This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft File: mXpkd92XDJSyoXtSUCmC1Px1skQ.mft (raw, json) Hash identifier: XzsqVo561rO9cLRiRuL4OL9Kn7A5AYpzD8SK1OWOkKU= Subject key identifier: F1:FD:E7:84:A3:65:84:2E:51:3F:CB:F0:A2:4D:4B:B6:89:86:35:88 Authority key identifier: 99:7A:64:77:DD:97:0C:94:B2:A1:7B:52:50:29:82:D4:FC:75:B2:44 Certificate issuer: /CN=997a6477dd970c94b2a17b52502982d4fc75b244 Certificate serial: 019AF1644B36432AA2079005FB7AEF87887E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXpkd92XDJSyoXtSUCmC1Px1skQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft Manifest number: 068D Signing time: Sat 06 Dec 2025 02:01:13 +0000 Manifest this update: Sat 06 Dec 2025 02:01:13 +0000 Manifest next update: Sun 07 Dec 2025 02:01:13 +0000 Files and hashes: 1: N5euriRPkrPM5tpe3YMpJKwtnXs.roa (hash: Aif5H8pBLwxI+pfqg48v8EjEzgULti0iCYfChkXvfLI=) 2: mXpkd92XDJSyoXtSUCmC1Px1skQ.crl (hash: SFkO5ucT4kt6WKmeQ8W0MpCu1L3x36m3BoYjQi4jaY0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft rsync://rpki.ripe.net/repository/DEFAULT/mXpkd92XDJSyoXtSUCmC1Px1skQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:4b:36:43:2a:a2:07:90:05:fb:7a:ef:87:88:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=997a6477dd970c94b2a17b52502982d4fc75b244 Validity Not Before: Dec 6 02:01:13 2025 GMT Not After : Dec 7 02:01:13 2025 GMT Subject: CN=f1fde784a365842e513fcbf0a24d4bb689863588 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e7:b3:32:c0:ef:84:25:fd:36:68:ce:5d:92: 0a:3b:6b:dc:95:d6:2d:6b:84:24:db:ce:8f:2f:cf: be:7b:33:ae:03:7e:cb:9a:b3:c2:45:dd:cc:b7:df: c8:1d:b6:f4:01:d7:10:48:86:96:49:6f:22:1a:01: 20:1e:f0:05:07:dd:5d:90:49:08:40:54:d1:34:e1: 8a:2f:4d:c6:fd:76:a1:51:fc:83:f8:29:d1:45:17: 64:ce:48:ab:31:47:43:0d:7a:ba:ef:a7:4a:7d:7f: 16:a8:8c:e5:e2:0f:f1:1d:ec:b7:18:37:73:dc:99: 5f:bb:90:75:0b:ec:3d:43:4c:93:73:f8:7a:96:25: 24:c1:b1:ae:b8:1b:f7:bc:48:ca:59:31:cb:79:30: 89:69:65:cf:7f:bf:0f:d5:e8:11:4a:fc:87:c9:19: 87:64:d2:70:bd:10:db:d9:8f:5e:1b:70:ca:d0:b3: 2b:87:48:22:57:e9:6e:68:44:50:31:47:14:0a:0a: bf:f7:e1:dc:0a:15:cc:5f:2b:f8:30:4c:7b:3e:63: 8b:4a:4e:23:40:dd:ec:eb:6d:d9:f9:18:83:ff:87: 08:56:6e:6d:b9:45:00:d5:14:03:7c:a0:bf:a1:03: e9:db:ba:c6:15:03:b0:1f:2c:35:f2:ae:2e:2b:69: f5:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:FD:E7:84:A3:65:84:2E:51:3F:CB:F0:A2:4D:4B:B6:89:86:35:88 X509v3 Authority Key Identifier: keyid:99:7A:64:77:DD:97:0C:94:B2:A1:7B:52:50:29:82:D4:FC:75:B2:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXpkd92XDJSyoXtSUCmC1Px1skQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:24:54:ba:0f:a4:83:b2:fc:bf:a9:5f:f1:e9:98:42:8e:19: