This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.mft File: 0nXXqLrAR39VCd_xG5GVymDfh9o.mft (raw, json) Hash identifier: 6O3azmC/oGcORtwk8XfKIXtE+kY4wJ/bh6v1OTgPtAw= Subject key identifier: 78:22:ED:D2:84:14:F7:6D:9C:49:51:85:71:B2:3C:4B:7C:B5:26:D5 Authority key identifier: D2:75:D7:A8:BA:C0:47:7F:55:09:DF:F1:1B:91:95:CA:60:DF:87:DA Certificate issuer: /CN=d275d7a8bac0477f5509dff11b9195ca60df87da Certificate serial: 019B45B7FBBBBA1361C518C8FD1BF6C28444 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nXXqLrAR39VCd_xG5GVymDfh9o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.mft Manifest number: 1790 Signing time: Mon 22 Dec 2025 11:00:43 +0000 Manifest this update: Mon 22 Dec 2025 11:00:43 +0000 Manifest next update: Tue 23 Dec 2025 11:00:43 +0000 Files and hashes: 1: 0nXXqLrAR39VCd_xG5GVymDfh9o.crl (hash: eRtWdpni/Z/+XpK2apGWqf0LqTe2mUL5ELR7Vy7GJUw=) 2: 4UNPQAXZu9JxwT2Sc4WzpO3LENE.roa (hash: anoqLUvcJa2b/lCeb6nl+knhRinVk56BkYJL3ws+r4E=) 3: HMJLEkPGlr7x44aeMyDl-iD3-H0.roa (hash: L+qMMZpme30javZoQJKYZdKfiPeTzWKpuVRpIrhWgDs=) 4: YMTxPOuM97EplT8sh2WGlcFfkOw.roa (hash: D8L0sd2jitS16w93ripM0wnGDM02PZl2ly5UPGD5e0U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.crl rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.mft rsync://rpki.ripe.net/repository/DEFAULT/0nXXqLrAR39VCd_xG5GVymDfh9o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 10:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:45:b7:fb:bb:ba:13:61:c5:18:c8:fd:1b:f6:c2:84:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d275d7a8bac0477f5509dff11b9195ca60df87da Validity Not Before: Dec 22 11:00:43 2025 GMT Not After : Dec 23 11:00:43 2025 GMT Subject: CN=7822edd28414f76d9c49518571b23c4b7cb526d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2e:4f:5a:6e:13:35:7f:a0:03:1d:6a:7c:29: 02:18:a5:b6:25:32:ca:2a:6a:99:5b:10:47:2b:db: a9:1c:79:f3:2f:b9:8c:b8:2d:fa:c4:39:52:97:ce: 2d:3c:16:90:11:06:fe:fd:21:8d:10:81:d5:53:a1: 27:ca:8b:65:30:e9:79:1b:da:02:9b:0b:4c:a2:59: c6:c8:be:4d:d4:bf:ae:88:ac:19:a6:30:56:85:61: 5c:43:fb:5a:ae:ee:07:77:2c:22:2a:b0:0f:ad:4b: 2a:a1:0e:18:34:81:a9:50:05:a3:69:2d:39:5b:a2: 7b:a8:07:a4:59:84:53:5e:2e:a3:86:51:0c:8f:e4: d1:6d:1f:95:b2:33:cc:26:11:80:b9:40:d6:e1:9c: 77:d7:5d:8b:ad:25:6b:d3:3e:71:96:95:d3:d9:46: a6:49:0a:66:e8:e5:43:25:df:29:12:60:aa:6a:7b: fc:70:b6:3d:82:74:8d:b0:78:a1:d1:12:21:32:fa: fb:f0:55:b6:95:46:ad:53:eb:12:4d:0e:e5:74:7d: 4c:b8:7e:93:0e:27:ce:92:8e:14:39:9a:87:84:fb: df:29:4a:42:be:bf:c1:14:df:80:b3:e1:eb:e0:01: e0:60:32:ef:b9:68:8d:4c:ba:74:e9:49:41:23:4a: 58:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:22:ED:D2:84:14:F7:6D:9C:49:51:85:71:B2:3C:4B:7C:B5:26:D5 X509v3 