This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.mft File: XK56oVlNiZKbERo3Hw_ybyAvWOI.mft (raw, json) Hash identifier: Qs6QDa/MziRk8XVLEbXeGwl9x8j+K+rnl+uqQ4V/ygs= Subject key identifier: 43:75:DC:7F:A6:FF:81:03:B9:79:F0:DA:99:FC:5A:44:AD:40:EA:73 Authority key identifier: 5C:AE:7A:A1:59:4D:89:92:9B:11:1A:37:1F:0F:F2:6F:20:2F:58:E2 Certificate issuer: /CN=5cae7aa1594d89929b111a371f0ff26f202f58e2 Certificate serial: 019ABD3FAA4FB4C62DC038D9522312234476 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XK56oVlNiZKbERo3Hw_ybyAvWOI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.mft Manifest number: 1637 Signing time: Tue 25 Nov 2025 23:00:57 +0000 Manifest this update: Tue 25 Nov 2025 23:00:57 +0000 Manifest next update: Wed 26 Nov 2025 23:00:57 +0000 Files and hashes: 1: HdC41_gg5ZlJREFwcD8B_s_Bra8.roa (hash: GXMzejpdmlRhTsyiOMLzEkSoVbxi2Wz+Z222Mkk/eAI=) 2: XK56oVlNiZKbERo3Hw_ybyAvWOI.crl (hash: E00iMRkZczAaEx5wjPIOZsDI7BTjR9pEw9aU5YDyMpg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.mft rsync://rpki.ripe.net/repository/DEFAULT/XK56oVlNiZKbERo3Hw_ybyAvWOI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 26 Nov 2025 22:32:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:bd:3f:aa:4f:b4:c6:2d:c0:38:d9:52:23:12:23:44:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5cae7aa1594d89929b111a371f0ff26f202f58e2 Validity Not Before: Nov 25 23:00:57 2025 GMT Not After : Nov 26 23:00:57 2025 GMT Subject: CN=4375dc7fa6ff8103b979f0da99fc5a44ad40ea73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:6b:6b:84:2b:3e:00:d7:4f:65:06:74:b4:21: a2:fd:21:39:85:ed:3b:6a:af:46:58:17:b9:3f:98: cc:27:ad:99:82:d9:08:d0:bb:45:78:f3:37:4a:3d: 0f:5e:75:2d:90:12:23:7c:40:e9:65:c8:11:06:24: 88:b4:cc:e1:49:ff:39:48:38:9b:d3:bd:5e:48:18: 2a:0c:3f:aa:d7:d7:7b:f0:77:9b:21:4d:46:14:73: ac:7b:f0:e5:52:bd:1f:4b:a7:0a:a5:2b:d6:c9:62: b2:b9:f9:19:09:cb:9a:25:77:c6:ab:1d:a3:c9:36: 07:eb:19:46:56:33:ad:e3:07:ec:18:5d:70:48:8e: 69:53:51:d9:31:5a:83:98:03:c1:45:bb:9b:db:59: 37:ca:47:72:90:6e:2e:ec:33:76:99:41:75:15:01: 0a:4f:67:c4:51:a1:63:f2:29:2e:67:25:f5:35:e6: 6d:6a:66:75:1d:aa:da:a9:8f:97:b4:c9:37:26:6a: ef:1c:52:27:fc:81:e4:f2:b5:1c:c6:0e:f6:29:ba: 26:f2:bf:c8:28:f6:95:9f:1e:31:d9:01:8a:0e:6c: d6:36:96:46:74:2c:d0:a4:e3:35:ed:65:ff:ec:d9: 58:1e:bd:34:b0:fb:12:5e:e0:76:7e:69:9f:c6:ce: ca:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:75:DC:7F:A6:FF:81:03:B9:79:F0:DA:99:FC:5A:44:AD:40:EA:73 X509v3 Authority Key Identifier: