This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/08cdb7-416e-43a6-a276-a0389602472f/1/xnp-TG1V61E8VFdgqP9lba3wuNc.mft File: xnp-TG1V61E8VFdgqP9lba3wuNc.mft (raw, json) Hash identifier: 7J1Px8q4rnup3IlZfdOTTikUyogipBj5SVHksOSzoxo= Subject key identifier: 58:5F:10:BF:76:37:D7:74:F0:DA:7E:17:5F:8D:9C:DB:80:61:0E:61 Authority key identifier: C6:7A:7E:4C:6D:55:EB:51:3C:54:57:60:A8:FF:65:6D:AD:F0:B8:D7 Certificate issuer: /CN=c67a7e4c6d55eb513c545760a8ff656dadf0b8d7 Certificate serial: 019B59E389FA0C6319E708079E8CADD097FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xnp-TG1V61E8VFdgqP9lba3wuNc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/08cdb7-416e-43a6-a276-a0389602472f/1/xnp-TG1V61E8VFdgqP9lba3wuNc.mft Manifest number: 0361 Signing time: Fri 26 Dec 2025 09:00:42 +0000 Manifest this update: Fri 26 Dec 2025 09:00:42 +0000 Manifest next update: Sat 27 Dec 2025 09:00:42 +0000 Files and hashes: 1: xnp-TG1V61E8VFdgqP9lba3wuNc.crl (hash: iTeJnpzZ/70luuKy65PAhpjP1dppJUvAbpnE2R4inwQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/08cdb7-416e-43a6-a276-a0389602472f/1/xnp-TG1V61E8VFdgqP9lba3wuNc.crl rsync://rpki.ripe.net/repository/DEFAULT/76/08cdb7-416e-43a6-a276-a0389602472f/1/xnp-TG1V61E8VFdgqP9lba3wuNc.mft rsync://rpki.ripe.net/repository/DEFAULT/xnp-TG1V61E8VFdgqP9lba3wuNc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e3:89:fa:0c:63:19:e7:08:07:9e:8c:ad:d0:97:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c67a7e4c6d55eb513c545760a8ff656dadf0b8d7 Validity Not Before: Dec 26 09:00:42 2025 GMT Not After : Dec 27 09:00:42 2025 GMT Subject: CN=585f10bf7637d774f0da7e175f8d9cdb80610e61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c2:22:3d:7a:94:6e:1d:a4:ad:37:6e:42:f2: 56:44:8b:c6:69:2e:c4:56:ac:51:4f:ac:8a:7a:12: 67:f9:6d:4f:09:0a:94:d5:93:85:95:b0:6a:5b:38: 99:7c:33:f2:2b:ee:a9:33:33:0e:59:dc:79:32:fb: 18:8b:60:e6:0c:7c:65:bf:c2:00:96:5d:c9:d8:af: ec:b6:12:d2:3e:d9:df:bb:49:fa:f3:74:7b:a0:89: 99:1c:fd:6b:25:a2:b4:eb:dd:d6:23:56:73:ee:7a: 1d:7c:bc:0a:29:77:1f:16:df:1c:ee:86:0d:66:d5: 45:ea:a1:a2:d2:67:c5:38:38:d2:83:ec:11:5f:ed: f9:00:2c:3c:38:04:c5:38:68:f9:be:09:6d:e8:92: ca:4d:bd:c2:ad:f8:61:bd:4d:38:15:17:a9:cc:23: bb:af:fb:2b:4e:d9:7b:ae:3b:17:66:71:6e:22:36: 94:82:69:50:ef:ed:b1:9c:99:05:23:af:0f:ae:bc: 18:f8:03:7a:07:b4:5e:b4:43:e3:37:0b:64:75:c4: 93:3d:24:6f:43:63:71:5b:25:66:20:c0:85:88:63: 43:4c:1f:58:cc:52:d8:88:77:7a:bf:6d:eb:ae:e4: 6b:f7:fd:dc:8d:75:bb:37:22:3a:19:90:8e:cb:fc: fe:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:5F:10:BF:76:37:D7:74:F0:DA:7E:17:5F:8D:9C:DB:80:61:0E:61 X509v3 Authority Key Identifier: