This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.mft File: 0nXXqLrAR39VCd_xG5GVymDfh9o.mft (raw, json) Hash identifier: PpGJrwNL+OBj3JxHc/jB3W/kWGH5xN/GBZs+ZjIg2GU= Subject key identifier: 96:BE:8B:E1:21:42:90:12:97:66:ED:A5:A3:45:2D:0D:1B:E7:AC:ED Authority key identifier: D2:75:D7:A8:BA:C0:47:7F:55:09:DF:F1:1B:91:95:CA:60:DF:87:DA Certificate issuer: /CN=d275d7a8bac0477f5509dff11b9195ca60df87da Certificate serial: 019B72228475A46A127C91BDB14A9EAD0209 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nXXqLrAR39VCd_xG5GVymDfh9o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.mft Manifest number: 17A7 Signing time: Wed 31 Dec 2025 02:00:23 +0000 Manifest this update: Wed 31 Dec 2025 02:00:23 +0000 Manifest next update: Thu 01 Jan 2026 02:00:23 +0000 Files and hashes: 1: 0nXXqLrAR39VCd_xG5GVymDfh9o.crl (hash: S08XNVWy7G3qTJJllT+nLNhkzIpqJuPMtWdTKGgx88A=) 2: 4UNPQAXZu9JxwT2Sc4WzpO3LENE.roa (hash: anoqLUvcJa2b/lCeb6nl+knhRinVk56BkYJL3ws+r4E=) 3: HMJLEkPGlr7x44aeMyDl-iD3-H0.roa (hash: L+qMMZpme30javZoQJKYZdKfiPeTzWKpuVRpIrhWgDs=) 4: YMTxPOuM97EplT8sh2WGlcFfkOw.roa (hash: D8L0sd2jitS16w93ripM0wnGDM02PZl2ly5UPGD5e0U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.crl rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.mft rsync://rpki.ripe.net/repository/DEFAULT/0nXXqLrAR39VCd_xG5GVymDfh9o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 01 Jan 2026 00:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:72:22:84:75:a4:6a:12:7c:91:bd:b1:4a:9e:ad:02:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d275d7a8bac0477f5509dff11b9195ca60df87da Validity Not Before: Dec 31 02:00:23 2025 GMT Not After : Jan 1 02:00:23 2026 GMT Subject: CN=96be8be1214290129766eda5a3452d0d1be7aced Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ee:27:f5:12:cf:2a:26:3f:3c:b3:04:eb:3c: ed:99:28:27:76:f5:2a:2d:2e:85:33:08:e9:3e:32: 95:fb:3c:5a:3c:04:f6:8e:9b:3b:6d:4f:f5:77:3a: 5e:bf:7f:2d:eb:4a:4b:ce:a8:c6:08:b4:85:9a:32: 8d:d1:2e:b8:5a:86:ef:93:41:53:43:b4:b0:fd:58: ab:3e:52:0a:c1:9a:a9:64:99:26:49:56:9f:49:ad: b2:a4:da:4a:d6:6b:43:a2:a8:79:a0:c4:51:d2:71: b1:eb:25:e1:ef:a3:c5:e0:ba:c8:11:bf:b4:a7:5f: 80:f9:aa:16:92:cb:bd:c4:54:b0:bc:c5:25:ba:1e: d4:ba:89:71:e1:a4:70:a9:cb:b9:c8:a1:97:5d:ad: ec:30:c6:7c:b9:71:99:f7:96:5a:c5:22:51:3f:01: 79:45:77:f9:0d:b3:1a:ba:36:ed:a9:7e:1f:1d:95: dc:36:82:fc:47:13:26:3e:ea:ef:d0:d9:35:a0:53: 35:7c:54:27:b5:bd:48:9b:c7:4e:dd:8e:32:9a:fa: 00:ac:eb:22:a1:c5:04:b2:0f:09:b5:5a:ac:5b:c5: cb:02:62:12:b1:3a:0a:ad:a6:31:4f:3e:f2:87:18: 17:1a:46:17:b1:03:3b:2b:b3:4c:9f:cd:82:93:24: 71:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:BE:8B:E1:21:42:90:12:97:66:ED:A5:A3:45:2D:0D:1B:E7:AC:ED X509v3 