This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft File: fmXasjlAyzlPmqpmT-pNb49C4xg.mft (raw, json) Hash identifier: SyguCdU62igrJP0FeSedIEGbVy1rJY/VW2R4kLW0bV4= Subject key identifier: 38:DF:2C:90:05:AD:9B:92:9D:49:92:97:9D:13:CE:0F:FA:53:44:6B Authority key identifier: 7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18 Certificate issuer: /CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318 Certificate serial: 019B3DFEA06956E6D48F3E9A202B9FBAB0E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft Manifest number: 1792 Signing time: Sat 20 Dec 2025 23:00:55 +0000 Manifest this update: Sat 20 Dec 2025 23:00:55 +0000 Manifest next update: Sun 21 Dec 2025 23:00:55 +0000 Files and hashes: 1: 2EgNkY8LCfJBqiF5G8pJe3q0hB4.roa (hash: wdnhU8m5AMaVCnPJuJ1ikMuyahXryJ7xnwDGzqvqxIk=) 2: B9gQbAB9xsN6pQfQdJIwTw0mN8w.roa (hash: x4fcMnOhpMuR2+7kVYptH+8Mn3pldQm1ilWOcm4WRJw=) 3: fmXasjlAyzlPmqpmT-pNb49C4xg.crl (hash: rwKS0HE1nVrhfFFJhBVdGAO9x8Ri5rxWYR39YryzHA8=) 4: jKTi0IFy2Gsl-io5IjP67e8YnpY.roa (hash: zmbRyxceh2NVjEHPxC/G8V+VaBl1rJ3CnIcL4cBiYPg=) 5: onHMu3bAahxq_cU4SfKfk6E_UV4.roa (hash: iPBBLCVey8nRw59EFOtKkUkXyLv07ioTCFN/ZWTNZaI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 23:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:fe:a0:69:56:e6:d4:8f:3e:9a:20:2b:9f:ba:b0:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318 Validity Not Before: Dec 20 23:00:55 2025 GMT Not After : Dec 21 23:00:55 2025 GMT Subject: CN=38df2c9005ad9b929d4992979d13ce0ffa53446b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:7c:e6:c0:6e:ef:9a:52:2e:ca:57:57:a7:09: 6b:a2:38:a5:19:17:bf:2e:5d:c8:14:13:3f:ad:96: bc:de:08:19:0c:d4:af:33:9d:83:af:90:f4:09:05: 5b:88:01:84:bb:0c:f2:27:c3:bb:99:31:23:8c:06: c5:f9:34:35:63:ed:94:f5:83:1c:3e:d0:60:66:9c: e8:f1:bf:b3:c2:6c:47:ed:5f:a0:bf:a8:2b:03:9d: cd:a2:d2:d5:20:4d:1d:30:98:a3:2d:68:72:c8:84: 01:1b:31:18:6e:94:9c:15:8a:5b:bb:ff:69:70:83: 2a:16:68:ea:b6:45:ba:01:31:6e:bd:05:7d:d1:8d: 7f:38:bf:fc:73:6a:3a:a6:d2:7c:40:b0:6e:dd:03: c6:fb:1f:9b:55:d1:22:32:a1:63:4a:87:72:20:65: e8:28:53:ce:d4:dd:31:15:47:57:15:cd:d7:9f:ee: a4:70:83:de:b2:9f:46:68:ac:ff:c7:11:d6:c1:81: 9d:8e:c8:1e:20:b2:7c:3b:bb:d9:d6:00:5e:09:87: af:70:a3:64:89:12:ad:37:92:19:6e:1f:87:04:03: 61:fd:1c:6a:62:94:9d:2c:99:1e:61:71:8d:c1:0b: 0f:5b:45:7a:00:9a:16:97:20:69:da:4b:96:ae:3e: 10:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:DF:2C:90:05:AD:9B:92:9D:49:92:97:9D:13:CE:0F:FA:53:44:6B X509v3 Authority Key Identifier: