This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft File: 0xryhyw_VQMHOGbf_vSItxeD2rY.mft (raw, json) Hash identifier: pxkiAdbATM/33FQ/zn/3CsanJxnmk/eSWEnJ6WT2lcM= Subject key identifier: 62:6A:3E:E1:16:D3:AC:B7:AC:88:CF:F5:1D:CE:F9:C7:B6:0D:3F:74 Authority key identifier: D3:1A:F2:87:2C:3F:55:03:07:38:66:DF:FE:F4:88:B7:17:83:DA:B6 Certificate issuer: /CN=d31af2872c3f5503073866dffef488b71783dab6 Certificate serial: 019AF276901141B3EC9434BB4B48EF8C7CC8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0xryhyw_VQMHOGbf_vSItxeD2rY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft Manifest number: 1461 Signing time: Sat 06 Dec 2025 07:00:47 +0000 Manifest this update: Sat 06 Dec 2025 07:00:47 +0000 Manifest next update: Sun 07 Dec 2025 07:00:47 +0000 Files and hashes: 1: 0xryhyw_VQMHOGbf_vSItxeD2rY.crl (hash: i5hA64x/0ShENt0HG1ZYJlc4F/cx4UGe/Ky1bwONs5w=) 2: Vr2MHbk4BkpwijegPw7svFXxpY8.roa (hash: J4FlYQ16tBtXCX4bdbpdB9oishsKJVSj1Pc1U4pte9s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.crl rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft rsync://rpki.ripe.net/repository/DEFAULT/0xryhyw_VQMHOGbf_vSItxeD2rY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:90:11:41:b3:ec:94:34:bb:4b:48:ef:8c:7c:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d31af2872c3f5503073866dffef488b71783dab6 Validity Not Before: Dec 6 07:00:47 2025 GMT Not After : Dec 7 07:00:47 2025 GMT Subject: CN=626a3ee116d3acb7ac88cff51dcef9c7b60d3f74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4f:20:62:24:2f:f8:f6:73:31:50:42:df:ca: 21:e9:e1:ad:63:39:f4:d7:99:6e:85:27:db:26:be: 8d:7c:17:55:a7:b4:97:24:22:68:22:46:77:f7:5e: a4:82:39:d6:0a:e5:64:c2:17:40:4e:8c:aa:6d:c4: 26:47:d0:ce:31:9d:0d:9a:87:c0:e6:9d:a0:23:3f: e2:39:68:2d:c7:d0:cd:c2:0d:ec:c9:7e:99:9a:a6: f5:f2:1d:3e:29:8b:a8:c3:c7:6e:9b:2e:38:89:4d: 92:bd:79:e7:5b:22:ab:eb:8b:19:7c:3a:c3:d0:08: 88:9b:f3:14:ee:b1:c0:a3:2a:70:ea:20:8f:7b:18: ef:a7:2c:c5:ef:f7:c3:31:f9:81:ef:41:46:17:07: 44:93:9c:a6:5e:fa:3d:bd:35:0c:ca:67:76:1c:e9: dc:22:13:f3:79:db:57:9e:bb:24:b3:b6:eb:1d:58: cb:75:da:36:41:2d:d8:86:4f:7b:6a:52:05:5e:a3: b5:f3:2f:ee:2e:dd:07:e4:1f:bb:3c:b9:d0:40:b8: 63:a5:82:cd:bc:d5:a7:db:0b:8b:e8:3b:eb:ec:69: 0c:6a:14:fd:2e:1e:36:14:84:a8:73:7f:01:b0:dc: e8:9e:c3:b0:02:56:be:e3:0d:f9:97:57:00:e8:10: 19:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:6A:3E:E1:16:D3:AC:B7:AC:88:CF:F5:1D:CE:F9:C7:B6:0D:3F:74 X509v3 Authority Key Identifier: