This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.mft File: xGn-PYgsk-OOi2ooajF33Bfpmsc.mft (raw, json) Hash identifier: Y5XRhvD7zfCiqNx47ellIPUeEyzefASe5UX5zXMlTxc= Subject key identifier: 62:5B:73:B0:15:01:11:3C:C7:D0:F7:32:CA:D1:27:2A:51:76:52:6D Authority key identifier: C4:69:FE:3D:88:2C:93:E3:8E:8B:6A:28:6A:31:77:DC:17:E9:9A:C7 Certificate issuer: /CN=c469fe3d882c93e38e8b6a286a3177dc17e99ac7 Certificate serial: 019AF19A93D9172A67AA49396121D032B1F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGn-PYgsk-OOi2ooajF33Bfpmsc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 03:00:30 +0000 Manifest this update: Sat 06 Dec 2025 03:00:30 +0000 Manifest next update: Sun 07 Dec 2025 03:00:30 +0000 Files and hashes: 1: EOlGjDlmQ3zjWLU87OYTWDWcCEY.roa (hash: pUBA00I+CQC2RPjmIddeqkkbXGoBJUyoSnMxqvr2Gas=) 2: VWhDL_pbFyyRh5F_p1365369fw8.roa (hash: h0UGnV1yT7TAR4sgEMb7SSbuBaNRRDcOsgJUpZU75gM=) 3: eStVA852783cSRla3cS6Sa73nTo.roa (hash: hjwJSk0hM/n7mjZhOiCDKrp/IiuwE5tJF1ttaMrAUdQ=) 4: mz6tpSTyWG1tpsywf2xFprKsdgk.roa (hash: TcXisvKqSL089bUIJMzgiUZfK9JnlvU+0pDp8FZCWe4=) 5: xGn-PYgsk-OOi2ooajF33Bfpmsc.crl (hash: Te5ZIWAiZnBkTJN/iKBkGR2SHV2zb5/qkeAtutLAqIw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.crl rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.mft rsync://rpki.ripe.net/repository/DEFAULT/xGn-PYgsk-OOi2ooajF33Bfpmsc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:93:d9:17:2a:67:aa:49:39:61:21:d0:32:b1:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c469fe3d882c93e38e8b6a286a3177dc17e99ac7 Validity Not Before: Dec 6 03:00:30 2025 GMT Not After : Dec 7 03:00:30 2025 GMT Subject: CN=625b73b01501113cc7d0f732cad1272a5176526d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6e:05:d2:c9:1d:57:9e:89:6b:91:40:6b:59: 0e:2c:86:cd:01:b9:7f:2e:0d:4e:23:8c:a7:2e:66: 5c:9e:42:6c:a9:38:8c:d1:d0:c6:01:20:a1:ec:04: 42:7a:63:90:76:3e:80:90:ad:a1:a0:b1:e5:b4:dd: 60:64:3f:62:ed:8f:26:2d:33:d9:0e:16:ea:12:39: 37:78:85:b8:8c:1c:1e:9e:7f:8c:94:27:ec:c0:0b: a4:e0:d3:1f:58:22:47:20:83:02:af:ca:7b:92:c4: 84:70:25:38:89:42:01:ba:4c:83:8c:f2:22:d5:2a: d3:d1:61:5f:61:69:1a:79:44:1b:c9:6f:51:c7:60: bf:4b:4c:ea:47:8f:1a:54:85:e7:25:d5:9b:7b:30: e1:07:72:89:7b:95:71:cc:b4:ab:3b:92:4c:21:5d: 8b:ab:a0:60:5d:6b:59:b5:3a:0f:99:98:07:71:44: bd:38:5a:90:0f:7a:c0:82:4e:4d:c0:bc:34:d6:d1: 16:7e:94:25:78:40:0a:aa:30:7c:ae:98:1f:1e:2f: dc:98:94:66:f6:ae:4c:85:4d:6d:eb:9f:2c:16:0f: 33:6f:ff:49:1c:fa:13:15:f3:8e:f6:0f:cb:66:fc: 82:36:f8:71:a5:e3:f2:34:c6:80:f1:4f:65:75:de: ff:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:5B:73:B0:15:01:11:3C:C7:D0:F7:32:CA:D1:27:2A:51:76:52:6D X509v3 Authority Key