This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft File: xJkOwgER9C-2LzmoHHOSqSGVW_I.mft (raw, json) Hash identifier: v7p8Re4Oi1DycnuaDxFAxYu/UHECBwrMEvuFzs1hgEk= Subject key identifier: 06:36:EA:BB:06:6C:17:14:C2:BF:CD:26:F9:34:B2:CA:CE:E5:90:71 Authority key identifier: C4:99:0E:C2:01:11:F4:2F:B6:2F:39:A8:1C:73:92:A9:21:95:5B:F2 Certificate issuer: /CN=c4990ec20111f42fb62f39a81c7392a921955bf2 Certificate serial: 019AF19B98D46DEDCC6DC3696664B56E2516 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft Manifest number: 03C2 Signing time: Sat 06 Dec 2025 03:01:37 +0000 Manifest this update: Sat 06 Dec 2025 03:01:37 +0000 Manifest next update: Sun 07 Dec 2025 03:01:37 +0000 Files and hashes: 1: S6SgkEKXXupg9NGyg85ew2MKuNo.roa (hash: Ccy6wkPiSmvGfzLUcrIC/arlCjWDtB/tLTVQ150opBk=) 2: xJkOwgER9C-2LzmoHHOSqSGVW_I.crl (hash: DeaG8d7Li4DjltezAueVyh9i/tb6SGJVH1FCgst70Vk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:98:d4:6d:ed:cc:6d:c3:69:66:64:b5:6e:25:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c4990ec20111f42fb62f39a81c7392a921955bf2 Validity Not Before: Dec 6 03:01:37 2025 GMT Not After : Dec 7 03:01:37 2025 GMT Subject: CN=0636eabb066c1714c2bfcd26f934b2cacee59071 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:5f:46:8e:ac:28:02:22:c2:1c:7f:96:ae:b6: 3f:fa:0c:11:26:62:4c:47:2d:83:1d:d6:e5:a9:ab: 5a:04:b1:ad:5d:94:9f:90:08:5f:83:eb:05:a2:3c: c8:b5:fe:f8:c1:cc:96:d7:c6:33:93:cd:d7:a3:42: 34:aa:4e:af:b2:e0:c5:f3:ac:9d:51:b3:de:7d:89: 58:20:7a:ad:0f:d2:6f:61:6e:e6:7b:4b:db:1e:f5: 1c:33:4c:86:39:f5:30:c7:bd:14:f6:40:1f:17:4c: f8:17:04:0b:33:f1:4e:3d:5c:ef:84:26:05:1a:ff: 57:11:9a:79:2b:34:c3:51:3e:73:d9:e5:70:a4:1d: 1a:83:e8:0d:ee:25:8a:28:64:87:49:0e:d5:49:84: 59:d5:5b:67:ab:9d:d8:f4:8b:59:a1:44:85:5b:19: 9e:7e:ce:12:0d:38:3d:5d:6f:7a:61:87:40:d1:66: 49:ce:4a:de:59:48:57:35:ef:68:6b:96:37:02:16: 4a:ac:78:20:76:a0:1d:39:46:55:28:39:b4:7b:96: 03:e7:41:f9:18:cf:bf:e3:8f:a1:20:7b:dc:90:a5: ed:75:ef:dd:de:c4:6e:e0:7d:e7:a3:be:00:56:bf: 06:89:72:5d:a4:07:63:58:e5:57:38:fa:b4:9b:a2: 7f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:36:EA:BB:06:6C:17:14:C2:BF:CD:26:F9:34:B2:CA:CE:E5:90:71 X509v3 Authority Key Identifier: keyid:C4:99:0E:C2:01:11:F4:2F:B6:2F:39:A8:1C:73:92:A9:21:95:5B:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:8e:39:d8:2d:df:98:dc:b6:a3:67:7b:42:2f:af:a0:9e:ae: e7:f9:27:27:83:16:e6:d7:8c:84:85:0b:9d:82:1b:17:e0:63: 65:00:20:74:15:b2:e5:09:c9:f6:53:e7:9c:9f:e7:ab:a1:83: b6:6f:8d:40:18:d8:a9:15:41:56:f3:9d:2f:f5:5a:ff:e8:80: e0:b8:3e:86:d7:8d:60:3e:ea:34:b7:ad:d4:2b:54:44:96:37: 20:a9:55:aa:c6:a6:bb:7d:fb:53:1e:d3:21:3a:ef:86:b6:5b: f4:dd:f5:c9:b4:24:3a:68:80:ee:52:98:fd:ea:ba:ed:d0:27: 95:ee:8a:a2:61:0a:b7:c2:c6:72:8e:23:ca:bb:92:7a:58:a9: b3:6b:6e:af:07:5b:02:fa:9e:81:fb:1d:96:ab:93:1c:f1:6a: 70:4a:4e:5c:75:02:fa:db:4b:24:27:7f:8b:ef:df:0c:0d:89: ab:6d:48:f5:67:df:bb:c7:7a:dd:e4:e0:09:6f:9b:0b:15:d1: a9:10:3a:8a:f1:66:ff:a2:14:a6:24:a3:90:a1:5e:bc:cd:a7: 4c:03:bc:4a:db:18:1a:9e:2d:fc:d8:8b:c9:e7:ee:56:6f:a7: de:47:31:f1:88:7a:3e:23:5d:04:5c:cc:32:14:18:4f:e2:95: fa:d0:8a:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm5jUbe3MbcNpZmS1biUWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM0OTkwZWMyMDExMWY0MmZiNjJmMzlhODFjNzM5MmE5MjE5 NTViZjIwHhcNMjUxMjA2MDMwMTM3WhcNMjUxMjA3MDMwMTM3WjAzMTEwLwYDVQQD EygwNjM2ZWFiYjA2NmMxNzE0YzJiZmNkMjZmOTM0YjJjYWNlZTU5MDcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo19GjqwoAiLCHH+WrrY/+gwRJmJM Ry2DHdblqataBLGtXZSfkAhfg+sFojzItf74wcyW18Yzk83Xo0I0qk6vsuDF86yd UbPefYlYIHqtD9JvYW7me0vbHvUcM0yGOfUwx70U9kAfF0z4FwQLM/FOPVzvhCYF Gv9XEZp5KzTDUT5z2eVwpB0ag+gN7iWKKGSHSQ7VSYRZ1Vtnq53Y9ItZoUSFWxme fs4SDTg9XW96YYdA0WZJzkreWUhXNe9oa5Y3AhZKrHggdqAdOUZVKDm0e5YD50H5 GM+/44+hIHvckKXtde/d3sRu4H3no74AVr8GiXJdpAdjWOVXOPq0m6J/DQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAY26rsGbBcUwr/NJvk0ssrO5ZBxMB8GA1UdIwQY MBaAFMSZDsIBEfQvti85qBxzkqkhlVvyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveEprT3dnRVI5Qy0yTHptb0hIT1NxU0dWV19JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS85YzdjZTQtMmNkNC00ODU0LTg4NDAt YjBmZTkyMjFlZmI3LzEveEprT3dnRVI5Qy0yTHptb0hIT1NxU0dWV19JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS85YzdjZTQtMmNkNC00ODU0LTg4NDAtYjBmZTkyMjFlZmI3 LzEveEprT3dnRVI5Qy0yTHptb0hIT1NxU0dWV19JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeo452C3f mNy2o2d7Qi+voJ6u5/knJ4MW5teMhIULnYIbF+BjZQAgdBWy5QnJ9lPnnJ/nq6GD tm+NQBjYqRVBVvOdL/Va/+iA4Lg+hteNYD7qNLet1CtURJY3IKlVqsamu337Ux7T ITrvhrZb9N31ybQkOmiA7lKY/eq67dAnle6KomEKt8LGco4jyruSelips2turwdb AvqegfsdlquTHPFqcEpOXHUC+ttLJCd/i+/fDA2Jq21I9Wffu8d63eTgCW+bCxXR qRA6ivFm/6IUpiSjkKFevM2nTAO8StsYGp4t/NiLyefuVm+n3kcx8Yh6PiNdBFzM MhQYT+KV+tCKaQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:55:02 2025 by rpki-client