Authority Key Identifier: keyid:D2:75:D7:A8:BA:C0:47:7F:55:09:DF:F1:1B:91:95:CA:60:DF:87:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nXXqLrAR39VCd_xG5GVymDfh9o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c4:06:33:d3:09:34:b7:fe:b8:73:d4:72:e1:80:36:37:a9:27: 0c:5e:2e:ac:27:c0:a5:d6:8a:54:00:e7:18:9f:ed:0b:14:22: db:70:6d:97:38:a3:34:37:97:88:1d:47:f7:93:42:e1:3b:12: 8e:c8:c5:33:59:70:8f:d5:82:d6:5a:92:a2:b3:5a:00:02:38: 33:ad:32:99:4f:c0:2b:62:cc:ce:14:18:33:a7:2c:a5:e1:1d: 35:b9:52:18:a6:ce:3b:59:15:c7:85:9a:24:60:d5:05:c3:54: 17:fe:bd:bb:d7:f2:5f:d0:7e:e7:05:38:94:d3:0e:48:bd:13: 97:b9:64:c9:55:15:65:f3:c0:2e:74:4f:26:94:8d:0d:99:1b: 9b:26:66:e9:67:3d:93:67:42:5f:91:63:f9:77:bb:76:94:2e: 98:03:2a:1d:29:f3:4f:39:1e:0b:43:c4:52:ce:1d:17:b0:1e: 85:30:3d:2b:d6:0f:63:d9:f1:db:30:a5:e6:e1:a5:c0:70:13: d4:82:37:03:29:df:2b:8c:8e:df:3e:ca:2a:06:27:67:b9:62: b0:ab:3d:45:a2:65:c7:8e:72:d1:09:21:c4:34:b6:f6:9b:98: 81:10:f4:08:b6:8f:2a:9d:7f:e7:a3:e8:10:8e:29:a2:de:27: 08:4b:25:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtyIoR1pGoSfJG9sUqerQIJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyNzVkN2E4YmFjMDQ3N2Y1NTA5ZGZmMTFiOTE5NWNhNjBk Zjg3ZGEwHhcNMjUxMjMxMDIwMDIzWhcNMjYwMTAxMDIwMDIzWjAzMTEwLwYDVQQD Eyg5NmJlOGJlMTIxNDI5MDEyOTc2NmVkYTVhMzQ1MmQwZDFiZTdhY2VkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAme4n9RLPKiY/PLME6zztmSgndvUq LS6FMwjpPjKV+zxaPAT2jps7bU/1dzpev38t60pLzqjGCLSFmjKN0S64Wobvk0FT Q7Sw/VirPlIKwZqpZJkmSVafSa2ypNpK1mtDoqh5oMRR0nGx6yXh76PF4LrIEb+0 p1+A+aoWksu9xFSwvMUluh7Uuolx4aRwqcu5yKGXXa3sMMZ8uXGZ95ZaxSJRPwF5 RXf5DbMaujbtqX4fHZXcNoL8RxMmPurv0Nk1oFM1fFQntb1Im8dO3Y4ymvoArOsi ocUEsg8JtVqsW8XLAmISsToKraYxTz7yhxgXGkYXsQM7K7NMn82CkyRxTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJa+i+EhQpASl2btpaNFLQ0b56ztMB8GA1UdIwQY MBaAFNJ116i6wEd/VQnf8RuRlcpg34faMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMG5YWHFMckFSMzlWQ2RfeEc1R1Z5bURmaDlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS83YmViMDQtMzE3Yi00NDhhLTgyZWQt NTY1YjE0NDcwMzdiLzEvMG5YWHFMckFSMzlWQ2RfeEc1R1Z5bURmaDlvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS83YmViMDQtMzE3Yi00NDhhLTgyZWQtNTY1YjE0NDcwMzdi LzEvMG5YWHFMckFSMzlWQ2RfeEc1R1Z5bURmaDlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxAYz0wk0 t/64c9Ry4YA2N6knDF4urCfApdaKVADnGJ/tCxQi23BtlzijNDeXiB1H95NC4TsS jsjFM1lwj9WC1lqSorNaAAI4M60ymU/AK2LMzhQYM6cspeEdNblSGKbOO1kVx4Wa JGDVBcNUF/69u9fyX9B+5wU4lNMOSL0Tl7lkyVUVZfPALnRPJpSNDZkbmyZm6Wc9 k2dCX5Fj+Xe7dpQumAMqHSnzTzkeC0PEUs4dF7AehTA9K9YPY9nx2zCl5uGlwHAT 1II3AynfK4yO3z7KKgYnZ7lisKs9RaJlx45y0QkhxDS29puYgRD0CLaPKp1/56Po EI4pot4nCEslhQ== -----END CERTIFICATE-----Generated at Wed Dec 31 09:07:05 2025 by rpki-client