This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft File: 500-XZlL7NPyWMQd858fY-xWPh0.mft (raw, json) Hash identifier: vLU3xwn31/6MdY/klV/eBASNCO8KNrHOYW80/3yn938= Subject key identifier: 33:B0:B3:41:51:16:E0:EC:CB:C7:97:97:60:93:C5:1D:15:61:33:0C Authority key identifier: E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D Certificate issuer: /CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d Certificate serial: 019B5ABF5E5CE91AB58A94FA683CEA201C98 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft Manifest number: 1142 Signing time: Fri 26 Dec 2025 13:00:49 +0000 Manifest this update: Fri 26 Dec 2025 13:00:49 +0000 Manifest next update: Sat 27 Dec 2025 13:00:49 +0000 Files and hashes: 1: 500-XZlL7NPyWMQd858fY-xWPh0.crl (hash: Twy02CUNwrULfMWEQCSZV7352PnWjKJxARhVODbQTnY=) 2: BBc69UDcCnvJ9YXOkYKIegaNiDE.roa (hash: u/teCtCSqk7whi20Ul6NWhHZ26QmJCDD43T9Guz4eqc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:bf:5e:5c:e9:1a:b5:8a:94:fa:68:3c:ea:20:1c:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d Validity Not Before: Dec 26 13:00:49 2025 GMT Not After : Dec 27 13:00:49 2025 GMT Subject: CN=33b0b3415116e0eccbc797976093c51d1561330c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:83:4b:05:3a:5a:10:24:c4:ce:93:a7:cb:50: c0:d3:55:14:66:c4:e8:9b:37:e3:84:79:d2:34:19: 9e:11:4b:8c:d1:64:42:22:9b:2e:67:74:4a:5f:26: 21:6f:c7:cb:9d:7b:c8:03:a0:50:78:f5:9a:86:dd: aa:f2:79:2a:d6:ae:1b:78:14:67:3d:b7:1d:54:61: e6:17:f9:a6:f0:82:10:39:33:3d:67:b4:7e:60:83: 77:a8:ec:19:3d:bc:4f:1a:5b:2b:03:a6:b1:5b:0d: 5a:76:2f:d7:60:a9:e9:93:67:36:3c:9a:22:d8:4e: 0b:ef:00:68:77:32:1f:85:15:b0:c4:3e:21:84:4f: b5:94:16:8a:02:fd:14:d5:14:b4:cd:17:69:25:47: c3:00:d8:4a:18:bd:87:04:80:e7:d9:ae:2d:33:f8: 14:cc:3a:10:9c:ad:34:42:c6:c5:8d:ba:97:5c:30: 7b:ce:be:7e:60:ce:71:14:71:b3:d9:5b:83:ef:c9: 8c:a6:14:3a:39:1b:f4:23:f5:fd:77:20:ac:ea:cc: 1e:ac:2c:73:bf:46:7e:57:0c:05:67:89:21:b6:8e: 51:40:f2:9c:f0:0a:85:c4:2b:8c:c5:d6:e6:ca:e3: 00:9e:90:08:2c:d8:67:b8:aa:5c:7f:49:31:ee:19: 78:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:B0:B3:41:51:16:E0:EC:CB:C7:97:97:60:93:C5:1D:15:61:33:0C X509v3 Authority Key Identifier: keyid:E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:13:0a:70:44:43:83:7c:c1:53:27:a7:be:2a:7f:88:fd:b9: af:d2:3c:08:b8:71:a7:27:4c:c2:19:db:aa:2e:f9:12:1c:86: 