This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/e35121-9d16-4a26-a7b7-50140c681aca/1/XHOCiOHdRuIcmgORGXJEtHjQqyY.mft File: XHOCiOHdRuIcmgORGXJEtHjQqyY.mft (raw, json) Hash identifier: 3mDER/LSQF843epNe9CaLiYLLdqKu4ppLlCEwA3reoc= Subject key identifier: 55:BD:4E:70:A4:4F:75:60:F2:85:18:6A:4A:0E:85:F0:A7:82:F7:B0 Authority key identifier: 5C:73:82:88:E1:DD:46:E2:1C:9A:03:91:19:72:44:B4:78:D0:AB:26 Certificate issuer: /CN=5c738288e1dd46e21c9a0391197244b478d0ab26 Certificate serial: 019B5975B36AB351A16FFF9F9F810109FAE5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHOCiOHdRuIcmgORGXJEtHjQqyY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/e35121-9d16-4a26-a7b7-50140c681aca/1/XHOCiOHdRuIcmgORGXJEtHjQqyY.mft Manifest number: 1793 Signing time: Fri 26 Dec 2025 07:00:44 +0000 Manifest this update: Fri 26 Dec 2025 07:00:44 +0000 Manifest next update: Sat 27 Dec 2025 07:00:44 +0000 Files and hashes: 1: XHOCiOHdRuIcmgORGXJEtHjQqyY.crl (hash: FJ6ZzrOxXo4i0CM6WRr82OGi21V/Ak0Y1OEyaC7RDts=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/e35121-9d16-4a26-a7b7-50140c681aca/1/XHOCiOHdRuIcmgORGXJEtHjQqyY.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/e35121-9d16-4a26-a7b7-50140c681aca/1/XHOCiOHdRuIcmgORGXJEtHjQqyY.mft rsync://rpki.ripe.net/repository/DEFAULT/XHOCiOHdRuIcmgORGXJEtHjQqyY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:75:b3:6a:b3:51:a1:6f:ff:9f:9f:81:01:09:fa:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c738288e1dd46e21c9a0391197244b478d0ab26 Validity Not Before: Dec 26 07:00:44 2025 GMT Not After : Dec 27 07:00:44 2025 GMT Subject: CN=55bd4e70a44f7560f285186a4a0e85f0a782f7b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b8:a1:69:e8:47:b8:fb:65:29:e4:07:a3:6f: 0e:a2:3d:bf:47:4a:06:fa:f0:99:92:b3:8e:a7:96: 36:e1:b2:c3:5d:86:e6:51:04:b9:25:a1:1d:98:ee: 8f:2a:9d:49:a5:a4:cc:ad:51:d8:76:88:c8:35:e6: 6d:0c:d3:f6:3f:dd:7e:96:be:cc:bd:a3:8e:84:05: 3b:34:38:42:e7:fa:ee:14:f3:ad:3e:dd:e0:1e:6b: e0:77:16:e6:b4:1e:b3:8f:e7:8e:96:9f:8c:c3:a0: 03:0e:38:76:77:72:9e:ab:fc:6c:8a:a5:1f:df:72: ba:23:a5:b4:0f:12:18:cd:b4:57:14:cf:07:d8:d3: 2c:78:37:96:4b:42:7a:34:de:cf:d9:0f:92:20:aa: 32:58:fb:94:17:fe:2f:85:f0:3a:54:34:c7:66:dd: f2:1e:dc:4c:5c:50:76:eb:a3:3b:f6:b1:ea:17:84: 6a:32:d8:c4:ac:a2:f2:d6:19:a2:96:0b:5f:c9:60: 8d:71:cc:c2:93:ce:01:b4:e9:9d:36:46:3b:81:1d: 4d:39:55:41:2e:86:74:03:d5:8e:1d:43:25:b0:f5: 34:bb:08:91:34:cb:f4:39:d5:2b:df:e2:7f:de:71: 6d:18:0e:58:96:1f:82:7e:2a:c1:c4:8c:ac:15:23: a9:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:BD:4E:70:A4:4F:75:60:F2:85:18:6A:4A:0E:85:F0:A7:82:F7:B0 X509v3 Authority Key Identifier: keyid:5C:73:82:88:E1:DD:46:E2:1C:9A:03:91:19:72:44:B4:78:D0:AB:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHOCiOHdRuIcmgORGXJEtHjQqyY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e35121-9d16-4a26-a7b7-50140c681aca/1/XHOCiOHdRuIcmgORGXJEtHjQqyY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e35121-9d16-4a26-a7b7-50140c681aca/1/XHOCiOHdRuIcmgORGXJEtHjQqyY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:61:8e:f8:08:cc:8e:0b:d6:cb:9f:b4:11:56:92:2c:03:89: a0:70:4f:d9:4e:a1:06:57:c6:a0:c3:c5:da:05:66:41:8c:ea: 8b:c8:50:2a:93:c3:de:fb:16:ba:a3:44:f5:75:28:33:1e:ad: 22:91:bc:1b:15:20:66:14:7c:a9:bc:c4:c7:3f:2e:f8:50:81: de:5a:5e:d5:17:ad:a4:6a:7b:d5:fa:e1:ee:bd:9f:1d:76:0d: dc:21:e8:90:42:11:be:bb:9c:9e:7d:1e:02:89:3d:c5:c9:36: ff:af:be:db:75:ef:73:40:33:74:ba:b4:35:87:74:8c:74:6e: 28:20:f8:f9:27:33:3f:19:8d:76:a1:7f:c6:5b:75:c1:62:08: 7f:af:de:da:c2:66:d3:85:f6:3a:b7:2c:18:1a:01:c3:cc:60: 5f:d4:63:50:2e:c9:20:22:bc:0d:eb:04:8c:04:59:fd:02:bc: b2:60:81:9a:0f:4e:ec:5c:90:67:19:d9:6c:15:fe:c3:3b:42: 6d:47:f6:99:15:3d:67:40:95:5d:b4:eb:3b:e3:aa:ec:0b:2e: d2:78:33:40:39:c7:56:71:11:83:ec:8a:03:ad:61:c3:0f:5a: 4a:52:d7:54:27:71:ca:85:03:62:00:45:e0:1b:92:a9:a9:e8: cb:7c:95:26 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdbNqs1Ghb/+fn4EBCfrlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjNzM4Mjg4ZTFkZDQ2ZTIxYzlhMDM5MTE5NzI0NGI0Nzhk MGFiMjYwHhcNMjUxMjI2MDcwMDQ0WhcNMjUxMjI3MDcwMDQ0WjAzMTEwLwYDVQQD Eyg1NWJkNGU3MGE0NGY3NTYwZjI4NTE4NmE0YTBlODVmMGE3ODJmN2IwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy7ihaehHuPtlKeQHo28Ooj2/R0oG +vCZkrOOp5Y24bLDXYbmUQS5JaEdmO6PKp1JpaTMrVHYdojINeZtDNP2P91+lr7M vaOOhAU7NDhC5/ruFPOtPt3gHmvgdxbmtB6zj+eOlp+Mw6ADDjh2d3Keq/xsiqUf 33K6I6W0DxIYzbRXFM8H2NMseDeWS0J6NN7P2Q+SIKoyWPuUF/4vhfA6VDTHZt3y HtxMXFB266M79rHqF4RqMtjErKLy1hmilgtfyWCNcczCk84BtOmdNkY7gR1NOVVB LoZ0A9WOHUMlsPU0uwiRNMv0OdUr3+J/3nFtGA5Ylh+CfirBxIysFSOpEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFW9TnCkT3Vg8oUYakoOhfCngvewMB8GA1UdIwQY MBaAFFxzgojh3UbiHJoDkRlyRLR40KsmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEhPQ2lPSGRSdUljbWdPUkdYSkV0SGpRcXlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9lMzUxMjEtOWQxNi00YTI2LWE3Yjct NTAxNDBjNjgxYWNhLzEvWEhPQ2lPSGRSdUljbWdPUkdYSkV0SGpRcXlZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy9lMzUxMjEtOWQxNi00YTI2LWE3YjctNTAxNDBjNjgxYWNh LzEvWEhPQ2lPSGRSdUljbWdPUkdYSkV0SGpRcXlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALWGO+AjM jgvWy5+0EVaSLAOJoHBP2U6hBlfGoMPF2gVmQYzqi8hQKpPD3vsWuqNE9XUoMx6t IpG8GxUgZhR8qbzExz8u+FCB3lpe1RetpGp71frh7r2fHXYN3CHokEIRvrucnn0e Aok9xck2/6++23Xvc0AzdLq0NYd0jHRuKCD4+SczPxmNdqF/xlt1wWIIf6/e2sJm 04X2OrcsGBoBw8xgX9RjUC7JICK8DesEjARZ/QK8smCBmg9O7FyQZxnZbBX+wztC bUf2mRU9Z0CVXbTrO+Oq7Asu0ngzQDnHVnERg+yKA61hww9aSlLXVCdxyoUDYgBF 4BuSqanoy3yVJg== -----END CERTIFICATE-----Generated at Fri Dec 26 16:03:55 2025 by rpki-client