This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft File: xs_ZQjfv0gDdCxFuH2-be8plnKc.mft (raw, json) Hash identifier: JiX1Bgwlbzxw+HRuWSC0UF7wKJdjg+XdOgG7vwhf+74= Subject key identifier: 94:A7:B4:3E:2E:74:24:42:74:79:A6:65:CF:7E:70:A8:B9:BE:91:5D Authority key identifier: C6:CF:D9:42:37:EF:D2:00:DD:0B:11:6E:1F:6F:9B:7B:CA:65:9C:A7 Certificate issuer: /CN=c6cfd94237efd200dd0b116e1f6f9b7bca659ca7 Certificate serial: 019AF240034C3B3EB452371DB44E761BB228 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 06:01:12 +0000 Manifest this update: Sat 06 Dec 2025 06:01:12 +0000 Manifest next update: Sun 07 Dec 2025 06:01:12 +0000 Files and hashes: 1: K9i5BAZ6MzcgF9CzcPcItueT7VY.roa (hash: SAFMofRuJhJyuX+kxWxAf3VBKLBtrOMj73WD80i1Rgo=) 2: xs_ZQjfv0gDdCxFuH2-be8plnKc.crl (hash: DGmzHDE0PngzjGQ9Ry1wGleJ6bRilqb98jF6itj/i7E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.crl rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:40:03:4c:3b:3e:b4:52:37:1d:b4:4e:76:1b:b2:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c6cfd94237efd200dd0b116e1f6f9b7bca659ca7 Validity Not Before: Dec 6 06:01:12 2025 GMT Not After : Dec 7 06:01:12 2025 GMT Subject: CN=94a7b43e2e7424427479a665cf7e70a8b9be915d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6a:b7:99:aa:ed:77:09:1d:05:a0:42:cc:58: c5:c5:ed:7b:54:b0:fb:a8:16:ea:c8:06:1b:13:79: ff:04:14:0e:50:83:fc:01:30:ea:ea:51:a0:77:47: ca:89:48:ff:c4:d6:ff:07:e9:80:f2:d8:1c:9c:d9: e3:47:c9:ff:25:34:ac:a0:b9:d8:6f:72:53:7d:d1: 9d:36:0a:bb:17:51:01:cb:42:98:3d:15:26:fc:7d: e1:a9:bd:05:ea:b4:06:f2:1d:7a:1d:0f:1b:59:59: b4:bb:33:5e:0e:74:09:2c:be:46:cb:ee:b0:c4:2e: 80:a3:bf:42:3f:a1:96:0d:7c:62:54:bc:17:5e:c7: 91:6f:fb:e0:83:17:72:0b:a2:d6:ee:17:15:60:40: 03:69:a9:b4:91:7b:32:34:5d:15:33:e7:dd:10:30: e1:6c:d2:01:fb:55:26:b0:b6:a9:4d:80:94:63:0b: 0c:cc:d3:bd:ab:8e:c1:5b:b3:5f:2a:7d:e1:fc:39: 8e:29:c9:58:3a:00:0e:19:1e:3a:2f:49:e6:b5:72: 86:99:3a:69:8f:9a:40:60:1c:15:a1:f9:46:83:00: 2d:79:b9:9e:73:d0:5f:a1:93:ac:a4:83:28:27:3c: 6f:c7:55:1b:83:d0:8c:06:f5:9b:4c:d5:0e:de:a8: 55:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:A7:B4:3E:2E:74:24:42:74:79:A6:65:CF:7E:70:A8:B9:BE:91:5D X509v3 Authority Key Identifier: keyid:C6:CF:D9:42:37:EF:D2:00:DD:0B:11:6E:1F:6F:9B:7B:CA:65:9C:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:60:b8:17:d6:c3:06:9c:5e:6f:fb:6a:d6:a6:64:b6:82:8d: 