This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.mft File: XYbEfabZB5NHtg8E7VxVV_6YPrg.mft (raw, json) Hash identifier: E8Niee0Z28F0c99fT/T1dGGEjQoTcGN60CMUbLuw6wM= Subject key identifier: 04:2B:F9:EF:9C:42:3A:01:0D:4E:27:3C:DB:32:4E:A1:02:41:77:0C Authority key identifier: 5D:86:C4:7D:A6:D9:07:93:47:B6:0F:04:ED:5C:55:57:FE:98:3E:B8 Certificate issuer: /CN=5d86c47da6d9079347b60f04ed5c5557fe983eb8 Certificate serial: 019B22F53A3C235D978B4BC1AD258D3AA72A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYbEfabZB5NHtg8E7VxVV_6YPrg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.mft Manifest number: 0844 Signing time: Mon 15 Dec 2025 17:00:54 +0000 Manifest this update: Mon 15 Dec 2025 17:00:54 +0000 Manifest next update: Tue 16 Dec 2025 17:00:54 +0000 Files and hashes: 1: 2P1yuhNiwzpuhAGqzfrj2lRnpyw.roa (hash: v8vqWZlajCWSPPZWElULKYnskyo39/+jmGLteoM9Mq8=) 2: XYbEfabZB5NHtg8E7VxVV_6YPrg.crl (hash: 77ybBu2cWLbn54OvvBnVNZEkKwMt2nI6y6m0iJjBttw=) 3: YxZAW7xYuuoItNSxZUB_Jyv54M8.roa (hash: ZHkpmuH04xDfiHb0nZigSHP0TijTWcHxuOKkj3BJQR4=) 4: i6uCG0Q2AD4SRLu8l3KF_dDGZzk.roa (hash: jFpYwIwpWfR9hcM4AjV3+9gVDn6oo25N3yT8niBuGDs=) 5: wJUlaRUICcG98jFoJrBOPCJA9K0.roa (hash: C8JFs0EQ+NjuY81C+W4nNxPlVGGKOiRDa/0xgVpCyR4=) 6: yM87hDn48G9pC2uXeNqB6MxDyyY.roa (hash: m4eQad2ewLgQnWmXHQewt9Vc5wlc0Xqlxo4fhTztW/s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.crl rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.mft rsync://rpki.ripe.net/repository/DEFAULT/XYbEfabZB5NHtg8E7VxVV_6YPrg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:22:f5:3a:3c:23:5d:97:8b:4b:c1:ad:25:8d:3a:a7:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d86c47da6d9079347b60f04ed5c5557fe983eb8 Validity Not Before: Dec 15 17:00:54 2025 GMT Not After : Dec 16 17:00:54 2025 GMT Subject: CN=042bf9ef9c423a010d4e273cdb324ea10241770c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:16:62:13:32:8a:5e:6d:30:89:9e:07:2c:dc: a0:10:6e:59:24:e2:73:ef:94:ec:8f:fb:a9:55:9a: e2:86:21:6e:66:78:50:e2:ef:ac:8d:28:96:60:58: 0d:11:2c:70:88:3d:c1:09:24:a7:f6:60:ed:9d:f6: dd:1f:24:d4:90:42:27:6a:68:2f:b6:68:b3:3a:a3: 50:c1:f7:1c:fb:a2:81:c6:27:b9:f7:eb:b6:e9:d9: 36:23:4e:91:5a:bd:f5:7a:5f:08:cf:28:57:ed:1f: 88:c7:6e:aa:6d:4a:49:8c:8b:4c:50:e7:a7:4a:29: 7e:ef:34:c8:69:5f:74:6d:27:3b:67:10:f5:06:e6: 8c:19:ab:3f:f7:52:29:14:f5:21:11:9c:04:90:b7: d0:3a:28:aa:99:2e:0b:13:48:5e:de:aa:fc:dd:ce: 1f:c0:28:2f:1a:84:2f:b4:4b:dd:a1:ae:ca:0f:15: de:55:3c:12:02:69:32:8c:b3:0c:e5:43:3c:26:25: b0:2b:a5:c0:4b:12:0d:47:ff:e0:1d:c8:be:0e:37: 39:d9:83:09:f8:73:b6:ac:c0:7b:dd:e5:1a:d3:1f: 9b:56:8c:84:64:d5:f7:9d:4b:76:75:a7:6a:94:57: d9:2e:73:56:25:0e:99:54:56:46:97:5f:34:8c:81: 89:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:2B:F9:EF:9C:42:3A:01:0D:4E:27:3C:DB:32:4E:A1:02:41:77:0C