This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.mft File: XYbEfabZB5NHtg8E7VxVV_6YPrg.mft (raw, json) Hash identifier: mSmq81FsLpCl68nzTzpT1wS29PT5G3EmI//U8qV5fvs= Subject key identifier: 60:EC:D7:89:32:65:E0:DD:AE:A3:EE:17:09:7F:36:95:45:64:BD:3E Authority key identifier: 5D:86:C4:7D:A6:D9:07:93:47:B6:0F:04:ED:5C:55:57:FE:98:3E:B8 Certificate issuer: /CN=5d86c47da6d9079347b60f04ed5c5557fe983eb8 Certificate serial: 019B1570AFD83CDDA0BB823F32925E725821 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYbEfabZB5NHtg8E7VxVV_6YPrg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.mft Manifest number: 083D Signing time: Sat 13 Dec 2025 02:01:05 +0000 Manifest this update: Sat 13 Dec 2025 02:01:05 +0000 Manifest next update: Sun 14 Dec 2025 02:01:05 +0000 Files and hashes: 1: 2P1yuhNiwzpuhAGqzfrj2lRnpyw.roa (hash: v8vqWZlajCWSPPZWElULKYnskyo39/+jmGLteoM9Mq8=) 2: XYbEfabZB5NHtg8E7VxVV_6YPrg.crl (hash: /++FcgtQ1ztmgQQfsut/UCM3TpMQAx+ifk2O8jYj4tY=) 3: YxZAW7xYuuoItNSxZUB_Jyv54M8.roa (hash: ZHkpmuH04xDfiHb0nZigSHP0TijTWcHxuOKkj3BJQR4=) 4: i6uCG0Q2AD4SRLu8l3KF_dDGZzk.roa (hash: jFpYwIwpWfR9hcM4AjV3+9gVDn6oo25N3yT8niBuGDs=) 5: wJUlaRUICcG98jFoJrBOPCJA9K0.roa (hash: C8JFs0EQ+NjuY81C+W4nNxPlVGGKOiRDa/0xgVpCyR4=) 6: yM87hDn48G9pC2uXeNqB6MxDyyY.roa (hash: m4eQad2ewLgQnWmXHQewt9Vc5wlc0Xqlxo4fhTztW/s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.crl rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.mft rsync://rpki.ripe.net/repository/DEFAULT/XYbEfabZB5NHtg8E7VxVV_6YPrg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:15:70:af:d8:3c:dd:a0:bb:82:3f:32:92:5e:72:58:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d86c47da6d9079347b60f04ed5c5557fe983eb8 Validity Not Before: Dec 13 02:01:05 2025 GMT Not After : Dec 14 02:01:05 2025 GMT Subject: CN=60ecd7893265e0ddaea3ee17097f36954564bd3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:bf:25:12:57:98:1d:3a:00:15:5f:c8:dd:be: 39:a0:46:3f:fd:9d:ab:22:72:c2:bc:a1:85:dc:d7: 6b:67:5d:ab:06:85:ce:a6:39:3b:e1:be:cf:67:c4: c8:94:f2:17:2d:1b:1e:4f:31:b1:b2:24:4e:ff:80: 5a:83:aa:37:72:8b:5f:89:29:91:cd:35:49:4d:80: fe:63:5e:26:fa:5e:56:8b:c4:97:72:df:52:ed:e3: 74:f8:f0:d1:41:3c:b1:0e:31:c0:cd:87:82:10:06: f5:eb:c0:c4:bb:f6:20:b6:d5:2c:89:2d:a1:bb:3c: 51:82:50:2d:22:a2:ac:f7:d2:5b:d1:b0:1b:90:a8: 3f:74:24:b6:86:ed:6b:9a:ff:28:7e:b4:9b:b6:67: f8:b5:9f:9b:8e:8a:f2:06:da:ec:b9:db:29:6c:a9: 87:42:c7:c8:40:58:58:b6:4b:7d:5d:61:fd:34:fd: b1:3d:da:90:45:a1:1c:9f:2b:92:50:21:60:fb:3e: 87:db:a5:87:52:99:09:94:d4:7a:f1:6d:7a:68:8a: 27:25:35:49:68:62:1a:24:4f:9c:9b:52:28:ba:5e: 78:81:5a:c4:0c:59:d5:20:90:07:b5:c0:d8:ae:ac: 0e:da:1b:cc:00:94:f7:ff:3a:02:67:5a:da:9f:82: 3a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:EC:D7:89:32:65:E0:DD:AE:A3:EE:17:09:7F:36:95:45:64:BD:3E