This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.mft File: XK56oVlNiZKbERo3Hw_ybyAvWOI.mft (raw, json) Hash identifier: 6b31qa5vBCMWCIyjCIg7wZeoTsi6YamHbq1aAzasloM= Subject key identifier: 37:8C:C9:3B:FD:02:3D:63:D4:BE:B8:FF:83:E0:81:F4:2E:4E:C4:F8 Authority key identifier: 5C:AE:7A:A1:59:4D:89:92:9B:11:1A:37:1F:0F:F2:6F:20:2F:58:E2 Certificate issuer: /CN=5cae7aa1594d89929b111a371f0ff26f202f58e2 Certificate serial: 019B40918C76C0B928960EE72C46F79C7ECD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XK56oVlNiZKbERo3Hw_ybyAvWOI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.mft Manifest number: 167B Signing time: Sun 21 Dec 2025 11:00:39 +0000 Manifest this update: Sun 21 Dec 2025 11:00:39 +0000 Manifest next update: Mon 22 Dec 2025 11:00:39 +0000 Files and hashes: 1: HdC41_gg5ZlJREFwcD8B_s_Bra8.roa (hash: GXMzejpdmlRhTsyiOMLzEkSoVbxi2Wz+Z222Mkk/eAI=) 2: XK56oVlNiZKbERo3Hw_ybyAvWOI.crl (hash: fnW8a1JAhrpTf9++p5RmUFg5qY0OpyhLXYDf+ph7AAw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.mft rsync://rpki.ripe.net/repository/DEFAULT/XK56oVlNiZKbERo3Hw_ybyAvWOI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 11:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:91:8c:76:c0:b9:28:96:0e:e7:2c:46:f7:9c:7e:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5cae7aa1594d89929b111a371f0ff26f202f58e2 Validity Not Before: Dec 21 11:00:39 2025 GMT Not After : Dec 22 11:00:39 2025 GMT Subject: CN=378cc93bfd023d63d4beb8ff83e081f42e4ec4f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:c4:8e:31:a2:1d:ea:f7:58:b9:75:67:4f:79: ca:0f:da:e8:80:a6:97:38:63:ab:73:ee:53:6b:31: 02:ef:3e:30:f0:a6:40:6a:be:d4:0c:d4:4f:b3:f6: 54:a4:fa:e0:87:e0:a9:b8:1e:9c:7e:aa:d6:bb:6b: e3:d0:1c:ac:aa:41:ef:e6:8c:8c:fe:f9:40:70:81: 6d:d2:38:6e:1e:01:eb:72:d9:35:22:73:fc:c4:6e: 5c:65:cf:3c:ba:60:bd:0f:e4:df:f4:de:c3:4a:fa: 82:79:e0:b1:6e:42:ab:4c:06:5e:65:13:97:e2:2f: c5:c2:35:dc:3c:db:3e:46:b6:7b:d1:0b:10:45:67: 40:67:e2:8a:d2:30:6b:72:f0:cd:87:e3:7c:9e:8f: a2:33:e0:85:ec:04:18:92:c1:0a:a7:48:06:83:02: d0:a8:5b:35:8f:51:d8:41:3a:91:38:bb:83:b1:39: 74:f0:97:e1:1c:16:a9:94:65:8b:12:39:2a:4d:9d: 19:6e:b1:c6:34:1e:42:b0:ee:93:f7:da:29:ed:45: 9c:14:67:71:6f:43:58:1d:70:95:b3:54:a0:e8:29: 50:9e:68:bc:fa:a9:7c:5f:c1:81:fe:ca:4b:b3:70: c5:0a:2a:54:c6:15:73:13:67:2c:fe:78:d7:65:78: 00:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:8C:C9:3B:FD:02:3D:63:D4:BE:B8:FF:83:E0:81:F4:2E:4E:C4:F8 X509v3 Authority Key Identifier: keyid:5C:AE:7A:A1:59:4D:89:92:9B:11:1A:37:1F:0F:F2:6F:20:2F:58:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XK56oVlNiZKbERo3Hw_ybyAvWOI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:2e:da:a4:ad:24:90:78:e8:0c:44:ce:f0:8e:aa:78:41:6b: 01:14:55:b7:2a:5b:43:b1:eb:7c:91:2f:06:98:c3:b2:0f:2d: d0:b1:e2:01:d8:98:12:c5:2e:c4:91:1a:53:69:29:a9:5e:ac: 90:0c:12:2b:94:ad:24:7d:7b:2b:48:6d:51:97:9c:06:71:74: 84:9d:22:e8:66:b5:b7:fe:7f:d2:f2:08:f7:ab:f8:7a:94:0e: e8:89:eb:aa:40:53:d2:53:71:0a:46:9e:c6:6a:c9:8f:83:6e: 2a:65:f6:1e:bd:ba:88:68:af:85:a9:29:6d:74:aa:31:78:24: 16:15:0e:f5:15:3b:6b:42:42:04:ab:af:b4:24:bd:0d:b4:89: 0d:39:f5:66:86:e3:dd:4c:46:01:aa:73:9e:71:fe:d2:31:90: 73:8c:20:9a:ed:b2:69:dd:13:5e:f8:34:c0:71:c0:41:12:35: de:1e:f1:33:eb:e0:c4:1e:71:99:ae:f6:7c:c8:d5:ce:9f:3a: 34:1b:11:4f:27:e3:24:8b:a1:45:c0:a3:dd:23:1a:bd:5d:9a: 29:63:c1:98:fc:71:93:25:7f:55:1b:ae:f0:9c:5b:1d:87:d0: 63:9c:b0:46:28:d8:91:25:59:2d:f2:5a:2f:4e:02:4d:4c:05: 31:22:f3:e6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtAkYx2wLkolg7nLEb3nH7NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjYWU3YWExNTk0ZDg5OTI5YjExMWEzNzFmMGZmMjZmMjAy ZjU4ZTIwHhcNMjUxMjIxMTEwMDM5WhcNMjUxMjIyMTEwMDM5WjAzMTEwLwYDVQQD EygzNzhjYzkzYmZkMDIzZDYzZDRiZWI4ZmY4M2UwODFmNDJlNGVjNGY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl8SOMaId6vdYuXVnT3nKD9rogKaX OGOrc+5TazEC7z4w8KZAar7UDNRPs/ZUpPrgh+CpuB6cfqrWu2vj0BysqkHv5oyM /vlAcIFt0jhuHgHrctk1InP8xG5cZc88umC9D+Tf9N7DSvqCeeCxbkKrTAZeZROX 4i/FwjXcPNs+RrZ70QsQRWdAZ+KK0jBrcvDNh+N8no+iM+CF7AQYksEKp0gGgwLQ qFs1j1HYQTqROLuDsTl08JfhHBaplGWLEjkqTZ0ZbrHGNB5CsO6T99op7UWcFGdx b0NYHXCVs1Sg6ClQnmi8+ql8X8GB/spLs3DFCipUxhVzE2cs/njXZXgAjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDeMyTv9Aj1j1L64/4PggfQuTsT4MB8GA1UdIwQY MBaAFFyueqFZTYmSmxEaNx8P8m8gL1jiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEs1Nm9WbE5pWktiRVJvM0h3X3lieUF2V09JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy81ZTZiYWUtOTYyZi00MDU3LThlYzUt Mjc5ZjU5NGIzYTJmLzEvWEs1Nm9WbE5pWktiRVJvM0h3X3lieUF2V09JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy81ZTZiYWUtOTYyZi00MDU3LThlYzUtMjc5ZjU5NGIzYTJm LzEvWEs1Nm9WbE5pWktiRVJvM0h3X3lieUF2V09JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsi7apK0k kHjoDETO8I6qeEFrARRVtypbQ7HrfJEvBpjDsg8t0LHiAdiYEsUuxJEaU2kpqV6s kAwSK5StJH17K0htUZecBnF0hJ0i6Ga1t/5/0vII96v4epQO6InrqkBT0lNxCkae xmrJj4NuKmX2Hr26iGivhakpbXSqMXgkFhUO9RU7a0JCBKuvtCS9DbSJDTn1Zobj 3UxGAapznnH+0jGQc4wgmu2yad0TXvg0wHHAQRI13h7xM+vgxB5xma72fMjVzp86 NBsRTyfjJIuhRcCj3SMavV2aKWPBmPxxkyV/VRuu8JxbHYfQY5ywRijYkSVZLfJa L04CTUwFMSLz5g== -----END CERTIFICATE-----Generated at Sun Dec 21 15:39:54 2025 by rpki-client