This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft File: xtEbZP_hjvpC9DpsdlY53uONAn4.mft (raw, json) Hash identifier: D5nUpMYt3qm577P55AsUm3Y6+OrgdFwllvkuhVPMyi4= Subject key identifier: 1F:A2:77:05:6C:17:FE:95:C9:7C:B1:2B:4F:DF:76:5C:86:3E:C8:64 Authority key identifier: C6:D1:1B:64:FF:E1:8E:FA:42:F4:3A:6C:76:56:39:DE:E3:8D:02:7E Certificate issuer: /CN=c6d11b64ffe18efa42f43a6c765639dee38d027e Certificate serial: 019B44A522B8CBA218EFC042E89E7FCDC8B5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft Manifest number: 1013 Signing time: Mon 22 Dec 2025 06:00:31 +0000 Manifest this update: Mon 22 Dec 2025 06:00:31 +0000 Manifest next update: Tue 23 Dec 2025 06:00:31 +0000 Files and hashes: 1: 5stymyV2VXExRNfPDRHs0SsKv84.roa (hash: LAJy81D8Y1W3Al27GIYu76cE8aqvZvfTwIjGsrUN8O8=) 2: wX4zTXXZMo2WWHOKinMvyAiRYeE.roa (hash: dkBnWGmwxThQE3RCE6xz1EoswQLwUBpuloKrWzo2tUE=) 3: xtEbZP_hjvpC9DpsdlY53uONAn4.crl (hash: pyMftrAjC0PxpjXf0dAlRp/W54+d1HXddsEKFiPGOD8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 06:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:44:a5:22:b8:cb:a2:18:ef:c0:42:e8:9e:7f:cd:c8:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c6d11b64ffe18efa42f43a6c765639dee38d027e Validity Not Before: Dec 22 06:00:31 2025 GMT Not After : Dec 23 06:00:31 2025 GMT Subject: CN=1fa277056c17fe95c97cb12b4fdf765c863ec864 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d8:75:0b:f0:6a:ca:58:10:d1:3d:f7:1e:94: a0:2f:02:d7:f9:fe:2f:80:b9:d2:ee:10:00:27:b2: 0d:10:a0:75:e2:0e:b7:d8:09:c2:1e:6b:a2:62:a3: e4:d2:bd:6c:e2:75:14:dd:96:0b:a4:10:55:6b:43: 96:c4:f2:b8:77:4d:62:6e:49:59:5e:c6:65:56:65: 62:72:d9:a6:a5:da:d2:4a:ae:32:83:de:10:63:bb: b3:a1:76:47:58:57:e1:c3:4a:35:52:d4:ed:d0:3f: f6:f0:5e:f5:ea:06:74:ea:6d:bb:ef:87:47:2b:44: c6:f3:43:a6:c6:69:8e:f7:82:6f:4e:1a:7d:ef:d7: 2b:47:1f:8e:bd:b1:f5:fe:77:d8:be:84:9e:88:b3: 3f:60:46:24:d2:1d:dc:a5:77:f4:30:17:1c:ce:85: 54:28:af:6e:5e:b0:06:49:b1:33:20:69:dc:25:49: 92:33:cb:85:d7:1d:d9:d9:5d:a7:12:ba:a2:9c:47: d7:15:f8:57:9f:df:2e:ca:fc:88:7e:7f:b2:a0:91: 3f:7f:11:cc:6a:1f:69:61:ec:8f:cf:7c:c6:12:99: a2:ff:5a:fe:a4:8d:2c:cb:4b:db:e7:4b:dc:76:11: cb:b4:49:85:2d:0a:66:9d:e1:ab:6b:81:a9:5a:39: d6:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:A2:77:05:6C:17:FE:95:C9:7C:B1:2B:4F:DF:76:5C:86:3E:C8:64 X509v3 Authority Key Identifier: keyid:C6:D1:1B:64:FF:E1:8E:FA:42:F4:3A:6C:76:56:39:DE:E3:8D:02:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ca:91:81:46:93:be:79:19:e1:ac:3a:11:5b:cd:0f:e1:d7:da: 