This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft File: EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft (raw, json) Hash identifier: RxpLkVtri7+IP89PX7f2UOoe4vwsdJ3TrSbiLODe6H0= Subject key identifier: F4:C0:11:A5:35:49:CF:FD:D2:50:30:DA:80:EA:3C:0F:19:7D:33:C6 Authority key identifier: 11:71:64:1F:15:7C:B5:7B:53:26:26:35:9E:71:58:27:42:C2:DC:CB Certificate issuer: /CN=1171641f157cb57b532626359e71582742c2dccb Certificate serial: 019AF9F9B41465CFA670162A46E32D678644 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft Manifest number: 1637 Signing time: Sun 07 Dec 2025 18:01:22 +0000 Manifest this update: Sun 07 Dec 2025 18:01:22 +0000 Manifest next update: Mon 08 Dec 2025 18:01:22 +0000 Files and hashes: 1: EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl (hash: xCdR3iP9zQ/4pE8VMx2aaO6/W/yQRkqvlc+Q1sWO1Os=) 2: kJ6ZzA1fcsMngPwnFcWmPQ2TpJY.roa (hash: spn1/mEz9B8AiCWdxXSLx/VFzig4ReQEdpbCrXX5I3w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 08 Dec 2025 17:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f9:f9:b4:14:65:cf:a6:70:16:2a:46:e3:2d:67:86:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1171641f157cb57b532626359e71582742c2dccb Validity Not Before: Dec 7 18:01:22 2025 GMT Not After : Dec 8 18:01:22 2025 GMT Subject: CN=f4c011a53549cffdd25030da80ea3c0f197d33c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:46:4e:9b:04:0f:db:2c:50:ff:74:e4:ce:4f: d0:89:46:28:90:d0:6e:5b:56:2b:eb:07:95:83:79: ce:6a:17:52:16:cc:7c:57:e6:df:3a:6c:27:4f:54: c3:e8:aa:9b:1c:a6:8f:71:0e:47:1f:ff:c2:c3:2f: 61:23:f1:fb:4b:2d:72:b8:6e:45:80:16:c8:30:51: 2e:cd:db:ea:c4:23:b4:60:16:30:22:d7:04:4b:d0: d4:48:cb:9f:d8:f6:47:f1:3d:67:81:19:df:cb:57: 96:41:38:40:19:37:27:51:2c:7b:ce:79:70:01:02: f9:a7:79:03:d5:55:f4:70:9c:fb:93:f9:8b:4a:a6: 43:61:31:d5:9d:2a:0c:b0:ae:06:91:86:4e:61:e5: 98:9e:55:ce:ab:95:88:0b:8d:76:ac:3b:a3:53:9c: 6a:2b:76:d2:da:9e:e2:fb:69:55:84:30:e9:85:42: 1d:92:6a:17:0b:1c:d5:d9:90:e5:8b:e4:76:22:9f: 9e:1a:d1:3e:f7:51:f0:c9:2e:fa:a7:f8:80:87:16: 41:a3:ea:58:4b:29:57:b5:41:71:60:ce:ab:dd:46: 72:69:3e:91:f3:1d:ca:27:bb:14:b5:fc:14:90:9a: 88:77:86:dd:21:a3:29:14:45:8a:10:bc:e6:1d:d0: 4d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:C0:11:A5:35:49:CF:FD:D2:50:30:DA:80:EA:3C:0F:19:7D:33:C6 X509v3 Authority Key Identifier: keyid:11:71:64:1F:15:7C:B5:7B:53:26:26:35:9E:71:58:27:42:C2:DC:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:11:d4:d5:c9:5f:bf:94:54:e8:3a:99:02:0c:2c:1f:6c:0e: ca:75:0e:35:9f:7f:4d:cf:b0:22:57:28:42:16:d2:3a:90:9b: 83:77:f3:b7:e2:de:d8:96:88:84:f3:80:52:08:8a:28:ee:1f: 62:0d:c9:a5:76:41:7e:2a:44:24:2f:37:ad:e3:89:db:ad:f2: 5e:37:39:08:67:e4:e9:98:54:fa:d4:c5:2b:8f:da:11:6f:f1: e8:90:a7:c8:a5:bb:33:19:f1:e0:6a:38:fc:5a:58:5c:d6:6a: 9f:9e:0f:88:88:bb:b5:09:c7:73:1c:f7:70:89:20:42:7e:9c: 4f:da:43:47:05:e8:b9:a1:06:08:18:39:44:4d:06:49:6d:1d: f9:22:da:d7:f3:20:04:5a:6c:f1:e1:c3:c2:66:9e:d3:ab:b1: 8d:d0:48:4e:c1:9e:24:89:cc:2d:24:d9:00:4a:da:33:ae:64: 31:44:c1:72:db:04:4d:84:64:75:44:78:78:ab:4f:96:e7:28: c4:f1:b9:19:f6:4c:fb:db:22:cd:94:97:38:3d:e9:5b:ce:d3: c1:d4:fd:82:b1:86:1c:c6:f7:ef:c2:d3:b4:28:cd:bf:38:d6: 35:13:4d:41:cb:c6:cb:12:ea:c9:62:bd:ec:14:32:49:b0:e0: b6:7b:6d:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr5+bQUZc+mcBYqRuMtZ4ZEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExNzE2NDFmMTU3Y2I1N2I1MzI2MjYzNTllNzE1ODI3NDJj MmRjY2IwHhcNMjUxMjA3MTgwMTIyWhcNMjUxMjA4MTgwMTIyWjAzMTEwLwYDVQQD EyhmNGMwMTFhNTM1NDljZmZkZDI1MDMwZGE4MGVhM2MwZjE5N2QzM2M2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyEZOmwQP2yxQ/3Tkzk/QiUYokNBu W1Yr6weVg3nOahdSFsx8V+bfOmwnT1TD6KqbHKaPcQ5HH//Cwy9hI/H7Sy1yuG5F gBbIMFEuzdvqxCO0YBYwItcES9DUSMuf2PZH8T1ngRnfy1eWQThAGTcnUSx7znlw AQL5p3kD1VX0cJz7k/mLSqZDYTHVnSoMsK4GkYZOYeWYnlXOq5WIC412rDujU5xq K3bS2p7i+2lVhDDphUIdkmoXCxzV2ZDli+R2Ip+eGtE+91HwyS76p/iAhxZBo+pY SylXtUFxYM6r3UZyaT6R8x3KJ7sUtfwUkJqId4bdIaMpFEWKELzmHdBNdwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPTAEaU1Sc/90lAw2oDqPA8ZfTPGMB8GA1UdIwQY MBaAFBFxZB8VfLV7UyYmNZ5xWCdCwtzLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVhGa0h4Vjh0WHRUSmlZMW5uRllKMExDM01zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy8zZmE3MTEtMDZiMC00MWUzLTljNzIt M2NiOWUxMDJhZmUwLzEvRVhGa0h4Vjh0WHRUSmlZMW5uRllKMExDM01zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy8zZmE3MTEtMDZiMC00MWUzLTljNzItM2NiOWUxMDJhZmUw LzEvRVhGa0h4Vjh0WHRUSmlZMW5uRllKMExDM01zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIRHU1clf v5RU6DqZAgwsH2wOynUONZ9/Tc+wIlcoQhbSOpCbg3fzt+Le2JaIhPOAUgiKKO4f Yg3JpXZBfipEJC83reOJ263yXjc5CGfk6ZhU+tTFK4/aEW/x6JCnyKW7Mxnx4Go4 /FpYXNZqn54PiIi7tQnHcxz3cIkgQn6cT9pDRwXouaEGCBg5RE0GSW0d+SLa1/Mg BFps8eHDwmae06uxjdBITsGeJInMLSTZAEraM65kMUTBctsETYRkdUR4eKtPluco xPG5GfZM+9sizZSXOD3pW87TwdT9grGGHMb378LTtCjNvzjWNRNNQcvGyxLqyWK9 7BQySbDgtntt9Q== -----END CERTIFICATE-----Generated at Mon Dec 8 01:16:09 2025 by rpki-client