This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft File: XBEKKwrrN_DJMqlr279-82whGXw.mft (raw, json) Hash identifier: 0vz8jzvLhCTFHSR+r8Qpuz9pcbgd5aOCkFu+HCnt5S0= Subject key identifier: 1C:50:17:06:8E:77:48:81:0A:62:76:A0:05:36:AE:52:54:68:8D:84 Authority key identifier: 5C:11:0A:2B:0A:EB:37:F0:C9:32:A9:6B:DB:BF:7E:F3:6C:21:19:7C Certificate issuer: /CN=5c110a2b0aeb37f0c932a96bdbbf7ef36c21197c Certificate serial: 019B1D994AEE8D33228A4AB2F91C6707FABC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft Manifest number: 12E4 Signing time: Sun 14 Dec 2025 16:02:23 +0000 Manifest this update: Sun 14 Dec 2025 16:02:23 +0000 Manifest next update: Mon 15 Dec 2025 16:02:23 +0000 Files and hashes: 1: XBEKKwrrN_DJMqlr279-82whGXw.crl (hash: 0ltlruujuGNltgQZEQLeApvJ2eiGhVOm9iDjn/7njh4=) 2: kzlWeerWBpLQJUvq-zvqgpRgYGk.roa (hash: nVND6/0jbck+9wjQsXvYtJIdnT8gV1/CUuZluisEp4g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 11:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1d:99:4a:ee:8d:33:22:8a:4a:b2:f9:1c:67:07:fa:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c110a2b0aeb37f0c932a96bdbbf7ef36c21197c Validity Not Before: Dec 14 16:02:23 2025 GMT Not After : Dec 15 16:02:23 2025 GMT Subject: CN=1c5017068e7748810a6276a00536ae5254688d84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:41:c7:f1:e8:c6:27:44:8a:07:9c:ae:4d:4a: 83:21:7e:a2:8c:6b:27:4d:f1:9e:9f:39:30:2f:c7: e4:1c:7f:26:73:5b:20:9e:ad:0b:5e:52:79:bc:69: c9:33:72:4c:9a:02:4f:46:72:62:8d:d1:d8:87:c8: ef:a6:a0:46:36:47:06:95:9c:e9:74:67:cd:23:e7: 39:e9:b6:20:2a:5c:a5:88:db:62:7f:53:80:ce:8c: 8b:27:2c:9d:d5:d8:8c:05:74:1e:bf:cf:07:35:db: 4a:ef:7b:a8:57:70:b0:4d:92:5d:76:5d:17:5c:f5: 3d:f9:93:7c:52:9a:6c:82:f7:27:9e:77:9d:4e:f0: 5a:76:71:15:9e:1b:c6:b6:92:b6:6e:d6:04:4f:2e: 2f:41:af:4a:57:04:f1:db:ff:3e:46:aa:5a:4a:a2: d5:86:21:f4:47:60:46:0c:b5:9a:82:47:03:31:e3: a5:4c:3c:7e:b3:48:8b:aa:f5:8f:d8:8c:de:27:46: 26:57:13:b7:11:40:49:d9:be:ad:af:8a:57:39:53: a2:cc:e7:3d:8d:6b:f1:11:20:cb:d0:2c:ec:06:f3: 01:84:3c:15:49:da:01:99:7f:47:d2:e2:58:aa:1c: 46:28:17:35:7f:3b:77:0a:16:83:70:26:c3:65:7f: 6a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:50:17:06:8E:77:48:81:0A:62:76:A0:05:36:AE:52:54:68:8D:84 X509v3 Authority Key Identifier: keyid:5C:11:0A:2B:0A:EB:37:F0:C9:32:A9:6B:DB:BF:7E:F3:6C:21:19:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:0d:d3:75:60:86:33:06:19:16:8e:1d:c6:e6:8b:8a:4c:cf: ea:e7:17:45:61:e1:46:d2:1d:66:87:4f:45:09:30:9a:ed:dc: cd:ec:bf:d0:f0:36:16:2b:fe:ab:c5:74:61:9b:42:a9:ee:e0: 36:7a:63:2d:ff:68:cf:92:d0:4a:9e:89:7c:e4:17:63:10:99: 38:0b:75:e4:ec:d7:c6:93:68:71:35:91:71:0e:0d:46:36:dd: 17:38:2a:9d:ed:4c:0c:bd:1a:44:89:f3:fd:2f:2c:ac:26:46: f8:56:f7:4a:e4:41:d9:69:74:71:a3:25:e2:63:7f:f6:61:ad: 7d:63:d5:89:7f:2c:f8:14:ec:83:6a:d9:a4:03:d7:b3:44:51: cb:2c:fa:2c:fa:49:e3:c3:64:ba:a8:5b:31:61:f9:06:34:c6: 0e:93:bb:e6:c4:0b:1c:84:d5:1e:3f:94:7d:14:c0:79:7e:3a: 58:5a:a5:f9:a8:7f:27:33:1c:a5:5c:84:03:af:b3:5f:72:47: 7d:95:d0:89:75:30:e8:29:56:25:c8:6f:ab:3a:cd:5d:e8:11: 4e:e7:e5:a7:c6:d0:e3:25:36:f4:0e:0c:2d:8d:48:12:49:f1: 2c:7b:62:71:21:4c:50:6d:ed:74:e1:c3:0a:f5:1a:84:5c:27: bc:ed:84:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsdmUrujTMiikqy+RxnB/q8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjMTEwYTJiMGFlYjM3ZjBjOTMyYTk2YmRiYmY3ZWYzNmMy MTE5N2MwHhcNMjUxMjE0MTYwMjIzWhcNMjUxMjE1MTYwMjIzWjAzMTEwLwYDVQQD EygxYzUwMTcwNjhlNzc0ODgxMGE2Mjc2YTAwNTM2YWU1MjU0Njg4ZDg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA10HH8ejGJ0SKB5yuTUqDIX6ijGsn TfGenzkwL8fkHH8mc1sgnq0LXlJ5vGnJM3JMmgJPRnJijdHYh8jvpqBGNkcGlZzp dGfNI+c56bYgKlyliNtif1OAzoyLJyyd1diMBXQev88HNdtK73uoV3CwTZJddl0X XPU9+ZN8UppsgvcnnnedTvBadnEVnhvGtpK2btYETy4vQa9KVwTx2/8+RqpaSqLV hiH0R2BGDLWagkcDMeOlTDx+s0iLqvWP2IzeJ0YmVxO3EUBJ2b6tr4pXOVOizOc9 jWvxESDL0CzsBvMBhDwVSdoBmX9H0uJYqhxGKBc1fzt3ChaDcCbDZX9qrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBxQFwaOd0iBCmJ2oAU2rlJUaI2EMB8GA1UdIwQY MBaAFFwRCisK6zfwyTKpa9u/fvNsIRl8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEJFS0t3cnJOX0RKTXFscjI3OS04MndoR1h3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS9lNGM0MzUtZTZjZC00ZGEwLTllMzIt YTQ0MjI0ZmFjM2ZmLzEvWEJFS0t3cnJOX0RKTXFscjI3OS04MndoR1h3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS9lNGM0MzUtZTZjZC00ZGEwLTllMzItYTQ0MjI0ZmFjM2Zm LzEvWEJFS0t3cnJOX0RKTXFscjI3OS04MndoR1h3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfw3TdWCG MwYZFo4dxuaLikzP6ucXRWHhRtIdZodPRQkwmu3czey/0PA2Fiv+q8V0YZtCqe7g NnpjLf9oz5LQSp6JfOQXYxCZOAt15OzXxpNocTWRcQ4NRjbdFzgqne1MDL0aRInz /S8srCZG+Fb3SuRB2Wl0caMl4mN/9mGtfWPViX8s+BTsg2rZpAPXs0RRyyz6LPpJ 48NkuqhbMWH5BjTGDpO75sQLHITVHj+UfRTAeX46WFql+ah/JzMcpVyEA6+zX3JH fZXQiXUw6ClWJchvqzrNXegRTuflp8bQ4yU29A4MLY1IEknxLHticSFMUG3tdOHD CvUahFwnvO2EAQ== -----END CERTIFICATE-----Generated at Sun Dec 14 21:36:59 2025 by rpki-client