92:5c:ab:19:57:26:a6:10:a9:e0:b6:04:18:10:b5:83:1f:71: a9:9c:c4:c2:4f:af:36:f3:b9:4e:dc:a6:cc:5e:45:1a:fb:93: d6:2b:b1:eb:f6:4e:d6:fc:45:c4:0f:eb:5f:1d:18:e1:15:49: dd:29:05:c0:67:73:53:4b:64:32:d3:3e:ea:1a:f1:f0:cc:74: d3:05:6e:63:ec:68:20:f6:7e:7b:68:d2:93:ef:a7:d8:3f:6c: e5:2d:3b:7b:60:97:b5:0e:e8:0b:4d:b5:6c:5b:28:ae:95:b8: 0f:a8:ba:fe:1c:71:6f:e0:5b:e4:49:6e:bb:c3:61:77:19:31: e2:56:fd:eb:a0:c0:ff:5d:61:ba:bd:70:cf:05:41:7f:69:4a: 95:b1:2f:c5:21:7e:de:ca:60:ca:a8:88:79:da:75:1d:4e:a5: df:28:b3:fa:80:0c:65:04:88:7b:56:b9:4d:57:f6:04:64:2d: 30:f7:b0:55:55:36:2d:a2:f4:39:12:da:9c:dd:9b:7b:91:60: 02:99:2d:77:61:83:32:3e:d5:e2:b3:44:c7:7b:df:70:ff:4a: c8:c8:ae:e2:2f:b6:f2:f7:7d:3e:8a:36:88:64:23:df:1a:9e: c6:40:51:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtEpSK4y6IY78BC6J5/zci1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2ZDExYjY0ZmZlMThlZmE0MmY0M2E2Yzc2NTYzOWRlZTM4 ZDAyN2UwHhcNMjUxMjIyMDYwMDMxWhcNMjUxMjIzMDYwMDMxWjAzMTEwLwYDVQQD EygxZmEyNzcwNTZjMTdmZTk1Yzk3Y2IxMmI0ZmRmNzY1Yzg2M2VjODY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzth1C/BqylgQ0T33HpSgLwLX+f4v gLnS7hAAJ7INEKB14g632AnCHmuiYqPk0r1s4nUU3ZYLpBBVa0OWxPK4d01ibklZ XsZlVmVictmmpdrSSq4yg94QY7uzoXZHWFfhw0o1UtTt0D/28F716gZ06m2774dH K0TG80OmxmmO94JvThp979crRx+OvbH1/nfYvoSeiLM/YEYk0h3cpXf0MBcczoVU KK9uXrAGSbEzIGncJUmSM8uF1x3Z2V2nErqinEfXFfhXn98uyvyIfn+yoJE/fxHM ah9pYeyPz3zGEpmi/1r+pI0sy0vb50vcdhHLtEmFLQpmneGra4GpWjnWuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB+idwVsF/6VyXyxK0/fdlyGPshkMB8GA1UdIwQY MBaAFMbRG2T/4Y76QvQ6bHZWOd7jjQJ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveHRFYlpQX2hqdnBDOURwc2RsWTUzdU9OQW40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy80Y2FjNmItOGUwNS00NDhhLTgzZjct NjgzNTg1MjE1OGQ4LzEveHRFYlpQX2hqdnBDOURwc2RsWTUzdU9OQW40Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy80Y2FjNmItOGUwNS00NDhhLTgzZjctNjgzNTg1MjE1OGQ4 LzEveHRFYlpQX2hqdnBDOURwc2RsWTUzdU9OQW40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAypGBRpO+ eRnhrDoRW80P4dfaklyrGVcmphCp4LYEGBC1gx9xqZzEwk+vNvO5TtymzF5FGvuT 1iux6/ZO1vxFxA/rXx0Y4RVJ3SkFwGdzU0tkMtM+6hrx8Mx00wVuY+xoIPZ+e2jS k++n2D9s5S07e2CXtQ7oC021bFsorpW4D6i6/hxxb+Bb5Eluu8Nhdxkx4lb966DA /11hur1wzwVBf2lKlbEvxSF+3spgyqiIedp1HU6l3yiz+oAMZQSIe1a5TVf2BGQt MPewVVU2LaL0ORLanN2be5FgApktd2GDMj7V4rNEx3vfcP9KyMiu4i+28vd9Poo2 iGQj3xqexkBRqA== -----END CERTIFICATE-----Generated at Mon Dec 22 12:16:04 2025 by rpki-client