This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft File: MXBn6Bphoh_cFIWY72ull1f6A4A.mft (raw, json) Hash identifier: nBCXa+e/4hVOwK9FLlc9MxxH0rwtyWhLZrJLBGgvqSU= Subject key identifier: D3:7E:E2:19:64:DD:B9:DB:F4:6E:95:41:85:0B:D5:1E:98:62:ED:71 Authority key identifier: 31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80 Certificate issuer: /CN=317067e81a61a21fdc148598ef6ba59757fa0380 Certificate serial: 019B4693B66DEC8C81B5881457CBEAA49B5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft Manifest number: 0A14 Signing time: Mon 22 Dec 2025 15:00:44 +0000 Manifest this update: Mon 22 Dec 2025 15:00:44 +0000 Manifest next update: Tue 23 Dec 2025 15:00:44 +0000 Files and hashes: 1: 1kHURLGCgDrhi9IHuZm9V5RPr7o.roa (hash: QOJumlfbHeKteqZFgdexa+53Le46L9xrcfm0BrIrj/w=) 2: MXBn6Bphoh_cFIWY72ull1f6A4A.crl (hash: 4gWzyim+9LrJoa6uAR3O/wK3bmnStxVF+xPYzt8QD08=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 15:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:46:93:b6:6d:ec:8c:81:b5:88:14:57:cb:ea:a4:9b:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=317067e81a61a21fdc148598ef6ba59757fa0380 Validity Not Before: Dec 22 15:00:44 2025 GMT Not After : Dec 23 15:00:44 2025 GMT Subject: CN=d37ee21964ddb9dbf46e9541850bd51e9862ed71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e6:a0:9f:5f:4c:76:4d:4e:c5:80:83:5f:1f: 91:30:3a:10:7b:06:d3:45:3d:73:a9:92:a7:6c:e6: f5:7d:3f:d3:26:2e:02:a1:0b:d2:75:2d:69:d9:cd: 54:bb:82:dc:4d:52:c9:92:50:2a:b0:24:82:69:d9: 3d:d3:24:ac:97:66:b3:44:4c:3b:3e:ca:a3:af:ff: 0d:f8:2b:36:62:4b:f9:cb:ad:0e:be:26:26:67:0a: 5e:80:a3:42:2b:1f:e2:50:2d:b5:b5:3c:25:e4:41: cc:8b:62:ea:10:ab:01:44:36:9b:97:54:a7:00:bd: 9b:96:2c:10:fd:c9:24:4c:88:c4:21:86:f0:79:7f: 99:1d:d4:3e:38:67:7f:fe:6d:45:2f:8b:1b:2f:cf: 79:26:dc:45:3c:b3:f7:2d:5b:55:f1:fc:ba:16:9a: 45:2d:8c:b4:a1:d9:a9:d5:d7:57:fe:2c:59:b0:23: fa:59:4d:78:9d:53:7b:91:ee:18:f6:ed:04:9b:33: 2b:87:36:21:3c:78:88:24:d8:fd:65:08:ea:c7:16: f2:68:cc:00:a3:85:0d:65:4f:20:a3:ba:fb:e8:6d: a5:17:84:01:95:8b:25:57:35:84:79:89:55:45:e7: 54:fa:fc:21:c8:b9:52:bc:ce:9b:bf:61:cd:6a:8e: 7c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:7E:E2:19:64:DD:B9:DB:F4:6E:95:41:85:0B:D5:1E:98:62:ED:71 X509v3 Authority Key Identifier: keyid:31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:59:0f:bd:fa:e2:44:3c:bb:1e:e4:ce:7e:69:99:b4:11:9a: 