26:53:be:60:c0:a2:b5:db:4e:7b:90:a0:a0:b3:93:a2:87:75: a6:a2:a5:a1:c3:ef:bc:c6:17:57:a3:19:ef:64:0c:38:b8:53: 93:53:fa:1c:e7:c7:e7:37:7b:25:40:69:27:86:eb:52:4f:57: 44:b7:c2:be:ed:a8:1a:45:96:68:39:d2:77:5d:8b:24:85:b7: b5:c6:e7:10:92:a6:1c:c8:9c:14:54:4d:19:af:95:21:11:90: fd:b1:83:bb:08:3f:6f:30:c9:25:04:3a:2c:c5:53:e6:3f:9d: 3b:b1:96:7f:c3:91:de:2d:e8:d9:42:24:45:52:19:55:c0:2d: 5b:e4:4a:70:dc:88:52:1c:0f:cc:a4:ba:b9:59:f7:58:14:86: 6c:c7:a3:2a:97:59:1c:38:e6:aa:a3:96:40:77:2d:c1:da:f2: 8a:c4:12:63:27:3a:6c:12:45:04:cd:75:8d:31:19:87:70:3d: b1:c0:a3:3a:f1:1a:6c:d9:5e:35:8f:f0:61:f4:af:4e:76:04: 47:6a:cf:b8:61:2e:0e:73:46:d3:8e:87:2e:6c:3c:6e:39:19: 1a:0f:7c:77 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtav15c6Rq1ipT6aDzqIByYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3NGQzZTVkOTk0YmVjZDNmMjU4YzQxZGYzOWYxZjYzZWM1 NjNlMWQwHhcNMjUxMjI2MTMwMDQ5WhcNMjUxMjI3MTMwMDQ5WjAzMTEwLwYDVQQD EygzM2IwYjM0MTUxMTZlMGVjY2JjNzk3OTc2MDkzYzUxZDE1NjEzMzBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlYNLBTpaECTEzpOny1DA01UUZsTo mzfjhHnSNBmeEUuM0WRCIpsuZ3RKXyYhb8fLnXvIA6BQePWaht2q8nkq1q4beBRn PbcdVGHmF/mm8IIQOTM9Z7R+YIN3qOwZPbxPGlsrA6axWw1adi/XYKnpk2c2PJoi 2E4L7wBodzIfhRWwxD4hhE+1lBaKAv0U1RS0zRdpJUfDANhKGL2HBIDn2a4tM/gU zDoQnK00QsbFjbqXXDB7zr5+YM5xFHGz2VuD78mMphQ6ORv0I/X9dyCs6swerCxz v0Z+VwwFZ4khto5RQPKc8AqFxCuMxdbmyuMAnpAILNhnuKpcf0kx7hl4IQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDOws0FRFuDsy8eXl2CTxR0VYTMMMB8GA1UdIwQY MBaAFOdNPl2ZS+zT8ljEHfOfH2PsVj4dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNTAwLVhabEw3TlB5V01RZDg1OGZZLXhXUGgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC80MmUyNGMtMjFmNS00NDFmLWI2YmMt YzIzZDdhZGJlYmRjLzEvNTAwLVhabEw3TlB5V01RZDg1OGZZLXhXUGgwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC80MmUyNGMtMjFmNS00NDFmLWI2YmMtYzIzZDdhZGJlYmRj LzEvNTAwLVhabEw3TlB5V01RZDg1OGZZLXhXUGgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApBMKcERD g3zBUyenvip/iP25r9I8CLhxpydMwhnbqi75EhyGJlO+YMCitdtOe5CgoLOTood1 pqKlocPvvMYXV6MZ72QMOLhTk1P6HOfH5zd7JUBpJ4brUk9XRLfCvu2oGkWWaDnS d12LJIW3tcbnEJKmHMicFFRNGa+VIRGQ/bGDuwg/bzDJJQQ6LMVT5j+dO7GWf8OR 3i3o2UIkRVIZVcAtW+RKcNyIUhwPzKS6uVn3WBSGbMejKpdZHDjmqqOWQHctwdry isQSYyc6bBJFBM11jTEZh3A9scCjOvEabNleNY/wYfSvTnYER2rPuGEuDnNG046H Lmw8bjkZGg98dw== -----END CERTIFICATE-----Generated at Fri Dec 26 15:45:02 2025 by rpki-client