This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft File: xN8L0EqoQ-aAgvbezgeYcytviDI.mft (raw, json) Hash identifier: hH+Dnx+UrWZKiTyClHMyxjWyheCb9UBbZj3cGHL9IcQ= Subject key identifier: 10:8D:0B:D7:F1:A6:8C:45:9B:43:64:8D:A7:15:98:D3:55:B3:A0:CD Authority key identifier: C4:DF:0B:D0:4A:A8:43:E6:80:82:F6:DE:CE:07:98:73:2B:6F:88:32 Certificate issuer: /CN=c4df0bd04aa843e68082f6dece0798732b6f8832 Certificate serial: 019AF1D1C3495E8751E72F6C64857C6E932D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft Manifest number: 16F3 Signing time: Sat 06 Dec 2025 04:00:47 +0000 Manifest this update: Sat 06 Dec 2025 04:00:47 +0000 Manifest next update: Sun 07 Dec 2025 04:00:47 +0000 Files and hashes: 1: 0PsILassVkdjO3YLqLzhDep43F0.roa (hash: BTuwwmqm+lVoIfqGdzicWWpXk8ZLAGxFDZrA6HPrjFA=) 2: T00AB9xipsEuuuK1wmFSrgJa6EQ.roa (hash: h2lLCAhcvRlcJCiD1oieS2PrcXQxs+tKUD+48vFOxxo=) 3: ZB1bFwuNv6eWdiv8dDMsMnuoFfs.roa (hash: +Mo9nvZ4p8mpAlYTdnVEDmvUa5mEw+oncE82//f49Ts=) 4: j4_7U96IEPffvwOTiMn9moiTZAE.roa (hash: Z8Hyt/Bq5aoXLuGUE36BT9I0Ee4e3qh5AvVB4wMCsaI=) 5: xN8L0EqoQ-aAgvbezgeYcytviDI.crl (hash: a4W4iigUzFjsXb5nyuNntisqjos64lI7vfXshFipVS8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:c3:49:5e:87:51:e7:2f:6c:64:85:7c:6e:93:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c4df0bd04aa843e68082f6dece0798732b6f8832 Validity Not Before: Dec 6 04:00:47 2025 GMT Not After : Dec 7 04:00:47 2025 GMT Subject: CN=108d0bd7f1a68c459b43648da71598d355b3a0cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d2:23:3c:b4:f7:51:42:86:42:f2:c2:17:8f: af:19:26:24:41:14:c5:a2:99:4f:d9:2b:5e:b3:c1: ff:a7:9c:15:b9:42:29:e2:11:0a:7e:21:2e:65:3f: ae:d9:8b:ad:f0:e7:5c:0a:54:d6:8e:e9:7a:a1:1f: 06:6f:37:cc:4b:bb:6e:fd:f7:46:18:d4:b1:67:d4: 0c:c7:18:82:d4:37:c8:f4:66:fb:1f:ea:af:e9:c2: 1a:47:30:f4:2b:39:0e:99:60:84:37:ce:ba:9f:4e: 43:8d:40:81:c3:23:6a:2e:78:7b:3d:79:50:89:d1: 24:80:29:e9:69:7c:15:45:30:6e:d6:71:a5:a7:f1: d0:93:c2:35:85:3c:c3:b3:67:71:73:6f:05:18:fb: 54:f0:02:ff:a8:63:db:35:0b:5c:c4:c0:fb:8a:18: a2:94:56:76:a8:82:1a:3b:15:dc:03:dd:59:52:8e: b5:25:af:ce:a0:11:1f:10:52:a4:b9:53:f8:d9:4c: dd:b6:a1:b6:cc:c3:cf:0c:56:f6:51:8c:bb:5f:be: 24:ec:c3:25:00:74:e6:69:d6:2b:a4:29:80:b0:d1: 9c:32:e0:bc:2a:a9:e5:e6:e3:f1:8a:1e:59:46:ad: fd:5a:d8:87:37:ec:ca:04:6f:b2:ce:cc:fc:ea:64: 09:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:8D:0B:D7:F1:A6:8C:45:9B:43:64:8D:A7:15:98:D3:55:B3:A0:CD X509v3 Authority Key Identifier: keyid:C4:DF:0B:D0:4A:A8:43:E6:80:82:F6:DE:CE:07:98:73:2B:6F:88:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:a1:13:2a:64:bf:e4:ff:23:86:02:5e:e6:72:1b:fc:ad:ab: 9c:0e:70:ff:bd:02:b5:f9:58:15:e1:96:88:5c:84:6e:21:84: 85:28:39:57:6e:b9:5e:03:e9:bd:16:24:5e:b7:16:93:60:e3: 77:d0:7b:3f:0c:2f:fc:f7:7d:3e:01:9e:43:2c:f6:ec:2e:4e: 70:10:ff:a7:03:c9:6a:71:94:65:7e:1e:a8:fa:24:e7:0c:74: c1:e2:42:42:a7:ab:ea:46:8b:09:80:6a:3d:29:c8:fc:f8:fd: 5a:54:f9:0f:53:2c:7d:40:c4:6c:ce:02:ef:d6:fd:e0:39:c7: 69:26:e7:6a:f1:ea:e4:57:64:e6:69:cf:b6:4e:64:e1:ef:eb: 55:29:79:e0:8f:92:ae:46:62:eb:d0:bb:4e:7a:11:97:bb:c1: b8:a1:5b:46:ed:78:64:84:b8:ed:76:7e:05:d2:d9:66:41:cc: c5:8f:10:1d:c7:b0:2e:ca:05:18:c6:d5:f4:b6:0e:c5:1e:85: 72:50:41:33:eb:5e:2b:b9:95:43:9a:67:92:95:11:80:2a:7d: ed:5b:c5:7d:57:e6:88:a0:9e:35:f7:5c:96:ab:f6:58:95:2b: 49:78:83:06:e9:6b:33:89:66:5e:4c:d0:9e:d7:34:85:5f:3b: ea:56:28:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0cNJXodR5y9sZIV8bpMtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM0ZGYwYmQwNGFhODQzZTY4MDgyZjZkZWNlMDc5ODczMmI2 Zjg4MzIwHhcNMjUxMjA2MDQwMDQ3WhcNMjUxMjA3MDQwMDQ3WjAzMTEwLwYDVQQD EygxMDhkMGJkN2YxYTY4YzQ1OWI0MzY0OGRhNzE1OThkMzU1YjNhMGNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzdIjPLT3UUKGQvLCF4+vGSYkQRTF oplP2Stes8H/p5wVuUIp4hEKfiEuZT+u2Yut8OdcClTWjul6oR8GbzfMS7tu/fdG GNSxZ9QMxxiC1DfI9Gb7H+qv6cIaRzD0KzkOmWCEN866n05DjUCBwyNqLnh7PXlQ idEkgCnpaXwVRTBu1nGlp/HQk8I1hTzDs2dxc28FGPtU8AL/qGPbNQtcxMD7ihii lFZ2qIIaOxXcA91ZUo61Ja/OoBEfEFKkuVP42UzdtqG2zMPPDFb2UYy7X74k7MMl AHTmadYrpCmAsNGcMuC8Kqnl5uPxih5ZRq39WtiHN+zKBG+yzsz86mQJDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBCNC9fxpoxFm0NkjacVmNNVs6DNMB8GA1UdIwQY MBaAFMTfC9BKqEPmgIL23s4HmHMrb4gyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveE44TDBFcW9RLWFBZ3ZiZXpnZVljeXR2aURJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi85NWRlMjEtMGZiYy00ZDEzLWI2ZTAt Y2I5ZTFlZDc3OWFjLzEveE44TDBFcW9RLWFBZ3ZiZXpnZVljeXR2aURJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi85NWRlMjEtMGZiYy00ZDEzLWI2ZTAtY2I5ZTFlZDc3OWFj LzEveE44TDBFcW9RLWFBZ3ZiZXpnZVljeXR2aURJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcaETKmS/ 5P8jhgJe5nIb/K2rnA5w/70CtflYFeGWiFyEbiGEhSg5V265XgPpvRYkXrcWk2Dj d9B7Pwwv/Pd9PgGeQyz27C5OcBD/pwPJanGUZX4eqPok5wx0weJCQqer6kaLCYBq PSnI/Pj9WlT5D1MsfUDEbM4C79b94DnHaSbnavHq5Fdk5mnPtk5k4e/rVSl54I+S rkZi69C7TnoRl7vBuKFbRu14ZIS47XZ+BdLZZkHMxY8QHcewLsoFGMbV9LYOxR6F clBBM+teK7mVQ5pnkpURgCp97VvFfVfmiKCeNfdclqv2WJUrSXiDBulrM4lmXkzQ ntc0hV876lYoZA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:07:47 2025 by rpki-client