This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft File: xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft (raw, json) Hash identifier: HRfoy7NccBGxx4e2vbrI1j/jNr16klizhCNT7bjoVLw= Subject key identifier: E5:4F:BC:FD:A1:7F:5A:38:3E:31:45:7D:CA:BA:06:14:9A:2E:C8:3B Authority key identifier: C5:96:78:54:76:EF:BA:E7:7F:96:1D:23:05:70:57:FA:03:6F:B2:7F Certificate issuer: /CN=c596785476efbae77f961d23057057fa036fb27f Certificate serial: 019AF3F77B896D10101BFFFF54C004EBCE62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZZ4VHbvuud_lh0jBXBX-gNvsn8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft Manifest number: 160E Signing time: Sat 06 Dec 2025 14:01:13 +0000 Manifest this update: Sat 06 Dec 2025 14:01:13 +0000 Manifest next update: Sun 07 Dec 2025 14:01:13 +0000 Files and hashes: 1: xZZ4VHbvuud_lh0jBXBX-gNvsn8.crl (hash: Lim68j57F1seH1MmMA25FN08OY4S25gNl8UQY5xuFnY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft rsync://rpki.ripe.net/repository/DEFAULT/xZZ4VHbvuud_lh0jBXBX-gNvsn8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:f7:7b:89:6d:10:10:1b:ff:ff:54:c0:04:eb:ce:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c596785476efbae77f961d23057057fa036fb27f Validity Not Before: Dec 6 14:01:13 2025 GMT Not After : Dec 7 14:01:13 2025 GMT Subject: CN=e54fbcfda17f5a383e31457dcaba06149a2ec83b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ea:b1:b3:37:8a:fd:3b:d9:82:6e:f3:4f:7a: d0:90:f2:14:d3:1a:f1:2f:fc:91:df:e8:ed:6b:04: da:67:10:2e:f9:19:3a:99:1a:b6:29:e4:b9:f6:0e: 26:d6:b7:07:11:71:d2:e8:dc:54:32:2e:df:24:f2: e7:59:0e:17:80:03:76:4c:78:c9:4f:d8:89:70:5b: 0d:9b:86:06:f7:28:21:5f:41:ff:70:f4:43:24:31: 65:f5:cf:c5:e8:ab:87:15:f9:99:1e:63:f4:00:ad: c0:c6:6d:df:67:0c:74:57:a3:34:25:f9:e0:66:98: ba:98:01:bb:55:35:a4:6a:dc:d5:61:6d:67:48:78: f1:cc:b7:8d:4d:59:e5:af:4d:86:0b:28:6b:1a:02: 12:81:60:96:f6:31:ee:9c:ae:a9:12:25:f8:9a:b1: 05:b7:d9:4e:70:2b:3c:29:d5:11:2a:57:73:3c:f5: f9:e7:6a:f7:3c:41:16:8e:a4:14:08:1b:82:6d:34: 54:81:d2:4a:e9:09:9c:d8:4c:b5:05:53:c6:e8:56: 47:36:1d:1f:bf:0a:a3:95:8a:65:a2:e1:ce:08:65: d3:36:2d:75:48:c9:fa:74:04:31:05:48:2a:e0:96: 9e:9c:1c:88:62:31:26:5e:1a:e7:ef:9c:a5:4a:f9: 2d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:4F:BC:FD:A1:7F:5A:38:3E:31:45:7D:CA:BA:06:14:9A:2E:C8:3B X509v3 Authority Key Identifier: keyid:C5:96:78:54:76:EF:BA:E7:7F:96:1D:23:05:70:57:FA:03:6F:B2:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZZ4VHbvuud_lh0jBXBX-gNvsn8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:64:a4:c4:8c:6f:c6:9b:d6:cd:7e:11:62:f2:3f:f0:74:81: 