This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft File: xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft (raw, json) Hash identifier: 1PP8kA8hhSjE7tZ8DbOr2DtGs9yItPmstGSO4z8PICk= Subject key identifier: 07:F6:1D:B1:CD:8C:AB:80:22:D6:63:1D:86:54:A9:D6:46:98:46:CA Authority key identifier: C6:C0:0C:55:3A:54:DA:05:B9:36:35:A6:54:CA:DA:03:C6:D9:DF:2B Certificate issuer: /CN=c6c00c553a54da05b93635a654cada03c6d9df2b Certificate serial: 019B2C66C58D24746FDA17C417CF23F758F2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xsAMVTpU2gW5NjWmVMraA8bZ3ys.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft Manifest number: 0851 Signing time: Wed 17 Dec 2025 13:01:31 +0000 Manifest this update: Wed 17 Dec 2025 13:01:31 +0000 Manifest next update: Thu 18 Dec 2025 13:01:31 +0000 Files and hashes: 1: xsAMVTpU2gW5NjWmVMraA8bZ3ys.crl (hash: JTmYLVV9/WPopxrBLxMVENqxp3crhwFrEBZXmdfAnJY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft rsync://rpki.ripe.net/repository/DEFAULT/xsAMVTpU2gW5NjWmVMraA8bZ3ys.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2c:66:c5:8d:24:74:6f:da:17:c4:17:cf:23:f7:58:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c6c00c553a54da05b93635a654cada03c6d9df2b Validity Not Before: Dec 17 13:01:31 2025 GMT Not After : Dec 18 13:01:31 2025 GMT Subject: CN=07f61db1cd8cab8022d6631d8654a9d6469846ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:18:ea:13:53:6d:ed:c5:25:97:e3:7f:84:eb: 4d:e8:13:e5:4c:59:fa:f0:ed:e6:7e:eb:04:a4:6d: 31:ed:23:49:2a:ea:3e:8b:e9:eb:22:9f:e3:e2:5c: bb:5a:90:6b:f7:af:3d:61:a1:f2:04:ca:80:55:48: 27:67:bd:df:ab:e2:f5:c0:f8:42:6e:36:d5:1b:bc: cd:9f:2b:3b:b2:46:5d:f7:2a:4b:c4:f5:2f:47:f8: 7b:41:67:dc:5e:2a:26:ac:d9:52:8b:49:a3:9b:e9: 18:ac:f6:28:3d:60:ab:6d:44:ab:ec:dd:57:75:a2: c7:45:9e:72:e5:a8:14:89:96:84:85:a1:c8:48:45: d5:1b:5c:c7:2b:e5:91:cd:4a:28:09:b5:e5:e1:84: 8f:24:f8:87:1b:2d:2c:4f:61:db:28:06:79:2c:a4: 39:4e:80:17:e5:c9:da:0e:58:78:77:28:0f:8d:2e: 70:01:b8:03:ca:d1:20:a4:6e:0b:ca:43:dd:9a:5c: 74:78:1c:4a:ba:c9:f8:75:ce:2a:f2:ef:c4:15:b1: ba:e2:f2:81:be:4a:73:fc:aa:bd:34:a7:65:d5:cf: 41:be:7c:81:ba:28:0b:a9:7c:45:f2:5a:f1:23:31: 89:e6:1a:14:d9:12:6e:7a:7d:b4:14:dd:e4:f9:c9: 48:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:F6:1D:B1:CD:8C:AB:80:22:D6:63:1D:86:54:A9:D6:46:98:46:CA X509v3 Authority Key Identifier: keyid:C6:C0:0C:55:3A:54:DA:05:B9:36:35:A6:54:CA:DA:03:C6:D9:DF:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xsAMVTpU2gW5NjWmVMraA8bZ3ys.