This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft File: vX2BeM7FzTdlSKkEkRf0acCnQxw.mft (raw, json) Hash identifier: Dl0i67fxKMu2i/a5PHR4AMZPVuiHXEr3TMwKUe7JK2E= Subject key identifier: 82:4F:D5:2F:B9:B4:AD:8F:82:AE:C7:AE:CB:39:29:7E:9E:A5:9C:C0 Authority key identifier: BD:7D:81:78:CE:C5:CD:37:65:48:A9:04:91:17:F4:69:C0:A7:43:1C Certificate issuer: /CN=bd7d8178cec5cd376548a9049117f469c0a7431c Certificate serial: 019AF1D25C914302E322DBE2A0CAE74C285D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft Manifest number: 1771 Signing time: Sat 06 Dec 2025 04:01:26 +0000 Manifest this update: Sat 06 Dec 2025 04:01:26 +0000 Manifest next update: Sun 07 Dec 2025 04:01:26 +0000 Files and hashes: 1: 0PxrjgmZQbJVDcH4mMDl7gGNKZc.roa (hash: bjnIOfIl4+9c19F8Gpi8S4s/MfRm6ysLGSGly8bkYvk=) 2: Ndw7HVDtjP0mKBQVp0z9A-CbAvY.roa (hash: Gvsu5qwW/HZfnE/HXNRfeWRnDFzMBicoBm7giJXuEbI=) 3: fHkoAZxOrb4jS9uptQ9di3MomH4.roa (hash: OuL9G7DUjjtpe04g3KNS/iW0YgxTMwqsjJxCgrATRoE=) 4: gA1d2jY3nghc_kTFDgqzR_V4tPo.roa (hash: MVElriob5MX1tbQ4YiwNJ86SZ2jP9GGb5E+1TagXoxo=) 5: vX2BeM7FzTdlSKkEkRf0acCnQxw.crl (hash: QSJqtEgT/zbP4AWSzEctsvrSDjRu/9d5Mv2+V3JiVAU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:5c:91:43:02:e3:22:db:e2:a0:ca:e7:4c:28:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bd7d8178cec5cd376548a9049117f469c0a7431c Validity Not Before: Dec 6 04:01:26 2025 GMT Not After : Dec 7 04:01:26 2025 GMT Subject: CN=824fd52fb9b4ad8f82aec7aecb39297e9ea59cc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fe:d7:38:e4:64:3b:00:c5:21:c0:38:06:38: 25:0b:04:8c:c3:1b:45:c3:8f:7e:80:15:b0:78:aa: 9e:2f:ce:f8:35:a0:7e:15:f5:93:36:e5:80:92:ca: 80:fa:ba:8a:8c:f7:45:b2:6a:86:7b:8b:63:39:61: 14:f7:42:63:be:fb:4a:06:e0:cc:92:7d:cb:6a:a9: 09:de:da:93:d3:0f:5a:23:34:36:69:ab:79:b2:e8: 3e:8c:c1:76:3f:37:28:6f:13:c6:13:59:ee:99:a3: a5:b1:71:ea:57:fe:79:c8:32:14:c4:de:71:ad:2a: d2:62:77:81:49:7f:1c:31:f4:87:0e:89:53:0f:d5: 9e:3f:72:02:56:01:bb:da:a9:41:a2:ef:0a:87:66: 1f:3f:e8:6b:36:4c:91:7a:82:4d:04:82:e2:3d:f2: e0:ce:bf:5e:fd:70:6a:a5:57:56:c1:15:7c:18:28: a5:ed:dc:b5:53:05:b8:2f:ca:88:ab:1e:26:82:07: a7:e0:c1:d7:6f:a3:dc:c8:c9:49:16:d1:dc:d1:61: 18:15:f6:58:25:7d:46:04:fc:24:8c:0f:5f:22:e3: b8:8a:62:13:85:52:5f:e2:7f:a1:5a:ff:4d:44:44: e2:b2:74:ab:59:bc:a7:8e:18:76:a6:c2:b4:de:65: 51:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:4F:D5:2F:B9:B4:AD:8F:82:AE:C7:AE:CB:39:29:7E:9E:A5:9C:C0 X509v3 Authority Key Identifier: