This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.mft File: Xojs8KFK0YVzWdLOW9BCuflsfN0.mft (raw, json) Hash identifier: kLqsyjTNlcK41/wPNWz0+iaGTVXx5P7FYUeggdTH/Jg= Subject key identifier: 0A:29:98:FA:73:7E:AC:62:0F:C8:F7:46:CB:56:C1:BF:EA:C2:74:CC Authority key identifier: 5E:88:EC:F0:A1:4A:D1:85:73:59:D2:CE:5B:D0:42:B9:F9:6C:7C:DD Certificate issuer: /CN=5e88ecf0a14ad1857359d2ce5bd042b9f96c7cdd Certificate serial: 019AF2401EEB6A905F64E144148F5A11D16A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xojs8KFK0YVzWdLOW9BCuflsfN0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.mft Manifest number: 08E0 Signing time: Sat 06 Dec 2025 06:01:19 +0000 Manifest this update: Sat 06 Dec 2025 06:01:19 +0000 Manifest next update: Sun 07 Dec 2025 06:01:19 +0000 Files and hashes: 1: Xojs8KFK0YVzWdLOW9BCuflsfN0.crl (hash: QxuMWhuj44I692XDZtjIgTLs4pGztvvex1wEkk6MIcs=) 2: oNaxj3U73YsxY2SMYd62wSvMB4E.roa (hash: +NOpZAlgmwl+h9fy4R1kVxAQ1d7pxMvgMiKewHh1e4g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.crl rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.mft rsync://rpki.ripe.net/repository/DEFAULT/Xojs8KFK0YVzWdLOW9BCuflsfN0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:40:1e:eb:6a:90:5f:64:e1:44:14:8f:5a:11:d1:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5e88ecf0a14ad1857359d2ce5bd042b9f96c7cdd Validity Not Before: Dec 6 06:01:19 2025 GMT Not After : Dec 7 06:01:19 2025 GMT Subject: CN=0a2998fa737eac620fc8f746cb56c1bfeac274cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:32:9d:af:14:5c:51:ef:be:60:60:fe:f3:ed: 53:ad:71:5d:59:65:ee:86:61:8a:9f:ba:30:e3:9f: f8:b2:e8:89:a1:b6:95:aa:de:59:15:38:07:14:1a: da:89:d0:c5:97:59:bc:cd:1f:63:ae:31:76:fe:d1: 64:ab:2c:01:46:0c:eb:2f:b6:fc:e1:dc:e0:d4:e1: cb:f3:d0:1b:b2:06:c1:a7:2b:64:9a:43:25:78:cd: 5c:0e:25:41:34:ec:f3:34:31:af:a9:ab:b8:2b:45: 8b:d5:f6:bd:32:04:38:29:65:f8:81:bc:c9:c4:e6: 55:06:bb:a2:51:24:8a:52:26:9a:c6:d7:9e:21:4d: b2:92:6c:bc:4d:ff:9b:be:e3:19:3c:98:a9:18:09: 6d:a4:5b:79:80:dc:9b:23:7e:7c:04:27:17:00:12: 68:59:cf:68:c7:db:d8:94:62:6f:65:aa:f0:55:ef: 6b:83:1a:4a:9d:91:0a:b2:d4:ea:ed:3e:b4:34:1f: a3:54:1a:eb:8b:48:72:79:c5:ce:ec:ea:bc:c7:6d: 90:5c:74:6a:1d:a1:0a:e7:5d:18:6f:9b:a5:40:7c: 2b:96:65:c6:44:cb:4e:e6:a7:b7:a8:ae:b6:f4:55: 43:09:52:97:e5:8b:f4:5e:68:84:98:72:7d:dc:73: df:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:29:98:FA:73:7E:AC:62:0F:C8:F7:46:CB:56:C1:BF:EA:C2:74:CC X509v3 Authority Key Identifier: keyid:5E:88:EC:F0:A1:4A:D1:85:73:59:D2:CE:5B:D0:42:B9:F9:6C:7C:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xojs8KFK0YVzWdLOW9BCuflsfN0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:b8:64:a0:c6:f4:f6:2c:f2:2b:82:4b:70:a8:5c:58:7b:b5: 01:b4:8e:30:00:75:b0:96:8d:34:f6:4f:6d:43:77:cf:1b:d6: 55:33:aa:09:0f:d3:be:24:df:52:3e:87:93:f7:13:1f:34:39: 88:b5:bc:b5:f2:36:46:ae:46:98:07:3e:76:1c:d3:91:88:a0: 16:3d:e7:f2:b0:59:51:3c:fd:1c:78:50:31:17:a3:14:48:e7: 97:ff:00:4a:54:e3:51:9f:ec:4f:b9:b6:13:32:b8:2c:4b:f3: 66:6e:6d:9d:d4:c9:bb:02:dd:3b:44:ea:8b:4e:13:16:7d:89: 64:41:0e:71:1b:86:40:78:fc:2b:43:1b:2a:42:d7:7e:87:d7: b7:c5:71:03:9e:09:97:36:d8:2a:64:7f:58:85:65:76:b9:aa: ce:71:49:d8:19:1f:94:f9:03:9d:23:c7:f1:8c:4c:36:65:f4: 32:89:a3:3b:ae:32:38:5b:18:35:26:6c:1f:b5:f5:48:9c:a7: ba:4a:0e:22:21:cb:d6:92:95:db:79:a1:9e:39:ef:5e:06:47: 66:0d:d5:e4:d3:92:f6:ed:a0:c8:86:8e:46:88:6c:82:52:33: 7a:e9:99:7f:e5:7b:65:7d:f4:53:22:46:13:08:ca:1c:9f:bb: bc:69:3b:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryQB7rapBfZOFEFI9aEdFqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlODhlY2YwYTE0YWQxODU3MzU5ZDJjZTViZDA0MmI5Zjk2 YzdjZGQwHhcNMjUxMjA2MDYwMTE5WhcNMjUxMjA3MDYwMTE5WjAzMTEwLwYDVQQD EygwYTI5OThmYTczN2VhYzYyMGZjOGY3NDZjYjU2YzFiZmVhYzI3NGNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzKdrxRcUe++YGD+8+1TrXFdWWXu hmGKn7ow45/4suiJobaVqt5ZFTgHFBraidDFl1m8zR9jrjF2/tFkqywBRgzrL7b8 4dzg1OHL89AbsgbBpytkmkMleM1cDiVBNOzzNDGvqau4K0WL1fa9MgQ4KWX4gbzJ xOZVBruiUSSKUiaaxteeIU2ykmy8Tf+bvuMZPJipGAltpFt5gNybI358BCcXABJo Wc9ox9vYlGJvZarwVe9rgxpKnZEKstTq7T60NB+jVBrri0hyecXO7Oq8x22QXHRq HaEK510Yb5ulQHwrlmXGRMtO5qe3qK629FVDCVKX5Yv0XmiEmHJ93HPfYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAopmPpzfqxiD8j3RstWwb/qwnTMMB8GA1UdIwQY MBaAFF6I7PChStGFc1nSzlvQQrn5bHzdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWG9qczhLRkswWVZ6V2RMT1c5QkN1ZmxzZk4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8yMTFiMmUtNGUzYy00NDgyLWEyNzkt OWYwZjMzNTMyZWEzLzEvWG9qczhLRkswWVZ6V2RMT1c5QkN1ZmxzZk4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS8yMTFiMmUtNGUzYy00NDgyLWEyNzktOWYwZjMzNTMyZWEz LzEvWG9qczhLRkswWVZ6V2RMT1c5QkN1ZmxzZk4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKrhkoMb0 9izyK4JLcKhcWHu1AbSOMAB1sJaNNPZPbUN3zxvWVTOqCQ/TviTfUj6Hk/cTHzQ5 iLW8tfI2Rq5GmAc+dhzTkYigFj3n8rBZUTz9HHhQMRejFEjnl/8ASlTjUZ/sT7m2 EzK4LEvzZm5tndTJuwLdO0Tqi04TFn2JZEEOcRuGQHj8K0MbKkLXfofXt8VxA54J lzbYKmR/WIVldrmqznFJ2BkflPkDnSPH8YxMNmX0MomjO64yOFsYNSZsH7X1SJyn ukoOIiHL1pKV23mhnjnvXgZHZg3V5NOS9u2gyIaORohsglIzeumZf+V7ZX30UyJG EwjKHJ+7vGk71Q== -----END CERTIFICATE-----Generated at Sat Dec 6 07:55:55 2025 by rpki-client