This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft File: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft (raw, json) Hash identifier: n4oNd/3v2hECHEH8cTBj2ycm7sYdQsFwlpHwJlBWCfk= Subject key identifier: 3D:02:5C:CB:A9:D1:9C:CD:8E:67:70:64:F3:A8:E5:EC:3A:7E:3D:CB Authority key identifier: C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E Certificate issuer: /CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e Certificate serial: 019AF12D87DD6013CF5277D51D4136E65BA3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft Manifest number: 08FF Signing time: Sat 06 Dec 2025 01:01:24 +0000 Manifest this update: Sat 06 Dec 2025 01:01:24 +0000 Manifest next update: Sun 07 Dec 2025 01:01:24 +0000 Files and hashes: 1: ZYhttRWwRR-QF8jloAZFKuhooqE.roa (hash: eO0V42mhSgtEZOqn/NTkR+4pbvAmlZ4nSZ0JyynFqN4=) 2: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl (hash: MTkI3hm+h5EBpDo+kiK5jcYQdINi92parylB4Eb6Z5U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:87:dd:60:13:cf:52:77:d5:1d:41:36:e6:5b:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e Validity Not Before: Dec 6 01:01:24 2025 GMT Not After : Dec 7 01:01:24 2025 GMT Subject: CN=3d025ccba9d19ccd8e677064f3a8e5ec3a7e3dcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:ae:93:31:c2:8e:a8:09:52:44:27:b8:16:65: 76:de:a7:09:10:aa:f8:74:c8:c4:7c:68:13:cb:a4: 4e:95:0e:92:10:c8:72:17:16:13:a8:bb:98:28:71: 71:5a:4c:18:76:e6:7d:4f:fb:af:c5:9b:e7:20:40: 9c:92:ab:d7:7e:7a:eb:96:6d:fc:ba:e2:4d:b7:80: d4:31:16:02:23:7b:47:43:c4:1c:99:3b:2e:a9:81: 12:3e:74:69:ab:42:40:02:f6:44:c2:dc:6f:94:7d: e6:00:fe:f3:2f:b5:28:7f:49:6e:bb:50:45:b5:c4: 4a:54:56:9b:ab:bf:e6:ec:a7:83:ca:6b:60:d7:65: 64:0e:5e:bc:ec:07:39:f7:30:f4:34:92:a5:a3:2f: bd:1d:24:d2:17:3a:d1:24:fd:8b:fd:99:16:64:77: 7e:29:9d:f8:52:6c:29:47:74:b1:50:73:96:6f:e8: 71:f4:5e:5b:cb:33:1c:71:5f:c7:e6:50:0c:01:b7: aa:c1:b5:26:dc:38:5c:c8:53:98:71:7e:df:26:27: 34:b4:4d:4f:5e:f9:70:b3:dd:c1:c1:cf:0e:95:9f: df:0d:e8:b0:ff:a1:e6:ab:61:3d:bf:97:b0:49:84: a2:e7:e8:b6:cb:c4:da:91:0d:90:32:c6:f5:ae:e0: cc:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:02:5C:CB:A9:D1:9C:CD:8E:67:70:64:F3:A8:E5:EC:3A:7E:3D:CB X509v3 Authority Key Identifier: keyid:C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:d2:a0:a8:48:b1:da:ee:97:e6:ea:ab:ad:fb:e8:8a:de:74: f1:03:31:90:c2:12:93:aa:ab:c2:79:26:df:a9:41:cc:73:8e: 6b:14:0c:7c:4d:ae:63:0d:06:aa:5b:4e:b8:80:ee:bd:eb:e1: 27:5b:ec:29:48:ef:fb:ab:57:c3:91:11:8d:ab:44:6c:2c:d8: 71:5a:76:e2:18:17:d2:8e:ad:fd:0a:db:aa:1c:27:39:96:d0: 87:b2:0e:c8:d7:67:bb:25:71:7f:9e:13:c0:25:ee:50:e9:9f: d7:a0:86:85:6e:49:a9:93:de:30:e8:10:76:ea:58:66:aa:99: 5f:d1:37:fa:d0:3d:bd:45:7c:07:d6:7d:8b:14:20:c3:5f:f3: 3d:43:f4:2e:00:a8:7b:06:da:6a:1b:27:ba:89:9e:cc:04:9c: cc:dd:b5:84:08:74:4b:bd:e6:a1:a9:de:1b:b1:e7:5a:b0:c2: ee:32:83:ad:b4:24:f5:15:5e:fc:ad:53:20:37:a2:ba:e3:e9: 15:0a:28:00:64:c3:d5:99:48:fa:65:02:eb:ee:43:f1:ab:79: 1d:40:7f:8a:76:de:14:e2:ed:5f:67:38:8a:fa:e3:93:6f:9c: ed:a8:96:0d:3e:aa:59:88:29:a8:1e:0d:9d:4d:03:63:99:13: d6:70:2c:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLYfdYBPPUnfVHUE25lujMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM0M2M3NDAyMmNiYmYwYjNjZmZmNjAzMWQ2ZDJkZTAzNjlj OTllNGUwHhcNMjUxMjA2MDEwMTI0WhcNMjUxMjA3MDEwMTI0WjAzMTEwLwYDVQQD EygzZDAyNWNjYmE5ZDE5Y2NkOGU2NzcwNjRmM2E4ZTVlYzNhN2UzZGNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjq6TMcKOqAlSRCe4FmV23qcJEKr4 dMjEfGgTy6ROlQ6SEMhyFxYTqLuYKHFxWkwYduZ9T/uvxZvnIECckqvXfnrrlm38 uuJNt4DUMRYCI3tHQ8QcmTsuqYESPnRpq0JAAvZEwtxvlH3mAP7zL7Uof0luu1BF tcRKVFabq7/m7KeDymtg12VkDl687Ac59zD0NJKloy+9HSTSFzrRJP2L/ZkWZHd+ KZ34UmwpR3SxUHOWb+hx9F5byzMccV/H5lAMAbeqwbUm3DhcyFOYcX7fJic0tE1P Xvlws93Bwc8OlZ/fDeiw/6Hmq2E9v5ewSYSi5+i2y8TakQ2QMsb1ruDMAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD0CXMup0ZzNjmdwZPOo5ew6fj3LMB8GA1UdIwQY MBaAFMQ8dAIsu/Czz/9gMdbS3gNpyZ5OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy9lZDVkM2EtYjg2OS00Y2RhLTlkMzIt MjUwZTU1YjlkNGE5LzEveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy9lZDVkM2EtYjg2OS00Y2RhLTlkMzItMjUwZTU1YjlkNGE5 LzEveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZtKgqEix 2u6X5uqrrfvoit508QMxkMISk6qrwnkm36lBzHOOaxQMfE2uYw0GqltOuIDuvevh J1vsKUjv+6tXw5ERjatEbCzYcVp24hgX0o6t/QrbqhwnOZbQh7IOyNdnuyVxf54T wCXuUOmf16CGhW5JqZPeMOgQdupYZqqZX9E3+tA9vUV8B9Z9ixQgw1/zPUP0LgCo ewbaahsnuomezASczN21hAh0S73moaneG7HnWrDC7jKDrbQk9RVe/K1TIDeiuuPp FQooAGTD1ZlI+mUC6+5D8at5HUB/inbeFOLtX2c4ivrjk2+c7aiWDT6qWYgpqB4N nU0DY5kT1nAsFA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:24:55 2025 by rpki-client