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:6f:30:fe:2d:59:b9:84:9a:f7:2a:29:3b:e9:80:7e:ce:c0: 00:8f:38:70:4c:1d:d8:60:29:1f:2c:af:bb:d4:7a:5e:f5:77: 40:1c:f7:8d:69:56:e4:bf:c9:26:c8:af:c9:ef:15:34:13:73: 85:da:79:2b:8e:e0:7d:55:4d:de:2e:2a:4e:60:6e:f6:c8:f6: 50:7c:dd:4a:94:bc:03:1f:f8:70:df:47:9c:0f:88:e5:a5:9c: 47:87:9f:8d:5e:8e:17:46:eb:bd:19:a5:f9:1a:d7:cf:44:e6: e8:94:1b:56:83:a7:e1:f0:48:f0:db:af:6d:ee:78:72:e1:e7: 39:cd:5a:fa:c7:45:a4:8f:26:a1:d3:f1:e9:46:8c:b4:22:0e: 12:62:86:03:6c:e2:21:22:3a:10:ee:56:68:bf:94:e8:37:f4: 5b:b7:07:1a:94:9c:14:b7:9e:97:cb:2f:0c:2a:28:f4:3f:bf: f4:96:0b:27:85:61:a8:e0:25:42:0a:7b:24:ac:6b:d8:7c:4f: 12:bf:ea:b6:19:a4:7a:a1:61:a3:da:5a:3e:38:aa:53:57:ad: 7c:c9:c4:6e:96:6a:5e:0c:58:4d:68:91:1f:a0:ca:c6:45:77: 97:6a:e8:0c:33:2e:cc:92:9f:cd:e0:cb:57:c2:e1:cd:82:4c: c0:8f:4a:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZssZsWNJHRv2hfEF88j91jyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2YzAwYzU1M2E1NGRhMDViOTM2MzVhNjU0Y2FkYTAzYzZk OWRmMmIwHhcNMjUxMjE3MTMwMTMxWhcNMjUxMjE4MTMwMTMxWjAzMTEwLwYDVQQD EygwN2Y2MWRiMWNkOGNhYjgwMjJkNjYzMWQ4NjU0YTlkNjQ2OTg0NmNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuBjqE1Nt7cUll+N/hOtN6BPlTFn6 8O3mfusEpG0x7SNJKuo+i+nrIp/j4ly7WpBr9689YaHyBMqAVUgnZ73fq+L1wPhC bjbVG7zNnys7skZd9ypLxPUvR/h7QWfcXiomrNlSi0mjm+kYrPYoPWCrbUSr7N1X daLHRZ5y5agUiZaEhaHISEXVG1zHK+WRzUooCbXl4YSPJPiHGy0sT2HbKAZ5LKQ5 ToAX5cnaDlh4dygPjS5wAbgDytEgpG4LykPdmlx0eBxKusn4dc4q8u/EFbG64vKB vkpz/Kq9NKdl1c9BvnyBuigLqXxF8lrxIzGJ5hoU2RJuen20FN3k+clIjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAf2HbHNjKuAItZjHYZUqdZGmEbKMB8GA1UdIwQY MBaAFMbADFU6VNoFuTY1plTK2gPG2d8rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveHNBTVZUcFUyZ1c1TmpXbVZNcmFBOGJaM3lzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS82ZmRhMWQtYjk2Yi00Y2Y5LWJiNjgt M2ZiZGQ5ZGJiZDkyLzEveHNBTVZUcFUyZ1c1TmpXbVZNcmFBOGJaM3lzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS82ZmRhMWQtYjk2Yi00Y2Y5LWJiNjgtM2ZiZGQ5ZGJiZDky LzEveHNBTVZUcFUyZ1c1TmpXbVZNcmFBOGJaM3lzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAam8w/i1Z uYSa9yopO+mAfs7AAI84cEwd2GApHyyvu9R6XvV3QBz3jWlW5L/JJsivye8VNBNz hdp5K47gfVVN3i4qTmBu9sj2UHzdSpS8Ax/4cN9HnA+I5aWcR4efjV6OF0brvRml +RrXz0Tm6JQbVoOn4fBI8Nuvbe54cuHnOc1a+sdFpI8modPx6UaMtCIOEmKGA2zi ISI6EO5WaL+U6Df0W7cHGpScFLeel8svDCoo9D+/9JYLJ4VhqOAlQgp7JKxr2HxP Er/qthmkeqFho9paPjiqU1etfMnEbpZqXgxYTWiRH6DKxkV3l2roDDMuzJKfzeDL V8LhzYJMwI9KPA== -----END CERTIFICATE-----Generated at Wed Dec 17 17:06:46 2025 by rpki-client