This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft File: Xo0HtF99gxJMn4wPrAO-wCRos34.mft (raw, json) Hash identifier: 15bxfG3Pv1L+U8crzXRL+l2gJWhjUilmV7TRpIs9bco= Subject key identifier: 1A:AE:44:D5:65:DC:03:36:FA:9A:AC:D1:AD:C5:32:E3:CB:DB:66:26 Authority key identifier: 5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E Certificate issuer: /CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e Certificate serial: 019B39B462A91F65166F30A3E59E1F5DB984 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft Manifest number: 17A0 Signing time: Sat 20 Dec 2025 03:01:21 +0000 Manifest this update: Sat 20 Dec 2025 03:01:21 +0000 Manifest next update: Sun 21 Dec 2025 03:01:21 +0000 Files and hashes: 1: 42NnB3jW5n3RbWWrHMDd_7NubAY.roa (hash: bZyySLXxgMQfpoBtEuXSmgHgMgLKQxBjV3IqMenXg0E=) 2: EuMIVvtjfwcw4H_1qN_NTTYxtB0.roa (hash: GstL7gwAEgcyBOR5WEEQ3UJ45LkAklqubcGaSv86PEM=) 3: U3GEel-_AheBYgIYIVYL9mt_5dg.roa (hash: qjeuuOD21NigMG6GkIxT7OwP2vU0izG4cg6tV2NDSPY=) 4: Xo0HtF99gxJMn4wPrAO-wCRos34.crl (hash: UvUrBzR94rD6Qqvt7I9GXUK8v8dMEbrb6gSaIlFaHcU=) 5: dkalZuhkXvwmIupORosbz0_QuDk.roa (hash: zivsX5txTkDFC4Y1VfrYve6SjqG+jiiSQsRuGY7HqQI=) 6: hMxFbe2_woNux6m3JkElwux-E5g.roa (hash: nrSIsPwWOsAGq4mrEG8bp4vhnLrScT5iVl2b8ClElOk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:b4:62:a9:1f:65:16:6f:30:a3:e5:9e:1f:5d:b9:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e Validity Not Before: Dec 20 03:01:21 2025 GMT Not After : Dec 21 03:01:21 2025 GMT Subject: CN=1aae44d565dc0336fa9aacd1adc532e3cbdb6626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:b5:eb:15:78:38:8f:32:8d:83:78:c5:e0:45: b3:a1:2b:57:ca:73:26:9a:0f:ac:32:9e:b4:52:78: a2:d2:f4:de:ba:d3:10:98:28:8e:2e:7f:1d:e8:b4: 42:3d:03:16:1b:5a:f9:fd:2b:b3:da:33:d1:af:3f: a2:b7:0c:f3:8e:41:e9:e2:02:c0:39:c8:e5:a9:a4: 1b:a3:95:71:c5:12:17:e7:b2:d7:ed:1c:6e:29:70: b2:6d:20:ce:0c:a6:f8:de:f9:fa:67:b8:86:e8:e5: 76:88:c8:26:90:0c:bb:2b:4f:76:29:44:5e:60:56: 9a:61:46:0a:5a:48:7b:b7:16:29:c1:4d:10:64:eb: 98:64:d9:51:cd:06:e9:d4:26:f4:05:c2:a0:6e:1e: 3f:0d:4c:1b:c5:5a:47:b6:1d:b2:cd:85:74:e5:15: 17:f8:68:8f:d9:08:6f:b9:e1:25:2a:c4:ba:49:d9: 63:51:1e:f3:10:33:01:89:4b:a4:c1:7c:33:3b:6a: 0a:7f:fe:b4:ca:f4:ca:91:15:7b:dd:de:60:b0:d8: 2c:6a:72:ce:31:55:48:c4:37:c9:07:d3:ee:f1:96: 32:07:72:e3:29:34:60:5a:17:9b:e1:76:a2:d9:06: 95:4b:b2:34:46:4c:d9:0a:b9:67:87:8a:f8:17:49: 92:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:AE:44:D5:65:DC:03:36:FA:9A:AC:D1:AD:C5:32:E3:CB:DB:66:26 X509v3 Authority Key Identifier: keyid:5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:2c:e1:f7:18:9a:d8:0a:48:3f:bc:c1:85:9c:dd:eb:1d:49: 5e:98:0c:a0:6d:af:71:5b:79:73:44:10:3d:5d:44:a1:dc:18: d4:b0:1a:ac:e8:49:a7:9c:0e:06:b0:23:43:54:ce:ca:60:1f: c1:39:61:5b:50:5c:42:ec:4f:d2:75:9d:10:d5:f0:6e:4e:f6: 0a:80:67:35:0c:50:11:d3:c5:6f:54:18:e4:2c:aa:59:4e:b6: 25:b4:7b:80:fa:41:62:4f:32:de:8c:b7:04:11:1d:09:81:b7: 2f:bd:b7:74:1d:2a:f8:42:70:64:db:5a:01:7a:af:e1:b2:b9: 02:4e:be:00:7c:f9:fa:53:af:43:80:5e:19:bc:23:e3:ed:27: 3a:99:36:a2:d7:1f:fb:bb:9f:26:15:c6:d4:17:00:83:30:cb: 53:7f:9c:b2:1f:39:a0:8c:54:0a:19:cf:c1:ee:e6:bf:18:13: 34:ed:19:b4:47:63:ee:7c:ae:64:67:fc:b2:65:16:4b:67:e5: a4:fd:0e:42:2f:49:4e:db:6a:0c:14:19:59:69:50:69:36:6a: 3c:b0:df:b2:b4:a7:4d:04:f5:ab:7f:2b:e9:7a:51:37:c9:7c: d5:c7:1f:0c:6c:9d:fd:50:db:bc:de:fc:da:84:e9:fd:6e:b6: df:d5:06:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs5tGKpH2UWbzCj5Z4fXbmEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlOGQwN2I0NWY3ZDgzMTI0YzlmOGMwZmFjMDNiZWMwMjQ2 OGIzN2UwHhcNMjUxMjIwMDMwMTIxWhcNMjUxMjIxMDMwMTIxWjAzMTEwLwYDVQQD EygxYWFlNDRkNTY1ZGMwMzM2ZmE5YWFjZDFhZGM1MzJlM2NiZGI2NjI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl7XrFXg4jzKNg3jF4EWzoStXynMm mg+sMp60Unii0vTeutMQmCiOLn8d6LRCPQMWG1r5/Suz2jPRrz+itwzzjkHp4gLA OcjlqaQbo5VxxRIX57LX7RxuKXCybSDODKb43vn6Z7iG6OV2iMgmkAy7K092KURe YFaaYUYKWkh7txYpwU0QZOuYZNlRzQbp1Cb0BcKgbh4/DUwbxVpHth2yzYV05RUX +GiP2QhvueElKsS6SdljUR7zEDMBiUukwXwzO2oKf/60yvTKkRV73d5gsNgsanLO MVVIxDfJB9Pu8ZYyB3LjKTRgWheb4Xai2QaVS7I0RkzZCrlnh4r4F0mSOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBquRNVl3AM2+pqs0a3FMuPL22YmMB8GA1UdIwQY MBaAFF6NB7RffYMSTJ+MD6wDvsAkaLN+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWG8wSHRGOTlneEpNbjR3UHJBTy13Q1JvczM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9hMTY4ZTktZDA3MC00NGUwLTk0YTQt NmM4ZmQ4NGJiNWY1LzEvWG8wSHRGOTlneEpNbjR3UHJBTy13Q1JvczM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9hMTY4ZTktZDA3MC00NGUwLTk0YTQtNmM4ZmQ4NGJiNWY1 LzEvWG8wSHRGOTlneEpNbjR3UHJBTy13Q1JvczM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjCzh9xia 2ApIP7zBhZzd6x1JXpgMoG2vcVt5c0QQPV1EodwY1LAarOhJp5wOBrAjQ1TOymAf wTlhW1BcQuxP0nWdENXwbk72CoBnNQxQEdPFb1QY5CyqWU62JbR7gPpBYk8y3oy3 BBEdCYG3L723dB0q+EJwZNtaAXqv4bK5Ak6+AHz5+lOvQ4BeGbwj4+0nOpk2otcf +7ufJhXG1BcAgzDLU3+csh85oIxUChnPwe7mvxgTNO0ZtEdj7nyuZGf8smUWS2fl pP0OQi9JTttqDBQZWWlQaTZqPLDfsrSnTQT1q38r6XpRN8l81ccfDGyd/VDbvN78 2oTp/W6239UGKg== -----END CERTIFICATE-----Generated at Sat Dec 20 07:12:26 2025 by rpki-client