This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft File: MFxE6MlhoUUNCqshLw3scX0d77Y.mft (raw, json) Hash identifier: SXI4pRyS/We8bLJg+FDUle420lb5fCvCGWqAuzUCxSU= Subject key identifier: C3:B0:D1:D8:B4:CD:36:C4:76:05:F4:95:B1:2C:C7:CB:94:66:5C:7B Authority key identifier: 30:5C:44:E8:C9:61:A1:45:0D:0A:AB:21:2F:0D:EC:71:7D:1D:EF:B6 Certificate issuer: /CN=305c44e8c961a1450d0aab212f0dec717d1defb6 Certificate serial: 019B46266973A9A9DC1DAFD1E999FDE8ECEC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft Manifest number: 178D Signing time: Mon 22 Dec 2025 13:01:20 +0000 Manifest this update: Mon 22 Dec 2025 13:01:20 +0000 Manifest next update: Tue 23 Dec 2025 13:01:20 +0000 Files and hashes: 1: MFxE6MlhoUUNCqshLw3scX0d77Y.crl (hash: LIh/UerQLEtMzCK9i8EeMCoQ1kl48x1yNexdHtp/i6w=) 2: mJgdj-dzJHYIwfc18P0iKUu6K8Q.roa (hash: BwFiGax6tDOHoiiFhGtxEO6XUIlUJlP+Zm+e5NhOWpg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.crl rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 13:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:46:26:69:73:a9:a9:dc:1d:af:d1:e9:99:fd:e8:ec:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=305c44e8c961a1450d0aab212f0dec717d1defb6 Validity Not Before: Dec 22 13:01:20 2025 GMT Not After : Dec 23 13:01:20 2025 GMT Subject: CN=c3b0d1d8b4cd36c47605f495b12cc7cb94665c7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:39:2e:79:9b:e3:b8:29:81:98:10:6d:3d:f5: 90:9f:35:35:30:12:da:e8:0a:ea:f3:df:ac:b8:a2: 1e:21:1b:6a:f9:80:9c:38:80:95:2c:6f:a1:ce:dd: 20:27:46:85:19:ae:4c:b7:95:5b:b5:26:57:16:2c: 16:d0:c1:82:5e:df:03:fb:10:6a:67:4a:ee:11:5c: cd:41:e4:e2:d9:15:18:e1:90:16:49:d6:d5:fb:36: a6:88:29:dc:84:77:3f:47:9f:b1:4e:ce:ee:fb:b7: 90:80:f7:90:3d:e4:94:f5:52:d8:46:9f:52:6f:7a: f2:95:69:a0:11:19:79:61:87:0b:d1:bf:09:38:4f: 2d:45:e2:27:bd:cc:6d:30:2e:47:5f:86:9d:35:4e: 0a:7e:55:ea:0e:75:4a:34:4b:37:c3:10:03:e4:0f: 0f:cd:fe:3a:9a:3a:59:dc:95:56:a9:8b:06:a6:74: 4a:d6:ad:6c:72:e6:67:a0:48:99:4f:c8:3e:1e:59: 8c:6d:48:42:bf:09:d8:62:cc:1f:26:b4:4f:a3:57: 9b:a6:d2:79:34:0c:b4:33:03:05:30:13:24:f8:bc: bf:64:c1:9b:45:60:f7:b4:60:eb:fd:83:80:2f:e4: 98:60:76:34:a8:e0:b0:35:a6:19:94:45:6e:8d:c5: 46:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:B0:D1:D8:B4:CD:36:C4:76:05:F4:95:B1:2C:C7:CB:94:66:5C:7B X509v3 Authority Key Identifier: keyid:30:5C:44:E8:C9:61:A1:45:0D:0A:AB:21:2F:0D:EC:71:7D:1D:EF:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:85:2e:78:c7:23:1b:e7:1a:84:96:4c:71:52:e4:46:6d:67: 