Identifier: keyid:C4:69:FE:3D:88:2C:93:E3:8E:8B:6A:28:6A:31:77:DC:17:E9:9A:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGn-PYgsk-OOi2ooajF33Bfpmsc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:6f:c9:b0:0a:3a:a2:46:c1:cc:a5:85:f5:33:ab:4e:7d:78: 81:fe:dd:60:82:e1:d9:d1:45:c0:ac:fa:5b:2a:eb:51:9f:f6: 5a:1b:0e:50:ba:8c:2f:b9:be:a5:cb:a8:bb:6d:57:b6:3e:91: 6b:5f:09:36:42:ec:28:7f:09:99:bf:1f:71:13:05:fe:47:9c: 5f:a6:28:3c:d1:91:03:02:a9:7e:0a:a9:0b:36:76:49:3c:4c: 50:b0:93:18:5f:d9:db:cb:8b:f5:37:00:30:60:af:e5:c6:e6: 75:aa:29:4d:a3:1e:ec:9b:4f:dc:ef:ea:ed:1c:25:1d:a5:51: 71:9f:64:33:90:6f:42:3c:2c:34:3a:ff:6d:a5:7c:77:81:23: 64:aa:25:ef:75:28:f2:21:59:6e:b2:4e:a9:7e:67:30:6e:7b: 37:45:09:33:db:ab:a2:fe:f5:45:95:3c:8f:f7:1f:0e:1c:2e: 61:de:a5:a0:48:d4:c9:cf:e9:07:48:0f:96:3b:42:a8:07:c5: 28:77:3f:f1:cb:93:30:a8:12:84:d3:a7:70:ca:ba:2c:c4:4b: 37:c1:00:95:30:12:71:75:8a:26:d4:63:8b:bf:04:1d:90:96: b1:7a:b3:4a:4b:9d:13:77:a6:4a:00:4c:57:15:8f:b9:6d:bd: 8c:a3:5c:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmpPZFypnqkk5YSHQMrHwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM0NjlmZTNkODgyYzkzZTM4ZThiNmEyODZhMzE3N2RjMTdl OTlhYzcwHhcNMjUxMjA2MDMwMDMwWhcNMjUxMjA3MDMwMDMwWjAzMTEwLwYDVQQD Eyg2MjViNzNiMDE1MDExMTNjYzdkMGY3MzJjYWQxMjcyYTUxNzY1MjZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu24F0skdV56Ja5FAa1kOLIbNAbl/ Lg1OI4ynLmZcnkJsqTiM0dDGASCh7ARCemOQdj6AkK2hoLHltN1gZD9i7Y8mLTPZ DhbqEjk3eIW4jBwenn+MlCfswAuk4NMfWCJHIIMCr8p7ksSEcCU4iUIBukyDjPIi 1SrT0WFfYWkaeUQbyW9Rx2C/S0zqR48aVIXnJdWbezDhB3KJe5VxzLSrO5JMIV2L q6BgXWtZtToPmZgHcUS9OFqQD3rAgk5NwLw01tEWfpQleEAKqjB8rpgfHi/cmJRm 9q5MhU1t658sFg8zb/9JHPoTFfOO9g/LZvyCNvhxpePyNMaA8U9ldd7/vwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGJbc7AVARE8x9D3MsrRJypRdlJtMB8GA1UdIwQY MBaAFMRp/j2ILJPjjotqKGoxd9wX6ZrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveEduLVBZZ3NrLU9PaTJvb2FqRjMzQmZwbXNjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC9jNDc1YWItZmRkNS00OTJmLTgxM2Et NjFkOWEyM2YzNDExLzEveEduLVBZZ3NrLU9PaTJvb2FqRjMzQmZwbXNjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC9jNDc1YWItZmRkNS00OTJmLTgxM2EtNjFkOWEyM2YzNDEx LzEveEduLVBZZ3NrLU9PaTJvb2FqRjMzQmZwbXNjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcm/JsAo6 okbBzKWF9TOrTn14gf7dYILh2dFFwKz6WyrrUZ/2WhsOULqML7m+pcuou21Xtj6R a18JNkLsKH8Jmb8fcRMF/kecX6YoPNGRAwKpfgqpCzZ2STxMULCTGF/Z28uL9TcA MGCv5cbmdaopTaMe7JtP3O/q7RwlHaVRcZ9kM5BvQjwsNDr/baV8d4EjZKol73Uo 8iFZbrJOqX5nMG57N0UJM9urov71RZU8j/cfDhwuYd6loEjUyc/pB0gPljtCqAfF KHc/8cuTMKgShNOncMq6LMRLN8EAlTAScXWKJtRji78EHZCWsXqzSkudE3emSgBM VxWPuW29jKNcwA== -----END CERTIFICATE-----Generated at Sat Dec 6 10:00:03 2025 by rpki-client