This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft File: fmXasjlAyzlPmqpmT-pNb49C4xg.mft (raw, json) Hash identifier: VuLoF/CH86YKGT4u7V2A/Vj3m3UfCPMQIZ3FvJFYiBE= Subject key identifier: 2B:91:39:47:DC:4C:D8:38:B1:9C:B0:9D:E6:55:D9:9C:08:7F:BB:6C Authority key identifier: 7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18 Certificate issuer: /CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318 Certificate serial: 019AF2AD9FFC21DE6A61DB8DA582F0103589 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft Manifest number: 176B Signing time: Sat 06 Dec 2025 08:00:56 +0000 Manifest this update: Sat 06 Dec 2025 08:00:56 +0000 Manifest next update: Sun 07 Dec 2025 08:00:56 +0000 Files and hashes: 1: 2EgNkY8LCfJBqiF5G8pJe3q0hB4.roa (hash: wdnhU8m5AMaVCnPJuJ1ikMuyahXryJ7xnwDGzqvqxIk=) 2: B9gQbAB9xsN6pQfQdJIwTw0mN8w.roa (hash: x4fcMnOhpMuR2+7kVYptH+8Mn3pldQm1ilWOcm4WRJw=) 3: fmXasjlAyzlPmqpmT-pNb49C4xg.crl (hash: velBXRjjrfyvRX+/1yZhEV8VMmQQKUY4h8BVxwwo3Tg=) 4: jKTi0IFy2Gsl-io5IjP67e8YnpY.roa (hash: zmbRyxceh2NVjEHPxC/G8V+VaBl1rJ3CnIcL4cBiYPg=) 5: onHMu3bAahxq_cU4SfKfk6E_UV4.roa (hash: iPBBLCVey8nRw59EFOtKkUkXyLv07ioTCFN/ZWTNZaI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:9f:fc:21:de:6a:61:db:8d:a5:82:f0:10:35:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318 Validity Not Before: Dec 6 08:00:56 2025 GMT Not After : Dec 7 08:00:56 2025 GMT Subject: CN=2b913947dc4cd838b19cb09de655d99c087fbb6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:81:83:54:49:f2:ec:89:30:3f:f5:28:14:56: f2:d8:a4:a0:84:5a:54:19:af:b0:a1:49:d7:d3:a4: bf:fa:fd:9c:b9:2c:60:27:f3:79:20:4e:ec:e7:90: 5f:a3:c0:5c:fc:df:ce:be:6e:dd:de:b1:4e:2f:aa: 1c:29:93:c3:71:f8:a4:bf:d1:ec:f2:4c:98:46:1a: 0d:35:0c:01:74:d4:51:cc:29:cc:ab:fb:ee:9a:17: df:2b:c8:0c:01:aa:55:e4:84:d5:13:0b:2f:3a:81: 98:89:ad:7e:1c:98:fa:96:a3:ce:9e:44:24:4a:2e: 9e:b8:47:30:ce:de:0d:76:67:85:b6:cc:aa:69:5f: f6:f6:58:fb:69:40:bc:51:86:3a:ca:a0:0c:05:a0: b7:8f:5e:cb:a1:80:a8:7d:51:6d:95:3d:28:f4:ad: 08:9d:b5:8e:95:d1:7f:ba:b3:81:13:a9:36:36:40: 91:ab:f6:17:74:9f:d7:c7:1e:fc:6a:4f:cf:fc:ba: f1:88:49:03:a5:97:f9:3a:4c:ac:7d:d7:79:c2:1d: 90:1d:0c:c6:21:31:67:d7:c5:67:89:10:f8:65:06: 2a:f9:99:4e:22:a5:15:25:66:7e:f5:47:16:1d:d9: f1:96:44:6e:5f:2f:32:9b:d9:3b:14:35:1b:60:6e: 38:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:91:39:47:DC:4C:D8:38:B1:9C:B0:9D:E6:55:D9:9C:08:7F:BB:6C X509v3 Authority Key Identifier: