This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft File: xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft (raw, json) Hash identifier: 2fOWsTdRJe4SbavM1PHlEo88xoItyfYr2vY3K1sPTvk= Subject key identifier: 02:8E:3B:7D:97:6C:4B:79:11:64:C5:93:89:F2:8F:5E:E7:97:29:D2 Authority key identifier: C6:3B:E7:53:74:67:8D:B3:A0:49:F6:A3:EF:2A:FA:B7:0D:4F:6F:27 Certificate issuer: /CN=c63be75374678db3a049f6a3ef2afab70d4f6f27 Certificate serial: 019B2BF833E6C1BFE24E878562E51C4C55C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft Manifest number: 06EB Signing time: Wed 17 Dec 2025 11:00:45 +0000 Manifest this update: Wed 17 Dec 2025 11:00:45 +0000 Manifest next update: Thu 18 Dec 2025 11:00:45 +0000 Files and hashes: 1: e-ekxZnIJuci57HrEPz7zGue28s.roa (hash: 8H4l0N/E0NCOJoBHvZIBH7Jz+P9G/e+mdO0E4zzVLoo=) 2: xjvnU3RnjbOgSfaj7yr6tw1Pbyc.crl (hash: g1Eeg5aiKr5fmnOFTghFSEM/xhQOOPfjwX3Smnbdw6w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.crl rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft rsync://rpki.ripe.net/repository/DEFAULT/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:f8:33:e6:c1:bf:e2:4e:87:85:62:e5:1c:4c:55:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c63be75374678db3a049f6a3ef2afab70d4f6f27 Validity Not Before: Dec 17 11:00:45 2025 GMT Not After : Dec 18 11:00:45 2025 GMT Subject: CN=028e3b7d976c4b791164c59389f28f5ee79729d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:54:2d:57:d4:32:66:89:dd:3f:0f:83:fd:8e: 3e:ff:1e:fe:e9:74:e9:28:2c:2a:78:bb:0a:8a:73: 6d:40:af:0d:a7:59:22:42:53:22:63:34:d2:6e:06: 54:3d:9c:e1:85:08:f7:9d:cd:f3:6e:fa:64:3a:ca: 8b:2d:0a:de:0b:a2:ff:f1:80:fa:2d:3a:87:c2:55: 52:f2:1b:8a:d9:46:b4:58:eb:1a:43:f8:49:dd:06: c3:2f:69:59:fe:bd:39:f2:4d:82:c4:a1:1f:e8:4e: 7b:02:c5:bd:a4:e8:f3:ff:be:f6:f0:3e:4f:c7:f6: 42:c9:73:d2:20:7a:e8:0e:eb:43:21:aa:8f:01:73: e6:90:2f:c4:ef:eb:50:15:1f:84:87:f5:44:2f:ac: 33:af:6e:72:13:bc:92:14:39:33:b5:81:77:48:53: c6:30:e3:0d:1d:0a:73:e6:69:2f:94:93:59:e6:bb: 3c:39:83:66:ca:f1:f3:e1:b9:5c:7c:d2:97:14:24: 4e:35:4f:a4:13:e0:bc:ff:55:9e:80:e0:16:6c:bd: c8:51:1e:01:e6:18:0c:da:7a:61:f1:92:c2:5f:ce: e3:65:7a:b8:b6:23:e6:3d:b6:a2:26:bc:9e:17:34: 15:6f:e4:8a:e6:44:66:a5:06:17:67:cb:c4:8f:41: 84:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:8E:3B:7D:97:6C:4B:79:11:64:C5:93:89:F2:8F:5E:E7:97:29:D2 X509v3 Authority Key Identifier: keyid:C6:3B:E7:53:74:67:8D:B3:A0:49:F6:A3:EF:2A:FA:B7:0D:4F:6F:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:70:f9:85:9a:1e:74:22:48:46:82:a2:e7:0a:8c:6f:13:e5: f4:22:f1:07:d8:eb:d4:c1:00:01:e8:08:fa:1d:d0:e5:0e:ec: 7a:4c:03:4a:67:9b:35:39:f1:ef:e7:ac:8b:50:e0:9b:0d:d3: ca:a0:02:b5:5a:30:0f:29:ab:be:6f:ce:3d:40:39:bb:2b:1c: f8:c8:b0:59:6e:e1:ee:f4:62:49:d7:1f:0b:0f:1c:e8:22:87: 8d:fb:76:d3:11:d2:1f:73:0d:75:0f:97:df:00:b4:6a:54:c8: b3:2a:f9:21:9c:8d:cc:12:23:1d:13:41:7e:fc:78:e3:f7:f8: f4:d0:37:91:3f:03:3c:3e:00:21:e9:b0:f0:15:a3:5c:e8:98: 20:3e:1e:49:77:79:05:e2:23:86:5a:24:1b:63:24:82:e8:eb: 56:e8:5d:3a:fe:aa:a7:13:39:2b:a2:90:f5:7b:13:09:19:78: f8:cd:a1:8d:21:83:ce:d5:7b:af:14:67:9e:5f:e3:e4:cd:ab: 79:78:55:b3:f8:2e:f4:1e:e8:0b:b5:ab:3d:c8:01:86:9a:51: f5:fb:ad:8a:6a:21:be:64:4d:a1:5a:fe:51:f4:d4:4b:2b:9b: 45:73:63:47:82:2d:10:56:84:38:56:27:96:96:67:f9:07:e8: 99:62:3c:7e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsr+DPmwb/iToeFYuUcTFXFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2M2JlNzUzNzQ2NzhkYjNhMDQ5ZjZhM2VmMmFmYWI3MGQ0 ZjZmMjcwHhcNMjUxMjE3MTEwMDQ1WhcNMjUxMjE4MTEwMDQ1WjAzMTEwLwYDVQQD EygwMjhlM2I3ZDk3NmM0Yjc5MTE2NGM1OTM4OWYyOGY1ZWU3OTcyOWQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo1QtV9QyZondPw+D/Y4+/x7+6XTp KCwqeLsKinNtQK8Np1kiQlMiYzTSbgZUPZzhhQj3nc3zbvpkOsqLLQreC6L/8YD6 LTqHwlVS8huK2Ua0WOsaQ/hJ3QbDL2lZ/r058k2CxKEf6E57AsW9pOjz/7728D5P x/ZCyXPSIHroDutDIaqPAXPmkC/E7+tQFR+Eh/VEL6wzr25yE7ySFDkztYF3SFPG MOMNHQpz5mkvlJNZ5rs8OYNmyvHz4blcfNKXFCRONU+kE+C8/1WegOAWbL3IUR4B 5hgM2nph8ZLCX87jZXq4tiPmPbaiJryeFzQVb+SK5kRmpQYXZ8vEj0GExQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAKOO32XbEt5EWTFk4nyj17nlynSMB8GA1UdIwQY MBaAFMY751N0Z42zoEn2o+8q+rcNT28nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGp2blUzUm5qYk9nU2Zhajd5cjZ0dzFQYnljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy8wNTY2NzctMWE0YS00OGE2LWE5MmQt NmIzYjg2N2JkMjMyLzEveGp2blUzUm5qYk9nU2Zhajd5cjZ0dzFQYnljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy8wNTY2NzctMWE0YS00OGE2LWE5MmQtNmIzYjg2N2JkMjMy LzEveGp2blUzUm5qYk9nU2Zhajd5cjZ0dzFQYnljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm3D5hZoe dCJIRoKi5wqMbxPl9CLxB9jr1MEAAegI+h3Q5Q7sekwDSmebNTnx7+esi1Dgmw3T yqACtVowDymrvm/OPUA5uysc+MiwWW7h7vRiSdcfCw8c6CKHjft20xHSH3MNdQ+X 3wC0alTIsyr5IZyNzBIjHRNBfvx44/f49NA3kT8DPD4AIemw8BWjXOiYID4eSXd5 BeIjhlokG2MkgujrVuhdOv6qpxM5K6KQ9XsTCRl4+M2hjSGDztV7rxRnnl/j5M2r eXhVs/gu9B7oC7WrPcgBhppR9futimohvmRNoVr+UfTUSyubRXNjR4ItEFaEOFYn lpZn+QfomWI8fg== -----END CERTIFICATE-----Generated at Wed Dec 17 18:47:03 2025 by rpki-client