This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft File: x0HESpzVjhJWkGY32TXDGQ9_6xo.mft (raw, json) Hash identifier: OksnAHnQblPyNfqecvIInZzTeJIm17VQ/fGxLz4qabg= Subject key identifier: 7A:CD:02:6D:23:11:9B:3C:D2:1D:89:D2:CE:A3:F5:DD:C4:6F:8E:57 Authority key identifier: C7:41:C4:4A:9C:D5:8E:12:56:90:66:37:D9:35:C3:19:0F:7F:EB:1A Certificate issuer: /CN=c741c44a9cd58e1256906637d935c3190f7feb1a Certificate serial: 019B43C9AC3D0B8FFC06CAF008DF5F722201 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft Manifest number: 152D Signing time: Mon 22 Dec 2025 02:00:48 +0000 Manifest this update: Mon 22 Dec 2025 02:00:48 +0000 Manifest next update: Tue 23 Dec 2025 02:00:48 +0000 Files and hashes: 1: qptSZ2XpOAOxaz7moTgQi3lsLeM.roa (hash: KtrtO/sBSgHAN1gAhTfDKw+KYUTZI/b5RNJ8EjfK/UU=) 2: x0HESpzVjhJWkGY32TXDGQ9_6xo.crl (hash: iCGqZqaWcZGmUo8320Hcofh2F5S4Y2YYjgN88Mx7QxQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.crl rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 02:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:c9:ac:3d:0b:8f:fc:06:ca:f0:08:df:5f:72:22:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c741c44a9cd58e1256906637d935c3190f7feb1a Validity Not Before: Dec 22 02:00:48 2025 GMT Not After : Dec 23 02:00:48 2025 GMT Subject: CN=7acd026d23119b3cd21d89d2cea3f5ddc46f8e57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c5:b2:13:1b:aa:b4:76:13:65:2f:dd:ce:94: 91:8d:1f:e1:ee:8a:b9:d9:07:ea:ac:32:08:bd:aa: 5d:74:09:ac:68:04:3e:9f:a7:1f:ee:3d:7a:7b:df: 84:6b:0d:19:87:37:4f:2a:ce:f2:ef:84:fa:20:86: 52:81:cd:fd:89:44:e8:e6:33:93:15:9a:3d:e3:52: 90:01:94:71:26:2c:98:22:1d:6c:84:86:e8:da:28: f9:33:ae:71:58:5e:a8:ed:89:f3:cf:0d:1f:a8:70: 4c:bd:10:b9:a2:93:3e:08:16:62:fa:ba:93:af:09: 88:aa:99:cc:6b:9b:2f:b7:67:ce:84:60:0a:a9:46: 32:07:09:6a:3b:de:06:33:8c:93:81:64:5a:da:93: 52:2e:20:bf:87:d4:4d:23:82:2e:6c:23:3e:4c:d0: e2:a2:81:4f:f1:c5:d6:e4:5b:53:70:7d:00:9a:51: d8:18:8c:d8:69:77:c3:cb:bd:ec:ce:15:a8:e6:8f: 45:1a:ae:21:be:87:11:1a:0a:bc:6d:6f:f7:77:4d: 76:72:54:e8:bb:1d:c4:2a:3f:cf:07:a9:a7:1f:13: e3:c9:df:63:c0:cf:50:ba:8a:77:d5:95:6e:2d:82: 23:34:4e:03:b9:ee:1c:1c:f3:99:16:d1:0a:74:54: b0:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:CD:02:6D:23:11:9B:3C:D2:1D:89:D2:CE:A3:F5:DD:C4:6F:8E:57 X509v3 Authority Key Identifier: keyid:C7:41:C4:4A:9C:D5:8E:12:56:90:66:37:D9:35:C3:19:0F:7F:EB:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:03:92:12:fc:52:b3:34:c8:c9:a1:d6:2d:70:1c:7f:a4:2b: 