keyid:7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:0e:a1:3a:14:1f:a1:09:46:04:23:b3:f8:dd:98:5c:58:ea: 3c:3c:ed:9f:c5:04:b8:ba:a0:82:ad:74:f6:15:af:e7:a2:a0: d1:0b:1a:a6:57:ee:fd:01:e4:e9:7d:86:59:5f:36:d2:65:81: a3:e3:27:d7:5c:50:e3:81:02:5d:27:2a:74:17:16:8f:84:61: bd:e2:e8:41:ed:ae:2d:e5:fe:9a:3b:2f:36:09:ea:b7:fd:58: 07:f0:69:af:05:46:69:4a:4e:64:dd:98:21:b4:f8:d1:60:7d: 20:ff:7b:e5:0a:ac:a3:55:69:50:e7:3b:2e:21:ef:bc:5c:53: 7a:55:8a:37:3f:39:10:b6:3a:de:96:e6:ad:60:ed:64:00:34: 1a:9d:18:3a:0b:a7:cb:5c:29:13:22:0f:3e:c7:8f:bf:88:cc: 36:8b:c4:b8:05:33:14:cc:cd:55:a0:2f:29:7c:7b:32:10:9e: c5:89:2e:43:3f:73:20:78:a1:60:4a:35:6c:56:91:27:39:74: e6:d9:b9:bc:3e:60:11:62:1f:78:30:e0:f5:50:36:12:05:5b: 06:50:e9:ae:6f:3e:51:e0:cd:29:5b:c4:03:6e:33:33:20:3e: 18:71:c9:53:fb:b0:05:8b:eb:dc:36:3b:3d:5b:f1:d3:51:01: 33:2f:78:d3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrZ/8Id5qYduNpYLwEDWJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdlNjVkYWIyMzk0MGNiMzk0ZjlhYWE2NjRmZWE0ZDZmOGY0 MmUzMTgwHhcNMjUxMjA2MDgwMDU2WhcNMjUxMjA3MDgwMDU2WjAzMTEwLwYDVQQD EygyYjkxMzk0N2RjNGNkODM4YjE5Y2IwOWRlNjU1ZDk5YzA4N2ZiYjZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnIGDVEny7IkwP/UoFFby2KSghFpU Ga+woUnX06S/+v2cuSxgJ/N5IE7s55Bfo8Bc/N/Ovm7d3rFOL6ocKZPDcfikv9Hs 8kyYRhoNNQwBdNRRzCnMq/vumhffK8gMAapV5ITVEwsvOoGYia1+HJj6lqPOnkQk Si6euEcwzt4NdmeFtsyqaV/29lj7aUC8UYY6yqAMBaC3j17LoYCofVFtlT0o9K0I nbWOldF/urOBE6k2NkCRq/YXdJ/Xxx78ak/P/LrxiEkDpZf5Okysfdd5wh2QHQzG ITFn18VniRD4ZQYq+ZlOIqUVJWZ+9UcWHdnxlkRuXy8ym9k7FDUbYG445wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCuROUfcTNg4sZywneZV2ZwIf7tsMB8GA1UdIwQY MBaAFH5l2rI5QMs5T5qqZk/qTW+PQuMYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZm1YYXNqbEF5emxQbXFwbVQtcE5iNDlDNHhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC81OGViYjEtZGJlYy00N2Y5LWJiOTYt ODQ5Y2ZjYWJiNjU3LzEvZm1YYXNqbEF5emxQbXFwbVQtcE5iNDlDNHhnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC81OGViYjEtZGJlYy00N2Y5LWJiOTYtODQ5Y2ZjYWJiNjU3 LzEvZm1YYXNqbEF5emxQbXFwbVQtcE5iNDlDNHhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANA6hOhQf oQlGBCOz+N2YXFjqPDztn8UEuLqggq109hWv56Kg0Qsaplfu/QHk6X2GWV820mWB o+Mn11xQ44ECXScqdBcWj4RhveLoQe2uLeX+mjsvNgnqt/1YB/BprwVGaUpOZN2Y IbT40WB9IP975Qqso1VpUOc7LiHvvFxTelWKNz85ELY63pbmrWDtZAA0Gp0YOgun y1wpEyIPPsePv4jMNovEuAUzFMzNVaAvKXx7MhCexYkuQz9zIHihYEo1bFaRJzl0 5tm5vD5gEWIfeDDg9VA2EgVbBlDprm8+UeDNKVvEA24zMyA+GHHJU/uwBYvr3DY7 PVvx01EBMy940w== -----END CERTIFICATE-----Generated at Sat Dec 6 14:49:19 2025 by rpki-client