This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft File: EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft (raw, json) Hash identifier: ZZyt0jGh8a2rKUY3pb87Tk/1dmqbRs9qO5Gt9LWJXgw= Subject key identifier: F5:7E:1F:5D:44:11:16:45:62:3E:53:A4:5F:AD:2F:C7:DA:70:AD:70 Authority key identifier: 11:71:64:1F:15:7C:B5:7B:53:26:26:35:9E:71:58:27:42:C2:DC:CB Certificate issuer: /CN=1171641f157cb57b532626359e71582742c2dccb Certificate serial: 019B3D90AE522A6C5BA814DDEFE622229096 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft Manifest number: 165A Signing time: Sat 20 Dec 2025 21:00:50 +0000 Manifest this update: Sat 20 Dec 2025 21:00:50 +0000 Manifest next update: Sun 21 Dec 2025 21:00:50 +0000 Files and hashes: 1: EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl (hash: +T/Dk7orExyUxDf2OCBC+1jqyK79RY9SdZlvUweAdOM=) 2: kJ6ZzA1fcsMngPwnFcWmPQ2TpJY.roa (hash: spn1/mEz9B8AiCWdxXSLx/VFzig4ReQEdpbCrXX5I3w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 21:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:90:ae:52:2a:6c:5b:a8:14:dd:ef:e6:22:22:90:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1171641f157cb57b532626359e71582742c2dccb Validity Not Before: Dec 20 21:00:50 2025 GMT Not After : Dec 21 21:00:50 2025 GMT Subject: CN=f57e1f5d44111645623e53a45fad2fc7da70ad70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:1c:e8:74:b4:90:6c:05:36:3a:6f:a8:f3:4e: 9e:2e:d3:df:11:d7:fd:ac:98:b5:08:46:6d:4a:02: 96:45:78:df:6e:74:6c:aa:33:48:02:50:e7:a0:42: d6:29:ef:37:a1:6f:2d:ed:62:bf:d1:3c:cd:3c:2c: 5a:88:46:74:17:f5:c7:fb:87:09:5e:29:44:a9:ec: 3c:f3:a7:16:f5:02:83:03:3b:eb:46:38:ec:73:48: 06:dc:7f:92:c2:a7:bd:73:31:cf:44:4f:da:11:11: 92:39:fc:08:9a:e6:de:e0:ea:8d:71:9f:32:61:62: bb:4d:85:27:0f:db:4b:c2:5d:66:ec:34:ef:c4:f7: a7:3b:cb:81:fa:49:16:b1:8f:ac:ad:b8:52:04:f6: 21:c8:39:ef:a5:85:4d:89:83:13:db:75:66:95:bc: 1c:98:2a:76:9f:84:4d:6f:17:79:a5:54:f4:0c:d7: 1c:40:f2:13:b9:8a:79:f8:99:d3:73:24:6d:22:3e: af:a9:33:4c:57:db:e1:56:3d:99:17:4b:47:da:99: f8:a5:e7:a3:10:ae:7d:53:23:6d:2c:51:a7:44:0d: 14:de:f3:0e:da:de:bc:9e:9f:13:b3:2d:24:97:48: 4b:08:06:a6:49:d2:1d:15:f0:ba:22:51:82:fc:be: 6b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:7E:1F:5D:44:11:16:45:62:3E:53:A4:5F:AD:2F:C7:DA:70:AD:70 X509v3 Authority Key Identifier: keyid:11:71:64:1F:15:7C:B5:7B:53:26:26:35:9E:71:58:27:42:C2:DC:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:71:50:15:0e:6e:3b:d9:c2:e3:a2:67:d4:79:d8:be:b5:14: f3:25:3c:bd:23:ad:2a:6b:a7:49:7f:63:7e:72:9d:8a:64:c6: 44:d8:bc:58:23:c0:05:06:c8:36:40:70:53:8f:79:66:e9:8d: 6a:d6:7c:e5:1e:6f:39:e5:c8:73:9a:af:60:d8:7a:da:c3:cc: 94:11:99:b1:b0:a2:9c:87:a6:6b:1d:ea:5a:27:61:01:81:46: 94:8c:ab:18:8e:4e:47:45:01:c0:f3:72:cd:19:60:a5:cf:21: 8c:a8:bb:46:e8:71:1f:b7:dc:62:80:e4:ea:db:31:17:3f:75: ef:06:17:36:44:ce:a9:ac:eb:9e:9c:f3:c1:a5:08:df:20:4f: 95:21:ab:7d:a3:bc:4d:6c:7a:31:09:6c:91:3e:05:8c:18:08: da:27:15:81:96:e2:e4:5e:c8:44:94:f4:90:d1:9b:4c:1b:df: 80:ca:a1:b3:bb:fa:14:1d:13:4d:e3:c8:bb:c4:7e:72:46:9c: ae:48:68:a4:b9:84:a9:d5:a4:47:2a:e9:3f:6d:82:f0:51:90: a2:96:13:6b:c3:48:f7:09:35:e4:94:a8:9d:55:b6:c8:a5:61: 71:ba:e8:9c:91:de:98:1d:9b:2f:93:f0:31:8e:0a:c2:e6:5e: b3:57:0c:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9kK5SKmxbqBTd7+YiIpCWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExNzE2NDFmMTU3Y2I1N2I1MzI2MjYzNTllNzE1ODI3NDJj MmRjY2IwHhcNMjUxMjIwMjEwMDUwWhcNMjUxMjIxMjEwMDUwWjAzMTEwLwYDVQQD EyhmNTdlMWY1ZDQ0MTExNjQ1NjIzZTUzYTQ1ZmFkMmZjN2RhNzBhZDcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmhzodLSQbAU2Om+o806eLtPfEdf9 rJi1CEZtSgKWRXjfbnRsqjNIAlDnoELWKe83oW8t7WK/0TzNPCxaiEZ0F/XH+4cJ XilEqew886cW9QKDAzvrRjjsc0gG3H+Swqe9czHPRE/aERGSOfwImube4OqNcZ8y YWK7TYUnD9tLwl1m7DTvxPenO8uB+kkWsY+srbhSBPYhyDnvpYVNiYMT23Vmlbwc mCp2n4RNbxd5pVT0DNccQPITuYp5+JnTcyRtIj6vqTNMV9vhVj2ZF0tH2pn4peej EK59UyNtLFGnRA0U3vMO2t68np8Tsy0kl0hLCAamSdIdFfC6IlGC/L5rIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPV+H11EERZFYj5TpF+tL8facK1wMB8GA1UdIwQY MBaAFBFxZB8VfLV7UyYmNZ5xWCdCwtzLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVhGa0h4Vjh0WHRUSmlZMW5uRllKMExDM01zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy8zZmE3MTEtMDZiMC00MWUzLTljNzIt M2NiOWUxMDJhZmUwLzEvRVhGa0h4Vjh0WHRUSmlZMW5uRllKMExDM01zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy8zZmE3MTEtMDZiMC00MWUzLTljNzItM2NiOWUxMDJhZmUw LzEvRVhGa0h4Vjh0WHRUSmlZMW5uRllKMExDM01zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoHFQFQ5u O9nC46Jn1HnYvrUU8yU8vSOtKmunSX9jfnKdimTGRNi8WCPABQbINkBwU495ZumN atZ85R5vOeXIc5qvYNh62sPMlBGZsbCinIemax3qWidhAYFGlIyrGI5OR0UBwPNy zRlgpc8hjKi7RuhxH7fcYoDk6tsxFz917wYXNkTOqazrnpzzwaUI3yBPlSGrfaO8 TWx6MQlskT4FjBgI2icVgZbi5F7IRJT0kNGbTBvfgMqhs7v6FB0TTePIu8R+ckac rkhopLmEqdWkRyrpP22C8FGQopYTa8NI9wk15JSonVW2yKVhcbronJHemB2bL5Pw MY4KwuZes1cMpQ== -----END CERTIFICATE-----Generated at Sun Dec 21 05:52:09 2025 by rpki-client