This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft File: xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft (raw, json) Hash identifier: Y03MT04+MiQt0PRcOvErrpktQwGBXQKEogsZ6As5owM= Subject key identifier: 78:CA:87:8A:00:93:5C:27:9A:69:0E:07:00:C6:68:DD:70:D6:2C:E6 Authority key identifier: C5:9C:41:DA:F0:09:2B:70:3B:C0:59:BA:13:53:F0:71:ED:12:19:9B Certificate issuer: /CN=c59c41daf0092b703bc059ba1353f071ed12199b Certificate serial: 019AF3F71D04ED6D68A0F7B72E4407488D90 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft Manifest number: 16F5 Signing time: Sat 06 Dec 2025 14:00:49 +0000 Manifest this update: Sat 06 Dec 2025 14:00:49 +0000 Manifest next update: Sun 07 Dec 2025 14:00:49 +0000 Files and hashes: 1: cGueQe1h8duehogXBQfbjMf187c.roa (hash: SeygR9MEl7TBvHViQ7GiY7qErcMbLwgXcJ9lbMPWx3c=) 2: xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl (hash: /K1tckbSx4eT9MTC/GRt96rVjNzhMl73FHgts6FElZ0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:f7:1d:04:ed:6d:68:a0:f7:b7:2e:44:07:48:8d:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c59c41daf0092b703bc059ba1353f071ed12199b Validity Not Before: Dec 6 14:00:49 2025 GMT Not After : Dec 7 14:00:49 2025 GMT Subject: CN=78ca878a00935c279a690e0700c668dd70d62ce6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6b:6c:d8:71:4e:f3:ab:81:01:d1:f8:65:a6: 38:69:83:f0:21:81:a7:3f:63:ed:21:2e:20:77:83: a4:9f:82:2b:20:e0:28:49:f1:e9:ec:28:30:f9:f1: 36:1d:b1:91:7d:8b:e7:80:07:1a:a7:ae:1e:48:66: 89:d9:ee:4f:be:39:97:c4:b6:fa:13:4d:f4:bc:62: ff:0f:83:bc:b6:cb:0d:0f:66:7d:ef:18:76:07:ab: b1:7d:78:e2:a6:d0:b5:60:bf:ca:a1:a8:02:0b:b5: 8e:85:25:be:3f:00:63:f1:f9:26:05:7e:85:00:8e: 71:de:ce:9e:42:5b:06:30:7c:38:99:75:da:11:87: 32:b0:14:4b:a2:2b:6e:f2:67:7c:30:53:1a:eb:b7: df:68:d5:fe:81:ba:85:7f:c7:1a:17:e4:87:2e:19: c6:00:1a:32:83:74:6a:93:e3:4b:10:72:fa:2e:c1: 2e:2e:1f:f0:db:40:a4:76:9f:ce:a9:c5:ff:d5:0d: f8:a7:d2:69:b3:d4:dd:73:63:d0:3e:55:ea:0e:44: 24:8a:55:5b:74:03:0e:43:4a:ea:40:f2:1e:d7:76: 22:f9:06:05:cf:e0:b3:a3:9f:18:de:85:de:7c:c3: e4:76:64:e5:fa:45:99:0e:31:71:53:c2:ac:c8:4a: 97:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:CA:87:8A:00:93:5C:27:9A:69:0E:07:00:C6:68:DD:70:D6:2C:E6 X509v3 Authority Key Identifier: keyid:C5:9C:41:DA:F0:09:2B:70:3B:C0:59:BA:13:53:F0:71:ED:12:19:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:43:60:61:29:cd:b1:cf:83:c0:fa:1c:83:a5:1b:9a:7b:9e: e9:9e:12:80:e1:3e:42:9e:02:2d:3a:1a:7c:68:18:7d:98:a8: 21:fb:32:6b:1b:ab:e5:83:74:a7:69:78:b2:9c:35:99:e1:59: 51:6a:c4:43:8d:49:97:49:c2:af:b3:ee:bb:f7:e4:e1:e1:6e: 1e:42:e9:c4:48:ba:ac:cb:76:0c:04:f9:fd:30:51:52:f2:0b: bb:cd:4b:12:27:9a:76:fd:41:a7:4b:98:33:f3:7f:dd:9d:03: 78:a8:e8:56:f1:fd:39:2c:08:2c:fa:04:b5:de:43:a6:b6:a6: e3:51:5b:ae:f4:92:c7:7d:b1:f5:f1:7a:c9:d1:38:9d:22:2f: 12:72:0f:0e:82:6b:3f:d6:68:ff:29:92:4f:df:e7:93:dd:5b: 8d:c9:1f:12:67:39:b9:e7:db:52:d9:1b:45:cc:f1:c3:49:da: e5:7a:bd:05:0a:d9:3d:2f:35:c7:7a:92:42:50:27:7f:ea:8b: 2d:d5:4f:e4:34:a0:69:43:96:3f:96:26:18:b3:a5:73:1c:90: 2d:ef:47:70:5d:1a:f9:55:d8:1e:ce:f1:39:6a:bd:73:64:d5: 01:b2:9a:3d:31:dd:73:b0:f5:32:a8:5e:2c:57:2f:35:8f:8a: c5:57:a1:7e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrz9x0E7W1ooPe3LkQHSI2QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1OWM0MWRhZjAwOTJiNzAzYmMwNTliYTEzNTNmMDcxZWQx MjE5OWIwHhcNMjUxMjA2MTQwMDQ5WhcNMjUxMjA3MTQwMDQ5WjAzMTEwLwYDVQQD Eyg3OGNhODc4YTAwOTM1YzI3OWE2OTBlMDcwMGM2NjhkZDcwZDYyY2U2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArWts2HFO86uBAdH4ZaY4aYPwIYGn P2PtIS4gd4Okn4IrIOAoSfHp7Cgw+fE2HbGRfYvngAcap64eSGaJ2e5PvjmXxLb6 E030vGL/D4O8tssND2Z97xh2B6uxfXjiptC1YL/KoagCC7WOhSW+PwBj8fkmBX6F AI5x3s6eQlsGMHw4mXXaEYcysBRLoitu8md8MFMa67ffaNX+gbqFf8caF+SHLhnG ABoyg3Rqk+NLEHL6LsEuLh/w20Ckdp/OqcX/1Q34p9Jps9Tdc2PQPlXqDkQkilVb dAMOQ0rqQPIe13Yi+QYFz+Czo58Y3oXefMPkdmTl+kWZDjFxU8KsyEqXTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHjKh4oAk1wnmmkOBwDGaN1w1izmMB8GA1UdIwQY MBaAFMWcQdrwCStwO8BZuhNT8HHtEhmbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveFp4QjJ2QUpLM0E3d0ZtNkUxUHdjZTBTR1pzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9kNTRkMmItMjEyNi00NTQyLWE1ZTQt YzU0OTNmZTgyZTI2LzEveFp4QjJ2QUpLM0E3d0ZtNkUxUHdjZTBTR1pzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi9kNTRkMmItMjEyNi00NTQyLWE1ZTQtYzU0OTNmZTgyZTI2 LzEveFp4QjJ2QUpLM0E3d0ZtNkUxUHdjZTBTR1pzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHUNgYSnN sc+DwPocg6Ubmnue6Z4SgOE+Qp4CLToafGgYfZioIfsyaxur5YN0p2l4spw1meFZ UWrEQ41Jl0nCr7Puu/fk4eFuHkLpxEi6rMt2DAT5/TBRUvILu81LEieadv1Bp0uY M/N/3Z0DeKjoVvH9OSwILPoEtd5Dpram41FbrvSSx32x9fF6ydE4nSIvEnIPDoJr P9Zo/ymST9/nk91bjckfEmc5uefbUtkbRczxw0na5Xq9BQrZPS81x3qSQlAnf+qL LdVP5DSgaUOWP5YmGLOlcxyQLe9HcF0a+VXYHs7xOWq9c2TVAbKaPTHdc7D1Mqhe LFcvNY+KxVehfg== -----END CERTIFICATE-----Generated at Sat Dec 6 19:12:55 2025 by rpki-client