keyid:D3:1A:F2:87:2C:3F:55:03:07:38:66:DF:FE:F4:88:B7:17:83:DA:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0xryhyw_VQMHOGbf_vSItxeD2rY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:f1:b2:94:e2:88:76:84:d0:dc:72:43:d0:8a:e4:cd:42:64: fb:d8:f4:0e:6d:64:bf:5f:72:58:66:07:c4:de:a1:61:a6:b6: 73:a3:48:17:d1:6a:45:cb:7d:6f:23:67:0a:24:fe:ee:52:80: 4a:bf:8a:90:9b:17:a6:e6:ce:34:90:79:a4:22:ca:cd:8a:06: 3b:90:f9:3d:69:18:26:82:c4:16:ca:bb:67:7f:bb:1a:df:e4: 27:25:d9:a0:fd:d7:98:9f:f8:b6:7d:e6:43:2d:df:44:e9:89: 01:ea:9d:0b:ff:88:1b:85:84:37:53:ec:7b:d0:91:64:8f:aa: 09:e8:00:ca:d1:a9:f1:6b:3f:cf:49:81:91:70:38:e5:2b:38: f3:f8:44:d1:4d:c0:88:0e:ef:a0:7e:32:be:37:57:56:e3:17: dc:2b:de:be:44:77:57:51:8f:51:ee:1c:0e:37:a4:79:4d:bc: 57:60:2e:70:f8:10:7a:2b:1f:7e:42:2d:46:4d:d9:27:fa:7e: d1:c2:45:31:4a:96:c5:c8:64:c0:92:ff:ea:05:07:1f:3c:79: e7:68:ff:fe:e1:e9:8d:ba:9d:c2:93:42:21:9a:5b:1d:5c:69: 36:a2:17:86:41:b0:93:98:1e:ba:17:a9:e6:5f:a3:5b:c7:5b: 87:b2:a4:2e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydpARQbPslDS7S0jvjHzIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzMWFmMjg3MmMzZjU1MDMwNzM4NjZkZmZlZjQ4OGI3MTc4 M2RhYjYwHhcNMjUxMjA2MDcwMDQ3WhcNMjUxMjA3MDcwMDQ3WjAzMTEwLwYDVQQD Eyg2MjZhM2VlMTE2ZDNhY2I3YWM4OGNmZjUxZGNlZjljN2I2MGQzZjc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyU8gYiQv+PZzMVBC38oh6eGtYzn0 15luhSfbJr6NfBdVp7SXJCJoIkZ3916kgjnWCuVkwhdAToyqbcQmR9DOMZ0NmofA 5p2gIz/iOWgtx9DNwg3syX6Zmqb18h0+KYuow8dumy44iU2SvXnnWyKr64sZfDrD 0AiIm/MU7rHAoypw6iCPexjvpyzF7/fDMfmB70FGFwdEk5ymXvo9vTUMymd2HOnc IhPzedtXnrsks7brHVjLddo2QS3Yhk97alIFXqO18y/uLt0H5B+7PLnQQLhjpYLN vNWn2wuL6Dvr7GkMahT9Lh42FISoc38BsNzonsOwAla+4w35l1cA6BAZxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGJqPuEW06y3rIjP9R3O+ce2DT90MB8GA1UdIwQY MBaAFNMa8ocsP1UDBzhm3/70iLcXg9q2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHhyeWh5d19WUU1IT0diZl92U0l0eGVEMnJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS82OGI3NWMtODNkZi00NzRlLWE5ZmUt MDFiZjFmMTQ1YzI2LzEvMHhyeWh5d19WUU1IT0diZl92U0l0eGVEMnJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NS82OGI3NWMtODNkZi00NzRlLWE5ZmUtMDFiZjFmMTQ1YzI2 LzEvMHhyeWh5d19WUU1IT0diZl92U0l0eGVEMnJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEfGylOKI doTQ3HJD0IrkzUJk+9j0Dm1kv19yWGYHxN6hYaa2c6NIF9FqRct9byNnCiT+7lKA Sr+KkJsXpubONJB5pCLKzYoGO5D5PWkYJoLEFsq7Z3+7Gt/kJyXZoP3XmJ/4tn3m Qy3fROmJAeqdC/+IG4WEN1Pse9CRZI+qCegAytGp8Ws/z0mBkXA45Ss48/hE0U3A iA7voH4yvjdXVuMX3CvevkR3V1GPUe4cDjekeU28V2AucPgQeisffkItRk3ZJ/p+ 0cJFMUqWxchkwJL/6gUHHzx552j//uHpjbqdwpNCIZpbHVxpNqIXhkGwk5geuhep 5l+jW8dbh7KkLg== -----END CERTIFICATE-----Generated at Sat Dec 6 14:39:33 2025 by rpki-client