85:08:2a:97:81:fe:66:f6:ad:8a:59:50:ff:b5:aa:ee:a0:82: 26:65:0b:97:04:75:77:4e:c1:c1:e4:be:2c:19:3f:7b:8e:33: 57:a5:60:79:55:6b:16:71:99:2c:73:5e:63:ea:9d:02:9d:12: 98:2e:3a:88:e8:a2:9d:d8:81:46:cd:59:ef:64:4f:ec:02:b1: 86:08:cc:50:a1:54:67:02:16:95:05:0f:dd:34:9c:db:64:5e: d2:a2:0e:16:db:44:40:bb:20:ea:61:8c:4b:c3:24:3e:75:35: 74:d2:1b:29:ad:6c:2d:d2:4d:40:0c:e8:c6:6f:0b:fd:a8:ef: f6:5f:70:20:86:6a:86:1a:37:49:e6:c1:a9:25:94:8d:30:69: 22:d5:ef:fa:1b:70:c7:bf:fa:a1:6c:0e:eb:3e:53:88:b6:c1: e7:a1:b7:77:30:4f:c5:ca:fa:bb:e8:82:cf:18:0d:7b:ae:0e: f7:46:42:87:8e:1c:47:87:22:df:84:6f:ed:c8:f6:10:3d:ad: e7:a3:f1:60:fd:9a:bb:c0:23:5d:93:5d:0d:dd:30:7a:23:c8: ef:f2:a7:f0:93:ce:97:9e:55:7d:d9:ac:bf:e6:5b:f0:f6:5d: f0:b2:61:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtDyaw9C4/8BsrwCN9fciIBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3NDFjNDRhOWNkNThlMTI1NjkwNjYzN2Q5MzVjMzE5MGY3 ZmViMWEwHhcNMjUxMjIyMDIwMDQ4WhcNMjUxMjIzMDIwMDQ4WjAzMTEwLwYDVQQD Eyg3YWNkMDI2ZDIzMTE5YjNjZDIxZDg5ZDJjZWEzZjVkZGM0NmY4ZTU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArMWyExuqtHYTZS/dzpSRjR/h7oq5 2QfqrDIIvapddAmsaAQ+n6cf7j16e9+Eaw0ZhzdPKs7y74T6IIZSgc39iUTo5jOT FZo941KQAZRxJiyYIh1shIbo2ij5M65xWF6o7Ynzzw0fqHBMvRC5opM+CBZi+rqT rwmIqpnMa5svt2fOhGAKqUYyBwlqO94GM4yTgWRa2pNSLiC/h9RNI4IubCM+TNDi ooFP8cXW5FtTcH0AmlHYGIzYaXfDy73szhWo5o9FGq4hvocRGgq8bW/3d012clTo ux3EKj/PB6mnHxPjyd9jwM9Quop31ZVuLYIjNE4Due4cHPOZFtEKdFSwPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHrNAm0jEZs80h2J0s6j9d3Eb45XMB8GA1UdIwQY MBaAFMdBxEqc1Y4SVpBmN9k1wxkPf+saMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveDBIRVNwelZqaEpXa0dZMzJUWERHUTlfNnhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS8xZWJjYjItNGVmMC00MmZmLTgxYjUt OWIxN2RlZjljMjMzLzEveDBIRVNwelZqaEpXa0dZMzJUWERHUTlfNnhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS8xZWJjYjItNGVmMC00MmZmLTgxYjUtOWIxN2RlZjljMjMz LzEveDBIRVNwelZqaEpXa0dZMzJUWERHUTlfNnhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAAOSEvxS szTIyaHWLXAcf6QrhQgql4H+ZvatillQ/7Wq7qCCJmULlwR1d07BweS+LBk/e44z V6VgeVVrFnGZLHNeY+qdAp0SmC46iOiindiBRs1Z72RP7AKxhgjMUKFUZwIWlQUP 3TSc22Re0qIOFttEQLsg6mGMS8MkPnU1dNIbKa1sLdJNQAzoxm8L/ajv9l9wIIZq hho3SebBqSWUjTBpItXv+htwx7/6oWwO6z5TiLbB56G3dzBPxcr6u+iCzxgNe64O 90ZCh44cR4ci34Rv7cj2ED2t56PxYP2au8AjXZNdDd0weiPI7/Kn8JPOl55Vfdms v+Zb8PZd8LJhdA== -----END CERTIFICATE-----Generated at Mon Dec 22 09:42:23 2025 by rpki-client