This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft File: xHKa8T09FW9BGXaxduVU-mcddvc.mft (raw, json) Hash identifier: oYbu9+G5wYs0u15urKs+gnWwT5eh9xdE6KO+yidPvb0= Subject key identifier: 21:1C:9E:88:8D:E4:E1:AE:9D:D7:AB:40:74:07:C4:FC:49:BB:B0:36 Authority key identifier: C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7 Certificate issuer: /CN=c4729af13d3d156f411976b176e554fa671d76f7 Certificate serial: 019B4DE00EC3006D50053B51BD003B8EBDB0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft Manifest number: 14D5 Signing time: Wed 24 Dec 2025 01:01:27 +0000 Manifest this update: Wed 24 Dec 2025 01:01:27 +0000 Manifest next update: Thu 25 Dec 2025 01:01:27 +0000 Files and hashes: 1: qFZMGyq85ztg5ytAQ7RbzglxnGU.roa (hash: kMRZIxRuZxVhg2DxKXhubRuKlbKba7EMDPUaAyexKng=) 2: xHKa8T09FW9BGXaxduVU-mcddvc.crl (hash: X3fqb3/iXtMoD90A0hRffazEl/7+u4ay1O9OrNU2m/A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 19:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4d:e0:0e:c3:00:6d:50:05:3b:51:bd:00:3b:8e:bd:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c4729af13d3d156f411976b176e554fa671d76f7 Validity Not Before: Dec 24 01:01:27 2025 GMT Not After : Dec 25 01:01:27 2025 GMT Subject: CN=211c9e888de4e1ae9dd7ab407407c4fc49bbb036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:91:38:c0:9a:49:70:98:55:4f:4c:b8:fa:67: e9:f0:5f:cd:49:a3:a2:ee:f3:ab:42:32:b4:49:86: e2:68:ff:d9:db:ec:2d:bd:65:99:8c:f1:b4:ee:e6: 08:b7:0c:cd:24:e4:8d:ba:b6:51:52:e3:19:f1:fb: 3f:06:1d:74:66:69:f8:23:21:75:de:66:d0:81:a9: ea:33:6e:c1:fe:08:d1:f5:7c:4b:51:6d:f3:9f:f8: 2a:85:7f:39:ed:89:8c:ee:34:e5:ce:64:3f:15:39: 9e:27:a6:59:21:cc:9b:9e:c2:0d:d5:f0:f8:84:bf: 8d:5c:c4:b1:32:3a:be:da:6a:3f:67:a3:01:92:c6: 4f:51:c9:ec:07:af:e0:2e:93:b9:a6:4d:71:c7:21: 52:8c:03:17:58:80:ac:b6:94:35:51:25:fc:89:ae: b9:f6:8d:33:df:47:82:5f:29:43:ce:54:d5:b7:39: 1a:e2:77:e6:97:3b:89:12:88:73:1e:9d:9e:d1:ca: 2c:6c:19:d1:b4:1e:46:1b:a3:65:a1:4b:62:c1:da: 88:d5:d8:87:93:43:89:bc:4f:fb:6b:50:83:ad:1f: f8:29:7d:67:a4:51:a5:9e:df:bb:d0:81:1d:06:69: 43:53:f5:25:39:bd:af:41:95:39:6e:18:fd:9e:5b: 20:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:1C:9E:88:8D:E4:E1:AE:9D:D7:AB:40:74:07:C4:FC:49:BB:B0:36 X509v3 Authority Key Identifier: keyid:C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:37:2b:46:31:bd:2f:df:a8:c6:55:f3:ce:ad:52:48:f4:1f: 