFNL1pe2/zXp48Hnf6Ki5qdczw/NegUKEAAk avhtJ5n1y+zmG8aY/yFlTNxAubbbOl4aJgLSY70X+w5KL5CRSgoJYPGZLNeJAG6E h0hQsdxp56WXHw== -----END CERTIFICATE-----Generated at Sat Dec 6 13:38:42 2025 by rpki-client