keyid:C6:7A:7E:4C:6D:55:EB:51:3C:54:57:60:A8:FF:65:6D:AD:F0:B8:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xnp-TG1V61E8VFdgqP9lba3wuNc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/08cdb7-416e-43a6-a276-a0389602472f/1/xnp-TG1V61E8VFdgqP9lba3wuNc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/08cdb7-416e-43a6-a276-a0389602472f/1/xnp-TG1V61E8VFdgqP9lba3wuNc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:76:b6:17:c7:a2:61:14:1d:74:d2:ca:63:7e:3b:1e:c5:fa: 26:b7:1e:6e:2c:78:69:0d:21:54:c6:47:87:ff:2e:ca:e9:da: be:68:f4:3b:57:44:4b:53:76:ea:7d:5b:bb:fe:59:28:fa:f5: b6:8c:8c:4c:71:13:12:46:12:ba:9a:ee:88:64:cc:55:c3:20: 70:c2:32:a0:92:e1:7a:dc:5f:00:fe:b7:10:13:55:83:68:4f: 9e:3e:a2:0f:29:1b:fa:3a:a5:e3:a6:e8:f0:24:8c:9b:f8:8b: 66:4b:36:72:04:9c:02:6b:96:be:f3:b6:09:ce:fb:47:ed:b3: dc:be:4d:bb:58:43:53:49:33:b8:4b:ef:94:e5:1e:84:7e:47: 18:c1:92:ec:c2:e4:d7:da:b3:f6:e1:58:5e:50:0c:91:8f:07: 7b:56:3c:ab:f1:20:f2:1e:3d:ac:1f:a7:19:b9:ce:80:f1:c0: e8:aa:aa:42:f6:05:d5:f9:04:6b:01:3f:d0:d2:85:d2:d3:43: db:20:c9:01:5f:15:24:24:f1:28:a6:93:61:fa:e0:13:fc:5d: 4e:2c:bd:dc:d2:35:ed:73:bf:99:35:b2:f6:ba:74:48:21:05: 01:b5:92:18:13:31:2d:04:de:2c:87:84:e0:6a:d7:a3:58:9e: d9:10:6a:6b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ44n6DGMZ5wgHnoyt0Jf9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2N2E3ZTRjNmQ1NWViNTEzYzU0NTc2MGE4ZmY2NTZkYWRm MGI4ZDcwHhcNMjUxMjI2MDkwMDQyWhcNMjUxMjI3MDkwMDQyWjAzMTEwLwYDVQQD Eyg1ODVmMTBiZjc2MzdkNzc0ZjBkYTdlMTc1ZjhkOWNkYjgwNjEwZTYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAysIiPXqUbh2krTduQvJWRIvGaS7E VqxRT6yKehJn+W1PCQqU1ZOFlbBqWziZfDPyK+6pMzMOWdx5MvsYi2DmDHxlv8IA ll3J2K/sthLSPtnfu0n683R7oImZHP1rJaK0693WI1Zz7nodfLwKKXcfFt8c7oYN ZtVF6qGi0mfFODjSg+wRX+35ACw8OATFOGj5vglt6JLKTb3CrfhhvU04FRepzCO7 r/srTtl7rjsXZnFuIjaUgmlQ7+2xnJkFI68PrrwY+AN6B7RetEPjNwtkdcSTPSRv Q2NxWyVmIMCFiGNDTB9YzFLYiHd6v23rruRr9/3cjXW7NyI6GZCOy/z+EQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFhfEL92N9d08Np+F1+NnNuAYQ5hMB8GA1UdIwQY MBaAFMZ6fkxtVetRPFRXYKj/ZW2t8LjXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG5wLVRHMVY2MUU4VkZkZ3FQOWxiYTN3dU5jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni8wOGNkYjctNDE2ZS00M2E2LWEyNzYt YTAzODk2MDI0NzJmLzEveG5wLVRHMVY2MUU4VkZkZ3FQOWxiYTN3dU5jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni8wOGNkYjctNDE2ZS00M2E2LWEyNzYtYTAzODk2MDI0NzJm LzEveG5wLVRHMVY2MUU4VkZkZ3FQOWxiYTN3dU5jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqXa2F8ei YRQddNLKY347HsX6Jrcebix4aQ0hVMZHh/8uyunavmj0O1dES1N26n1bu/5ZKPr1 toyMTHETEkYSupruiGTMVcMgcMIyoJLhetxfAP63EBNVg2hPnj6iDykb+jql46bo 8CSMm/iLZks2cgScAmuWvvO2Cc77R+2z3L5Nu1hDU0kzuEvvlOUehH5HGMGS7MLk 19qz9uFYXlAMkY8He1Y8q/Eg8h49rB+nGbnOgPHA6KqqQvYF1fkEawE/0NKF0tND 2yDJAV8VJCTxKKaTYfrgE/xdTiy93NI17XO/mTWy9rp0SCEFAbWSGBMxLQTeLIeE 4GrXo1ie2RBqaw== -----END CERTIFICATE-----Generated at Fri Dec 26 15:57:16 2025 by rpki-client