c2:7a:5f:ed:2a:43:68:8e:95:a7:0f:77:f6:af:03:ca:f2:22: a9:fd:0d:ec:98:7a:83:05:62:ef:df:a0:fe:c3:76:05:18:c4: 05:b4:6f:7c:54:e0:0c:4f:81:bc:a7:83:8a:32:c8:df:3a:74: df:26:c5:c6:25:19:70:9b:90:be:b3:aa:29:93:a3:d2:41:f5: 76:bf:9a:14:1e:64:35:46:e8:07:c4:c4:74:37:d0:be:09:31: e9:60:82:99:d4:22:8a:7a:0c:de:e1:d5:4d:43:1d:79:23:c8: cb:21:6a:48:f8:2c:07:68:14:eb:d9:7f:09:22:b6:17:53:2a: f7:88:c4:e4:88:c0:fb:45:d9:be:d6:83:5e:f2:b2:98:08:7b: ec:dd:04:a9:55:52:8a:2d:da:e0:8c:f0:a2:7c:00:c6:fe:66: 27:a5:ed:eb:5b:51:77:11:14:8e:20:06:d1:80:df:ec:f9:b4: f6:ef:96:c0:d2:2c:7f:2a:57:3b:fe:8a:af:c3:b2:df:62:ce: 1f:f9:a6:0d:7b:a0:cb:88:d4:bb:ad:73:29:c3:2a:dc:a2:ba: a8:47:3c:db:96:13:dd:21:38:73:a6:04:7c:44:bc:f9:14:c4: 24:fc:36:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZEs2QyqiB5AF+3rvh4h+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5N2E2NDc3ZGQ5NzBjOTRiMmExN2I1MjUwMjk4MmQ0ZmM3 NWIyNDQwHhcNMjUxMjA2MDIwMTEzWhcNMjUxMjA3MDIwMTEzWjAzMTEwLwYDVQQD EyhmMWZkZTc4NGEzNjU4NDJlNTEzZmNiZjBhMjRkNGJiNjg5ODYzNTg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0+ezMsDvhCX9NmjOXZIKO2vcldYt a4Qk286PL8++ezOuA37LmrPCRd3Mt9/IHbb0AdcQSIaWSW8iGgEgHvAFB91dkEkI QFTRNOGKL03G/XahUfyD+CnRRRdkzkirMUdDDXq676dKfX8WqIzl4g/xHey3GDdz 3Jlfu5B1C+w9Q0yTc/h6liUkwbGuuBv3vEjKWTHLeTCJaWXPf78P1egRSvyHyRmH ZNJwvRDb2Y9eG3DK0LMrh0giV+luaERQMUcUCgq/9+HcChXMXyv4MEx7PmOLSk4j QN3s623Z+RiD/4cIVm5tuUUA1RQDfKC/oQPp27rGFQOwHyw18q4uK2n1qwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPH954SjZYQuUT/L8KJNS7aJhjWIMB8GA1UdIwQY MBaAFJl6ZHfdlwyUsqF7UlApgtT8dbJEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVhwa2Q5MlhESlN5b1h0U1VDbUMxUHgxc2tRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS80ODE0NjYtMGUzOC00ZTNiLTliZjMt Mjg1NzQ1NjQ3ZjVmLzEvbVhwa2Q5MlhESlN5b1h0U1VDbUMxUHgxc2tRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS80ODE0NjYtMGUzOC00ZTNiLTliZjMtMjg1NzQ1NjQ3ZjVm LzEvbVhwa2Q5MlhESlN5b1h0U1VDbUMxUHgxc2tRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjSRUug+k g7L8v6lf8emYQo4Zwnpf7SpDaI6Vpw939q8DyvIiqf0N7Jh6gwVi79+g/sN2BRjE BbRvfFTgDE+BvKeDijLI3zp03ybFxiUZcJuQvrOqKZOj0kH1dr+aFB5kNUboB8TE dDfQvgkx6WCCmdQiinoM3uHVTUMdeSPIyyFqSPgsB2gU69l/CSK2F1Mq94jE5IjA +0XZvtaDXvKymAh77N0EqVVSii3a4IzwonwAxv5mJ6Xt61tRdxEUjiAG0YDf7Pm0 9u+WwNIsfypXO/6Kr8Oy32LOH/mmDXugy4jUu61zKcMq3KK6qEc825YT3SE4c6YE fES8+RTEJPw2aQ== -----END CERTIFICATE-----Generated at Sat Dec 6 10:39:37 2025 by rpki-client