This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft File: cxkAeiit4HgdMS2NSUcts2dnBBY.mft (raw, json) Hash identifier: cd/7nl1Ay/b1SVcy0e6KrCC4NxvDejsuigD0XZ3lPZc= Subject key identifier: 4D:36:7D:C7:EE:E2:33:A1:F7:82:FC:54:5E:55:BC:D9:7C:BA:6F:E7 Authority key identifier: 73:19:00:7A:28:AD:E0:78:1D:31:2D:8D:49:47:2D:B3:67:67:04:16 Certificate issuer: /CN=7319007a28ade0781d312d8d49472db367670416 Certificate serial: 019B410003682A4DC198528783AF734EA2C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft Manifest number: 0A06 Signing time: Sun 21 Dec 2025 13:01:18 +0000 Manifest this update: Sun 21 Dec 2025 13:01:18 +0000 Manifest next update: Mon 22 Dec 2025 13:01:18 +0000 Files and hashes: 1: cxkAeiit4HgdMS2NSUcts2dnBBY.crl (hash: c8or+iVpjDukFb8ocZ9YLk6b1YfPNivHITJniFZEhR8=) 2: rOIGMeXF9bxOY5fu4vCOE7NrCP0.roa (hash: 1nU5+mzZGJaibKrLnnLB5qj48GydY1KP7W2pluR6Ujw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.crl rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:00:03:68:2a:4d:c1:98:52:87:83:af:73:4e:a2:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7319007a28ade0781d312d8d49472db367670416 Validity Not Before: Dec 21 13:01:18 2025 GMT Not After : Dec 22 13:01:18 2025 GMT Subject: CN=4d367dc7eee233a1f782fc545e55bcd97cba6fe7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c7:c4:37:68:85:ab:06:9a:66:db:52:6f:c8: 59:0e:17:0b:7f:ae:79:08:ee:d2:ac:e0:0e:83:0b: c2:85:ad:d1:e2:b0:02:3f:b4:54:06:cd:47:c9:33: a7:6d:7a:48:1a:af:52:5b:bd:06:a9:95:ee:9f:bd: 8f:cd:58:f6:af:1d:03:31:54:1b:27:86:c0:a0:73: 24:9b:c7:f1:df:4d:e2:a6:be:46:11:06:2a:a5:46: 74:a1:31:62:95:8c:d4:19:74:46:b0:11:1a:cf:2d: c5:25:01:e0:70:ce:a9:4f:e0:29:2a:27:e5:3a:d4: dd:7c:93:95:c1:01:0d:7b:4f:08:24:0b:eb:87:84: 61:f2:07:42:82:e1:a8:50:94:7e:96:fc:67:e4:44: 33:f2:86:a7:f4:d6:0d:96:be:9e:09:c1:9c:74:d1: 4b:dc:46:04:ea:dd:72:ab:4c:95:91:eb:d3:70:cf: bd:21:77:dc:d5:0b:5c:58:5b:13:22:a5:e6:d1:af: b3:30:37:36:e1:b1:4f:99:86:00:3d:1f:18:95:60: 80:41:0e:38:73:27:a3:0f:57:3f:dc:97:01:2a:86: 78:a7:7d:32:13:cd:9b:3b:de:eb:90:43:25:b8:47: 56:99:43:68:e2:40:6f:57:c0:f8:34:68:c4:a8:33: 3c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:36:7D:C7:EE:E2:33:A1:F7:82:FC:54:5E:55:BC:D9:7C:BA:6F:E7 X509v3 Authority Key Identifier: keyid:73:19:00:7A:28:AD:E0:78:1D:31:2D:8D:49:47:2D:B3:67:67:04:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:7d:ab:d7:c0:a1:77:58:dd:a2:f5:ac:6b:58:00:3d:74:a6: 