This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft File: fmXasjlAyzlPmqpmT-pNb49C4xg.mft (raw, json) Hash identifier: aH9YFa2r9vKKDWjLwaNrZSVveUgReFS5lAt7UnF0PqE= Subject key identifier: 52:BA:22:F6:E3:8D:30:0C:1C:FE:C7:48:0C:ED:D1:8E:B9:3C:42:26 Authority key identifier: 7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18 Certificate issuer: /CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318 Certificate serial: 019B533CACA3709592EA2C6BD3512189812E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft Manifest number: 179D Signing time: Thu 25 Dec 2025 02:00:43 +0000 Manifest this update: Thu 25 Dec 2025 02:00:43 +0000 Manifest next update: Fri 26 Dec 2025 02:00:43 +0000 Files and hashes: 1: 2EgNkY8LCfJBqiF5G8pJe3q0hB4.roa (hash: wdnhU8m5AMaVCnPJuJ1ikMuyahXryJ7xnwDGzqvqxIk=) 2: B9gQbAB9xsN6pQfQdJIwTw0mN8w.roa (hash: x4fcMnOhpMuR2+7kVYptH+8Mn3pldQm1ilWOcm4WRJw=) 3: fmXasjlAyzlPmqpmT-pNb49C4xg.crl (hash: kWHcPD9B6dl9TSyrhxXV/4bsJNCOucMfud8xG3sGunk=) 4: jKTi0IFy2Gsl-io5IjP67e8YnpY.roa (hash: zmbRyxceh2NVjEHPxC/G8V+VaBl1rJ3CnIcL4cBiYPg=) 5: onHMu3bAahxq_cU4SfKfk6E_UV4.roa (hash: iPBBLCVey8nRw59EFOtKkUkXyLv07ioTCFN/ZWTNZaI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:53:3c:ac:a3:70:95:92:ea:2c:6b:d3:51:21:89:81:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318 Validity Not Before: Dec 25 02:00:43 2025 GMT Not After : Dec 26 02:00:43 2025 GMT Subject: CN=52ba22f6e38d300c1cfec7480cedd18eb93c4226 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ad:c6:ad:2e:0f:89:ba:2d:4c:e7:ec:d4:1d: d9:7a:bc:3c:f8:f6:2c:8a:17:7f:6d:8c:0c:ff:6b: 0d:89:e2:18:00:60:df:73:ce:fc:54:f4:11:74:f5: 1f:fc:62:00:ee:1b:9b:5c:b1:d5:ba:c7:f1:d4:2d: 00:e3:5d:2d:aa:50:65:fa:38:68:60:92:80:d6:de: 96:e2:9f:97:e7:ae:e7:4c:ee:ff:f9:dd:c4:ea:19: ac:9e:27:f3:30:c0:5c:c5:66:36:52:e8:39:ad:7b: d2:37:9b:9b:05:db:87:bf:f2:79:b4:79:86:a4:2d: 12:ee:18:1b:3a:95:b4:e7:cd:24:b4:1a:03:07:a6: 76:cd:a9:64:6a:01:04:85:0e:ec:a3:d0:48:1e:72: d7:ef:ad:94:c5:2a:ff:73:9c:f6:bf:01:9f:22:be: 8b:36:57:b0:97:03:74:16:9c:e2:90:ae:3f:85:5f: c7:b7:66:9b:50:06:d5:94:79:cc:8a:ab:39:df:e3: 47:16:1a:9c:95:76:f9:17:88:fb:62:d6:5b:7c:a5: 6f:b3:f3:c1:15:db:05:16:59:2d:0f:80:9b:c2:d6: 30:30:95:b0:8f:77:46:bf:38:a7:11:d9:e3:cf:95: d6:bd:b3:6f:36:f8:77:2c:06:3f:3b:b6:fa:9c:1a: 74:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:BA:22:F6:E3:8D:30:0C:1C:FE:C7:48:0C:ED:D1:8E:B9:3C:42:26 X509v3 Authority Key Identifier: keyid:7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:7a:ea:3c:1d:1d:7e:1c:a2:f7:d7:1f:15:42:b8:b7:1b:fc: 88:dc:e5:66:35:e0:d5:56:f8:5d:65:09:17:ec:cb:a5:9a:44: c3:98:c8:eb:d5:1b:51:56:66:5c:73:4a:ad:1c:fe:ae:cb:ed: 7c:49:97:4b:a9:6d:a2:e5:fb:3f:5b:18:d4:3d:52:d8:6c:ba: 1c:a4:d8:28:4c:b6:05:47:f1:92:db:10:80:a1:6b:be:00:93: 81:3f:f6:36:ca:a3:9b:25:39:d7:8e:3c:d3:12:9e:fb:99:32: 6c:5b:95:b7:d4:6b:ac:ee:02:cc:1d:2a:fc:97:18:ad:38:4e: 00:b8:bf:b8:b8:e3:0c:40:c7:94:29:99:66:a1:4d:81:fd:65: ea:3d:32:12:5d:2f:fd:63:14:80:65:9e:60:1f:69:59:a6:28: 61:33:9b:f8:8e:19:8a:02:40:ad:06:16:4a:7c:2d:e0:35:69: 30:25:44:05:5e:ec:50:b7:24:a7:6e:b8:f7:02:29:03:ff:2f: 9c:51:69:39:c9:32:86:82:a9:2d:a2:78:e3:c6:55:58:7c:2c: 29:2b:20:d7:eb:4e:e1:2d:28:77:48:cb:c6:3b:80:b9:b0:94: 71:ba:fb:f1:1c:3f:82:92:5a:3b:6c:e5:d8:80:94:78:55:5c: 1f:c4:7b:77 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtTPKyjcJWS6ixr01EhiYEuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdlNjVkYWIyMzk0MGNiMzk0ZjlhYWE2NjRmZWE0ZDZmOGY0 MmUzMTgwHhcNMjUxMjI1MDIwMDQzWhcNMjUxMjI2MDIwMDQzWjAzMTEwLwYDVQQD Eyg1MmJhMjJmNmUzOGQzMDBjMWNmZWM3NDgwY2VkZDE4ZWI5M2M0MjI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAra3GrS4PibotTOfs1B3Zerw8+PYs ihd/bYwM/2sNieIYAGDfc878VPQRdPUf/GIA7hubXLHVusfx1C0A410tqlBl+jho YJKA1t6W4p+X567nTO7/+d3E6hmsnifzMMBcxWY2Uug5rXvSN5ubBduHv/J5tHmG pC0S7hgbOpW0580ktBoDB6Z2zalkagEEhQ7so9BIHnLX762UxSr/c5z2vwGfIr6L NlewlwN0FpzikK4/hV/Ht2abUAbVlHnMiqs53+NHFhqclXb5F4j7YtZbfKVvs/PB FdsFFlktD4CbwtYwMJWwj3dGvzinEdnjz5XWvbNvNvh3LAY/O7b6nBp0QQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFK6IvbjjTAMHP7HSAzt0Y65PEImMB8GA1UdIwQY MBaAFH5l2rI5QMs5T5qqZk/qTW+PQuMYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZm1YYXNqbEF5emxQbXFwbVQtcE5iNDlDNHhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC81OGViYjEtZGJlYy00N2Y5LWJiOTYt ODQ5Y2ZjYWJiNjU3LzEvZm1YYXNqbEF5emxQbXFwbVQtcE5iNDlDNHhnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC81OGViYjEtZGJlYy00N2Y5LWJiOTYtODQ5Y2ZjYWJiNjU3 LzEvZm1YYXNqbEF5emxQbXFwbVQtcE5iNDlDNHhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa3rqPB0d fhyi99cfFUK4txv8iNzlZjXg1Vb4XWUJF+zLpZpEw5jI69UbUVZmXHNKrRz+rsvt fEmXS6ltouX7P1sY1D1S2Gy6HKTYKEy2BUfxktsQgKFrvgCTgT/2NsqjmyU51448 0xKe+5kybFuVt9RrrO4CzB0q/JcYrThOALi/uLjjDEDHlCmZZqFNgf1l6j0yEl0v /WMUgGWeYB9pWaYoYTOb+I4ZigJArQYWSnwt4DVpMCVEBV7sULckp2649wIpA/8v nFFpOckyhoKpLaJ448ZVWHwsKSsg1+tO4S0od0jLxjuAubCUcbr78Rw/gpJaO2zl 2ICUeFVcH8R7dw== -----END CERTIFICATE-----Generated at Thu Dec 25 03:35:43 2025 by rpki-client