This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft File: xmJhwznF7fjYxIPwjka4SAqAXvE.mft (raw, json) Hash identifier: wXdKjYVwDyiLB5XYAf8+35ULol1ReC0yT/6x2bLf0Is= Subject key identifier: 8D:D8:55:1A:54:D6:09:FF:DC:B1:E4:AF:51:18:D4:95:15:06:7A:17 Authority key identifier: C6:62:61:C3:39:C5:ED:F8:D8:C4:83:F0:8E:46:B8:48:0A:80:5E:F1 Certificate issuer: /CN=c66261c339c5edf8d8c483f08e46b8480a805ef1 Certificate serial: 019AF31B476D500E3AE01A4C993051AAC150 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft Manifest number: 169E Signing time: Sat 06 Dec 2025 10:00:42 +0000 Manifest this update: Sat 06 Dec 2025 10:00:42 +0000 Manifest next update: Sun 07 Dec 2025 10:00:42 +0000 Files and hashes: 1: n0PQVaq6lp0buyh71HmvCGJy3cY.roa (hash: QL9cb+VrnWZDKfgvQ3BKYLRd9xHYcd+B/V/qEKLIfgU=) 2: xmJhwznF7fjYxIPwjka4SAqAXvE.crl (hash: Sj983tYe7mv8d0g9ef3muD4EdFBbnUBYvmuUPNt9+Tg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.crl rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:47:6d:50:0e:3a:e0:1a:4c:99:30:51:aa:c1:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66261c339c5edf8d8c483f08e46b8480a805ef1 Validity Not Before: Dec 6 10:00:42 2025 GMT Not After : Dec 7 10:00:42 2025 GMT Subject: CN=8dd8551a54d609ffdcb1e4af5118d49515067a17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:97:c3:b0:84:2d:2a:76:a4:42:3f:2a:06:75: d2:5d:26:b3:2c:b8:3a:c1:1f:5a:d4:e5:44:5b:a0: 99:cb:62:ca:bd:76:af:f4:a0:e9:13:3a:50:97:11: 2f:cf:f0:95:10:9a:96:6e:c7:6b:6d:c8:09:58:74: f8:dd:6f:2b:bc:20:a5:b8:79:31:09:5c:96:a0:93: ba:25:77:c2:ab:4d:7c:10:fe:94:91:e7:a6:5b:05: ac:fb:0e:e7:6a:86:b3:25:00:dc:cf:1b:fa:ff:5c: e0:22:50:9e:d3:33:1b:66:93:4a:a8:e2:21:85:2a: af:66:c4:b8:5c:f6:27:78:09:1d:52:d2:ed:0e:9b: cd:fa:82:7f:26:e4:61:01:c6:f8:e7:12:52:11:63: aa:80:cc:81:4e:7c:6b:f7:69:52:b6:99:77:53:c5: 5b:8e:d9:58:7e:f1:a0:fb:5a:c2:29:77:7f:11:24: 24:9e:23:dd:c5:ba:d8:5c:52:39:de:97:f3:d4:a1: a8:ad:3f:01:55:69:89:06:db:f6:7c:80:0d:f6:10: b1:e4:af:2b:97:2d:70:d6:fa:18:16:90:e4:c0:0a: 6f:4c:fa:8d:b8:7a:31:eb:46:da:3a:ee:9f:3c:56: ad:b6:a4:80:ed:be:ce:a5:11:cc:09:3e:cd:66:cc: b6:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:D8:55:1A:54:D6:09:FF:DC:B1:E4:AF:51:18:D4:95:15:06:7A:17 X509v3 Authority Key Identifier: keyid:C6:62:61:C3:39:C5:ED:F8:D8:C4:83:F0:8E:46:B8:48:0A:80:5E:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:bb:f9:cd:b0:72:95:34:67:ee:62:05:a6:49:08:a4:41:73: ca:96:47:af:a5:19:99:58:de:94:64:de:9d:c5:0d:77:d9:ad: c2:a5:87:74:b4:83:ac:55:02:64:cd:14:4a:15:07:36:f8:60: 7e:a7:ae:eb:09:8a:5d:50:d2:8c:58:2b:41:a0:86:4e:60:5c: 33:94:e7:ae:70:f0:34:b6:0d:d1:80:fd:a0:68:2a:a3:84:bd: 23:95:79:3a:52:27:62:8e:33:6f:5b:d4:80:cf:bf:4f:52:bf: 7c:09:b6:94:32:a1:b1:0a:a2:83:1f:cb:c2:54:07:c9:e0:c1: 64:c9:0d:64:bb:ba:af:48:a0:19:7c:c5:0e:a4:6e:6d:6c:66: 3c:d2:1c:ec:0e:9a:fc:86:fd:30:82:91:ed:72:88:f5:6f:2f: 3d:33:4f:b9:bc:97:1a:91:22:08:0a:b7:cc:ac:b1:3d:63:e3: d4:64:3e:10:fb:3c:b9:3c:9d:34:f4:61:bd:0e:3e:bb:89:e9: f3:10:d3:77:6e:5b:c9:3c:6b:7a:61:ce:9b:d7:e5:33:fa:2b: c6:10:3e:ee:ca:52:9d:99:75:3e:8e:60:26:1a:7d:c0:56:b9: d9:04:d1:5d:ad:a5:e2:e8:59:f4:fb:6b:d5:94:5f:06:8a:a8: 6c:94:14:06 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG0dtUA464BpMmTBRqsFQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2MWMzMzljNWVkZjhkOGM0ODNmMDhlNDZiODQ4MGE4 MDVlZjEwHhcNMjUxMjA2MTAwMDQyWhcNMjUxMjA3MTAwMDQyWjAzMTEwLwYDVQQD Eyg4ZGQ4NTUxYTU0ZDYwOWZmZGNiMWU0YWY1MTE4ZDQ5NTE1MDY3YTE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnJfDsIQtKnakQj8qBnXSXSazLLg6 wR9a1OVEW6CZy2LKvXav9KDpEzpQlxEvz/CVEJqWbsdrbcgJWHT43W8rvCCluHkx CVyWoJO6JXfCq018EP6UkeemWwWs+w7naoazJQDczxv6/1zgIlCe0zMbZpNKqOIh hSqvZsS4XPYneAkdUtLtDpvN+oJ/JuRhAcb45xJSEWOqgMyBTnxr92lStpl3U8Vb jtlYfvGg+1rCKXd/ESQkniPdxbrYXFI53pfz1KGorT8BVWmJBtv2fIAN9hCx5K8r ly1w1voYFpDkwApvTPqNuHox60baOu6fPFattqSA7b7OpRHMCT7NZsy29QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI3YVRpU1gn/3LHkr1EY1JUVBnoXMB8GA1UdIwQY MBaAFMZiYcM5xe342MSD8I5GuEgKgF7xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KaHd6bkY3ZmpZeElQd2prYTRTQXFBWHZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS81MjU5NTItN2FmYi00NDNkLWFmMGEt NzdjM2UxYzhmNmRlLzEveG1KaHd6bkY3ZmpZeElQd2prYTRTQXFBWHZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZS81MjU5NTItN2FmYi00NDNkLWFmMGEtNzdjM2UxYzhmNmRl LzEveG1KaHd6bkY3ZmpZeElQd2prYTRTQXFBWHZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb7v5zbBy lTRn7mIFpkkIpEFzypZHr6UZmVjelGTencUNd9mtwqWHdLSDrFUCZM0UShUHNvhg fqeu6wmKXVDSjFgrQaCGTmBcM5TnrnDwNLYN0YD9oGgqo4S9I5V5OlInYo4zb1vU gM+/T1K/fAm2lDKhsQqigx/LwlQHyeDBZMkNZLu6r0igGXzFDqRubWxmPNIc7A6a /Ib9MIKR7XKI9W8vPTNPubyXGpEiCAq3zKyxPWPj1GQ+EPs8uTydNPRhvQ4+u4np 8xDTd25byTxremHOm9flM/orxhA+7spSnZl1Po5gJhp9wFa52QTRXa2l4uhZ9Ptr 1ZRfBoqobJQUBg== -----END CERTIFICATE-----Generated at Sat Dec 6 17:21:52 2025 by rpki-client