Authority Key Identifier: keyid:D2:75:D7:A8:BA:C0:47:7F:55:09:DF:F1:1B:91:95:CA:60:DF:87:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nXXqLrAR39VCd_xG5GVymDfh9o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ba:0f:07:b8:08:3c:5a:ad:54:2e:8f:87:79:f2:05:56:03:6b: 0e:1d:b3:b4:c0:f9:47:6a:79:90:69:2a:6b:1e:95:e2:d3:0a: b2:d2:7e:c5:46:e8:97:fb:e2:c4:5e:3e:1c:c2:19:4b:a8:8d: b5:c8:08:ba:9f:18:e0:63:e5:7e:84:d3:e1:e6:3f:63:2f:1f: 63:f8:70:b3:1d:14:4e:31:ed:cb:d5:ba:2d:15:15:3e:e9:64: 7a:46:5c:84:e6:f4:43:46:54:12:14:46:18:62:0a:eb:3e:f2: 54:e6:f2:5e:57:fb:cf:ba:98:43:74:9d:be:06:bf:1e:27:d8: cf:27:f1:fa:80:f6:04:a9:49:42:ca:40:f3:1c:05:9c:7a:d9: 2d:00:85:ae:14:c8:f1:c4:42:42:f4:80:36:be:ce:f1:08:1d: d1:8c:ca:0d:d4:26:f7:18:1e:e2:5c:a2:0b:65:df:9c:0d:19: 6d:a0:3a:54:d4:7f:97:26:ea:e7:de:f5:d0:29:b0:4f:9c:9f: 13:46:5f:97:55:88:5f:aa:7d:d4:20:9e:c5:e7:ba:68:75:8a: 9f:71:8c:75:21:d5:44:e0:bd:52:7e:15:84:98:ad:6b:97:ec: 7f:88:a7:f4:b9:c9:7b:3a:85:e4:a3:6e:9f:3d:8e:aa:41:80: a4:23:f3:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtFt/u7uhNhxRjI/Rv2woREMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyNzVkN2E4YmFjMDQ3N2Y1NTA5ZGZmMTFiOTE5NWNhNjBk Zjg3ZGEwHhcNMjUxMjIyMTEwMDQzWhcNMjUxMjIzMTEwMDQzWjAzMTEwLwYDVQQD Eyg3ODIyZWRkMjg0MTRmNzZkOWM0OTUxODU3MWIyM2M0YjdjYjUyNmQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2C5PWm4TNX+gAx1qfCkCGKW2JTLK KmqZWxBHK9upHHnzL7mMuC36xDlSl84tPBaQEQb+/SGNEIHVU6EnyotlMOl5G9oC mwtMolnGyL5N1L+uiKwZpjBWhWFcQ/taru4HdywiKrAPrUsqoQ4YNIGpUAWjaS05 W6J7qAekWYRTXi6jhlEMj+TRbR+VsjPMJhGAuUDW4Zx3112LrSVr0z5xlpXT2Uam SQpm6OVDJd8pEmCqanv8cLY9gnSNsHih0RIhMvr78FW2lUatU+sSTQ7ldH1MuH6T DifOko4UOZqHhPvfKUpCvr/BFN+As+Hr4AHgYDLvuWiNTLp06UlBI0pYYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHgi7dKEFPdtnElRhXGyPEt8tSbVMB8GA1UdIwQY MBaAFNJ116i6wEd/VQnf8RuRlcpg34faMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMG5YWHFMckFSMzlWQ2RfeEc1R1Z5bURmaDlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS83YmViMDQtMzE3Yi00NDhhLTgyZWQt NTY1YjE0NDcwMzdiLzEvMG5YWHFMckFSMzlWQ2RfeEc1R1Z5bURmaDlvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS83YmViMDQtMzE3Yi00NDhhLTgyZWQtNTY1YjE0NDcwMzdi LzEvMG5YWHFMckFSMzlWQ2RfeEc1R1Z5bURmaDlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAug8HuAg8 Wq1ULo+HefIFVgNrDh2ztMD5R2p5kGkqax6V4tMKstJ+xUbol/vixF4+HMIZS6iN tcgIup8Y4GPlfoTT4eY/Yy8fY/hwsx0UTjHty9W6LRUVPulkekZchOb0Q0ZUEhRG GGIK6z7yVObyXlf7z7qYQ3Sdvga/HifYzyfx+oD2BKlJQspA8xwFnHrZLQCFrhTI 8cRCQvSANr7O8Qgd0YzKDdQm9xge4lyiC2XfnA0ZbaA6VNR/lybq59710CmwT5yf E0Zfl1WIX6p91CCexee6aHWKn3GMdSHVROC9Un4VhJita5fsf4in9LnJezqF5KNu nz2OqkGApCPzhA== -----END CERTIFICATE-----Generated at Mon Dec 22 13:19:39 2025 by rpki-client