This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft File: pX1M_mD4owpND_lLlOut_IjJrBE.mft (raw, json) Hash identifier: d83kZH9yGxDLEUHk3YNIYPiFQBWEy7LPe05gyH0JSYs= Subject key identifier: 02:B2:32:E8:ED:2D:85:83:5B:E4:3E:43:3E:27:D8:80:B5:4D:D4:59 Authority key identifier: A5:7D:4C:FE:60:F8:A3:0A:4D:0F:F9:4B:94:EB:AD:FC:88:C9:AC:11 Certificate issuer: /CN=a57d4cfe60f8a30a4d0ff94b94ebadfc88c9ac11 Certificate serial: 019B28C0A9012D018E5110B4532265758175 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pX1M_mD4owpND_lLlOut_IjJrBE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft Manifest number: 0E4E Signing time: Tue 16 Dec 2025 20:01:13 +0000 Manifest this update: Tue 16 Dec 2025 20:01:13 +0000 Manifest next update: Wed 17 Dec 2025 20:01:13 +0000 Files and hashes: 1: c2KmzgC2E8wnyMl3ET7bbXtsl28.roa (hash: iCu/CgeKq6j6xvBOhyPWL0bUM1p4HmortGMzXWFLmpc=) 2: pX1M_mD4owpND_lLlOut_IjJrBE.crl (hash: T5Xit+fsGSLFTPMmfLo6hJg32x5zsTaKbU8h2q4dKbM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.crl rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft rsync://rpki.ripe.net/repository/DEFAULT/pX1M_mD4owpND_lLlOut_IjJrBE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:28:c0:a9:01:2d:01:8e:51:10:b4:53:22:65:75:81:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a57d4cfe60f8a30a4d0ff94b94ebadfc88c9ac11 Validity Not Before: Dec 16 20:01:13 2025 GMT Not After : Dec 17 20:01:13 2025 GMT Subject: CN=02b232e8ed2d85835be43e433e27d880b54dd459 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bc:f4:0e:27:31:6c:8e:c9:01:57:c3:d5:9b: a4:5a:b1:e6:3f:e0:6c:bc:b2:a9:d7:ca:92:26:43: 08:76:39:9a:16:44:d9:c1:71:92:12:12:4a:2f:b0: f2:65:87:c7:1b:2d:72:90:a9:c2:73:ef:35:5f:5a: b2:96:ff:48:af:bd:8b:8a:13:41:be:cd:83:43:94: 71:64:5e:d3:a7:90:5c:1c:dd:5b:f6:fe:ec:3d:45: bc:81:78:83:bc:c7:c7:25:25:8d:ec:8f:bf:59:99: b8:4f:19:8c:63:c4:7b:d7:c8:dc:a4:ae:ef:3f:93: c9:73:e1:1a:1a:02:3e:d5:67:ae:cd:23:03:bd:6e: fc:84:bb:cd:76:64:3c:7f:bb:83:f7:30:cc:a5:da: 64:56:f6:fc:10:d1:7f:10:d9:f3:31:2f:c5:d0:04: 1f:90:3d:9d:a0:b8:72:2e:04:8e:7d:cf:d8:94:c5: 3c:d1:5e:f4:c3:7a:81:66:e8:80:7c:b1:7d:20:64: d8:60:9b:dc:46:2f:cd:91:f7:18:ba:f5:69:4f:29: 38:16:8b:0c:bc:79:99:69:5c:f0:7b:de:c7:2e:4e: 43:65:cf:4c:f9:b0:29:8f:e4:7b:64:21:80:98:e2: af:28:5a:f0:e6:e4:ca:ed:e6:ec:cb:b2:f7:de:3e: 1c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:B2:32:E8:ED:2D:85:83:5B:E4:3E:43:3E:27:D8:80:B5:4D:D4:59 X509v3 Authority Key Identifier: