This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft File: XVn0kNO2myLh4nwya69yMRBW3bg.mft (raw, json) Hash identifier: oxoS93LmsK4FwsrX8hg/JID2iPzt3n1OaJOe5/+lI2c= Subject key identifier: 04:01:79:63:4C:05:FE:EF:00:88:09:47:5B:FB:1A:CD:42:DF:44:17 Authority key identifier: 5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8 Certificate issuer: /CN=5d59f490d3b69b22e1e27c326baf72311056ddb8 Certificate serial: 019B4882C5DA1023C18274B0A0519DE717AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft Manifest number: 0C18 Signing time: Tue 23 Dec 2025 00:01:28 +0000 Manifest this update: Tue 23 Dec 2025 00:01:28 +0000 Manifest next update: Wed 24 Dec 2025 00:01:28 +0000 Files and hashes: 1: VRTGeEzF5FtK76qOfPyLSRNqkOo.roa (hash: pOO7nnFTp0Qht5tDg13SMXctJEqxWl0GtVbovHy2WzY=) 2: XVn0kNO2myLh4nwya69yMRBW3bg.crl (hash: /r7kK9s12xy4XASUhJUXrefGLv3Gfpk7f12tpH7OXk0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 23:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:48:82:c5:da:10:23:c1:82:74:b0:a0:51:9d:e7:17:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d59f490d3b69b22e1e27c326baf72311056ddb8 Validity Not Before: Dec 23 00:01:28 2025 GMT Not After : Dec 24 00:01:28 2025 GMT Subject: CN=040179634c05feef008809475bfb1acd42df4417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ca:8c:74:2b:1f:f2:61:ea:7b:26:f5:77:57: 78:d7:ab:1f:d6:9f:82:27:1b:9a:7f:e4:69:f6:30: d8:3d:a7:dd:14:85:b4:e7:e6:25:eb:23:7f:2e:6c: 09:87:e1:e3:49:46:35:6c:b6:39:10:5c:f7:d8:ea: 08:94:ac:11:8e:70:53:75:91:7a:be:24:da:2d:a4: df:f1:e3:99:25:6a:97:81:dc:55:26:1e:74:5e:60: 17:df:7b:8c:f9:1a:fb:8d:97:b8:02:3d:af:e6:42: e1:d3:0f:a3:b9:99:a1:77:22:98:56:64:d4:9f:30: 93:86:b0:1a:a4:f7:66:20:a4:37:e4:f0:2d:62:14: a6:15:89:e7:71:3a:97:ef:2d:2b:72:3e:4a:5d:41: 95:4e:c5:59:d6:50:14:93:ad:ef:8c:24:60:e7:64: bf:ab:26:b1:ee:f3:4a:da:1a:4c:b2:f4:56:6f:ee: 01:a1:94:d2:24:7d:ef:b3:46:7e:a0:32:54:0e:4e: df:88:70:0d:a3:40:b4:53:64:99:c1:c2:64:cd:6f: dc:6e:ba:96:f8:7d:84:e6:93:3d:96:7f:19:68:15: 7e:98:0e:70:49:2a:02:3b:c3:ba:81:3c:66:ef:fe: 57:50:1b:48:1e:40:d0:1f:cd:7e:48:86:f4:ad:1c: 8e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:01:79:63:4C:05:FE:EF:00:88:09:47:5B:FB:1A:CD:42:DF:44:17 X509v3 Authority Key Identifier: keyid:5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:83:c7:ce:b1:c5:f7:15:63:0c:bf:bb:e5:0d:d6:48:ec:08: af:25:64:21:96:99:ed:40:32:d7:80:60:10:83:de:44:44:53: e6:c5:b0:ce:e4:f9:61:c6:7d:90:71:30:0b:23:da:a5:01:d9: 70:a4:4d:27:8a:d4:8b:04:d6:e2:71:d8:3d:cb:90:32:2c:42: b2:0e:32:73:6b:35:74:3d:c4:e0:15:5e:43:23:40:7b:c4:32: da:67:be:d3:4d:ba:60:e1:d2:ad:6f:58:82:c3:d9:d5:8a:6a: 81:65:9f:39:15:84:ab:20:ea:d6:b2:0a:29:46:45:5a:40:8a: 53:53:36:76:79:d4:98:50:93:44:9f:97:58:cf:22:c5:fa:62: 3e:ad:3b:5a:7b:63:41:c8:31:f5:fc:db:8a:6c:da:a7:e3:2c: fd:a5:53:37:b1:46:1a:a5:ab:78:9b:5a:60:d4:de:78:09:ec: 6e:ed:a2:bd:cb:59:09:f0:79:40:02:25:12:71:d8:7d:47:16: 47:67:b1:92:3f:73:9d:b4:6a:48:c6:01:66:fb:79:be:9c:ae: 7a:92:ef:71:2a:0f:5e:4a:bd:42:3e:ae:fb:2b:6f:26:5b:cf: 68:56:37:43:fd:f1:cb:22:62:72:c7:c7:b5:60:e9:dd:ea:a0: 29:8e:52:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtIgsXaECPBgnSwoFGd5xesMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkNTlmNDkwZDNiNjliMjJlMWUyN2MzMjZiYWY3MjMxMTA1 NmRkYjgwHhcNMjUxMjIzMDAwMTI4WhcNMjUxMjI0MDAwMTI4WjAzMTEwLwYDVQQD EygwNDAxNzk2MzRjMDVmZWVmMDA4ODA5NDc1YmZiMWFjZDQyZGY0NDE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvcqMdCsf8mHqeyb1d1d416sf1p+C Jxuaf+Rp9jDYPafdFIW05+Yl6yN/LmwJh+HjSUY1bLY5EFz32OoIlKwRjnBTdZF6 viTaLaTf8eOZJWqXgdxVJh50XmAX33uM+Rr7jZe4Aj2v5kLh0w+juZmhdyKYVmTU nzCThrAapPdmIKQ35PAtYhSmFYnncTqX7y0rcj5KXUGVTsVZ1lAUk63vjCRg52S/ qyax7vNK2hpMsvRWb+4BoZTSJH3vs0Z+oDJUDk7fiHANo0C0U2SZwcJkzW/cbrqW +H2E5pM9ln8ZaBV+mA5wSSoCO8O6gTxm7/5XUBtIHkDQH81+SIb0rRyOOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAQBeWNMBf7vAIgJR1v7Gs1C30QXMB8GA1UdIwQY MBaAFF1Z9JDTtpsi4eJ8MmuvcjEQVt24MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFZuMGtOTzJteUxoNG53eWE2OXlNUkJXM2JnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS8yYWViNzktMzU4Mi00ZWJmLWIxOWEt NzkzNDhlODM2NmJjLzEvWFZuMGtOTzJteUxoNG53eWE2OXlNUkJXM2JnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS8yYWViNzktMzU4Mi00ZWJmLWIxOWEtNzkzNDhlODM2NmJj LzEvWFZuMGtOTzJteUxoNG53eWE2OXlNUkJXM2JnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaoPHzrHF 9xVjDL+75Q3WSOwIryVkIZaZ7UAy14BgEIPeRERT5sWwzuT5YcZ9kHEwCyPapQHZ cKRNJ4rUiwTW4nHYPcuQMixCsg4yc2s1dD3E4BVeQyNAe8Qy2me+0026YOHSrW9Y gsPZ1YpqgWWfORWEqyDq1rIKKUZFWkCKU1M2dnnUmFCTRJ+XWM8ixfpiPq07Wntj Qcgx9fzbimzap+Ms/aVTN7FGGqWreJtaYNTeeAnsbu2ivctZCfB5QAIlEnHYfUcW R2exkj9znbRqSMYBZvt5vpyuepLvcSoPXkq9Qj6u+ytvJlvPaFY3Q/3xyyJicsfH tWDp3eqgKY5SIA== -----END CERTIFICATE-----Generated at Tue Dec 23 03:17:59 2025 by rpki-client