This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft File: x0at2Nr-mfan14fUR5VFpkb23tg.mft (raw, json) Hash identifier: HoR2ToLNDsOEOsdb6fIGD5qZlhFZAPnalvtlSIkMxF0= Subject key identifier: 60:C6:2B:62:0F:4A:BD:35:8F:29:A0:B1:4B:9A:84:D6:7D:2D:47:1A Authority key identifier: C7:46:AD:D8:DA:FE:99:F6:A7:D7:87:D4:47:95:45:A6:46:F6:DE:D8 Certificate issuer: /CN=c746add8dafe99f6a7d787d4479545a646f6ded8 Certificate serial: 019AF20903EB3D682EF877473BF63F0EA0B7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0at2Nr-mfan14fUR5VFpkb23tg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 05:01:08 +0000 Manifest this update: Sat 06 Dec 2025 05:01:08 +0000 Manifest next update: Sun 07 Dec 2025 05:01:08 +0000 Files and hashes: 1: 5ew0AHvlVZKk-XGMQ-7_VQCyPko.roa (hash: r01XfwbxbtnFEz4LgMmHMoPfMeBX2hjKhEb9/b2NI+4=) 2: x0at2Nr-mfan14fUR5VFpkb23tg.crl (hash: cziC3kapcTM5HZlxOW/vVKFXqLwOh27lrO24W2kQXFI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft rsync://rpki.ripe.net/repository/DEFAULT/x0at2Nr-mfan14fUR5VFpkb23tg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:03:eb:3d:68:2e:f8:77:47:3b:f6:3f:0e:a0:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c746add8dafe99f6a7d787d4479545a646f6ded8 Validity Not Before: Dec 6 05:01:08 2025 GMT Not After : Dec 7 05:01:08 2025 GMT Subject: CN=60c62b620f4abd358f29a0b14b9a84d67d2d471a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:a7:36:54:2b:e5:8b:a7:82:f0:73:25:3a:95: d6:66:4b:22:bb:af:9a:dd:3d:26:84:89:b3:cc:a2: e6:f4:98:ae:b0:84:d3:df:8d:dd:da:45:ee:83:21: a4:02:67:a4:20:85:73:0a:b2:d2:46:ce:c8:6c:f9: 57:16:65:62:2e:c7:d5:0f:82:7d:7b:4a:d8:ba:60: 92:4c:a3:95:8c:b1:fe:e3:9d:30:51:c4:7d:9e:3c: 38:30:34:db:c8:45:5b:f8:07:41:fb:8a:6b:45:3d: d9:c1:11:0b:17:50:e7:67:cd:b1:a8:cf:27:0a:90: c9:e2:de:75:7a:2f:88:b6:39:f2:94:a3:94:f6:cd: 0e:08:27:a3:3a:6e:1a:d7:d5:b2:9c:e4:a3:14:39: 46:10:97:46:61:fe:00:a3:64:0e:81:dc:aa:c9:29: ae:e2:4f:cc:7e:79:a2:1b:73:05:c2:a8:2b:18:25: f0:82:3f:16:8f:28:94:b8:c2:8a:25:fd:5c:52:dd: ee:44:90:1a:d5:a8:f3:8a:7f:32:9a:2f:8b:38:0e: 3b:6b:3f:a8:44:36:d9:06:1e:e6:cf:1a:20:74:71: 74:63:f0:f1:4e:b0:11:07:2d:f1:80:60:cc:f9:d3: 9a:ae:7a:4b:c5:33:d0:c4:11:38:81:99:e8:7e:a9: 33:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:C6:2B:62:0F:4A:BD:35:8F:29:A0:B1:4B:9A:84:D6:7D:2D:47:1A X509v3 Authority Key Identifier: keyid:C7:46:AD:D8:DA:FE:99:F6:A7:D7:87:D4:47:95:45:A6:46:F6:DE:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0at2Nr-mfan14fUR5VFpkb23tg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:cf:7d:7e:39:7f:e4:4e:26:f5:96:99:19:5b:ef:fa:fd:8c: 