This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft File: XM97P9h86bzpn5ALZBmdYGvxYGk.mft (raw, json) Hash identifier: uyJH08gwvMhDgWVZbPRdKVwZ9S86gxhGp5AAUBcxM8w= Subject key identifier: C7:02:28:86:A5:CE:CA:13:1F:D4:B4:C0:66:1F:A3:A3:DB:7C:B5:6D Authority key identifier: 5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69 Certificate issuer: /CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069 Certificate serial: 019B16F11F099B30BB0223CD44AD91565F88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft Manifest number: 1707 Signing time: Sat 13 Dec 2025 09:00:59 +0000 Manifest this update: Sat 13 Dec 2025 09:00:59 +0000 Manifest next update: Sun 14 Dec 2025 09:00:59 +0000 Files and hashes: 1: KOB0vwmJ7cfgZ_1WOb_Xx7LqG6U.roa (hash: a7bo8HXeX2LyPkuCveHxDVKdqnbGHzPDqS6LymzXHUs=) 2: XM97P9h86bzpn5ALZBmdYGvxYGk.crl (hash: wluQ1SESr9BLrRauSJ4DgR5mqV+2SthENiTybOtjGTQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.crl rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 09:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:16:f1:1f:09:9b:30:bb:02:23:cd:44:ad:91:56:5f:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069 Validity Not Before: Dec 13 09:00:59 2025 GMT Not After : Dec 14 09:00:59 2025 GMT Subject: CN=c7022886a5ceca131fd4b4c0661fa3a3db7cb56d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:34:c4:ae:fb:11:43:4f:18:6d:2b:b4:40:0c: 3e:a2:d3:93:9d:e0:10:9c:4a:c2:53:b8:2d:e8:2e: 4c:04:c1:6b:fd:fd:57:85:68:d1:f7:e0:75:1d:fd: 67:42:9d:61:33:ac:5d:de:29:79:82:b7:9b:ae:6f: 17:e5:54:66:96:be:01:ba:0a:6b:23:bb:9e:c8:2e: 50:e2:6f:96:1b:c3:f6:24:0d:0b:6b:8f:89:e3:5f: 88:05:7d:c0:b2:0e:1a:a5:ca:c5:97:f8:85:60:92: 38:55:5d:14:cb:aa:27:7e:cf:90:ba:f5:48:3f:ad: f5:3b:3d:1c:60:7f:65:04:fd:3e:51:22:ed:55:31: 45:2f:63:30:95:0e:9a:3c:7c:b9:9c:af:e8:49:c9: 3b:3f:84:8c:68:dc:10:6d:20:13:55:15:31:41:49: bd:99:da:cf:73:27:2b:8f:04:90:c2:6d:04:c7:e0: 04:85:3d:94:d6:02:d0:a9:03:cd:0c:fd:be:2f:f6: 1b:8d:09:c6:22:b0:7c:d4:69:38:f0:46:bd:87:19: 7c:eb:f9:04:d3:a9:32:05:36:fe:9c:77:cc:b9:8b: 0d:3e:55:bf:06:bc:ed:6b:af:af:d8:bf:04:77:15: 5e:b2:98:43:a2:96:cb:69:af:49:e6:8b:49:50:c0: 01:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:02:28:86:A5:CE:CA:13:1F:D4:B4:C0:66:1F:A3:A3:DB:7C:B5:6D X509v3 Authority Key Identifier: keyid:5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:fa:53:db:d4:66:b6:41:99:ce:23:4f:e5:9a:2a:61:cd:2e: 