65:cf:14:10:4a:75:a0:a2:3c:2a:06:33:09:c8:3b:dc:b2:36: 6d:bb:fb:48:52:dc:06:53:f0:40:05:0e:01:c8:7b:d2:c9:dc: c7:3e:86:76:4b:8c:e5:95:9a:37:2d:16:0f:ee:6c:4e:10:78: e4:f1:49:98:e6:fc:c5:cd:25:ed:b6:ce:01:7c:a3:47:93:ac: 3b:61:f9:5d:47:5e:8b:ad:44:e0:5a:a9:b3:9a:77:7f:95:27: c7:9e:e7:be:7d:2f:b3:97:e8:7c:8e:d7:81:6f:2d:ae:c1:09: 8d:82:6a:e4:cc:20:67:e8:69:24:eb:ea:f6:8e:9a:e9:43:8f: 12:1e:7a:35:2e:7e:71:6a:98:04:99:ec:98:3b:11:ee:9d:4a: af:04:58:d0:4d:90:bf:58:95:95:20:87:f3:df:92:77:71:b9: c6:3d:5a:f4:d0:df:92:80:e5:cf:40:f2:12:9d:9f:25:0d:85: bf:e1:d6:d2:b5:1f:22:dc:2b:32:a3:7b:4b:72:49:99:9a:b3: 89:ef:2d:fd:29:0c:bd:65:c6:3b:d0:67:02:9c:f0:c1:ab:55: c7:79:29:04:2b:d2:2c:16:23:24:3e:0b:d7:c7:40:4c:a9:03: e5:69:3e:42 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtGJmlzqancHa/R6Zn96OzsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwNWM0NGU4Yzk2MWExNDUwZDBhYWIyMTJmMGRlYzcxN2Qx ZGVmYjYwHhcNMjUxMjIyMTMwMTIwWhcNMjUxMjIzMTMwMTIwWjAzMTEwLwYDVQQD EyhjM2IwZDFkOGI0Y2QzNmM0NzYwNWY0OTViMTJjYzdjYjk0NjY1YzdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAozkueZvjuCmBmBBtPfWQnzU1MBLa 6Arq89+suKIeIRtq+YCcOICVLG+hzt0gJ0aFGa5Mt5VbtSZXFiwW0MGCXt8D+xBq Z0ruEVzNQeTi2RUY4ZAWSdbV+zamiCnchHc/R5+xTs7u+7eQgPeQPeSU9VLYRp9S b3rylWmgERl5YYcL0b8JOE8tReInvcxtMC5HX4adNU4KflXqDnVKNEs3wxAD5A8P zf46mjpZ3JVWqYsGpnRK1q1scuZnoEiZT8g+HlmMbUhCvwnYYswfJrRPo1ebptJ5 NAy0MwMFMBMk+Ly/ZMGbRWD3tGDr/YOAL+SYYHY0qOCwNaYZlEVujcVG9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMOw0di0zTbEdgX0lbEsx8uUZlx7MB8GA1UdIwQY MBaAFDBcROjJYaFFDQqrIS8N7HF9He+2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUZ4RTZNbGhvVVVOQ3FzaEx3M3NjWDBkNzdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS8yODIwZDEtZmQyMC00ODg5LTgzNGYt ZDUyN2NlMGQ5OTMwLzEvTUZ4RTZNbGhvVVVOQ3FzaEx3M3NjWDBkNzdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS8yODIwZDEtZmQyMC00ODg5LTgzNGYtZDUyN2NlMGQ5OTMw LzEvTUZ4RTZNbGhvVVVOQ3FzaEx3M3NjWDBkNzdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFoUueMcj G+cahJZMcVLkRm1nZc8UEEp1oKI8KgYzCcg73LI2bbv7SFLcBlPwQAUOAch70snc xz6GdkuM5ZWaNy0WD+5sThB45PFJmOb8xc0l7bbOAXyjR5OsO2H5XUdei61E4Fqp s5p3f5Unx57nvn0vs5fofI7XgW8trsEJjYJq5MwgZ+hpJOvq9o6a6UOPEh56NS5+ cWqYBJnsmDsR7p1KrwRY0E2Qv1iVlSCH89+Sd3G5xj1a9NDfkoDlz0DyEp2fJQ2F v+HW0rUfItwrMqN7S3JJmZqzie8t/SkMvWXGO9BnApzwwatVx3kpBCvSLBYjJD4L 18dATKkD5Wk+Qg== -----END CERTIFICATE-----Generated at Mon Dec 22 22:51:58 2025 by rpki-client