3a:58:c0:4e:f2:1a:19:11:28:95:1c:77:fa:d7:b5:0e:34:6c: bc:7a:ae:e7:58:4e:b1:f2:78:70:d4:9f:0d:db:b3:64:d8:5a: 34:2a:98:2d:d1:d7:91:ad:82:d2:e0:c4:c6:7f:b9:6a:83:65: 85:39:81:bc:2a:15:fd:b5:93:39:83:fc:2c:29:82:60:85:7a: a6:6f:71:83:22:a7:27:1f:ec:b2:d8:e7:bf:a5:00:ff:b3:ab: 65:6c:0a:28:66:b7:70:86:57:fa:56:b4:2b:fe:87:53:a1:e0: 76:b5:e9:06:6d:83:76:24:be:20:f3:a5:76:37:9f:d1:69:a7: bc:f7:28:a8:8c:2d:64:e0:c4:8e:c9:cc:17:63:04:13:fa:3e: ba:59:25:7e:eb:02:17:cd:e8:78:6f:50:0b:a7:49:69:09:90: cb:b5:46:b3:fd:7e:c2:19:9f:e0:41:ec:28:7c:d8:67:2f:19: 68:a6:7a:61:89:f1:11:8a:e6:32:d4:cc:84:97:81:ba:35:47: e5:8b:87:9e:84:9a:0b:00:90:8b:df:5b:ea:87:c6:00:9f:9d: ab:7f:df:f6:ba:d5:c6:3a:76:79:62:5b:37:f4:34:d7:ed:28: cf:9f:77:d1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCQPrPWgu+HdHO/Y/DqC3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3NDZhZGQ4ZGFmZTk5ZjZhN2Q3ODdkNDQ3OTU0NWE2NDZm NmRlZDgwHhcNMjUxMjA2MDUwMTA4WhcNMjUxMjA3MDUwMTA4WjAzMTEwLwYDVQQD Eyg2MGM2MmI2MjBmNGFiZDM1OGYyOWEwYjE0YjlhODRkNjdkMmQ0NzFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkKc2VCvli6eC8HMlOpXWZksiu6+a 3T0mhImzzKLm9JiusITT343d2kXugyGkAmekIIVzCrLSRs7IbPlXFmViLsfVD4J9 e0rYumCSTKOVjLH+450wUcR9njw4MDTbyEVb+AdB+4prRT3ZwRELF1DnZ82xqM8n CpDJ4t51ei+ItjnylKOU9s0OCCejOm4a19WynOSjFDlGEJdGYf4Ao2QOgdyqySmu 4k/MfnmiG3MFwqgrGCXwgj8WjyiUuMKKJf1cUt3uRJAa1ajzin8ymi+LOA47az+o RDbZBh7mzxogdHF0Y/DxTrARBy3xgGDM+dOarnpLxTPQxBE4gZnofqkzNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGDGK2IPSr01jymgsUuahNZ9LUcaMB8GA1UdIwQY MBaAFMdGrdja/pn2p9eH1EeVRaZG9t7YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveDBhdDJOci1tZmFuMTRmVVI1VkZwa2IyM3RnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC8zNzJhYWYtNTA2Mi00MTQ3LTg3N2It N2NiZmU3MzdhODI3LzEveDBhdDJOci1tZmFuMTRmVVI1VkZwa2IyM3RnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC8zNzJhYWYtNTA2Mi00MTQ3LTg3N2ItN2NiZmU3MzdhODI3 LzEveDBhdDJOci1tZmFuMTRmVVI1VkZwa2IyM3RnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOs99fjl/ 5E4m9ZaZGVvv+v2MOljATvIaGREolRx3+te1DjRsvHqu51hOsfJ4cNSfDduzZNha NCqYLdHXka2C0uDExn+5aoNlhTmBvCoV/bWTOYP8LCmCYIV6pm9xgyKnJx/sstjn v6UA/7OrZWwKKGa3cIZX+la0K/6HU6HgdrXpBm2DdiS+IPOldjef0WmnvPcoqIwt ZODEjsnMF2MEE/o+ulklfusCF83oeG9QC6dJaQmQy7VGs/1+whmf4EHsKHzYZy8Z aKZ6YYnxEYrmMtTMhJeBujVH5YuHnoSaCwCQi99b6ofGAJ+dq3/f9rrVxjp2eWJb N/Q01+0oz5930Q== -----END CERTIFICATE-----Generated at Sat Dec 6 08:13:43 2025 by rpki-client