This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft File: FZjXXo4y1ehH30qho1wpNEyXbiY.mft (raw, json) Hash identifier: AfXhA24zPbBwLqam0qclhmmNYXXCZo+e4CXbe8EqbAQ= Subject key identifier: 50:BB:29:90:93:2A:BD:86:F8:4E:0F:A3:EE:C6:6A:48:F9:01:72:E7 Authority key identifier: 15:98:D7:5E:8E:32:D5:E8:47:DF:4A:A1:A3:5C:29:34:4C:97:6E:26 Certificate issuer: /CN=1598d75e8e32d5e847df4aa1a35c29344c976e26 Certificate serial: 019AF0BF68B43549859C715C4EE36E01F95F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FZjXXo4y1ehH30qho1wpNEyXbiY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft Manifest number: 1133 Signing time: Fri 05 Dec 2025 23:01:07 +0000 Manifest this update: Fri 05 Dec 2025 23:01:07 +0000 Manifest next update: Sat 06 Dec 2025 23:01:07 +0000 Files and hashes: 1: AIRZFXDpY9mQ7Mvu8kYb8OBEtUo.roa (hash: d5gxdyXpVK75f5B2dssNKeXHA5IUThR6PGmkaU8utQY=) 2: FZjXXo4y1ehH30qho1wpNEyXbiY.crl (hash: 4FFcSkPiSO0wrJjCxlc6kQOskp+p2+DCldlOY/WX+Yc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.crl rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft rsync://rpki.ripe.net/repository/DEFAULT/FZjXXo4y1ehH30qho1wpNEyXbiY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:68:b4:35:49:85:9c:71:5c:4e:e3:6e:01:f9:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1598d75e8e32d5e847df4aa1a35c29344c976e26 Validity Not Before: Dec 5 23:01:07 2025 GMT Not After : Dec 6 23:01:07 2025 GMT Subject: CN=50bb2990932abd86f84e0fa3eec66a48f90172e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:65:6e:cd:3b:1a:25:2a:60:2d:4f:fe:52:d6: 63:7b:c6:e3:69:94:12:44:64:28:10:5c:9e:1c:23: 75:ff:c1:84:18:76:14:18:5f:39:4c:52:15:01:62: 5c:1b:ee:d1:c9:fa:9e:20:f0:9b:31:f1:47:0e:7f: 8e:5a:e8:93:fd:06:f4:64:58:24:19:b2:9c:c0:77: 7c:2f:a9:e4:f5:c8:af:45:ec:94:4b:b4:4b:e3:57: f8:e3:a1:8d:38:e8:06:06:a3:ec:bf:d3:a6:61:0e: d0:69:8a:2d:fb:81:62:59:ba:f9:c5:a8:ae:47:2f: 9a:92:a8:6d:1a:4d:0d:6d:7e:64:cf:34:57:0f:b0: 2f:2a:fd:f3:58:47:f6:78:82:ef:1f:9a:af:57:92: 99:e8:05:36:b9:b3:2e:e2:2e:c4:4e:7e:e9:dc:9c: c0:82:59:f5:4b:c3:c3:d1:7e:c3:d2:4c:f3:35:41: cd:a5:9b:ec:37:78:4a:2e:84:7a:f5:fe:dd:a2:f5: 53:3f:45:5e:59:6c:a6:5c:19:8b:7b:9c:0d:6a:13: 85:62:66:4c:43:a8:5f:cf:17:30:7c:09:48:84:76: 3b:e9:20:fc:2f:42:80:3b:b3:82:35:1d:62:98:ee: 88:5c:c5:03:e1:87:16:8f:1a:3b:d6:64:e0:c4:23: 2c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:BB:29:90:93:2A:BD:86:F8:4E:0F:A3:EE:C6:6A:48:F9:01:72:E7 X509v3 Authority Key Identifier: