This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft File: sx0cKJHYgEaaINi38Y5M2GVDAEY.mft (raw, json) Hash identifier: AgjNqzkaH6EwNoTSFmlo8bW96KGugU66WqP8rf/Vbu8= Subject key identifier: 5C:A6:F7:87:EB:8A:CC:35:0D:8F:AF:35:95:AE:7C:B7:CE:7E:61:97 Authority key identifier: B3:1D:1C:28:91:D8:80:46:9A:20:D8:B7:F1:8E:4C:D8:65:43:00:46 Certificate issuer: /CN=b31d1c2891d880469a20d8b7f18e4cd865430046 Certificate serial: 019B3CEC81C0AD37858100DA9D7DFE18B548 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sx0cKJHYgEaaINi38Y5M2GVDAEY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft Manifest number: 046A Signing time: Sat 20 Dec 2025 18:01:31 +0000 Manifest this update: Sat 20 Dec 2025 18:01:31 +0000 Manifest next update: Sun 21 Dec 2025 18:01:31 +0000 Files and hashes: 1: K12F-uP3adhB5XYkvRWOwtyWFxQ.roa (hash: 4K99rP4m/GgxDIw4+Su5OB+ocoFQK/2aIqkgeWKmoU4=) 2: sx0cKJHYgEaaINi38Y5M2GVDAEY.crl (hash: fxM4R+/6d92hrzSu39dZdzxvXl1M9HJtBdjcN0cI0pM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.crl rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft rsync://rpki.ripe.net/repository/DEFAULT/sx0cKJHYgEaaINi38Y5M2GVDAEY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 18:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:ec:81:c0:ad:37:85:81:00:da:9d:7d:fe:18:b5:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b31d1c2891d880469a20d8b7f18e4cd865430046 Validity Not Before: Dec 20 18:01:31 2025 GMT Not After : Dec 21 18:01:31 2025 GMT Subject: CN=5ca6f787eb8acc350d8faf3595ae7cb7ce7e6197 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:9d:72:18:a5:75:5c:0d:35:99:be:61:f7:d0: 6a:52:24:34:15:04:2d:ef:2f:fa:22:f6:1a:5a:9c: 60:12:b3:7b:94:2a:f1:4b:15:05:a9:63:46:d6:45: a8:9c:df:33:cc:c8:8f:45:fd:61:8a:54:a9:cf:5d: 13:9e:ff:12:a9:ff:9a:a8:21:9f:2d:68:cd:94:5a: 12:63:8c:96:12:45:50:ae:38:6a:67:15:80:19:1c: e2:60:61:c5:51:52:49:54:17:b7:44:b4:fb:e3:4a: 5d:3e:03:25:89:eb:63:24:23:6a:1c:e8:e5:5a:d9: 22:fe:e4:20:81:26:84:72:0e:59:f5:da:0c:7a:09: ea:9d:35:80:b3:61:e9:b1:7c:25:50:8e:4e:1d:7a: 59:ad:f4:4c:59:01:74:64:af:f1:c2:26:2c:95:86: e5:ad:4b:ea:39:5a:a0:3f:24:b1:03:57:e9:e5:e1: 83:eb:bc:3c:2d:3d:c7:a0:ad:8b:6e:73:86:c1:65: 35:a0:8e:58:d7:53:6a:4f:51:15:ea:c8:a3:d5:97: de:47:e2:14:49:7c:99:67:8a:94:2d:e1:d8:52:23: 43:d2:5d:51:76:c6:fa:3a:b0:88:e6:69:cf:a3:d0: 44:eb:a0:ac:a2:3f:d9:f5:4c:a1:ec:2c:d8:b6:0b: 7f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:A6:F7:87:EB:8A:CC:35:0D:8F:AF:35:95:AE:7C:B7:CE:7E:61:97 X509v3 Authority Key Identifier: keyid:B3:1D:1C:28:91:D8:80:46:9A:20:D8:B7:F1:8E:4C:D8:65:43:00:46 