This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft File: XEwop1rJaVHcOEAKgPnvOqryqss.mft (raw, json) Hash identifier: u+fUAXnUM8Jm7TokNAeBcKNMXlUm/gBDkn1eWEjufW0= Subject key identifier: F8:C2:47:B3:B3:7B:3C:9A:55:F5:C0:E2:F5:96:3E:E7:0D:98:1F:69 Authority key identifier: 5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB Certificate issuer: /CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb Certificate serial: 019B0D80DF1E9DF770A3ED3183D0F3A8D403 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft Manifest number: 1770 Signing time: Thu 11 Dec 2025 13:01:48 +0000 Manifest this update: Thu 11 Dec 2025 13:01:48 +0000 Manifest next update: Fri 12 Dec 2025 13:01:48 +0000 Files and hashes: 1: XEwop1rJaVHcOEAKgPnvOqryqss.crl (hash: F2r3Fi9wAHI7UYItlZ3G5E/x/JXIGaeZP+RwMLoWmlg=) 2: eIbScniidhxgoW_2gLpLbnftECI.roa (hash: 0LV2/9XqX9EVzrNxsg5Sc4fQTUKSwMZdzfQWJW36Pqk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 13:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0d:80:df:1e:9d:f7:70:a3:ed:31:83:d0:f3:a8:d4:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb Validity Not Before: Dec 11 13:01:48 2025 GMT Not After : Dec 12 13:01:48 2025 GMT Subject: CN=f8c247b3b37b3c9a55f5c0e2f5963ee70d981f69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9d:cc:44:8f:a4:c3:69:b2:de:fd:2f:06:b1: 31:50:b3:e8:9b:88:7e:55:00:d8:3d:99:11:8e:e9: d5:c2:c6:39:7f:2f:15:89:17:f9:a5:e6:eb:95:89: ba:46:3b:41:e2:86:15:9e:29:ff:c9:9f:c7:9b:af: 14:36:99:86:21:ea:39:e1:30:02:71:d4:8b:a8:ac: a1:17:a2:a8:12:73:0d:de:2c:5d:93:57:93:35:8d: 55:24:aa:c9:65:05:50:50:73:2c:e8:c1:6e:32:0d: 68:c7:12:99:27:10:6e:e5:eb:80:eb:8f:a4:54:9c: e1:8c:cd:bc:66:47:72:ee:d7:5c:a2:00:c7:57:eb: e0:9f:3e:d3:e6:6b:db:55:43:a3:0d:b7:75:fc:da: 76:1d:17:c5:d1:24:ce:75:b7:ec:28:47:b8:6e:9d: f6:0d:01:9c:e0:af:a4:1b:1c:36:01:a7:ce:d2:d7: f5:75:13:f8:73:72:8a:af:95:59:d2:76:90:33:54: 92:1e:69:56:ee:d5:c9:3c:7a:f0:2f:4c:56:88:26: 78:e8:ae:bf:4e:24:62:af:6b:b3:70:9a:a1:3f:bf: a7:8a:14:bb:eb:4e:dc:72:f6:87:6a:c8:36:ac:6f: bc:d4:58:ac:f7:db:f1:18:d9:5e:ee:88:7f:05:d1: 67:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:C2:47:B3:B3:7B:3C:9A:55:F5:C0:E2:F5:96:3E:E7:0D:98:1F:69 X509v3 Authority Key Identifier: keyid:5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:de:92:1a:a7:2c:3c:1a:4f:8c:2a:a4:56:36:ae:0b:d7:7d: 3e:9c:ac:3c:56:5f:35:b6:24:d8:9a:aa:97:20:be:fd:b3:69: f1:c0:ee:a8:bb:d8:3b:0b:f4:cd:07:0d:73:da:50:df:67:8b: 70:5a:e7:1a:68:63:e3:22:ac:5c:0a:b7:75:a6:f1:f8:1c:d6: 70:25:14:9a:05:53:5d:c9:f4:b6:6f:18:ca:2b:f8:05:7f:3c: ff:32:2b:b2:ed:49:3a:0c:d2:dd:b5:a2:da:08:ed:c4:2d:b3: e7:b0:86:65:9c:03:3f:08:27:ff:a7:2b:d1:2d:c6:eb:e3:37: ae:20:06:e0:1a:d2:fc:36:c4:f5:a7:15:ad:a1:e2:58:5e:b8: d7:86:97:f1:62:45:34:9b:6a:21:90:18:28:75:6c:52:26:3c: dc:56:dd:60:bb:d6:a5:c2:fe:f7:13:e6:7b:33:f9:93:7c:24: c4:e0:63:f0:32:0e:c8:75:2e:17:17:56:26:6c:8e:d9:dd:7b: 13:41:f9:7d:65:40:0a:0e:a6:a5:8b:51:f2:a6:a4:55:7d:7a: 9c:fb:d2:dd:f5:fa:0b:d2:24:01:ec:6c:49:ec:d0:ac:9e:fc: 6b:1c:b0:b5:da:aa:b8:d2:08:e9:1e:51:16:15:e3:1b:05:8b: 07:47:6b:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsNgN8enfdwo+0xg9DzqNQDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjNGMyOGE3NWFjOTY5NTFkYzM4NDAwYTgwZjllZjNhYWFm MmFhY2IwHhcNMjUxMjExMTMwMTQ4WhcNMjUxMjEyMTMwMTQ4WjAzMTEwLwYDVQQD EyhmOGMyNDdiM2IzN2IzYzlhNTVmNWMwZTJmNTk2M2VlNzBkOTgxZjY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxZ3MRI+kw2my3v0vBrExULPom4h+ VQDYPZkRjunVwsY5fy8ViRf5pebrlYm6RjtB4oYVnin/yZ/Hm68UNpmGIeo54TAC cdSLqKyhF6KoEnMN3ixdk1eTNY1VJKrJZQVQUHMs6MFuMg1oxxKZJxBu5euA64+k VJzhjM28Zkdy7tdcogDHV+vgnz7T5mvbVUOjDbd1/Np2HRfF0STOdbfsKEe4bp32 DQGc4K+kGxw2AafO0tf1dRP4c3KKr5VZ0naQM1SSHmlW7tXJPHrwL0xWiCZ46K6/ TiRir2uzcJqhP7+nihS7607ccvaHasg2rG+81Fis99vxGNle7oh/BdFn8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPjCR7OzezyaVfXA4vWWPucNmB9pMB8GA1UdIwQY MBaAFFxMKKdayWlR3DhACoD57zqq8qrLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEV3b3AxckphVkhjT0VBS2dQbnZPcXJ5cXNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8wOTc3ZWUtYjk4ZC00YTNlLWIzYWYt NjdjNzYzMjAxODZhLzEvWEV3b3AxckphVkhjT0VBS2dQbnZPcXJ5cXNzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC8wOTc3ZWUtYjk4ZC00YTNlLWIzYWYtNjdjNzYzMjAxODZh LzEvWEV3b3AxckphVkhjT0VBS2dQbnZPcXJ5cXNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk96SGqcs PBpPjCqkVjauC9d9PpysPFZfNbYk2JqqlyC+/bNp8cDuqLvYOwv0zQcNc9pQ32eL cFrnGmhj4yKsXAq3dabx+BzWcCUUmgVTXcn0tm8Yyiv4BX88/zIrsu1JOgzS3bWi 2gjtxC2z57CGZZwDPwgn/6cr0S3G6+M3riAG4BrS/DbE9acVraHiWF6414aX8WJF NJtqIZAYKHVsUiY83FbdYLvWpcL+9xPmezP5k3wkxOBj8DIOyHUuFxdWJmyO2d17 E0H5fWVACg6mpYtR8qakVX16nPvS3fX6C9IkAexsSezQrJ78axywtdqquNII6R5R FhXjGwWLB0dr1g== -----END CERTIFICATE-----Generated at Thu Dec 11 23:00:54 2025 by rpki-client