X509v3 Authority Key Identifier: keyid:5D:86:C4:7D:A6:D9:07:93:47:B6:0F:04:ED:5C:55:57:FE:98:3E:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYbEfabZB5NHtg8E7VxVV_6YPrg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:19:de:56:0d:01:54:17:a6:91:2a:a8:b5:b8:d9:f8:70:e0: 89:44:8d:88:5b:1a:8c:24:62:ff:ab:af:2d:c1:39:ea:67:29: 1d:d8:f4:e1:98:b0:e0:a1:c9:f3:8d:5e:28:fe:a4:45:24:0e: db:db:9a:ff:ef:15:d2:ee:bd:24:22:cc:00:69:9e:83:66:00: e3:30:0c:d1:e3:77:a6:00:ad:c0:5d:51:42:0e:f5:8f:2b:04: 79:68:0f:62:e1:24:6c:c2:51:9c:65:df:11:85:c1:fa:f9:a6: 97:8b:b5:d6:69:0f:97:c3:c8:0a:57:8b:9d:5c:48:b2:0f:17: c1:88:ac:c1:ea:6a:b4:5d:94:58:74:00:e3:fe:19:7e:3d:f7: 86:ef:f8:08:14:16:17:47:52:73:67:77:ee:f0:4c:26:f9:4b: a9:ee:35:7f:70:ca:3a:34:55:19:19:2e:0c:4e:e2:cd:e6:26: 7a:26:44:f8:19:46:a2:6c:11:cf:e9:84:bc:92:3f:5c:09:5c: 63:56:ed:2a:35:3e:5d:71:1c:a4:6d:d1:0c:6e:32:fd:1a:26: c6:85:59:9e:68:00:79:d4:9d:13:b0:54:11:37:b5:82:de:3d: 0c:7f:93:8e:51:83:a1:3e:75:16:d9:24:54:3c:ae:86:30:bb: 1a:43:dc:fa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsi9To8I12Xi0vBrSWNOqcqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkODZjNDdkYTZkOTA3OTM0N2I2MGYwNGVkNWM1NTU3ZmU5 ODNlYjgwHhcNMjUxMjE1MTcwMDU0WhcNMjUxMjE2MTcwMDU0WjAzMTEwLwYDVQQD EygwNDJiZjllZjljNDIzYTAxMGQ0ZTI3M2NkYjMyNGVhMTAyNDE3NzBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAihZiEzKKXm0wiZ4HLNygEG5ZJOJz 75Tsj/upVZrihiFuZnhQ4u+sjSiWYFgNESxwiD3BCSSn9mDtnfbdHyTUkEInamgv tmizOqNQwfcc+6KBxie59+u26dk2I06RWr31el8IzyhX7R+Ix26qbUpJjItMUOen Sil+7zTIaV90bSc7ZxD1BuaMGas/91IpFPUhEZwEkLfQOiiqmS4LE0he3qr83c4f wCgvGoQvtEvdoa7KDxXeVTwSAmkyjLMM5UM8JiWwK6XASxINR//gHci+Djc52YMJ +HO2rMB73eUa0x+bVoyEZNX3nUt2dadqlFfZLnNWJQ6ZVFZGl180jIGJoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAQr+e+cQjoBDU4nPNsyTqECQXcMMB8GA1UdIwQY MBaAFF2GxH2m2QeTR7YPBO1cVVf+mD64MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFliRWZhYlpCNU5IdGc4RTdWeFZWXzZZUHJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS9kZjY2YTAtYzk1OC00ZTVjLWE2ZGYt ZmM2MzI4NDFiYTNlLzEvWFliRWZhYlpCNU5IdGc4RTdWeFZWXzZZUHJnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS9kZjY2YTAtYzk1OC00ZTVjLWE2ZGYtZmM2MzI4NDFiYTNl LzEvWFliRWZhYlpCNU5IdGc4RTdWeFZWXzZZUHJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhhneVg0B VBemkSqotbjZ+HDgiUSNiFsajCRi/6uvLcE56mcpHdj04Ziw4KHJ841eKP6kRSQO 29ua/+8V0u69JCLMAGmeg2YA4zAM0eN3pgCtwF1RQg71jysEeWgPYuEkbMJRnGXf EYXB+vmml4u11mkPl8PICleLnVxIsg8XwYiswepqtF2UWHQA4/4Zfj33hu/4CBQW F0dSc2d37vBMJvlLqe41f3DKOjRVGRkuDE7izeYmeiZE+BlGomwRz+mEvJI/XAlc Y1btKjU+XXEcpG3RDG4y/RomxoVZnmgAedSdE7BUETe1gt49DH+TjlGDoT51Ftkk VDyuhjC7GkPc+g== -----END CERTIFICATE-----Generated at Mon Dec 15 19:29:25 2025 by rpki-client