This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft File: Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft (raw, json) Hash identifier: 2pP7HXx1AUNxdv1ZSzyhuq3jxqw+zCW7fm0GOiA0hJM= Subject key identifier: 18:90:6E:95:1C:9F:32:19:B0:47:E7:BF:8B:AC:50:6B:61:C5:A5:10 Authority key identifier: 5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6 Certificate issuer: /CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6 Certificate serial: 019AF4650FCC529953E9B71AEAF21C1288E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft Manifest number: 0C54 Signing time: Sat 06 Dec 2025 16:00:55 +0000 Manifest this update: Sat 06 Dec 2025 16:00:55 +0000 Manifest next update: Sun 07 Dec 2025 16:00:55 +0000 Files and hashes: 1: Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl (hash: qemaY2Xze4i4pKcqlgMsPJFMcbNII7WDlZ0xaX0i/XI=) 2: eLPR2xt3_0RsiIApeB-CxAAHX-E.roa (hash: Kh1tlq7JO+3DhDd+dYuSyDwlPe8pGbqQGLCDk0TVyHQ=) 3: fcJb-6V4S8Ggt4XkeQ4z4NeOvBg.roa (hash: Ok0E8qecmwKHIVZlR2uj+ZosbjuqbuM99KMf84z3ECc=) 4: qDo63AkvTCIPp8RiOp5qIlq5Y4M.roa (hash: Nsk89diCVFtaOwMnAnY4OTAll1v9oBCR74Du8pv6pc8=) 5: uR0GCgMzcLoo7kMNpml9uCS8CMM.roa (hash: QU71NgSIyG52g0tQUOMPeRAsoX9aQ7+oGv7C6ynHtWc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:65:0f:cc:52:99:53:e9:b7:1a:ea:f2:1c:12:88:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6 Validity Not Before: Dec 6 16:00:55 2025 GMT Not After : Dec 7 16:00:55 2025 GMT Subject: CN=18906e951c9f3219b047e7bf8bac506b61c5a510 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:96:05:f1:62:57:a2:48:b3:97:99:71:73:c7: c3:ac:97:b0:0c:7d:dd:67:d0:db:c9:75:64:eb:ba: 38:5f:d9:1a:7f:54:1c:cb:0c:9b:e3:97:2b:99:c1: 9c:33:1f:56:d1:d3:3b:01:e9:ae:a4:bb:b1:92:82: 33:35:96:95:82:be:c9:e3:66:6c:ef:42:c7:32:6f: bd:7a:60:40:c6:ad:1e:d7:f0:47:48:2b:1c:40:d7: 5a:a1:9e:16:7b:80:18:37:da:3e:f1:bf:15:45:b5: 3f:9e:1c:e9:b7:31:09:d0:62:31:41:cb:03:fd:bd: 46:6f:fe:70:da:ce:15:ef:a4:55:a3:1d:64:b7:d3: 48:1d:0c:2d:5b:16:1e:15:94:3f:0b:c1:55:17:79: 01:e7:5a:af:07:05:28:b6:26:1f:f1:07:21:c1:19: 1e:c2:8a:0d:3e:15:23:0a:bb:e8:a4:7a:78:67:27: 54:a9:87:54:5b:30:a6:96:c1:dc:dd:94:f4:1c:fa: 08:98:18:61:80:b3:cb:ac:cb:04:58:30:05:12:ab: 45:8a:0b:28:d1:1a:22:b1:22:87:73:65:20:26:cd: a3:da:b6:ab:58:f2:f3:e1:2d:91:c5:3c:1c:db:44: 0b:4b:4a:09:4a:99:b6:ce:d3:1b:d3:dc:fa:e8:69: 17:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:90:6E:95:1C:9F:32:19:B0:47:E7:BF:8B:AC:50:6B:61:C5:A5:10 X509v3 Authority Key Identifier: keyid:5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:24:9a:0e:8d:5c:3c:c3:a3:c8:0c:90:7f:94:f7:63:b0:a8: f7:24:8e:8e:be:4a:56:f3:cc:36:96:46:2e:08:a0:01:ce:3b: bb:bb:72:b6:c8:34:31:48:7a:5b:63:d6:15:d0:08:b0:09:b2: 60:f5:13:57:08:bd:2c:32:5e:38:7b:90:d9:24:6d:5a:c9:0a: 6e:83:04:03:a7:09:0e:d0:9d:38:85:be:21:fd:71:a9:8f:a1: 15:18:6e:73:ae:e2:d9:34:14:9e:a3:16:8b:4f:66:b4:d9:df: 24:2d:bf:fc:df:ec:d3:a6:2a:8e:d9:aa:36:b2:76:41:93:9b: 22:ca:86:98:2c:e5:dc:1f:45:54:19:3e:d2:31:de:b4:00:41: 60:49:71:33:6c:de:f8:d0:cb:f6:e6:59:a0:5e:91:95:5e:70: fa:8f:f2:81:30:06:91:11:e6:97:e4:77:63:c5:22:03:fb:bc: 4a:60:bf:10:4d:47:7e:ca:8d:e8:7d:3c:8e:88:3b:55:2b:36: 62:09:b7:96:82:72:83:b4:86:d7:11:99:a9:40:f7:f8:0b:3e: d5:35:4d:9d:f4:12:36:79:f6:ff:d1:d5:2a:90:be:f5:ee:1c: 30:e6:2e:8a:91:22:df:6a:23:86:89:4c:ab:9f:18:fa:2b:6d: 5d:bf:28:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0ZQ/MUplT6bca6vIcEojnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmMWYyMTNiOGM3OTJiN2UwMTNmYTUwNDFmNWI4OTk3MWU2 ZjYyZDYwHhcNMjUxMjA2MTYwMDU1WhcNMjUxMjA3MTYwMDU1WjAzMTEwLwYDVQQD EygxODkwNmU5NTFjOWYzMjE5YjA0N2U3YmY4YmFjNTA2YjYxYzVhNTEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnZYF8WJXokizl5lxc8fDrJewDH3d Z9DbyXVk67o4X9kaf1Qcywyb45crmcGcMx9W0dM7AemupLuxkoIzNZaVgr7J42Zs 70LHMm+9emBAxq0e1/BHSCscQNdaoZ4We4AYN9o+8b8VRbU/nhzptzEJ0GIxQcsD /b1Gb/5w2s4V76RVox1kt9NIHQwtWxYeFZQ/C8FVF3kB51qvBwUotiYf8QchwRke wooNPhUjCrvopHp4ZydUqYdUWzCmlsHc3ZT0HPoImBhhgLPLrMsEWDAFEqtFigso 0RoisSKHc2UgJs2j2rarWPLz4S2RxTwc20QLS0oJSpm2ztMb09z66GkXbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBiQbpUcnzIZsEfnv4usUGthxaUQMB8GA1UdIwQY MBaAFF8fITuMeSt+AT+lBB9biZceb2LWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHg4aE80eDVLMzRCUDZVRUgxdUpseDV2WXRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zMmY4ZDMtNzMyOC00NWYwLWEwMDct NDAyMjM4NjM4ZWEzLzEvWHg4aE80eDVLMzRCUDZVRUgxdUpseDV2WXRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy8zMmY4ZDMtNzMyOC00NWYwLWEwMDctNDAyMjM4NjM4ZWEz LzEvWHg4aE80eDVLMzRCUDZVRUgxdUpseDV2WXRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABCSaDo1c PMOjyAyQf5T3Y7Co9ySOjr5KVvPMNpZGLgigAc47u7tytsg0MUh6W2PWFdAIsAmy YPUTVwi9LDJeOHuQ2SRtWskKboMEA6cJDtCdOIW+If1xqY+hFRhuc67i2TQUnqMW i09mtNnfJC2//N/s06YqjtmqNrJ2QZObIsqGmCzl3B9FVBk+0jHetABBYElxM2ze +NDL9uZZoF6RlV5w+o/ygTAGkRHml+R3Y8UiA/u8SmC/EE1HfsqN6H08jog7VSs2 Ygm3loJyg7SG1xGZqUD3+As+1TVNnfQSNnn2/9HVKpC+9e4cMOYuipEi32ojholM q58Y+ittXb8oNQ== -----END CERTIFICATE-----Generated at Sat Dec 6 20:56:48 2025 by rpki-client