This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft File: xVFHJIBoPGGXD2BfsZnuturhIYs.mft (raw, json) Hash identifier: RaLSvpe50vlKkvdhGkeaI805XuIqlL3U07OvaNC9hwA= Subject key identifier: B9:84:EA:37:36:AA:F4:CD:E5:C9:20:0E:B2:7C:D8:A4:70:3C:89:59 Authority key identifier: C5:51:47:24:80:68:3C:61:97:0F:60:5F:B1:99:EE:B6:EA:E1:21:8B Certificate issuer: /CN=c551472480683c61970f605fb199eeb6eae1218b Certificate serial: 019AF12E5BDCA9AC7575941915C9AC08479F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft Manifest number: 1463 Signing time: Sat 06 Dec 2025 01:02:18 +0000 Manifest this update: Sat 06 Dec 2025 01:02:18 +0000 Manifest next update: Sun 07 Dec 2025 01:02:18 +0000 Files and hashes: 1: 7CZAgUvQPu-wrbV-N9bEd3CgOWs.roa (hash: sMayzuz7AI9s61a/aq9HH1Cc6asWKL5qDPVUoL1bHKQ=) 2: xVFHJIBoPGGXD2BfsZnuturhIYs.crl (hash: Kt5ee31x6G55AdcNhGRaMX9CzlBR58r2FelNZHWv9Fg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.crl rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:5b:dc:a9:ac:75:75:94:19:15:c9:ac:08:47:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c551472480683c61970f605fb199eeb6eae1218b Validity Not Before: Dec 6 01:02:18 2025 GMT Not After : Dec 7 01:02:18 2025 GMT Subject: CN=b984ea3736aaf4cde5c9200eb27cd8a4703c8959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ce:f2:93:99:b5:75:86:7a:96:4f:a5:94:67: 14:6d:74:d7:bb:7a:8f:9f:92:94:89:8a:f5:45:0c: c3:9d:b3:8b:53:46:de:d4:31:f2:1b:cc:29:52:a3: 23:94:f5:10:95:c2:5b:8d:4e:d7:be:b3:74:90:b4: f8:53:d8:f2:26:68:7b:40:6d:9f:2f:f3:2a:39:a5: ba:21:1c:32:7c:a7:ea:10:ac:8b:7e:90:b3:65:bc: 29:ee:49:f2:7f:f5:2a:d6:91:b0:31:f3:6a:23:37: 82:ee:23:9d:f0:af:da:cb:6a:90:6c:6e:82:40:63: 11:13:14:93:c0:e7:40:c8:c8:84:17:03:8f:87:0c: a3:b8:f9:1e:a0:cf:b9:9c:07:42:25:72:a5:9d:ff: 13:8f:89:46:19:d1:bc:90:b1:d2:23:8f:b5:51:f8: 76:cd:94:2d:04:5d:34:b0:a4:e5:24:ca:5d:8e:cd: d3:b0:ef:bd:c7:52:ab:88:9b:98:4f:99:11:54:93: a5:36:d1:85:76:c4:5d:8b:3d:b4:76:6a:76:51:19: b1:b4:39:05:14:76:fc:8e:17:78:ca:de:ac:e2:29: 39:ed:f3:82:e7:1c:b0:21:d5:da:a3:0f:82:a2:c3: 72:06:51:92:bc:77:fe:25:64:3e:a2:f3:e5:02:16: a4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:84:EA:37:36:AA:F4:CD:E5:C9:20:0E:B2:7C:D8:A4:70:3C:89:59 X509v3 Authority Key Identifier: keyid:C5:51:47:24:80:68:3C:61:97:0F:60:5F:B1:99:EE:B6:EA:E1:21:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:a9:b6:9f:e1:cf:16:15:1f:75:34:fe:2c:72:e9:6f:88:ac: 