keyid:BD:7D:81:78:CE:C5:CD:37:65:48:A9:04:91:17:F4:69:C0:A7:43:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:40:5a:58:80:8c:d9:66:44:a3:a1:a2:d6:d6:42:dc:78:f7: b9:a0:eb:06:92:75:3b:06:85:16:96:8e:ad:78:1e:25:0b:05: 5a:f4:09:07:03:12:fd:55:34:41:57:0c:01:87:a6:68:3e:cf: b7:7c:5a:71:aa:43:a4:06:1b:c8:a5:00:5e:37:a0:e3:93:4b: ed:28:79:be:1c:13:84:9e:05:8a:b1:94:01:06:34:e0:ca:28: bb:73:25:ca:83:4e:87:f8:6a:c2:a3:6d:03:57:2c:3d:1e:cc: 82:df:94:7a:53:e2:07:f3:54:be:33:fb:aa:f4:f8:0f:e7:9e: 9f:ff:97:ab:ed:97:12:86:5e:fa:2a:5e:0e:00:f7:46:f4:2d: be:47:a3:ac:ac:45:b1:a6:b4:e6:5d:43:3e:50:f2:9f:9f:3f: 04:a9:ba:2b:ee:06:49:f6:0f:bf:08:54:5f:b8:05:31:63:45: 99:d2:68:49:db:56:91:71:0d:38:5f:91:34:7c:2f:e2:b0:84: d8:89:43:bf:b5:b0:62:c6:47:b3:0a:7f:7d:ca:ce:f5:95:e5: 0c:9a:ae:5e:ef:12:0d:0a:d7:7a:78:f0:bd:65:b2:60:43:ee: 98:34:94:4b:23:0e:1c:f6:25:84:25:29:8d:ce:ce:bb:15:18: b3:a5:b7:22 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0lyRQwLjItvioMrnTChdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkN2Q4MTc4Y2VjNWNkMzc2NTQ4YTkwNDkxMTdmNDY5YzBh NzQzMWMwHhcNMjUxMjA2MDQwMTI2WhcNMjUxMjA3MDQwMTI2WjAzMTEwLwYDVQQD Eyg4MjRmZDUyZmI5YjRhZDhmODJhZWM3YWVjYjM5Mjk3ZTllYTU5Y2MwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsv7XOORkOwDFIcA4BjglCwSMwxtF w49+gBWweKqeL874NaB+FfWTNuWAksqA+rqKjPdFsmqGe4tjOWEU90JjvvtKBuDM kn3LaqkJ3tqT0w9aIzQ2aat5sug+jMF2PzcobxPGE1numaOlsXHqV/55yDIUxN5x rSrSYneBSX8cMfSHDolTD9WeP3ICVgG72qlBou8Kh2YfP+hrNkyReoJNBILiPfLg zr9e/XBqpVdWwRV8GCil7dy1UwW4L8qIqx4mggen4MHXb6PcyMlJFtHc0WEYFfZY JX1GBPwkjA9fIuO4imIThVJf4n+hWv9NRETisnSrWbynjhh2psK03mVRFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIJP1S+5tK2Pgq7Hrss5KX6epZzAMB8GA1UdIwQY MBaAFL19gXjOxc03ZUipBJEX9GnAp0McMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdlgyQmVNN0Z6VGRsU0trRWtSZjBhY0NuUXh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9mMzE3YjMtMDY2OC00ZTA0LTliNmQt NjE1YWNhNTFlMmY2LzEvdlgyQmVNN0Z6VGRsU0trRWtSZjBhY0NuUXh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS9mMzE3YjMtMDY2OC00ZTA0LTliNmQtNjE1YWNhNTFlMmY2 LzEvdlgyQmVNN0Z6VGRsU0trRWtSZjBhY0NuUXh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMEBaWICM 2WZEo6Gi1tZC3Hj3uaDrBpJ1OwaFFpaOrXgeJQsFWvQJBwMS/VU0QVcMAYemaD7P t3xacapDpAYbyKUAXjeg45NL7Sh5vhwThJ4FirGUAQY04Moou3MlyoNOh/hqwqNt A1csPR7Mgt+UelPiB/NUvjP7qvT4D+een/+Xq+2XEoZe+ipeDgD3RvQtvkejrKxF saa05l1DPlDyn58/BKm6K+4GSfYPvwhUX7gFMWNFmdJoSdtWkXENOF+RNHwv4rCE 2IlDv7WwYsZHswp/fcrO9ZXlDJquXu8SDQrXenjwvWWyYEPumDSUSyMOHPYlhCUp jc7OuxUYs6W3Ig== -----END CERTIFICATE-----Generated at Sat Dec 6 08:21:59 2025 by rpki-client