84:05:30:c3:b4:31:69:07:f6:53:29:bc:d2:30:50:96:3c:f6: 57:90:a0:ea:c7:53:48:e1:2c:a0:35:71:cd:70:12:5a:80:18: 1d:57:00:86:05:67:b4:55:53:ab:31:9d:44:e7:f1:12:f6:dc: d2:51:20:f4:60:44:ce:ec:02:b2:9e:ab:a5:b0:1a:16:e9:3c: cb:9a:fe:10:4c:e9:94:33:8d:12:d5:10:8b:6f:e9:20:3d:cc: 0e:3d:2a:b6:45:f1:0d:72:45:49:ad:a0:27:1c:c4:30:e3:33: d0:e2:96:13:1f:e4:d0:af:7b:54:4f:70:ec:5a:3e:81:46:69: d3:04:5f:8d:78:18:e8:b8:46:7a:1e:b2:b8:75:4d:91:07:62: 7e:91:20:ee:c3:cc:39:a6:1d:56:c4:be:f1:86:14:52:91:64: 3e:1e:32:e8:d6:79:fe:fd:19:a4:63:39:34:c1:8b:15:77:2b: b0:f3:9f:d4:dd:3d:70:05:18:c5:e7:40:eb:e8:12:18:9d:75: 9f:51:80:cd:fc:ce:09:6a:f0:a9:11:17:28:9c:4b:9a:1f:96: f7:12:f4:a2:86:bf:c1:f6:c2:af:f8:25:c2:eb:2c:28:81:e5: f8:de:be:b5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtN4A7DAG1QBTtRvQA7jr2wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM0NzI5YWYxM2QzZDE1NmY0MTE5NzZiMTc2ZTU1NGZhNjcx ZDc2ZjcwHhcNMjUxMjI0MDEwMTI3WhcNMjUxMjI1MDEwMTI3WjAzMTEwLwYDVQQD EygyMTFjOWU4ODhkZTRlMWFlOWRkN2FiNDA3NDA3YzRmYzQ5YmJiMDM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkZE4wJpJcJhVT0y4+mfp8F/NSaOi 7vOrQjK0SYbiaP/Z2+wtvWWZjPG07uYItwzNJOSNurZRUuMZ8fs/Bh10Zmn4IyF1 3mbQganqM27B/gjR9XxLUW3zn/gqhX857YmM7jTlzmQ/FTmeJ6ZZIcybnsIN1fD4 hL+NXMSxMjq+2mo/Z6MBksZPUcnsB6/gLpO5pk1xxyFSjAMXWICstpQ1USX8ia65 9o0z30eCXylDzlTVtzka4nfmlzuJEohzHp2e0cosbBnRtB5GG6NloUtiwdqI1diH k0OJvE/7a1CDrR/4KX1npFGlnt+70IEdBmlDU/UlOb2vQZU5bhj9nlsgdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCEcnoiN5OGunderQHQHxPxJu7A2MB8GA1UdIwQY MBaAFMRymvE9PRVvQRl2sXblVPpnHXb3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveEhLYThUMDlGVzlCR1hheGR1VlUtbWNkZHZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC85NWUwNjAtZmEyYS00MDU3LTk1Nzgt YjA4OThmYmIxY2FiLzEveEhLYThUMDlGVzlCR1hheGR1VlUtbWNkZHZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC85NWUwNjAtZmEyYS00MDU3LTk1NzgtYjA4OThmYmIxY2Fi LzEveEhLYThUMDlGVzlCR1hheGR1VlUtbWNkZHZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWjcrRjG9 L9+oxlXzzq1SSPQfhAUww7QxaQf2Uym80jBQljz2V5Cg6sdTSOEsoDVxzXASWoAY HVcAhgVntFVTqzGdROfxEvbc0lEg9GBEzuwCsp6rpbAaFuk8y5r+EEzplDONEtUQ i2/pID3MDj0qtkXxDXJFSa2gJxzEMOMz0OKWEx/k0K97VE9w7Fo+gUZp0wRfjXgY 6LhGeh6yuHVNkQdifpEg7sPMOaYdVsS+8YYUUpFkPh4y6NZ5/v0ZpGM5NMGLFXcr sPOf1N09cAUYxedA6+gSGJ11n1GAzfzOCWrwqREXKJxLmh+W9xL0ooa/wfbCr/gl wussKIHl+N6+tQ== -----END CERTIFICATE-----Generated at Wed Dec 24 02:15:02 2025 by rpki-client