22:f5:33:52:d3:98:ab:16:4b:08:00:13:0f:bc:4d:0d:d5:03: 39:7e:de:37:94:e6:90:20:6b:22:28:18:91:79:b9:b2:4c:d6: ea:59:76:d6:a4:a0:1c:46:43:ee:bc:27:fc:e4:9b:58:0b:0f: ed:58:21:7c:eb:01:dd:a0:80:10:7d:eb:04:01:0a:4a:0c:e5: e4:f9:93:e5:e1:96:58:ba:ae:59:42:d3:b3:bb:6f:09:46:f5: 90:90:d9:70:d7:5c:de:3d:e5:00:f7:2a:d9:60:4b:f0:f6:9f: fe:24:c6:38:c5:69:49:84:eb:93:66:97:3f:18:21:2b:67:bf: 7e:2b:73:a1:56:1f:9a:64:8f:72:47:78:bb:5e:12:29:9e:49: 9c:67:95:e8:19:6d:95:c3:e6:43:21:c3:24:ad:02:2c:90:3b: 96:c0:3a:a8:58:d0:c5:b3:39:be:ea:df:e9:a1:77:02:8b:71: ac:fb:62:26:ff:a3:4b:24:6d:23:5e:76:6e:dd:25:c6:02:1e: 7c:eb:de:07:b6:eb:58:50:8c:e0:4b:ef:b6:55:91:b0:8d:e1: 94:be:3a:0a:76:d9:39:c8:52:ab:17:06:07:6b:df:2d:70:55: 0f:51:1c:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryQANMOz60UjcdtE52G7IoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2Y2ZkOTQyMzdlZmQyMDBkZDBiMTE2ZTFmNmY5YjdiY2E2 NTljYTcwHhcNMjUxMjA2MDYwMTEyWhcNMjUxMjA3MDYwMTEyWjAzMTEwLwYDVQQD Eyg5NGE3YjQzZTJlNzQyNDQyNzQ3OWE2NjVjZjdlNzBhOGI5YmU5MTVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwGq3martdwkdBaBCzFjFxe17VLD7 qBbqyAYbE3n/BBQOUIP8ATDq6lGgd0fKiUj/xNb/B+mA8tgcnNnjR8n/JTSsoLnY b3JTfdGdNgq7F1EBy0KYPRUm/H3hqb0F6rQG8h16HQ8bWVm0uzNeDnQJLL5Gy+6w xC6Ao79CP6GWDXxiVLwXXseRb/vggxdyC6LW7hcVYEADaam0kXsyNF0VM+fdEDDh bNIB+1UmsLapTYCUYwsMzNO9q47BW7NfKn3h/DmOKclYOgAOGR46L0nmtXKGmTpp j5pAYBwVoflGgwAtebmec9BfoZOspIMoJzxvx1Ubg9CMBvWbTNUO3qhVJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJSntD4udCRCdHmmZc9+cKi5vpFdMB8GA1UdIwQY MBaAFMbP2UI379IA3QsRbh9vm3vKZZynMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveHNfWlFqZnYwZ0RkQ3hGdUgyLWJlOHBsbktjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8wYjcyNzEtMDIyMS00NjBlLTgzMWEt ZGM4ODRmMWJlM2U1LzEveHNfWlFqZnYwZ0RkQ3hGdUgyLWJlOHBsbktjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS8wYjcyNzEtMDIyMS00NjBlLTgzMWEtZGM4ODRmMWJlM2U1 LzEveHNfWlFqZnYwZ0RkQ3hGdUgyLWJlOHBsbktjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFmC4F9bD Bpxeb/tq1qZktoKNIvUzUtOYqxZLCAATD7xNDdUDOX7eN5TmkCBrIigYkXm5skzW 6ll21qSgHEZD7rwn/OSbWAsP7VghfOsB3aCAEH3rBAEKSgzl5PmT5eGWWLquWULT s7tvCUb1kJDZcNdc3j3lAPcq2WBL8Paf/iTGOMVpSYTrk2aXPxghK2e/fitzoVYf mmSPckd4u14SKZ5JnGeV6BltlcPmQyHDJK0CLJA7lsA6qFjQxbM5vurf6aF3Aotx rPtiJv+jSyRtI152bt0lxgIefOveB7brWFCM4EvvtlWRsI3hlL46CnbZOchSqxcG B2vfLXBVD1Ecww== -----END CERTIFICATE-----Generated at Sat Dec 6 08:08:13 2025 by rpki-client