keyid:15:98:D7:5E:8E:32:D5:E8:47:DF:4A:A1:A3:5C:29:34:4C:97:6E:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FZjXXo4y1ehH30qho1wpNEyXbiY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:13:d0:9f:6b:bb:69:72:4b:2b:15:78:4c:4e:b8:f7:1b:a9: 27:a4:24:be:19:a4:e5:8e:ac:56:e2:b9:4e:40:c2:e1:cb:81: 92:15:00:60:f4:8f:1b:36:75:80:23:38:33:48:7c:64:c4:60: dd:a3:1d:62:ee:c9:c4:e2:1e:21:12:c4:88:6b:84:24:b3:1f: ea:f5:fe:6a:2e:1f:75:fb:e5:ac:72:8b:99:b3:92:e0:fa:90: e2:74:4c:b3:e0:3c:6f:90:73:d1:44:09:5f:13:13:e0:1d:3c: 5d:8a:05:a3:36:d3:66:ba:67:31:97:89:82:34:bc:93:e8:6e: d1:6d:6f:35:43:9e:d1:f6:88:30:02:2a:6c:0b:d1:e4:05:25: 94:d8:21:3e:12:e6:60:90:d3:25:ee:2f:94:13:7f:9f:b3:6a: 54:d8:d1:d2:99:d0:94:4c:2e:b9:92:3e:82:b6:b2:d3:49:99: 2c:ae:a3:53:55:46:37:d7:a5:28:37:9a:39:a3:f2:f7:c5:72: d9:3c:43:43:02:00:2a:41:4c:1a:8d:04:16:b4:6a:5b:b5:fa: b6:8f:4a:25:15:e3:32:7e:f3:0a:0d:88:c2:de:4b:d4:d4:74: 64:93:3c:08:fd:d7:be:31:3e:e5:9c:7a:62:4c:63:14:11:92: 62:0f:a8:f1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwv2i0NUmFnHFcTuNuAflfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE1OThkNzVlOGUzMmQ1ZTg0N2RmNGFhMWEzNWMyOTM0NGM5 NzZlMjYwHhcNMjUxMjA1MjMwMTA3WhcNMjUxMjA2MjMwMTA3WjAzMTEwLwYDVQQD Eyg1MGJiMjk5MDkzMmFiZDg2Zjg0ZTBmYTNlZWM2NmE0OGY5MDE3MmU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtmVuzTsaJSpgLU/+UtZje8bjaZQS RGQoEFyeHCN1/8GEGHYUGF85TFIVAWJcG+7RyfqeIPCbMfFHDn+OWuiT/Qb0ZFgk GbKcwHd8L6nk9civReyUS7RL41f446GNOOgGBqPsv9OmYQ7QaYot+4FiWbr5xaiu Ry+akqhtGk0NbX5kzzRXD7AvKv3zWEf2eILvH5qvV5KZ6AU2ubMu4i7ETn7p3JzA gln1S8PD0X7D0kzzNUHNpZvsN3hKLoR69f7dovVTP0VeWWymXBmLe5wNahOFYmZM Q6hfzxcwfAlIhHY76SD8L0KAO7OCNR1imO6IXMUD4YcWjxo71mTgxCMs7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFC7KZCTKr2G+E4Po+7Gakj5AXLnMB8GA1UdIwQY MBaAFBWY116OMtXoR99KoaNcKTRMl24mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRlpqWFhvNHkxZWhIMzBxaG8xd3BORXlYYmlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC84MjZhNWItNjM4Zi00NjFiLWEyNGIt M2JjNmJjMzA2Zjg5LzEvRlpqWFhvNHkxZWhIMzBxaG8xd3BORXlYYmlZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC84MjZhNWItNjM4Zi00NjFiLWEyNGItM2JjNmJjMzA2Zjg5 LzEvRlpqWFhvNHkxZWhIMzBxaG8xd3BORXlYYmlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVRPQn2u7 aXJLKxV4TE649xupJ6Qkvhmk5Y6sVuK5TkDC4cuBkhUAYPSPGzZ1gCM4M0h8ZMRg 3aMdYu7JxOIeIRLEiGuEJLMf6vX+ai4fdfvlrHKLmbOS4PqQ4nRMs+A8b5Bz0UQJ XxMT4B08XYoFozbTZrpnMZeJgjS8k+hu0W1vNUOe0faIMAIqbAvR5AUllNghPhLm YJDTJe4vlBN/n7NqVNjR0pnQlEwuuZI+gray00mZLK6jU1VGN9elKDeaOaPy98Vy 2TxDQwIAKkFMGo0EFrRqW7X6to9KJRXjMn7zCg2Iwt5L1NR0ZJM8CP3XvjE+5Zx6 YkxjFBGSYg+o8Q== -----END CERTIFICATE-----Generated at Sat Dec 6 08:18:56 2025 by rpki-client