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sx0cKJHYgEaaINi38Y5M2GVDAEY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:03:4b:d0:15:b0:3c:39:1e:94:03:18:4e:56:8c:b0:f2:4c: 9b:90:ce:21:ee:5c:66:33:bf:76:0e:05:1c:dc:f0:5d:bf:04: bd:78:88:3b:92:7d:ca:fe:42:fd:61:42:74:fd:aa:9a:33:f4: e3:f3:6e:f1:3b:60:1a:d8:4e:32:2e:d6:1e:3e:60:e2:d2:35: 6b:64:96:41:68:2a:1d:a9:a6:fa:1d:a7:05:36:86:00:ac:92: 3a:0b:0b:7f:16:4d:17:ef:fc:18:62:de:f6:93:e6:22:bd:18: 50:0f:7d:c1:45:e7:9b:58:44:05:f5:25:17:1b:7d:bd:9e:e9: 7b:f5:eb:85:d5:51:48:2e:20:bc:3a:23:f7:1e:4e:43:32:ab: 1a:b2:7b:59:15:e5:f2:23:b2:f6:cd:65:72:71:51:ce:05:8d: 45:12:10:43:72:28:f3:09:d1:50:6d:59:8f:8c:8c:b7:65:6a: 2c:ae:00:05:8b:02:91:de:8d:85:97:27:bc:51:21:f2:93:5e: 8a:4f:1d:c1:9c:d6:74:cd:fe:03:b4:20:93:ed:a3:68:09:e3: c8:48:3b:35:72:9c:dc:f0:36:de:cb:4c:9e:9c:a2:e8:47:cf: 9b:4e:03:30:5e:2f:db:28:33:88:5d:f5:cf:2d:1f:a9:f4:55: 35:ac:ac:66 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs87IHArTeFgQDanX3+GLVIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzMWQxYzI4OTFkODgwNDY5YTIwZDhiN2YxOGU0Y2Q4NjU0 MzAwNDYwHhcNMjUxMjIwMTgwMTMxWhcNMjUxMjIxMTgwMTMxWjAzMTEwLwYDVQQD Eyg1Y2E2Zjc4N2ViOGFjYzM1MGQ4ZmFmMzU5NWFlN2NiN2NlN2U2MTk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlJ1yGKV1XA01mb5h99BqUiQ0FQQt 7y/6IvYaWpxgErN7lCrxSxUFqWNG1kWonN8zzMiPRf1hilSpz10Tnv8Sqf+aqCGf LWjNlFoSY4yWEkVQrjhqZxWAGRziYGHFUVJJVBe3RLT740pdPgMlietjJCNqHOjl Wtki/uQggSaEcg5Z9doMegnqnTWAs2HpsXwlUI5OHXpZrfRMWQF0ZK/xwiYslYbl rUvqOVqgPySxA1fp5eGD67w8LT3HoK2LbnOGwWU1oI5Y11NqT1EV6sij1ZfeR+IU SXyZZ4qULeHYUiND0l1Rdsb6OrCI5mnPo9BE66Csoj/Z9Uyh7CzYtgt/swIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFym94frisw1DY+vNZWufLfOfmGXMB8GA1UdIwQY MBaAFLMdHCiR2IBGmiDYt/GOTNhlQwBGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3gwY0tKSFlnRWFhSU5pMzhZNU0yR1ZEQUVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy83NzUwMTctYTQ1Yi00NjM3LWEzYTAt YWYxYTBlMDBmODIzLzEvc3gwY0tKSFlnRWFhSU5pMzhZNU0yR1ZEQUVZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy83NzUwMTctYTQ1Yi00NjM3LWEzYTAtYWYxYTBlMDBmODIz LzEvc3gwY0tKSFlnRWFhSU5pMzhZNU0yR1ZEQUVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfQNL0BWw PDkelAMYTlaMsPJMm5DOIe5cZjO/dg4FHNzwXb8EvXiIO5J9yv5C/WFCdP2qmjP0 4/Nu8TtgGthOMi7WHj5g4tI1a2SWQWgqHamm+h2nBTaGAKySOgsLfxZNF+/8GGLe 9pPmIr0YUA99wUXnm1hEBfUlFxt9vZ7pe/XrhdVRSC4gvDoj9x5OQzKrGrJ7WRXl 8iOy9s1lcnFRzgWNRRIQQ3Io8wnRUG1Zj4yMt2VqLK4ABYsCkd6NhZcnvFEh8pNe ik8dwZzWdM3+A7Qgk+2jaAnjyEg7NXKc3PA23stMnpyi6EfPm04DMF4v2ygziF31 zy0fqfRVNaysZg== -----END CERTIFICATE-----Generated at Sun Dec 21 04:04:50 2025 by rpki-client