62:b9:5f:cf:07:ef:91:39:9c:cc:bd:e8:a7:48:5c:71:f7:e5: 2d:c3:3c:a8:8d:58:89:12:7d:c2:33:15:d2:41:fa:de:95:b3: 76:ac:33:72:1e:46:73:b2:d8:17:50:cb:57:3a:27:be:5e:a8: c3:cc:f1:75:ca:2d:6a:4f:14:99:af:f1:2e:8f:82:bb:9e:b7: db:f5:c4:2a:80:c0:01:1f:7d:57:61:b0:8c:e7:26:67:b4:e6: c8:84:00:86:9a:c5:9b:1b:8e:1e:b4:53:39:bb:4f:1f:45:b3: f6:c7:fe:f3:0f:5b:89:ae:8b:c8:fe:b2:61:c2:38:7d:eb:48: 63:2e:e1:ad:55:b4:84:2b:93:76:fa:fc:c5:7e:b2:20:af:05: 67:af:bf:b7:72:38:06:61:30:13:96:57:36:0d:20:e6:4c:59: a5:b6:ba:b8:d8:cc:ea:0a:1a:24:46:dd:b9:13:bd:ab:04:59: 2b:df:b3:51:ca:16:6d:d6:25:9a:f0:04:9d:bc:fa:fa:0b:95: 7a:f9:ec:8c:9d:df:0f:a5:d3:f5:1d:6e:10:2f:49:e6:00:dd: 45:30:c0:2f:b6:ec:71:cb:6f:99:81:c4:89:50:7e:22:4c:87: 92:44:67:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsW8R8JmzC7AiPNRK2RVl+IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjY2Y3YjNmZDg3Y2U5YmNlOTlmOTAwYjY0MTk5ZDYwNmJm MTYwNjkwHhcNMjUxMjEzMDkwMDU5WhcNMjUxMjE0MDkwMDU5WjAzMTEwLwYDVQQD EyhjNzAyMjg4NmE1Y2VjYTEzMWZkNGI0YzA2NjFmYTNhM2RiN2NiNTZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAozTErvsRQ08YbSu0QAw+otOTneAQ nErCU7gt6C5MBMFr/f1XhWjR9+B1Hf1nQp1hM6xd3il5grebrm8X5VRmlr4Bugpr I7ueyC5Q4m+WG8P2JA0La4+J41+IBX3Asg4apcrFl/iFYJI4VV0Uy6onfs+QuvVI P631Oz0cYH9lBP0+USLtVTFFL2MwlQ6aPHy5nK/oSck7P4SMaNwQbSATVRUxQUm9 mdrPcycrjwSQwm0Ex+AEhT2U1gLQqQPNDP2+L/YbjQnGIrB81Gk48Ea9hxl86/kE 06kyBTb+nHfMuYsNPlW/Brzta6+v2L8EdxVesphDopbLaa9J5otJUMABIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMcCKIalzsoTH9S0wGYfo6PbfLVtMB8GA1UdIwQY MBaAFFzPez/YfOm86Z+QC2QZnWBr8WBpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWE05N1A5aDg2YnpwbjVBTFpCbWRZR3Z4WUdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC81NGRlYmItZDBiNi00NGQxLThlNTgt OGNmOWU2ZjhhYjQ1LzEvWE05N1A5aDg2YnpwbjVBTFpCbWRZR3Z4WUdrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC81NGRlYmItZDBiNi00NGQxLThlNTgtOGNmOWU2ZjhhYjQ1 LzEvWE05N1A5aDg2YnpwbjVBTFpCbWRZR3Z4WUdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACvpT29Rm tkGZziNP5ZoqYc0uYrlfzwfvkTmczL3op0hccfflLcM8qI1YiRJ9wjMV0kH63pWz dqwzch5Gc7LYF1DLVzonvl6ow8zxdcotak8Uma/xLo+Cu5632/XEKoDAAR99V2Gw jOcmZ7TmyIQAhprFmxuOHrRTObtPH0Wz9sf+8w9bia6LyP6yYcI4fetIYy7hrVW0 hCuTdvr8xX6yIK8FZ6+/t3I4BmEwE5ZXNg0g5kxZpba6uNjM6goaJEbduRO9qwRZ K9+zUcoWbdYlmvAEnbz6+guVevnsjJ3fD6XT9R1uEC9J5gDdRTDAL7bscctvmYHE iVB+IkyHkkRnsg== -----END CERTIFICATE-----Generated at Sat Dec 13 13:14:50 2025 by rpki-client