This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft File: xypST5sbOAHb18iaFgrsB2tX5yk.mft (raw, json) Hash identifier: i9Ytj7wlxQK2zCutO+rNZeY2Z7FVRaipLUM+k4dp59s= Subject key identifier: AA:9B:F7:C1:46:8F:C0:6E:62:0D:02:6D:A7:40:2A:AC:7E:6A:48:FE Authority key identifier: C7:2A:52:4F:9B:1B:38:01:DB:D7:C8:9A:16:0A:EC:07:6B:57:E7:29 Certificate issuer: /CN=c72a524f9b1b3801dbd7c89a160aec076b57e729 Certificate serial: 019B0BC83A9F05986E3073FC008E8B798728 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xypST5sbOAHb18iaFgrsB2tX5yk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft Manifest number: 0FD5 Signing time: Thu 11 Dec 2025 05:00:30 +0000 Manifest this update: Thu 11 Dec 2025 05:00:30 +0000 Manifest next update: Fri 12 Dec 2025 05:00:30 +0000 Files and hashes: 1: B5IPw2to02EUzOiZAkDMZAMJU40.roa (hash: SqPGfdHaKQmJHjb0Md5WPKQZqfqDkbS8MZiJDiQQgE0=) 2: QhPm8U1brOIqGs2lZ2LGdcxBiLA.roa (hash: b6IzZ0v53J6OJOZBPLixdFrIPoMrdc5UH4inFHWFRvM=) 3: kYBNVlP4IkeOs0bTiFV8wc5LMQs.roa (hash: g3QlMNFCFIgPt5yC/cat7+5gVwDPl1ap/dvIpROnsyw=) 4: xypST5sbOAHb18iaFgrsB2tX5yk.crl (hash: AgpMmF4a9pKWv422+3a+LnVOJQv5bqkeYweyT3kCIGE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.crl rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft rsync://rpki.ripe.net/repository/DEFAULT/xypST5sbOAHb18iaFgrsB2tX5yk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 05:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0b:c8:3a:9f:05:98:6e:30:73:fc:00:8e:8b:79:87:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c72a524f9b1b3801dbd7c89a160aec076b57e729 Validity Not Before: Dec 11 05:00:30 2025 GMT Not After : Dec 12 05:00:30 2025 GMT Subject: CN=aa9bf7c1468fc06e620d026da7402aac7e6a48fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:11:ba:3b:fa:4a:73:70:a2:26:bf:f7:37:5a: 3d:99:29:af:6f:14:59:a6:4b:d9:f5:84:0c:67:59: b9:fa:e3:d8:ff:08:43:00:fc:54:6c:16:a3:cf:9c: 28:25:35:f5:5a:c3:14:a2:a8:e2:67:05:1d:d5:aa: 7c:79:90:0a:fc:ea:fe:33:6a:48:f1:75:45:52:ec: a1:d1:3a:bc:00:e2:37:65:28:b4:b3:c7:8e:11:6e: 2c:38:27:66:4b:79:ee:75:cb:ca:0a:69:cf:b8:2c: f2:b2:ff:c9:92:1a:69:e8:49:14:23:f7:cc:e2:71: a5:44:93:a7:4e:9b:f3:11:91:58:8f:b9:9d:10:f6: 65:2a:f2:c2:b8:45:0f:86:f2:47:f6:65:53:10:b9: 6f:31:2f:2b:0a:e0:a1:5c:3f:30:ad:f0:40:3e:30: d9:93:30:3b:30:24:c3:5c:09:15:21:f2:c4:4e:16: fa:1c:ae:4e:8f:58:c7:b0:ce:48:08:ed:da:30:1b: 50:ca:fb:a3:c7:3c:cd:4f:40:fd:99:8a:fd:e4:01: 7b:f1:a4:e4:31:e8:9d:eb:01:2c:96:24:58:24:e8: 2e:f4:ac:7b:6a:40:42:d4:ce:a2:51:bb:f6:8e:26: f2:6a:e5:a3:93:89:8b:16:ff:37:ef:47:8c:7b:2e: 91:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:9B:F7:C1:46:8F:C0:6E:62:0D:02:6D:A7:40:2A:AC:7E:6A:48:FE X509v3 Authority