4b:00:19:c8:3a:d9:d4:46:36:54:56:c7:7a:e1:60:ad:4f:7a: 88:e9:2f:47:66:46:ff:7a:9f:42:df:e0:f2:5a:e4:8c:4c:7e: 21:01:a2:56:d1:42:f9:3d:a3:03:2c:d9:3e:f4:5f:cb:e1:bd: 4f:58:26:13:e2:68:17:71:0b:bd:bd:e2:e9:e8:19:de:07:79: 9a:20:65:42:e1:0b:a3:88:87:e5:39:5d:2f:f5:52:f9:9a:67: 94:35:54:cd:3c:dc:90:fa:e8:e2:b1:c0:9c:35:82:db:d3:a1: 7e:e7:be:88:89:cc:b4:88:9a:2b:cd:98:cb:f1:86:22:24:76: ea:ce:87:70:c8:96:de:dc:b5:1d:f4:47:a7:fc:e9:a4:91:87: e1:94:8a:8f:24:9b:79:c9:ba:d5:c9:33:fa:8d:3f:0a:7a:81: 99:df:ec:79:61:72:ac:9d:ab:36:0d:7a:f6:db:12:e1:39:7a: 4f:58:6e:01:86:44:55:2f:9e:3e:ce:19:dd:bf:58:fb:c4:bf: 5b:35:19:27:b2:0b:b7:e5:67:17:ed:9f:d7:e2:7d:53:3f:d6: 2a:ff:90:1c:21:90:f8:c7:7a:cd:72:2d:b6:a9:97:d1:ef:13: 4c:10:da:df -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrz93uJbRAQG///VMAE685iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1OTY3ODU0NzZlZmJhZTc3Zjk2MWQyMzA1NzA1N2ZhMDM2 ZmIyN2YwHhcNMjUxMjA2MTQwMTEzWhcNMjUxMjA3MTQwMTEzWjAzMTEwLwYDVQQD EyhlNTRmYmNmZGExN2Y1YTM4M2UzMTQ1N2RjYWJhMDYxNDlhMmVjODNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyuqxszeK/TvZgm7zT3rQkPIU0xrx L/yR3+jtawTaZxAu+Rk6mRq2KeS59g4m1rcHEXHS6NxUMi7fJPLnWQ4XgAN2THjJ T9iJcFsNm4YG9yghX0H/cPRDJDFl9c/F6KuHFfmZHmP0AK3Axm3fZwx0V6M0Jfng Zpi6mAG7VTWkatzVYW1nSHjxzLeNTVnlr02GCyhrGgISgWCW9jHunK6pEiX4mrEF t9lOcCs8KdURKldzPPX552r3PEEWjqQUCBuCbTRUgdJK6Qmc2Ey1BVPG6FZHNh0f vwqjlYplouHOCGXTNi11SMn6dAQxBUgq4JaenByIYjEmXhrn75ylSvktJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOVPvP2hf1o4PjFFfcq6BhSaLsg7MB8GA1UdIwQY MBaAFMWWeFR277rnf5YdIwVwV/oDb7J/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveFpaNFZIYnZ1dWRfbGgwakJYQlgtZ052c244LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS80YWU5OWQtZjU1Mi00NzZjLTgxNzct ZWJmNWYwNDMzNzcyLzEveFpaNFZIYnZ1dWRfbGgwakJYQlgtZ052c244Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS80YWU5OWQtZjU1Mi00NzZjLTgxNzctZWJmNWYwNDMzNzcy LzEveFpaNFZIYnZ1dWRfbGgwakJYQlgtZ052c244LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKmSkxIxv xpvWzX4RYvI/8HSBSwAZyDrZ1EY2VFbHeuFgrU96iOkvR2ZG/3qfQt/g8lrkjEx+ IQGiVtFC+T2jAyzZPvRfy+G9T1gmE+JoF3ELvb3i6egZ3gd5miBlQuELo4iH5Tld L/VS+ZpnlDVUzTzckPro4rHAnDWC29Ohfue+iInMtIiaK82Yy/GGIiR26s6HcMiW 3ty1HfRHp/zppJGH4ZSKjySbecm61ckz+o0/CnqBmd/seWFyrJ2rNg169tsS4Tl6 T1huAYZEVS+ePs4Z3b9Y+8S/WzUZJ7ILt+VnF+2f1+J9Uz/WKv+QHCGQ+Md6zXIt tqmX0e8TTBDa3w== -----END CERTIFICATE-----Generated at Sat Dec 6 19:36:46 2025 by rpki-client