keyid:A5:7D:4C:FE:60:F8:A3:0A:4D:0F:F9:4B:94:EB:AD:FC:88:C9:AC:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pX1M_mD4owpND_lLlOut_IjJrBE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:55:d7:75:76:01:46:91:8f:73:b0:19:77:75:30:63:93:3c: 4b:a1:7a:f7:8d:be:9b:64:9b:2b:43:50:11:b1:9b:8e:53:cf: 9c:27:99:ae:d8:ce:b6:b2:ef:b7:f9:9f:98:a6:f2:ba:b0:ae: c3:31:09:b7:b2:ab:34:eb:c7:58:2a:9f:db:a3:70:64:af:41: 37:b7:2d:25:f9:33:4b:a2:f1:8a:c0:c2:fa:67:2b:83:f7:96: 84:9f:91:67:71:7a:0b:ed:b7:e5:83:1d:17:00:65:cb:2f:9c: 9f:06:d0:d0:e9:ad:67:8e:ad:f5:3c:2a:0d:19:3f:cf:f2:bb: 6d:2a:7a:9a:13:45:15:ef:a0:6a:06:3f:57:b6:50:ed:14:82: 2f:64:23:d2:6a:1f:c1:1c:57:69:07:94:aa:aa:b3:dd:14:2d: 0f:80:d3:ce:73:af:e9:5e:06:c7:bc:3c:e9:e8:bb:db:46:06: e2:35:8f:68:4c:6b:9c:ac:03:c2:47:c3:91:06:72:b7:38:12: d4:10:ac:d6:b4:c8:92:08:38:cb:80:d1:e5:43:4b:f7:42:18: f8:35:e2:14:87:0a:0f:56:ab:22:c8:ff:c4:4c:ee:44:c0:e6: 5a:51:4e:23:7d:05:79:9f:2e:92:d1:fb:f9:31:d7:1a:45:39: 5b:9d:96:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsowKkBLQGOURC0UyJldYF1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1N2Q0Y2ZlNjBmOGEzMGE0ZDBmZjk0Yjk0ZWJhZGZjODhj OWFjMTEwHhcNMjUxMjE2MjAwMTEzWhcNMjUxMjE3MjAwMTEzWjAzMTEwLwYDVQQD EygwMmIyMzJlOGVkMmQ4NTgzNWJlNDNlNDMzZTI3ZDg4MGI1NGRkNDU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAubz0DicxbI7JAVfD1ZukWrHmP+Bs vLKp18qSJkMIdjmaFkTZwXGSEhJKL7DyZYfHGy1ykKnCc+81X1qylv9Ir72LihNB vs2DQ5RxZF7Tp5BcHN1b9v7sPUW8gXiDvMfHJSWN7I+/WZm4TxmMY8R718jcpK7v P5PJc+EaGgI+1WeuzSMDvW78hLvNdmQ8f7uD9zDMpdpkVvb8ENF/ENnzMS/F0AQf kD2doLhyLgSOfc/YlMU80V70w3qBZuiAfLF9IGTYYJvcRi/NkfcYuvVpTyk4FosM vHmZaVzwe97HLk5DZc9M+bApj+R7ZCGAmOKvKFrw5uTK7ebsy7L33j4cpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAKyMujtLYWDW+Q+Qz4n2IC1TdRZMB8GA1UdIwQY MBaAFKV9TP5g+KMKTQ/5S5TrrfyIyawRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFgxTV9tRDRvd3BORF9sTGxPdXRfSWpKckJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC80OGMwNzItMjJkZS00NGQ3LWJlZDgt ZTgwZjMyMDczZjNkLzEvcFgxTV9tRDRvd3BORF9sTGxPdXRfSWpKckJFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC80OGMwNzItMjJkZS00NGQ3LWJlZDgtZTgwZjMyMDczZjNk LzEvcFgxTV9tRDRvd3BORF9sTGxPdXRfSWpKckJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP1XXdXYB RpGPc7AZd3UwY5M8S6F6942+m2SbK0NQEbGbjlPPnCeZrtjOtrLvt/mfmKbyurCu wzEJt7KrNOvHWCqf26NwZK9BN7ctJfkzS6LxisDC+mcrg/eWhJ+RZ3F6C+235YMd FwBlyy+cnwbQ0OmtZ46t9TwqDRk/z/K7bSp6mhNFFe+gagY/V7ZQ7RSCL2Qj0mof wRxXaQeUqqqz3RQtD4DTznOv6V4Gx7w86ei720YG4jWPaExrnKwDwkfDkQZytzgS 1BCs1rTIkgg4y4DR5UNL90IY+DXiFIcKD1arIsj/xEzuRMDmWlFOI30FeZ8uktH7 +THXGkU5W52WzA== -----END CERTIFICATE-----Generated at Wed Dec 17 00:31:44 2025 by rpki-client