This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.mft File: xWYvmAINpON9UO07swICd08pLXo.mft (raw, json) Hash identifier: ICcyqg1arsqFk6RvXe9ZSb4Q8dYOtII4Q4/G8NNSKwo= Subject key identifier: 78:A5:D0:A4:29:14:5C:0B:4A:2B:15:A9:5D:D2:83:9F:5F:FE:DF:3F Authority key identifier: C5:66:2F:98:02:0D:A4:E3:7D:50:ED:3B:B3:02:02:77:4F:29:2D:7A Certificate issuer: /CN=c5662f98020da4e37d50ed3bb30202774f292d7a Certificate serial: 019B59E472789F2512D4D4C16A43CEE57687 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xWYvmAINpON9UO07swICd08pLXo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.mft Manifest number: 03E9 Signing time: Fri 26 Dec 2025 09:01:42 +0000 Manifest this update: Fri 26 Dec 2025 09:01:42 +0000 Manifest next update: Sat 27 Dec 2025 09:01:42 +0000 Files and hashes: 1: k3mYd88nhjXgIJYUkD0IW4wB334.roa (hash: ES4bfd/D7kl4HbO8JFVGRKGNEndi7/c5Oef8CAe6LiM=) 2: xWYvmAINpON9UO07swICd08pLXo.crl (hash: xd/P8L/jpoSV5h1llh7rDb+Em4YYORx25y7ImhAaTME=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.mft rsync://rpki.ripe.net/repository/DEFAULT/xWYvmAINpON9UO07swICd08pLXo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e4:72:78:9f:25:12:d4:d4:c1:6a:43:ce:e5:76:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c5662f98020da4e37d50ed3bb30202774f292d7a Validity Not Before: Dec 26 09:01:42 2025 GMT Not After : Dec 27 09:01:42 2025 GMT Subject: CN=78a5d0a429145c0b4a2b15a95dd2839f5ffedf3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7f:33:b2:1c:a2:aa:14:cd:5b:b5:cf:b0:52: bb:50:12:b2:0a:35:53:10:cb:03:bb:dc:17:e6:4f: 28:30:1f:bb:5b:f6:f3:15:61:e0:d3:63:6d:53:39: 90:55:8f:19:14:64:91:65:7d:08:b5:4f:86:38:91: 34:f2:00:77:7d:23:79:3f:9c:dc:0a:b8:df:e0:9e: d4:1e:af:83:04:c8:0b:9d:fc:5e:cd:54:ce:ac:e7: b1:c5:ce:fc:9b:48:28:83:c0:1f:f6:75:10:e8:81: ef:8f:22:00:78:ff:31:1d:0f:da:37:83:af:77:27: a0:bd:2d:18:b4:97:b3:b6:24:eb:35:9f:8c:98:0a: db:a4:cf:9c:30:e4:45:4b:bb:bf:bd:34:f2:b8:28: 87:6f:ca:ff:c6:a5:f8:4b:09:5c:9d:cd:20:b9:ae: d4:f5:1b:13:62:1e:88:a3:e0:45:df:fa:40:54:7e: 82:ef:9d:8c:a8:d2:54:ce:0c:ec:f7:ad:82:3c:67: 9f:71:d7:53:28:66:07:87:60:30:ca:74:42:21:02: 91:27:a4:c4:b9:a6:4f:01:0d:e9:10:0c:10:e8:c5: 5b:24:e8:72:db:23:9d:d2:8b:69:be:b4:10:58:b0: b1:20:6f:f3:9e:81:ab:50:9d:b9:1d:c6:52:2b:6e: d3:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:A5:D0:A4:29:14:5C:0B:4A:2B:15:A9:5D:D2:83:9F:5F:FE:DF:3F X509v3 Authority Key Identifier: keyid:C5:66:2F:98:02:0D:A4:E3:7D:50:ED:3B:B3:02:02:77:4F:29:2D:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xWYvmAINpON9UO07swICd08pLXo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:34:ca:74:ff:77:96:30:2c:92:2a:57:13:ba:c2:e6:33:d0: d7:e0:24:40:e1:d5:d6:74:65:cc:ed:81:68:07:57:ec:09:73: 90:2a:83:7e:78:23:a2:b8:1f:e5:42:2e:4e:ee:9b:84:e7:78: 82:f2:03:5f:1c:11:d7:ec:e6:6a:0b:f6:df:a8:9d:2e:34:c9: 9a:bf:b1:fc:11:7f:c8:a9:73:f7:81:53:f7:bc:98:c6:f0:fb: 34:71:c3:3c:d3:d3:d8:f3:56:f2:48:2f:39:72:b7:f8:3c:56: 60:b6:2c:68:be:91:09:e4:48:a8:a5:bf:bf:0f:db:ae:2b:25: 59:8b:a5:e8:55:73:9a:ad:98:65:3b:84:b8:17:2e:77:7d:82: a7:dd:c5:06:c0:a2:82:cc:4f:38:a4:33:99:22:b6:7a:ea:27: d8:45:87:1f:1a:34:2f:a4:37:06:b4:6d:5e:f4:0c:ee:15:57: 60:52:41:20:eb:51:3b:e8:e5:57:c3:ac:5d:27:38:ee:b4:8e: 89:87:d2:e8:71:ac:dc:aa:82:e0:cb:43:12:c1:31:27:7a:df: c5:c6:5a:04:4e:bb:3f:5c:33:92:83:02:61:4b:9c:e5:97:3d: 22:35:0e:86:cd:0e:ba:7c:ce:b1:52:54:5a:1b:4f:5b:69:6e: ad:d3:eb:06 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ5HJ4nyUS1NTBakPO5XaHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1NjYyZjk4MDIwZGE0ZTM3ZDUwZWQzYmIzMDIwMjc3NGYy OTJkN2EwHhcNMjUxMjI2MDkwMTQyWhcNMjUxMjI3MDkwMTQyWjAzMTEwLwYDVQQD Eyg3OGE1ZDBhNDI5MTQ1YzBiNGEyYjE1YTk1ZGQyODM5ZjVmZmVkZjNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnX8zshyiqhTNW7XPsFK7UBKyCjVT EMsDu9wX5k8oMB+7W/bzFWHg02NtUzmQVY8ZFGSRZX0ItU+GOJE08gB3fSN5P5zc Crjf4J7UHq+DBMgLnfxezVTOrOexxc78m0gog8Af9nUQ6IHvjyIAeP8xHQ/aN4Ov dyegvS0YtJeztiTrNZ+MmArbpM+cMORFS7u/vTTyuCiHb8r/xqX4Swlcnc0gua7U 9RsTYh6Io+BF3/pAVH6C752MqNJUzgzs962CPGefcddTKGYHh2AwynRCIQKRJ6TE uaZPAQ3pEAwQ6MVbJOhy2yOd0otpvrQQWLCxIG/znoGrUJ25HcZSK27TUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHil0KQpFFwLSisVqV3Sg59f/t8/MB8GA1UdIwQY MBaAFMVmL5gCDaTjfVDtO7MCAndPKS16MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveFdZdm1BSU5wT045VU8wN3N3SUNkMDhwTFhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi81ZDZjMTUtYTU4OC00MWRjLWE2YTIt Zjg5OTc3YTQ1YjYwLzEveFdZdm1BSU5wT045VU8wN3N3SUNkMDhwTFhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi81ZDZjMTUtYTU4OC00MWRjLWE2YTItZjg5OTc3YTQ1YjYw LzEveFdZdm1BSU5wT045VU8wN3N3SUNkMDhwTFhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArjTKdP93 ljAskipXE7rC5jPQ1+AkQOHV1nRlzO2BaAdX7AlzkCqDfngjorgf5UIuTu6bhOd4 gvIDXxwR1+zmagv236idLjTJmr+x/BF/yKlz94FT97yYxvD7NHHDPNPT2PNW8kgv OXK3+DxWYLYsaL6RCeRIqKW/vw/brislWYul6FVzmq2YZTuEuBcud32Cp93FBsCi gsxPOKQzmSK2euon2EWHHxo0L6Q3BrRtXvQM7hVXYFJBIOtRO+jlV8OsXSc47rSO iYfS6HGs3KqC4MtDEsExJ3rfxcZaBE67P1wzkoMCYUuc5Zc9IjUOhs0OunzOsVJU WhtPW2lurdPrBg== -----END CERTIFICATE-----Generated at Fri Dec 26 14:18:21 2025 by rpki-client