This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft File: XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft (raw, json) Hash identifier: wb9x8i1A4Yt6LIucP0m0q6/ShEXKVi9m+mJAmX1sSfI= Subject key identifier: EF:4B:58:36:83:63:02:20:2F:DB:AC:0D:70:B3:93:86:57:4D:D6:8F Authority key identifier: 5D:C6:7C:6B:E3:67:AB:9E:94:1D:14:27:D0:50:44:94:47:B8:86:5C Certificate issuer: /CN=5dc67c6be367ab9e941d1427d050449447b8865c Certificate serial: 019B356970DE4B46F7231FF0F1C93BBC39E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XcZ8a-Nnq56UHRQn0FBElEe4hlw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft Manifest number: 178B Signing time: Fri 19 Dec 2025 07:01:01 +0000 Manifest this update: Fri 19 Dec 2025 07:01:01 +0000 Manifest next update: Sat 20 Dec 2025 07:01:01 +0000 Files and hashes: 1: XcZ8a-Nnq56UHRQn0FBElEe4hlw.crl (hash: 96YDqeoD6US/NYTpZbkVJlblljC7U3ZZ/tz/jWzRiKI=) 2: yPiwl9qBas0_CWwr3HhvXq6bAGE.roa (hash: yb05fvQGJfFhNZnnjkljRSCUExMNOud+I+YEv/Cdk1I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft rsync://rpki.ripe.net/repository/DEFAULT/XcZ8a-Nnq56UHRQn0FBElEe4hlw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:69:70:de:4b:46:f7:23:1f:f0:f1:c9:3b:bc:39:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5dc67c6be367ab9e941d1427d050449447b8865c Validity Not Before: Dec 19 07:01:01 2025 GMT Not After : Dec 20 07:01:01 2025 GMT Subject: CN=ef4b5836836302202fdbac0d70b39386574dd68f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:2e:89:ad:89:6d:62:9c:d4:11:08:bf:a0:5f: 66:e6:01:92:71:41:1c:20:2d:fb:78:cd:16:99:72: 0e:b2:f6:01:8b:bc:27:04:b3:36:29:36:8b:26:fc: b4:9a:77:19:76:20:2f:b4:2d:4b:25:4b:f9:68:d2: 2f:ea:c7:fb:23:45:72:75:fd:83:de:6a:d7:e0:cf: a0:73:48:21:7f:35:c6:2b:14:3e:f1:1c:59:15:f8: d7:1f:c9:98:7b:f8:77:eb:8e:0a:19:59:7c:aa:d8: ac:40:de:33:3a:0b:45:b6:35:9d:c3:4c:e2:4d:11: 6f:a7:eb:05:96:81:a4:97:2a:bb:c2:00:79:bc:cb: 91:12:74:42:a3:b3:95:83:95:45:c9:50:fe:0d:3a: 73:29:49:1d:5e:e3:ba:60:89:61:76:a4:29:71:21: 7a:4d:36:88:e2:a2:5e:e5:f9:e2:7d:59:07:5a:e4: 5d:77:7e:1a:29:f7:60:22:bc:bf:f1:67:1b:56:7f: c7:d4:79:d9:19:74:a7:a1:4d:90:d0:6a:07:62:65: 69:6f:fc:0d:ba:21:94:8d:cd:29:66:c8:2b:38:30: 79:69:b6:a9:62:cf:ff:79:bc:17:fb:fd:56:d9:d7: 68:c7:71:07:33:2a:e3:02:8f:f5:70:e9:ef:d9:71: cb:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:4B:58:36:83:63:02:20:2F:DB:AC:0D:70:B3:93:86:57:4D:D6:8F X509v3 Authority Key Identifier: keyid:5D:C6:7C:6B:E3:67:AB:9E:94:1D:14:27:D0:50:44:94:47:B8:86:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XcZ8a-Nnq56UHRQn0FBElEe4hlw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:e8:6e:3c:55:82:2a:01:cc:c1:f8:09:33:e4:d9:12:98:dd: 20:78:95:2a:63:13:6f:74:da:26:6a:96:05:55:a8:d5:32:6c: 7f:74:ac:f3:ed:fa:26:14:87:1a:4b:f9:21:fd:9f:9c:05:7e: ba:d1:25:59:e7:29:9a:ca:fa:52:bf:ad:bb:c6:5d:11:c7:53: 50:aa:36:0a:e5:c5:bf:dc:57:d9:a2:75:00:77:ea:75:e2:c7: 4e:1b:f3:17:e4:38:ea:c1:ab:d9:76:0d:54:33:cf:f6:9d:25: 9a:e2:91:cc:a0:dd:2d:7e:84:9b:19:66:eb:bb:26:20:f4:e1: 1c:13:f8:8f:fa:52:10:c4:cc:11:bc:55:75:ac:b4:71:9b:ee: 58:90:19:24:fe:87:3b:8d:96:f1:20:d9:50:d8:46:1d:21:e6: ad:08:24:34:46:d8:8e:a0:b0:82:71:d7:58:29:0d:48:9f:27: 61:35:71:00:5b:71:d7:b4:fe:bf:19:77:ca:5f:fd:ab:98:4b: d9:1a:fb:cc:3b:bb:0f:d7:11:f6:05:b7:0f:4d:02:60:e0:8a: 4c:d8:70:41:63:31:ca:9c:7b:2d:f9:78:9f:cf:92:f8:ec:7b: 29:33:e8:97:9f:f6:7a:37:82:3b:d9:20:72:4f:39:11:02:13: 74:94:17:ee -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1aXDeS0b3Ix/w8ck7vDnhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkYzY3YzZiZTM2N2FiOWU5NDFkMTQyN2QwNTA0NDk0NDdi ODg2NWMwHhcNMjUxMjE5MDcwMTAxWhcNMjUxMjIwMDcwMTAxWjAzMTEwLwYDVQQD EyhlZjRiNTgzNjgzNjMwMjIwMmZkYmFjMGQ3MGIzOTM4NjU3NGRkNjhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApC6JrYltYpzUEQi/oF9m5gGScUEc IC37eM0WmXIOsvYBi7wnBLM2KTaLJvy0mncZdiAvtC1LJUv5aNIv6sf7I0Vydf2D 3mrX4M+gc0ghfzXGKxQ+8RxZFfjXH8mYe/h3644KGVl8qtisQN4zOgtFtjWdw0zi TRFvp+sFloGklyq7wgB5vMuREnRCo7OVg5VFyVD+DTpzKUkdXuO6YIlhdqQpcSF6 TTaI4qJe5fnifVkHWuRdd34aKfdgIry/8WcbVn/H1HnZGXSnoU2Q0GoHYmVpb/wN uiGUjc0pZsgrODB5abapYs//ebwX+/1W2ddox3EHMyrjAo/1cOnv2XHLKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO9LWDaDYwIgL9usDXCzk4ZXTdaPMB8GA1UdIwQY MBaAFF3GfGvjZ6uelB0UJ9BQRJRHuIZcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGNaOGEtTm5xNTZVSFJRbjBGQkVsRWU0aGx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy83NjI3NWEtNmY0MS00ODA0LTgzN2It ODk3OTlkZWFkYzQ3LzEvWGNaOGEtTm5xNTZVSFJRbjBGQkVsRWU0aGx3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy83NjI3NWEtNmY0MS00ODA0LTgzN2ItODk3OTlkZWFkYzQ3 LzEvWGNaOGEtTm5xNTZVSFJRbjBGQkVsRWU0aGx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO+huPFWC KgHMwfgJM+TZEpjdIHiVKmMTb3TaJmqWBVWo1TJsf3Ss8+36JhSHGkv5If2fnAV+ utElWecpmsr6Ur+tu8ZdEcdTUKo2CuXFv9xX2aJ1AHfqdeLHThvzF+Q46sGr2XYN VDPP9p0lmuKRzKDdLX6Emxlm67smIPThHBP4j/pSEMTMEbxVday0cZvuWJAZJP6H O42W8SDZUNhGHSHmrQgkNEbYjqCwgnHXWCkNSJ8nYTVxAFtx17T+vxl3yl/9q5hL 2Rr7zDu7D9cR9gW3D00CYOCKTNhwQWMxypx7Lfl4n8+S+Ox7KTPol5/2ejeCO9kg ck85EQITdJQX7g== -----END CERTIFICATE-----Generated at Fri Dec 19 13:15:40 2025 by rpki-client