75:69:8d:02:82:53:5f:45:d8:24:83:14:72:bc:a3:21:57:04: f5:54:e3:d3:2c:1c:7b:31:59:3f:d5:5c:47:9c:5d:16:c7:27: 42:2b:6e:b0:a8:2b:29:51:c8:89:cf:af:cc:7f:9e:c6:5b:16: 1b:21:0c:3c:68:19:90:9c:07:b3:13:bf:9d:a4:65:68:ba:66: 91:b8:4b:95:e7:21:60:06:6a:b0:51:ec:bc:2c:2b:26:74:75: c8:30:ac:33:4f:da:a3:cd:e7:4c:e7:46:90:d2:44:26:2a:bb: 8f:7a:11:24:7c:66:79:69:71:97:88:7f:80:bb:de:f9:30:8b: 33:e7:39:fc:78:ca:1c:27:01:f8:04:ba:3e:3c:f4:fd:0a:50: ee:3d:13:45:b3:97:ab:ec:92:51:c1:4a:2d:73:d6:e2:c8:01: 68:7d:3e:15:2f:1f:3c:7a:74:1f:5e:1e:ac:49:67:93:2d:f9: 63:ea:e0:03:66:e8:19:3b:d0:7d:46:7b:fc:8e:07:5e:e6:90: b7:20:70:1e:ab:02:74:82:8e:96:fb:b2:e0:32:5c:cd:74:f7: 70:e8:44:d8:b1:00:df:3a:60:4e:3b:6f:88:d2:7a:b1:31:a4: 0d:9e:22:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLlvcqax1dZQZFcmsCEefMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1NTE0NzI0ODA2ODNjNjE5NzBmNjA1ZmIxOTllZWI2ZWFl MTIxOGIwHhcNMjUxMjA2MDEwMjE4WhcNMjUxMjA3MDEwMjE4WjAzMTEwLwYDVQQD EyhiOTg0ZWEzNzM2YWFmNGNkZTVjOTIwMGViMjdjZDhhNDcwM2M4OTU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4M7yk5m1dYZ6lk+llGcUbXTXu3qP n5KUiYr1RQzDnbOLU0be1DHyG8wpUqMjlPUQlcJbjU7XvrN0kLT4U9jyJmh7QG2f L/MqOaW6IRwyfKfqEKyLfpCzZbwp7knyf/Uq1pGwMfNqIzeC7iOd8K/ay2qQbG6C QGMRExSTwOdAyMiEFwOPhwyjuPkeoM+5nAdCJXKlnf8Tj4lGGdG8kLHSI4+1Ufh2 zZQtBF00sKTlJMpdjs3TsO+9x1KriJuYT5kRVJOlNtGFdsRdiz20dmp2URmxtDkF FHb8jhd4yt6s4ik57fOC5xywIdXaow+CosNyBlGSvHf+JWQ+ovPlAhaktwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLmE6jc2qvTN5ckgDrJ82KRwPIlZMB8GA1UdIwQY MBaAFMVRRySAaDxhlw9gX7GZ7rbq4SGLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveFZGSEpJQm9QR0dYRDJCZnNabnV0dXJoSVlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS8zOWVmODEtZGI4NS00N2Q2LTg3YzIt NTdlYjVlZjg5NmUxLzEveFZGSEpJQm9QR0dYRDJCZnNabnV0dXJoSVlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS8zOWVmODEtZGI4NS00N2Q2LTg3YzItNTdlYjVlZjg5NmUx LzEveFZGSEpJQm9QR0dYRDJCZnNabnV0dXJoSVlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV6m2n+HP FhUfdTT+LHLpb4isdWmNAoJTX0XYJIMUcryjIVcE9VTj0ywcezFZP9VcR5xdFscn QitusKgrKVHIic+vzH+exlsWGyEMPGgZkJwHsxO/naRlaLpmkbhLlechYAZqsFHs vCwrJnR1yDCsM0/ao83nTOdGkNJEJiq7j3oRJHxmeWlxl4h/gLve+TCLM+c5/HjK HCcB+AS6Pjz0/QpQ7j0TRbOXq+ySUcFKLXPW4sgBaH0+FS8fPHp0H14erElnky35 Y+rgA2boGTvQfUZ7/I4HXuaQtyBwHqsCdIKOlvuy4DJczXT3cOhE2LEA3zpgTjtv iNJ6sTGkDZ4ilQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:19:24 2025 by rpki-client