34:97:32:ba:d9:b3:a1:22:a8:f0:60:e2:ec:93:8d:27:13:ed: 7d:7f:16:8a:ba:7e:a6:9b:cc:a6:78:ec:58:de:81:34:a3:dc: b4:9b:4a:60:c5:3b:c7:22:a9:fc:0e:65:1c:ba:55:66:70:c5: 31:a8:ac:59:87:a1:e7:b8:00:56:96:3e:78:7f:53:f2:ca:97: ea:78:15:a6:11:40:73:1b:5f:cb:1c:f0:35:32:30:8f:6d:eb: f5:86:99:19:4e:14:97:95:76:d4:d3:87:b6:e7:c2:68:8e:5e: 1f:54:8a:df:4c:fe:9b:8a:03:6d:9f:77:72:87:f3:fb:12:f0: 60:b7:59:66:b2:83:69:10:d2:b0:fa:26:92:d5:1d:a5:77:fc: 97:bc:26:67:1d:8a:4c:ff:50:14:6f:de:65:fa:76:dc:eb:d5: 81:f4:23:a9:29:f1:c1:c4:5e:62:1b:da:74:19:77:77:73:a1: ee:31:98:4a:fe:a0:3a:a0:a1:b0:c6:aa:19:11:78:a9:15:da: 5f:d7:40:18:4c:8d:5f:d6:c9:b0:36:d6:4d:ab:a5:e1:65:ac: d7:40:12:20:b4:97:71:33:67:1c:f2:0b:6d:da:22:5e:33:f0: e6:fa:c3:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBAANoKk3BmFKHg69zTqLEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDczMTkwMDdhMjhhZGUwNzgxZDMxMmQ4ZDQ5NDcyZGIzNjc2 NzA0MTYwHhcNMjUxMjIxMTMwMTE4WhcNMjUxMjIyMTMwMTE4WjAzMTEwLwYDVQQD Eyg0ZDM2N2RjN2VlZTIzM2ExZjc4MmZjNTQ1ZTU1YmNkOTdjYmE2ZmU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqMfEN2iFqwaaZttSb8hZDhcLf655 CO7SrOAOgwvCha3R4rACP7RUBs1HyTOnbXpIGq9SW70GqZXun72PzVj2rx0DMVQb J4bAoHMkm8fx303ipr5GEQYqpUZ0oTFilYzUGXRGsBEazy3FJQHgcM6pT+ApKifl OtTdfJOVwQENe08IJAvrh4Rh8gdCguGoUJR+lvxn5EQz8oan9NYNlr6eCcGcdNFL 3EYE6t1yq0yVkevTcM+9IXfc1QtcWFsTIqXm0a+zMDc24bFPmYYAPR8YlWCAQQ44 cyejD1c/3JcBKoZ4p30yE82bO97rkEMluEdWmUNo4kBvV8D4NGjEqDM8QwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE02fcfu4jOh94L8VF5VvNl8um/nMB8GA1UdIwQY MBaAFHMZAHooreB4HTEtjUlHLbNnZwQWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3hrQWVpaXQ0SGdkTVMyTlNVY3RzMmRuQkJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9mOGM3ZTItMzI4Mi00ZWJiLTg1MDgt OWY5NDk0OTY2YzU0LzEvY3hrQWVpaXQ0SGdkTVMyTlNVY3RzMmRuQkJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZi9mOGM3ZTItMzI4Mi00ZWJiLTg1MDgtOWY5NDk0OTY2YzU0 LzEvY3hrQWVpaXQ0SGdkTVMyTlNVY3RzMmRuQkJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL32r18Ch d1jdovWsa1gAPXSmNJcyutmzoSKo8GDi7JONJxPtfX8Wirp+ppvMpnjsWN6BNKPc tJtKYMU7xyKp/A5lHLpVZnDFMaisWYeh57gAVpY+eH9T8sqX6ngVphFAcxtfyxzw NTIwj23r9YaZGU4Ul5V21NOHtufCaI5eH1SK30z+m4oDbZ93cofz+xLwYLdZZrKD aRDSsPomktUdpXf8l7wmZx2KTP9QFG/eZfp23OvVgfQjqSnxwcReYhvadBl3d3Oh 7jGYSv6gOqChsMaqGRF4qRXaX9dAGEyNX9bJsDbWTaul4WWs10ASILSXcTNnHPIL bdoiXjPw5vrDpg== -----END CERTIFICATE-----Generated at Sun Dec 21 16:13:16 2025 by rpki-client