This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft File: xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft (raw, json) Hash identifier: Bo172UEIauzkPjOk7F9J+mGwhaLeg9oNkuCmvsTTi7s= Subject key identifier: 92:C3:91:3C:22:CF:6E:F6:B0:0A:2B:E3:48:F3:E2:4A:F0:BF:39:E4 Authority key identifier: C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4 Certificate issuer: /CN=c613276cbca6793c33457a9bf22fc10b382301f4 Certificate serial: 019B405AF86F8F975C9DE8E7453CD8CEB9E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft Manifest number: 178C Signing time: Sun 21 Dec 2025 10:01:02 +0000 Manifest this update: Sun 21 Dec 2025 10:01:02 +0000 Manifest next update: Mon 22 Dec 2025 10:01:02 +0000 Files and hashes: 1: b9YzzhOPHDVo_soINWMmjLB7fhk.roa (hash: lwz89foq6Y4dt/R5BV0uIhhLjFL2sOp+mEH46qLg0yk=) 2: xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl (hash: 5yCbTW3T/JgYyOzpcsIdl6At1jUw9AzsQ2awpHBUXns=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 10:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:5a:f8:6f:8f:97:5c:9d:e8:e7:45:3c:d8:ce:b9:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c613276cbca6793c33457a9bf22fc10b382301f4 Validity Not Before: Dec 21 10:01:02 2025 GMT Not After : Dec 22 10:01:02 2025 GMT Subject: CN=92c3913c22cf6ef6b00a2be348f3e24af0bf39e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:90:8a:1f:5d:b0:e4:88:fc:0a:3b:e8:40:cf: 14:ec:94:72:08:f8:ce:1b:bf:a7:17:5f:b4:5a:53: 1d:48:a0:db:a8:c2:04:de:95:ef:90:47:eb:ef:0e: 78:d5:24:b2:67:5b:04:93:4e:39:8d:13:73:c5:10: 31:7c:46:fd:ef:46:4e:0f:2d:b5:0d:40:79:cc:71: 1b:0a:b5:23:05:be:f1:fd:93:b5:65:68:2b:f0:91: 54:a2:9b:e0:6a:af:b8:39:a0:76:ce:22:7a:75:da: d5:43:66:55:3f:d9:12:4d:29:57:98:8b:fa:ec:91: bb:f2:f2:b4:74:48:f0:35:1a:10:75:c3:1b:a1:5e: 66:05:ef:ce:6e:40:f4:bd:de:b3:cc:6a:c7:36:b6: 01:e3:00:d1:27:ad:0c:ae:01:c8:e1:ab:dd:c0:42: a2:ca:e9:a5:a3:f7:bf:8b:ab:29:11:db:64:70:e4: ce:76:2c:5a:26:c1:02:ba:26:e1:14:7e:49:28:ab: 9d:51:29:ff:1c:68:6c:52:c9:66:fd:f5:81:28:de: 45:e3:c7:8b:b7:47:0d:e0:2c:0a:b7:4d:66:94:34: 3f:95:13:16:76:6b:b8:8d:36:bd:b9:74:c6:5f:d1: 7a:20:35:fc:5e:72:95:62:8b:85:a6:3f:fe:df:29: cd:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:C3:91:3C:22:CF:6E:F6:B0:0A:2B:E3:48:F3:E2:4A:F0:BF:39:E4 X509v3 Authority Key Identifier: keyid:C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:3f:f9:62:f8:e1:7f:62:61:a8:a0:3f:6c:65:bb:96:a3:c8: 