This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft File: XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft (raw, json) Hash identifier: bvkSrjYR0Q3x/NJt3EhBRaAF03J/RhlKEO9y8ZHUEjs= Subject key identifier: 6C:DB:FF:1A:D8:7D:3C:5D:87:EA:FC:BA:99:4A:E3:8A:3E:E5:BD:DC Authority key identifier: 5D:3B:B8:48:91:65:1F:20:39:CD:81:B0:B6:09:12:F7:C0:E5:CF:96 Certificate issuer: /CN=5d3bb84891651f2039cd81b0b60912f7c0e5cf96 Certificate serial: 019B1539A0AEAA1217F79E35D6C985E0DDC5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft Manifest number: 12A9 Signing time: Sat 13 Dec 2025 01:00:56 +0000 Manifest this update: Sat 13 Dec 2025 01:00:56 +0000 Manifest next update: Sun 14 Dec 2025 01:00:56 +0000 Files and hashes: 1: EOCWiGvbLbC8SrTdZuW8112GldA.roa (hash: 6TEyJTlSHuy3i9dMVFX2h1KeLM589ScTuB8gZ6GHeEg=) 2: XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl (hash: PegA6vMvuqem77um61uEMuVwASl+335girsGgLJn8Dw=) 3: ZSASssxXWzh67IcbvQuSjMbjXlE.roa (hash: 8NFvVB0e1Ed6PcQb0KzEDJBB77MUqbc2YSQy8ySf1Y4=) 4: iefIsjicRY6rMPB46yzGeoYmfDY.roa (hash: wYK+cODxbPgs0PQn468rpCusa1e+6M4kLS/qnuHcsvY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 00:50:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:15:39:a0:ae:aa:12:17:f7:9e:35:d6:c9:85:e0:dd:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d3bb84891651f2039cd81b0b60912f7c0e5cf96 Validity Not Before: Dec 13 01:00:56 2025 GMT Not After : Dec 14 01:00:56 2025 GMT Subject: CN=6cdbff1ad87d3c5d87eafcba994ae38a3ee5bddc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:08:ba:e8:08:ff:a6:cb:08:25:6a:34:45:28: b3:cd:71:db:3d:29:f7:46:c5:91:b1:74:fe:18:75: 88:0d:e1:e6:aa:96:75:5b:4b:b5:3d:96:5c:84:aa: 02:58:6a:26:b6:3d:21:43:c1:f8:9d:3b:ee:7f:80: 85:c4:e3:db:6c:a9:1b:06:a7:35:59:96:fa:52:c3: e9:5d:e7:79:e8:87:cd:91:0e:51:3b:fd:d4:e5:4e: e0:ef:f9:c5:86:31:ee:30:ac:bf:57:ec:0c:0d:d4: a1:65:96:c2:db:8a:83:0b:19:62:15:37:06:ae:09: b6:50:61:ef:62:52:a0:9b:fd:79:1b:d5:8c:b1:4a: dd:33:90:3c:5a:fe:c4:ce:b6:ca:c8:69:08:b8:42: 2d:4d:be:66:b0:72:00:75:6d:fc:db:b6:f3:b5:1d: ae:b9:9d:8b:b9:c1:b7:ac:08:cd:8b:97:91:2b:e7: 90:a6:9e:6d:c0:47:de:7c:57:e5:8d:ed:10:24:23: 06:14:9f:77:32:94:c4:4c:28:bf:90:6d:cb:ef:df: 09:47:a7:05:51:f5:ae:3b:24:46:c0:5b:3b:37:b7: 65:88:ab:45:ae:a6:41:a2:11:c9:38:34:59:87:1a: 75:bc:02:ef:4e:e4:2f:58:11:06:ff:84:bc:de:e4: cb:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:DB:FF:1A:D8:7D:3C:5D:87:EA:FC:BA:99:4A:E3:8A:3E:E5:BD:DC X509v3 Authority Key Identifier: keyid:5D:3B:B8:48:91:65:1F:20:39:CD:81:B0:B6:09:12:F7:C0:E5:CF:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:b3:53:4e:c0:f7:23:a4:c2:39:03:ea:21:a4:9a:a8:47:e4: 3c:5f:81:83:7b:8e:b1:e9:44:64:cd:4c:83:68:55:2a:26:89: 4e:ec:85:55:fe:c8:a4:05:10:c4:04:80:d7:5c:87:77:8c:13: a9:0a:54:7d:9f:56:56:ca:3f:dd:b4:d3:09:54:18:94:c3:19: 28:f2:6c:fc:90:98:8c:75:44:1f:68:26:0e:c7:b0:dc:6e:28: 74:71:08:eb:7f:9b:89:d7:89:23:65:20:af:7d:cc:b9:32:f1: 89:80:9b:78:27:3b:9f:c0:41:a6:c7:3a:7d:3e:73:2b:b2:c1: fb:af:05:f5:7b:60:06:43:2e:95:74:3b:61:ba:f8:94:19:78: fb:04:a7:f9:41:83:cd:48:5b:65:22:5c:bf:59:7a:eb:59:1b: 49:30:99:b4:a6:31:49:35:91:72:9a:d5:29:84:fe:c2:06:27: 77:0b:aa:fb:2a:7b:9b:07:6d:4d:c0:92:8f:13:92:ba:54:e4: 3c:1e:c3:cc:ce:1a:a5:d1:a4:23:6d:8e:5a:f3:2a:10:22:72: 93:e5:23:87:bb:e1:b2:b7:cb:ad:f2:f6:69:23:45:c8:d8:c1: 7d:15:f4:ca:70:a2:32:6a:b3:1c:8e:9b:ec:73:0a:19:e4:93: 60:5d:1e:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsVOaCuqhIX95411smF4N3FMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkM2JiODQ4OTE2NTFmMjAzOWNkODFiMGI2MDkxMmY3YzBl NWNmOTYwHhcNMjUxMjEzMDEwMDU2WhcNMjUxMjE0MDEwMDU2WjAzMTEwLwYDVQQD Eyg2Y2RiZmYxYWQ4N2QzYzVkODdlYWZjYmE5OTRhZTM4YTNlZTViZGRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0wi66Aj/pssIJWo0RSizzXHbPSn3 RsWRsXT+GHWIDeHmqpZ1W0u1PZZchKoCWGomtj0hQ8H4nTvuf4CFxOPbbKkbBqc1 WZb6UsPpXed56IfNkQ5RO/3U5U7g7/nFhjHuMKy/V+wMDdShZZbC24qDCxliFTcG rgm2UGHvYlKgm/15G9WMsUrdM5A8Wv7EzrbKyGkIuEItTb5msHIAdW3827bztR2u uZ2LucG3rAjNi5eRK+eQpp5twEfefFflje0QJCMGFJ93MpTETCi/kG3L798JR6cF UfWuOyRGwFs7N7dliKtFrqZBohHJODRZhxp1vALvTuQvWBEG/4S83uTL3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGzb/xrYfTxdh+r8uplK44o+5b3cMB8GA1UdIwQY MBaAFF07uEiRZR8gOc2BsLYJEvfA5c+WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFR1NFNKRmxIeUE1ellHd3Rna1M5OERsejVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS81ODdmN2UtNjBjYy00MWEwLTg4Njkt NGY4YzYzOGE3MmUxLzEvWFR1NFNKRmxIeUE1ellHd3Rna1M5OERsejVZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS81ODdmN2UtNjBjYy00MWEwLTg4NjktNGY4YzYzOGE3MmUx LzEvWFR1NFNKRmxIeUE1ellHd3Rna1M5OERsejVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGLNTTsD3 I6TCOQPqIaSaqEfkPF+Bg3uOselEZM1Mg2hVKiaJTuyFVf7IpAUQxASA11yHd4wT qQpUfZ9WVso/3bTTCVQYlMMZKPJs/JCYjHVEH2gmDsew3G4odHEI63+bideJI2Ug r33MuTLxiYCbeCc7n8BBpsc6fT5zK7LB+68F9XtgBkMulXQ7Ybr4lBl4+wSn+UGD zUhbZSJcv1l661kbSTCZtKYxSTWRcprVKYT+wgYndwuq+yp7mwdtTcCSjxOSulTk PB7DzM4apdGkI22OWvMqECJyk+Ujh7vhsrfLrfL2aSNFyNjBfRX0ynCiMmqzHI6b 7HMKGeSTYF0e7Q== -----END CERTIFICATE-----Generated at Sat Dec 13 04:17:37 2025 by rpki-client