This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft File: mXyCWBNDX7ARVDjuP2B2N869jo4.mft (raw, json) Hash identifier: wdF8ZbsXtbJyMOcuM4pd9Cx//BzJ2adkbDRPheqVM80= Subject key identifier: 04:B0:A7:F2:B4:BE:EB:44:17:2B:45:45:3F:DF:74:3F:3A:B0:22:50 Authority key identifier: 99:7C:82:58:13:43:5F:B0:11:54:38:EE:3F:60:76:37:CE:BD:8E:8E Certificate issuer: /CN=997c825813435fb0115438ee3f607637cebd8e8e Certificate serial: 019AF1D1E398094AC8843314CEA94EC5D2C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft Manifest number: 41 Signing time: Sat 06 Dec 2025 04:00:55 +0000 Manifest this update: Sat 06 Dec 2025 04:00:55 +0000 Manifest next update: Sun 07 Dec 2025 04:00:55 +0000 Files and hashes: 1: PqvM7y_EnO197blIAFWJlGm7zPg.roa (hash: j3Px2lMJPmqVRk9ekcnvnW8pxUt/aHjy6HcH1LT7SIs=) 2: mXyCWBNDX7ARVDjuP2B2N869jo4.crl (hash: WINV6XczWj0n8IOgFH5qhSlLDNstU///ZlqOsvnyNvQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.crl rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:e3:98:09:4a:c8:84:33:14:ce:a9:4e:c5:d2:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=997c825813435fb0115438ee3f607637cebd8e8e Validity Not Before: Dec 6 04:00:55 2025 GMT Not After : Dec 7 04:00:55 2025 GMT Subject: CN=04b0a7f2b4beeb44172b45453fdf743f3ab02250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:12:4d:7a:39:cb:2b:ae:f6:45:6f:77:22:27: a0:2a:c2:a2:69:9b:c3:68:8a:60:2f:93:ef:89:48: 20:3b:76:01:43:1b:a9:d7:b2:e8:b2:23:a9:4f:5d: 42:18:92:69:00:e1:57:5b:4a:6b:0b:8b:2e:69:c6: 27:57:55:54:cd:f4:4e:58:35:53:10:ab:86:6a:88: 6a:a0:98:90:ca:68:af:91:bb:2a:e5:19:e5:0a:3b: 43:c1:ae:62:65:e9:ca:97:c5:22:e7:1f:46:6b:30: ae:9e:cd:0b:af:b3:a5:53:f9:40:44:b0:ff:f5:bb: 90:8b:29:aa:9b:6b:c9:aa:82:7a:e4:db:95:dc:c1: 77:89:a7:f8:1a:18:28:2e:05:22:30:0d:48:db:a8: 64:53:4c:74:ae:74:57:af:02:98:ed:a5:b5:3e:c2: 88:50:50:65:46:bd:c9:9e:85:c6:92:20:38:14:b1: 9b:f5:29:71:0c:c8:31:4d:45:41:b5:74:f6:1e:b0: b5:17:0d:88:5c:e9:c7:47:e9:88:e6:57:86:67:41: 57:a6:3a:d7:92:e2:55:5f:cd:38:b5:bf:7c:62:c1: dc:26:ad:fd:86:3a:f6:d0:7e:db:2c:e7:23:40:35: b5:5f:4a:38:55:ed:6d:7f:96:08:02:6a:65:5c:9c: 78:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:B0:A7:F2:B4:BE:EB:44:17:2B:45:45:3F:DF:74:3F:3A:B0:22:50 X509v3 Authority Key Identifier: keyid:99:7C:82:58:13:43:5F:B0:11:54:38:EE:3F:60:76:37:CE:BD:8E:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:16:03:b6:1a:68:f8:e5:2b:7a:05:12:e3:ed:83:68:15:6b: e2:b7:3a:91:2e:3a:97:35:bd:0d:51:e7:a5:f4:85:ca:2b:fa: 27:8f:df:06:32:80:de:55:c4:eb:37:ed:f4:a8:7e:ab:bb:83: 47:1a:5b:9c:ff:36:e3:3a:56:7d:c8:34:dc:75:d6:e4:fa:62: aa:9b:8f:3b:a9:d3:20:fc:67:e8:13:42:c2:f4:c1:52:6f:00: 25:7d:be:94:31:17:03:f5:75:9c:03:aa:93:f2:a8:5e:8e:93: 24:a5:b4:01:9b:64:64:06:f9:97:a0:d1:49:b4:50:3e:96:02: 0b:97:db:70:8c:19:6e:af:7e:34:8b:33:ca:88:36:9a:61:65: da:8d:2d:6a:24:8f:23:58:7e:52:2f:6b:d8:8d:43:59:b5:39: 5d:04:7d:5b:b3:19:52:a3:63:57:88:c2:9a:d8:73:6c:5d:13: 57:2f:f8:4a:70:01:9b:79:e4:c8:d5:56:0e:e6:99:5a:73:ee: 84:ac:83:ea:b1:8e:40:a3:1e:36:3a:95:b2:51:d8:08:27:9d: 2c:4a:a4:88:2d:15:83:a0:02:62:02:06:9d:db:cf:d1:0c:02: fe:1d:8d:71:d3:d2:03:32:5e:3b:eb:1a:b1:64:35:0b:b0:17: 99:c2:db:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0eOYCUrIhDMUzqlOxdLHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5N2M4MjU4MTM0MzVmYjAxMTU0MzhlZTNmNjA3NjM3Y2Vi ZDhlOGUwHhcNMjUxMjA2MDQwMDU1WhcNMjUxMjA3MDQwMDU1WjAzMTEwLwYDVQQD EygwNGIwYTdmMmI0YmVlYjQ0MTcyYjQ1NDUzZmRmNzQzZjNhYjAyMjUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmRJNejnLK672RW93IiegKsKiaZvD aIpgL5PviUggO3YBQxup17LosiOpT11CGJJpAOFXW0prC4suacYnV1VUzfROWDVT EKuGaohqoJiQymivkbsq5RnlCjtDwa5iZenKl8Ui5x9GazCuns0Lr7OlU/lARLD/ 9buQiymqm2vJqoJ65NuV3MF3iaf4GhgoLgUiMA1I26hkU0x0rnRXrwKY7aW1PsKI UFBlRr3JnoXGkiA4FLGb9SlxDMgxTUVBtXT2HrC1Fw2IXOnHR+mI5leGZ0FXpjrX kuJVX804tb98YsHcJq39hjr20H7bLOcjQDW1X0o4Ve1tf5YIAmplXJx4lQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFASwp/K0vutEFytFRT/fdD86sCJQMB8GA1UdIwQY MBaAFJl8glgTQ1+wEVQ47j9gdjfOvY6OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVh5Q1dCTkRYN0FSVkRqdVAyQjJOODY5am80LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni8yZjU1MDItMDA3YS00NjgzLTk4NzIt MjhmNzFhYmJhMDNhLzEvbVh5Q1dCTkRYN0FSVkRqdVAyQjJOODY5am80Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni8yZjU1MDItMDA3YS00NjgzLTk4NzItMjhmNzFhYmJhMDNh LzEvbVh5Q1dCTkRYN0FSVkRqdVAyQjJOODY5am80LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZhYDthpo +OUregUS4+2DaBVr4rc6kS46lzW9DVHnpfSFyiv6J4/fBjKA3lXE6zft9Kh+q7uD RxpbnP824zpWfcg03HXW5PpiqpuPO6nTIPxn6BNCwvTBUm8AJX2+lDEXA/V1nAOq k/KoXo6TJKW0AZtkZAb5l6DRSbRQPpYCC5fbcIwZbq9+NIszyog2mmFl2o0taiSP I1h+Ui9r2I1DWbU5XQR9W7MZUqNjV4jCmthzbF0TVy/4SnABm3nkyNVWDuaZWnPu hKyD6rGOQKMeNjqVslHYCCedLEqkiC0Vg6ACYgIGndvP0QwC/h2NcdPSAzJeO+sa sWQ1C7AXmcLb5Q== -----END CERTIFICATE-----Generated at Sat Dec 6 08:55:40 2025 by rpki-client