keyid:5C:AE:7A:A1:59:4D:89:92:9B:11:1A:37:1F:0F:F2:6F:20:2F:58:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XK56oVlNiZKbERo3Hw_ybyAvWOI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:38:de:4f:76:ef:05:85:5e:ca:67:fd:cb:1a:da:bd:75:0f: 03:47:25:3e:8f:e6:9b:b4:0a:01:ff:26:bc:77:6a:6d:0e:23: 55:6f:ad:fd:35:aa:8c:27:9e:66:3f:8c:1b:9b:91:76:aa:bc: e3:cc:3a:1a:ba:ab:5a:57:a4:2d:ac:58:a4:d7:d8:09:d4:44: e0:65:00:7c:37:d1:45:ce:e6:ab:7b:6a:ed:e4:bc:60:6d:54: bb:1e:54:c8:31:4a:c7:7b:dc:8a:f9:06:da:90:d2:49:f9:67: c8:1b:32:67:45:c5:6e:6b:35:a2:72:ec:95:92:aa:3d:8e:ed: 71:94:cf:b2:57:44:b7:3f:30:44:0a:4a:4b:40:ae:85:49:ee: e2:9e:62:61:f2:db:dd:af:1d:e9:53:27:54:4d:c3:03:d6:70: 6b:39:da:7b:fc:55:44:4b:4f:ac:36:e4:e8:89:fc:85:c9:02: 7d:3d:a8:f5:72:bb:d3:f4:d9:bb:1d:45:28:b2:6c:59:f7:27: c0:8a:72:33:2a:1d:41:98:fc:7c:97:72:b0:11:a2:9f:7b:eb: b5:5b:98:72:4d:01:1f:a9:87:f7:ce:54:0b:02:c9:56:b0:90: 0d:63:bd:e0:7c:17:75:b1:cb:75:02:48:df:63:9b:a0:bb:d2: e8:56:9a:51 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZq9P6pPtMYtwDjZUiMSI0R2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjYWU3YWExNTk0ZDg5OTI5YjExMWEzNzFmMGZmMjZmMjAy ZjU4ZTIwHhcNMjUxMTI1MjMwMDU3WhcNMjUxMTI2MjMwMDU3WjAzMTEwLwYDVQQD Eyg0Mzc1ZGM3ZmE2ZmY4MTAzYjk3OWYwZGE5OWZjNWE0NGFkNDBlYTczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkmtrhCs+ANdPZQZ0tCGi/SE5he07 aq9GWBe5P5jMJ62ZgtkI0LtFePM3Sj0PXnUtkBIjfEDpZcgRBiSItMzhSf85SDib 071eSBgqDD+q19d78HebIU1GFHOse/DlUr0fS6cKpSvWyWKyufkZCcuaJXfGqx2j yTYH6xlGVjOt4wfsGF1wSI5pU1HZMVqDmAPBRbub21k3ykdykG4u7DN2mUF1FQEK T2fEUaFj8ikuZyX1NeZtamZ1HaraqY+XtMk3JmrvHFIn/IHk8rUcxg72Kbom8r/I KPaVnx4x2QGKDmzWNpZGdCzQpOM17WX/7NlYHr00sPsSXuB2fmmfxs7KSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEN13H+m/4EDuXnw2pn8WkStQOpzMB8GA1UdIwQY MBaAFFyueqFZTYmSmxEaNx8P8m8gL1jiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEs1Nm9WbE5pWktiRVJvM0h3X3lieUF2V09JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy81ZTZiYWUtOTYyZi00MDU3LThlYzUt Mjc5ZjU5NGIzYTJmLzEvWEs1Nm9WbE5pWktiRVJvM0h3X3lieUF2V09JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy81ZTZiYWUtOTYyZi00MDU3LThlYzUtMjc5ZjU5NGIzYTJm LzEvWEs1Nm9WbE5pWktiRVJvM0h3X3lieUF2V09JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgzjeT3bv BYVeymf9yxravXUPA0clPo/mm7QKAf8mvHdqbQ4jVW+t/TWqjCeeZj+MG5uRdqq8 48w6GrqrWlekLaxYpNfYCdRE4GUAfDfRRc7mq3tq7eS8YG1Uux5UyDFKx3vcivkG 2pDSSflnyBsyZ0XFbms1onLslZKqPY7tcZTPsldEtz8wRApKS0CuhUnu4p5iYfLb 3a8d6VMnVE3DA9Zwaznae/xVREtPrDbk6In8hckCfT2o9XK70/TZux1FKLJsWfcn wIpyMyodQZj8fJdysBGin3vrtVuYck0BH6mH985UCwLJVrCQDWO94HwXdbHLdQJI 32OboLvS6FaaUQ== -----END CERTIFICATE-----Generated at Wed Nov 26 02:04:30 2025 by rpki-client