Key Identifier: keyid:C7:2A:52:4F:9B:1B:38:01:DB:D7:C8:9A:16:0A:EC:07:6B:57:E7:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xypST5sbOAHb18iaFgrsB2tX5yk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:89:e3:b0:40:8c:c8:04:00:61:65:71:49:0f:a9:f0:f7:d3: d1:8e:19:f3:57:c3:f8:d3:a0:fb:b9:a4:91:8e:a0:c3:b5:66: 53:e1:0c:45:64:19:1c:46:75:19:31:61:ce:1b:9f:66:6a:de: 2f:29:a1:e6:60:6b:08:b2:a9:f1:0d:a6:84:30:6e:3f:89:1a: e3:c3:e3:10:77:39:eb:1f:ce:a2:d2:92:9c:a4:fd:81:01:ce: cd:9a:bb:3d:03:db:6d:65:0d:f6:e6:f4:95:d4:02:c4:29:33: 7b:ec:6b:34:42:f9:d5:9f:d8:2b:1c:99:6a:ca:85:64:b5:19: 0c:4e:13:de:19:c6:07:6a:5f:2c:52:d1:c2:fd:cb:d2:98:f4: cc:38:c4:d7:bb:1c:b6:40:b1:e8:97:d8:74:41:53:81:38:b2: 83:c7:27:c6:8d:10:36:a2:95:69:fd:0a:01:29:e7:48:be:20: 9b:f2:91:3d:f1:c1:f8:bb:df:0f:96:ed:6e:06:9c:ac:ac:f0: 87:d4:65:f1:46:92:0b:63:a1:fb:a0:63:59:ab:c0:f9:7b:ce: 14:73:52:a1:f8:d3:bc:8d:ae:17:1e:cd:c4:b1:f2:5e:29:fe: 19:24:f6:bb:2d:f2:d1:6c:5f:96:ee:f6:f9:17:35:42:f2:47: 21:aa:28:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsLyDqfBZhuMHP8AI6LeYcoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3MmE1MjRmOWIxYjM4MDFkYmQ3Yzg5YTE2MGFlYzA3NmI1 N2U3MjkwHhcNMjUxMjExMDUwMDMwWhcNMjUxMjEyMDUwMDMwWjAzMTEwLwYDVQQD EyhhYTliZjdjMTQ2OGZjMDZlNjIwZDAyNmRhNzQwMmFhYzdlNmE0OGZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvxG6O/pKc3CiJr/3N1o9mSmvbxRZ pkvZ9YQMZ1m5+uPY/whDAPxUbBajz5woJTX1WsMUoqjiZwUd1ap8eZAK/Or+M2pI 8XVFUuyh0Tq8AOI3ZSi0s8eOEW4sOCdmS3nudcvKCmnPuCzysv/Jkhpp6EkUI/fM 4nGlRJOnTpvzEZFYj7mdEPZlKvLCuEUPhvJH9mVTELlvMS8rCuChXD8wrfBAPjDZ kzA7MCTDXAkVIfLEThb6HK5Oj1jHsM5ICO3aMBtQyvujxzzNT0D9mYr95AF78aTk Meid6wEsliRYJOgu9Kx7akBC1M6iUbv2jibyauWjk4mLFv8370eMey6RpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKqb98FGj8BuYg0CbadAKqx+akj+MB8GA1UdIwQY MBaAFMcqUk+bGzgB29fImhYK7AdrV+cpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveHlwU1Q1c2JPQUhiMThpYUZncnNCMnRYNXlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My80ZTNjYzItMWEzMy00OTVhLTk5OWYt ZDdhNjg0YTU3YjE5LzEveHlwU1Q1c2JPQUhiMThpYUZncnNCMnRYNXlrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My80ZTNjYzItMWEzMy00OTVhLTk5OWYtZDdhNjg0YTU3YjE5 LzEveHlwU1Q1c2JPQUhiMThpYUZncnNCMnRYNXlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEonjsECM yAQAYWVxSQ+p8PfT0Y4Z81fD+NOg+7mkkY6gw7VmU+EMRWQZHEZ1GTFhzhufZmre Lymh5mBrCLKp8Q2mhDBuP4ka48PjEHc56x/OotKSnKT9gQHOzZq7PQPbbWUN9ub0 ldQCxCkze+xrNEL51Z/YKxyZasqFZLUZDE4T3hnGB2pfLFLRwv3L0pj0zDjE17sc tkCx6JfYdEFTgTiyg8cnxo0QNqKVaf0KASnnSL4gm/KRPfHB+LvfD5btbgacrKzw h9Rl8UaSC2Oh+6BjWavA+XvOFHNSofjTvI2uFx7NxLHyXin+GST2uy3y0Wxflu72 +Rc1QvJHIaooiw== -----END CERTIFICATE-----Generated at Thu Dec 11 15:11:16 2025 by rpki-client