X509v3 Authority Key Identifier: keyid:5D:86:C4:7D:A6:D9:07:93:47:B6:0F:04:ED:5C:55:57:FE:98:3E:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYbEfabZB5NHtg8E7VxVV_6YPrg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:80:ee:1b:b1:b3:69:4e:21:68:2c:5d:8d:ed:eb:ec:5b:cc: 33:fa:1f:3a:c7:fe:9f:3a:02:41:81:14:1c:68:0b:a1:73:92: d5:81:98:e2:28:66:b7:6a:3d:ed:47:b1:62:65:74:bd:a2:0d: 96:9b:ce:c3:00:73:a9:0a:ae:92:8f:4a:27:3b:2e:da:61:3c: fd:a4:db:60:d7:b6:b6:aa:2a:8a:28:2b:75:f5:c1:dc:43:92: b9:94:ae:dc:6d:5b:90:9f:3c:03:90:51:7a:c6:fc:ed:8b:a4: 86:aa:5a:26:59:e9:f6:f1:d2:8f:bc:98:48:f6:30:a2:77:54: 10:d2:e4:da:cf:71:1c:37:a5:fa:58:e0:9a:dd:31:e2:53:d5: d4:9e:70:a8:cc:9f:1b:32:ca:63:55:a2:ff:a0:b5:8a:ba:c4: 1d:70:6c:7c:12:32:ca:83:f2:e1:b6:c3:cd:b2:52:12:ef:1e: 2d:ee:4c:30:24:a8:6c:d4:49:9b:9b:6c:e5:86:41:a4:3c:30: a4:f9:6d:5c:73:1e:f0:ef:c5:61:27:4b:5d:83:1e:26:b5:fc: 59:47:9d:80:e4:6a:8f:e4:ae:8c:3b:ed:d7:12:7c:0b:5f:4d: cb:ff:8a:06:72:8a:84:d1:da:54:6d:c7:bd:bc:82:af:da:e9: 57:93:e8:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsVcK/YPN2gu4I/MpJeclghMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkODZjNDdkYTZkOTA3OTM0N2I2MGYwNGVkNWM1NTU3ZmU5 ODNlYjgwHhcNMjUxMjEzMDIwMTA1WhcNMjUxMjE0MDIwMTA1WjAzMTEwLwYDVQQD Eyg2MGVjZDc4OTMyNjVlMGRkYWVhM2VlMTcwOTdmMzY5NTQ1NjRiZDNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk78lEleYHToAFV/I3b45oEY//Z2r InLCvKGF3NdrZ12rBoXOpjk74b7PZ8TIlPIXLRseTzGxsiRO/4Bag6o3cotfiSmR zTVJTYD+Y14m+l5Wi8SXct9S7eN0+PDRQTyxDjHAzYeCEAb168DEu/YgttUsiS2h uzxRglAtIqKs99Jb0bAbkKg/dCS2hu1rmv8ofrSbtmf4tZ+bjoryBtrsudspbKmH QsfIQFhYtkt9XWH9NP2xPdqQRaEcnyuSUCFg+z6H26WHUpkJlNR68W16aIonJTVJ aGIaJE+cm1Ioul54gVrEDFnVIJAHtcDYrqwO2hvMAJT3/zoCZ1ran4I6KQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGDs14kyZeDdrqPuFwl/NpVFZL0+MB8GA1UdIwQY MBaAFF2GxH2m2QeTR7YPBO1cVVf+mD64MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFliRWZhYlpCNU5IdGc4RTdWeFZWXzZZUHJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS9kZjY2YTAtYzk1OC00ZTVjLWE2ZGYt ZmM2MzI4NDFiYTNlLzEvWFliRWZhYlpCNU5IdGc4RTdWeFZWXzZZUHJnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS9kZjY2YTAtYzk1OC00ZTVjLWE2ZGYtZmM2MzI4NDFiYTNl LzEvWFliRWZhYlpCNU5IdGc4RTdWeFZWXzZZUHJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh4DuG7Gz aU4haCxdje3r7FvMM/ofOsf+nzoCQYEUHGgLoXOS1YGY4ihmt2o97UexYmV0vaIN lpvOwwBzqQquko9KJzsu2mE8/aTbYNe2tqoqiigrdfXB3EOSuZSu3G1bkJ88A5BR esb87YukhqpaJlnp9vHSj7yYSPYwondUENLk2s9xHDel+ljgmt0x4lPV1J5wqMyf GzLKY1Wi/6C1irrEHXBsfBIyyoPy4bbDzbJSEu8eLe5MMCSobNRJm5ts5YZBpDww pPltXHMe8O/FYSdLXYMeJrX8WUedgORqj+SujDvt1xJ8C19Ny/+KBnKKhNHaVG3H vbyCr9rpV5Po2g== -----END CERTIFICATE-----Generated at Sat Dec 13 11:19:17 2025 by rpki-client