91:b5:fe:7b:c6:c9:65:29:00:8a:f2:9b:46:d7:fa:22:27:d0: 9d:c1:76:c0:e5:69:b6:fc:e6:2e:9c:99:53:4b:7e:28:52:dd: 03:86:dc:94:59:c4:82:28:85:6f:15:e2:6c:ad:32:80:6b:24: 39:aa:8c:35:03:c3:85:27:dd:3f:91:09:47:3d:25:ed:f7:d2: 79:bc:76:5f:0a:df:87:05:7d:d5:f5:64:62:19:2a:ee:27:95: 7c:f4:ae:08:d3:16:98:8d:85:77:4b:50:c0:2b:d8:bb:d3:31: 1e:88:3e:17:ef:f5:7a:e7:1e:42:ca:ca:6e:ce:8d:77:56:40: 49:61:3d:c1:a8:7e:2a:60:8e:4c:60:c0:8b:26:ca:27:62:a1: 1f:ee:a1:d7:09:da:59:2e:e3:67:57:fb:8b:02:da:20:bb:00: df:ed:46:5d:72:00:13:89:8a:0c:da:17:f8:3a:77:9f:0b:e9: 5b:0f:19:b9:28:99:11:81:d4:f3:a8:8b:a2:9c:d0:31:cf:1f: 4d:85:55:48:a3:f6:3a:c1:16:ca:78:dc:b5:8c:4d:a4:cb:1c: a6:93:96:16:bb:5f:0e:50:b8:b0:7b:bf:29:9d:08:6f:a2:bd: 9d:1c:8d:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtGk7Zt7IyBtYgUV8vqpJteMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxNzA2N2U4MWE2MWEyMWZkYzE0ODU5OGVmNmJhNTk3NTdm YTAzODAwHhcNMjUxMjIyMTUwMDQ0WhcNMjUxMjIzMTUwMDQ0WjAzMTEwLwYDVQQD EyhkMzdlZTIxOTY0ZGRiOWRiZjQ2ZTk1NDE4NTBiZDUxZTk4NjJlZDcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApOagn19Mdk1OxYCDXx+RMDoQewbT RT1zqZKnbOb1fT/TJi4CoQvSdS1p2c1Uu4LcTVLJklAqsCSCadk90ySsl2azREw7 Psqjr/8N+Cs2Ykv5y60OviYmZwpegKNCKx/iUC21tTwl5EHMi2LqEKsBRDabl1Sn AL2bliwQ/ckkTIjEIYbweX+ZHdQ+OGd//m1FL4sbL895JtxFPLP3LVtV8fy6FppF LYy0odmp1ddX/ixZsCP6WU14nVN7ke4Y9u0EmzMrhzYhPHiIJNj9ZQjqxxbyaMwA o4UNZU8go7r76G2lF4QBlYslVzWEeYlVRedU+vwhyLlSvM6bv2HNao585QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNN+4hlk3bnb9G6VQYUL1R6YYu1xMB8GA1UdIwQY MBaAFDFwZ+gaYaIf3BSFmO9rpZdX+gOAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTVhCbjZCcGhvaF9jRklXWTcydWxsMWY2QTRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi81OGE0ZTEtZGZjMS00ZDgxLWIyYzYt MjE2NTk3ZTAzZjExLzEvTVhCbjZCcGhvaF9jRklXWTcydWxsMWY2QTRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi81OGE0ZTEtZGZjMS00ZDgxLWIyYzYtMjE2NTk3ZTAzZjEx LzEvTVhCbjZCcGhvaF9jRklXWTcydWxsMWY2QTRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqFkPvfri RDy7HuTOfmmZtBGakbX+e8bJZSkAivKbRtf6IifQncF2wOVptvzmLpyZU0t+KFLd A4bclFnEgiiFbxXibK0ygGskOaqMNQPDhSfdP5EJRz0l7ffSebx2XwrfhwV91fVk Yhkq7ieVfPSuCNMWmI2Fd0tQwCvYu9MxHog+F+/1euceQsrKbs6Nd1ZASWE9wah+ KmCOTGDAiybKJ2KhH+6h1wnaWS7jZ1f7iwLaILsA3+1GXXIAE4mKDNoX+Dp3nwvp Ww8ZuSiZEYHU86iLopzQMc8fTYVVSKP2OsEWynjctYxNpMscppOWFrtfDlC4sHu/ KZ0Ib6K9nRyNdg== -----END CERTIFICATE-----Generated at Mon Dec 22 17:29:46 2025 by rpki-client