keyid:7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:b6:80:81:32:7c:e4:a6:29:2c:d9:26:e1:b3:98:b5:7b:a3: 69:e0:5b:8c:5b:7a:2c:80:ff:13:a3:c7:91:91:ab:12:c3:a0: 04:0e:73:a7:33:14:16:87:64:df:7c:7a:e0:d5:bb:d1:2f:f6: a4:fe:43:94:26:2f:b9:81:d5:56:eb:6a:b2:58:c6:9d:74:ec: 1a:1a:bc:8e:5e:2c:89:aa:48:12:b3:2d:00:54:13:6c:e6:5e: 2d:04:e2:09:a9:38:94:1c:11:44:6b:d7:5e:76:6f:24:13:4e: 4d:4b:39:70:99:9a:bd:24:d3:c8:7f:c5:9c:c7:f6:59:bc:74: e1:ac:6e:4d:4f:8b:16:5f:8a:4d:04:c2:24:cc:d2:9d:53:dd: 7b:80:9c:05:c7:7d:e4:86:cb:95:26:91:af:17:5c:c5:e3:04: a4:78:cc:d5:76:99:2c:b2:bc:9f:da:18:fb:fa:e8:5d:da:87: 2d:80:45:09:2f:ac:99:7a:5b:e5:cd:14:5e:b8:12:d0:6c:0a: 41:bf:c4:62:da:aa:4d:b7:99:94:ff:fd:22:1f:6d:9c:e8:ba: 5c:34:aa:ed:f5:07:5a:cf:f2:53:16:9b:dc:ab:dc:dd:e5:51: a2:bb:38:24:d2:9c:b1:91:28:c0:e3:5e:75:eb:ef:96:ec:45: bc:4a:19:75 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9/qBpVubUjz6aICufurDmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdlNjVkYWIyMzk0MGNiMzk0ZjlhYWE2NjRmZWE0ZDZmOGY0 MmUzMTgwHhcNMjUxMjIwMjMwMDU1WhcNMjUxMjIxMjMwMDU1WjAzMTEwLwYDVQQD EygzOGRmMmM5MDA1YWQ5YjkyOWQ0OTkyOTc5ZDEzY2UwZmZhNTM0NDZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7HzmwG7vmlIuyldXpwlrojilGRe/ Ll3IFBM/rZa83ggZDNSvM52Dr5D0CQVbiAGEuwzyJ8O7mTEjjAbF+TQ1Y+2U9YMc PtBgZpzo8b+zwmxH7V+gv6grA53NotLVIE0dMJijLWhyyIQBGzEYbpScFYpbu/9p cIMqFmjqtkW6ATFuvQV90Y1/OL/8c2o6ptJ8QLBu3QPG+x+bVdEiMqFjSodyIGXo KFPO1N0xFUdXFc3Xn+6kcIPesp9GaKz/xxHWwYGdjsgeILJ8O7vZ1gBeCYevcKNk iRKtN5IZbh+HBANh/RxqYpSdLJkeYXGNwQsPW0V6AJoWlyBp2kuWrj4QCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDjfLJAFrZuSnUmSl50Tzg/6U0RrMB8GA1UdIwQY MBaAFH5l2rI5QMs5T5qqZk/qTW+PQuMYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZm1YYXNqbEF5emxQbXFwbVQtcE5iNDlDNHhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC81OGViYjEtZGJlYy00N2Y5LWJiOTYt ODQ5Y2ZjYWJiNjU3LzEvZm1YYXNqbEF5emxQbXFwbVQtcE5iNDlDNHhnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC81OGViYjEtZGJlYy00N2Y5LWJiOTYtODQ5Y2ZjYWJiNjU3 LzEvZm1YYXNqbEF5emxQbXFwbVQtcE5iNDlDNHhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIbaAgTJ8 5KYpLNkm4bOYtXujaeBbjFt6LID/E6PHkZGrEsOgBA5zpzMUFodk33x64NW70S/2 pP5DlCYvuYHVVutqsljGnXTsGhq8jl4siapIErMtAFQTbOZeLQTiCak4lBwRRGvX XnZvJBNOTUs5cJmavSTTyH/FnMf2Wbx04axuTU+LFl+KTQTCJMzSnVPde4CcBcd9 5IbLlSaRrxdcxeMEpHjM1XaZLLK8n9oY+/roXdqHLYBFCS+smXpb5c0UXrgS0GwK Qb/EYtqqTbeZlP/9Ih9tnOi6XDSq7fUHWs/yUxab3Kvc3eVRors4JNKcsZEowONe devvluxFvEoZdQ== -----END CERTIFICATE-----Generated at Sun Dec 21 05:39:01 2025 by rpki-client