This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft File: xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft (raw, json) Hash identifier: W3Tsc6FHoiYEChWiW252T9FdpeNOZPA3+NBZUlwFRuw= Subject key identifier: 0C:54:DB:0B:93:09:DC:A6:8D:EC:BB:BF:10:5A:D7:3D:CE:28:60:D1 Authority key identifier: C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4 Certificate issuer: /CN=c613276cbca6793c33457a9bf22fc10b382301f4 Certificate serial: 019B4249637B1DF2B320FAC45E60E70B108B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft Manifest number: 178D Signing time: Sun 21 Dec 2025 19:01:04 +0000 Manifest this update: Sun 21 Dec 2025 19:01:04 +0000 Manifest next update: Mon 22 Dec 2025 19:01:04 +0000 Files and hashes: 1: b9YzzhOPHDVo_soINWMmjLB7fhk.roa (hash: lwz89foq6Y4dt/R5BV0uIhhLjFL2sOp+mEH46qLg0yk=) 2: xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl (hash: oT98QMizUBdY1bQr9ejeoOwzLNGwuWw5o25HrnkZJG0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:42:49:63:7b:1d:f2:b3:20:fa:c4:5e:60:e7:0b:10:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c613276cbca6793c33457a9bf22fc10b382301f4 Validity Not Before: Dec 21 19:01:04 2025 GMT Not After : Dec 22 19:01:04 2025 GMT Subject: CN=0c54db0b9309dca68decbbbf105ad73dce2860d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2a:32:f3:11:9b:01:56:80:df:4f:9b:ff:25: de:66:ea:42:5e:83:8e:cc:01:06:0c:d0:8e:e2:73: 1c:72:90:68:c8:5c:4a:83:b1:d1:db:eb:ee:13:d9: 6b:db:37:9f:a6:82:d7:b1:30:af:9d:7f:e6:fd:51: de:44:8c:2d:45:8b:4f:6a:38:7c:30:a1:b2:31:38: de:30:8a:04:d3:14:a8:b0:b3:a8:98:20:17:fb:4e: 6e:5e:e5:ac:c2:8e:ac:e3:c3:c1:b2:40:1a:29:8a: 8b:7b:e5:66:54:82:14:85:c1:89:ee:f3:24:31:6b: 11:cc:c6:92:1f:ed:2d:59:ea:d3:a8:bb:7c:cb:6a: 7e:f7:f5:cc:d5:6c:ab:23:a9:3e:4c:24:48:0a:82: 6f:e4:ca:ef:69:39:5b:a4:9c:61:ac:c0:af:97:b8: 41:d6:93:34:e4:41:b6:64:07:0d:4c:32:64:a8:1c: 67:32:9e:24:70:01:f5:36:3f:e5:71:36:a0:d4:96: 21:39:4c:52:80:83:26:bf:db:64:b8:76:56:b1:5c: d3:4f:4a:86:0c:70:82:65:e0:84:4f:4e:50:d9:20: 8b:21:1d:45:3b:72:4f:56:c9:66:bb:45:12:7a:d1: aa:34:6c:49:a1:ec:b1:d4:a1:e9:8a:60:ab:b2:fe: 24:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:54:DB:0B:93:09:DC:A6:8D:EC:BB:BF:10:5A:D7:3D:CE:28:60:D1 X509v3 Authority Key Identifier: keyid:C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:00:07:4e:14:84:69:21:3d:a8:83:2d:7c:75:b8:f3:85:08: f9:6e:b7:7e:fe:f7:47:80:ba:43:03:b6:21:c9:f1:22:59:4e: 03:a2:b2:a8:7d:3f:b9:a0:c0:34:79:3c:23:0f:40:7a:e0:90: ca:ff:4d:a0:92:dd:ac:b8:f1:cf:7f:d5:47:b2:c2:05:e5:e4: 62:53:c9:01:ed:8d:94:54:d1:a2:c5:fb:7b:9e:e4:81:ed:ae: 0b:07:1d:f9:d2:a4:f8:98:27:3e:54:3b:70:e0:55:7a:69:f8: b3:a3:46:aa:5e:98:72:56:33:f1:45:00:26:27:ed:1c:99:6e: 25:1a:8c:fd:e3:4c:3b:5d:62:39:0c:19:52:0a:00:8d:f4:6d: 36:9c:af:8e:1d:83:39:91:0c:67:12:7e:72:43:3e:71:51:21: d9:55:bd:8a:fa:6e:ea:13:30:7d:cb:93:df:5b:35:fc:25:15: 83:18:d3:fd:67:51:dc:ac:87:bb:3a:8c:ba:0e:f9:87:cf:93: bb:b6:14:8d:00:5a:76:a4:07:73:7a:16:bd:fb:94:b4:87:85: a8:2f:15:52:94:53:4a:5d:6c:12:4e:b1:d4:43:4d:64:c6:df: 10:c1:00:7a:de:56:b0:e4:fe:20:0c:5c:3f:28:e6:9a:d0:5a: 24:c8:c0:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtCSWN7HfKzIPrEXmDnCxCLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2MTMyNzZjYmNhNjc5M2MzMzQ1N2E5YmYyMmZjMTBiMzgy MzAxZjQwHhcNMjUxMjIxMTkwMTA0WhcNMjUxMjIyMTkwMTA0WjAzMTEwLwYDVQQD EygwYzU0ZGIwYjkzMDlkY2E2OGRlY2JiYmYxMDVhZDczZGNlMjg2MGQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAryoy8xGbAVaA30+b/yXeZupCXoOO zAEGDNCO4nMccpBoyFxKg7HR2+vuE9lr2zefpoLXsTCvnX/m/VHeRIwtRYtPajh8 MKGyMTjeMIoE0xSosLOomCAX+05uXuWswo6s48PBskAaKYqLe+VmVIIUhcGJ7vMk MWsRzMaSH+0tWerTqLt8y2p+9/XM1WyrI6k+TCRICoJv5MrvaTlbpJxhrMCvl7hB 1pM05EG2ZAcNTDJkqBxnMp4kcAH1Nj/lcTag1JYhOUxSgIMmv9tkuHZWsVzTT0qG DHCCZeCET05Q2SCLIR1FO3JPVslmu0USetGqNGxJoeyx1KHpimCrsv4k/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAxU2wuTCdymjey7vxBa1z3OKGDRMB8GA1UdIwQY MBaAFMYTJ2y8pnk8M0V6m/IvwQs4IwH0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGhNbmJMeW1lVHd6UlhxYjhpX0JDemdqQWZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8yODE4YjYtMWMxMy00NzI0LWJlOTIt OGNkNDM4YjVmMjYwLzEveGhNbmJMeW1lVHd6UlhxYjhpX0JDemdqQWZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC8yODE4YjYtMWMxMy00NzI0LWJlOTItOGNkNDM4YjVmMjYw LzEveGhNbmJMeW1lVHd6UlhxYjhpX0JDemdqQWZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIAAHThSE aSE9qIMtfHW484UI+W63fv73R4C6QwO2IcnxIllOA6KyqH0/uaDANHk8Iw9AeuCQ yv9NoJLdrLjxz3/VR7LCBeXkYlPJAe2NlFTRosX7e57kge2uCwcd+dKk+JgnPlQ7 cOBVemn4s6NGql6YclYz8UUAJiftHJluJRqM/eNMO11iOQwZUgoAjfRtNpyvjh2D OZEMZxJ+ckM+cVEh2VW9ivpu6hMwfcuT31s1/CUVgxjT/WdR3KyHuzqMug75h8+T u7YUjQBadqQHc3oWvfuUtIeFqC8VUpRTSl1sEk6x1ENNZMbfEMEAet5WsOT+IAxc PyjmmtBaJMjAHw== -----END CERTIFICATE-----Generated at Sun Dec 21 21:30:27 2025 by rpki-client