38:7d:6e:fa:1e:d0:04:be:f0:10:2f:6a:60:a4:b1:30:17:9a: fb:7b:ac:28:6f:8f:ee:9b:6b:35:b7:09:4d:36:5f:5f:22:1d: 8a:b2:36:99:54:77:92:ba:b5:eb:3a:c0:8e:4e:a4:44:54:1f: 31:18:47:30:62:19:66:a4:08:fa:0f:04:d9:ba:d0:27:05:78: 82:8e:be:40:8b:93:2f:af:50:12:86:f6:b4:00:a9:a8:a7:11: 96:fd:01:de:21:79:74:f5:f6:10:ea:ff:2d:62:ba:7d:db:54: d8:02:6f:9e:ef:5c:a7:91:44:a2:df:76:8c:56:79:7e:33:69: fe:9a:b2:d5:20:5a:fc:0b:73:38:b9:ae:03:c7:ce:4d:ee:16: db:95:ca:4a:a8:aa:39:04:df:5f:d1:cb:3b:81:a2:f1:dd:b2: 37:5f:4e:c7:cb:5d:20:47:5f:fc:a3:b0:44:ba:85:9a:54:16: e5:93:7a:f2:94:6c:42:7e:8a:aa:e4:57:fe:52:f9:23:96:6a: aa:ba:ab:e4:54:1a:2a:74:f4:b5:97:92:0e:8c:99:18:64:cb: a7:a5:6c:7e:99:1c:97:f7:a8:62:ac:a9:a5:b8:48:93:69:e7: 06:8b:c8:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtAWvhvj5dcnejnRTzYzrngMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2MTMyNzZjYmNhNjc5M2MzMzQ1N2E5YmYyMmZjMTBiMzgy MzAxZjQwHhcNMjUxMjIxMTAwMTAyWhcNMjUxMjIyMTAwMTAyWjAzMTEwLwYDVQQD Eyg5MmMzOTEzYzIyY2Y2ZWY2YjAwYTJiZTM0OGYzZTI0YWYwYmYzOWU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4pCKH12w5Ij8CjvoQM8U7JRyCPjO G7+nF1+0WlMdSKDbqMIE3pXvkEfr7w541SSyZ1sEk045jRNzxRAxfEb970ZODy21 DUB5zHEbCrUjBb7x/ZO1ZWgr8JFUopvgaq+4OaB2ziJ6ddrVQ2ZVP9kSTSlXmIv6 7JG78vK0dEjwNRoQdcMboV5mBe/ObkD0vd6zzGrHNrYB4wDRJ60MrgHI4avdwEKi yumlo/e/i6spEdtkcOTOdixaJsECuibhFH5JKKudUSn/HGhsUslm/fWBKN5F48eL t0cN4CwKt01mlDQ/lRMWdmu4jTa9uXTGX9F6IDX8XnKVYouFpj/+3ynN3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJLDkTwiz272sAor40jz4krwvznkMB8GA1UdIwQY MBaAFMYTJ2y8pnk8M0V6m/IvwQs4IwH0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGhNbmJMeW1lVHd6UlhxYjhpX0JDemdqQWZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8yODE4YjYtMWMxMy00NzI0LWJlOTIt OGNkNDM4YjVmMjYwLzEveGhNbmJMeW1lVHd6UlhxYjhpX0JDemdqQWZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC8yODE4YjYtMWMxMy00NzI0LWJlOTItOGNkNDM4YjVmMjYw LzEveGhNbmJMeW1lVHd6UlhxYjhpX0JDemdqQWZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmj/5Yvjh f2JhqKA/bGW7lqPIOH1u+h7QBL7wEC9qYKSxMBea+3usKG+P7ptrNbcJTTZfXyId irI2mVR3krq16zrAjk6kRFQfMRhHMGIZZqQI+g8E2brQJwV4go6+QIuTL69QEob2 tACpqKcRlv0B3iF5dPX2EOr/LWK6fdtU2AJvnu9cp5FEot92jFZ5fjNp/pqy1SBa /AtzOLmuA8fOTe4W25XKSqiqOQTfX9HLO4Gi8d2yN19Ox8tdIEdf/KOwRLqFmlQW 5ZN68pRsQn6KquRX/lL5I5Zqqrqr5FQaKnT0tZeSDoyZGGTLp6Vsfpkcl/eoYqyp pbhIk2nnBovI6Q== -----END CERTIFICATE-----Generated at Sun Dec 21 15:41:34 2025 by rpki-client