This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft File: XYqf18UZJuIuqKozs7iDjpPovt0.mft (raw, json) Hash identifier: CeI+ArtCqs3N9q9xjETjwpz1VOG6lRxOHXhk4HO6bRU= Subject key identifier: 6D:E1:65:55:4A:5D:40:D5:AE:62:1B:FC:CA:C4:AE:E4:4D:29:5E:FC Authority key identifier: 5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD Certificate issuer: /CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd Certificate serial: 019AF12DBDC8690FD1383D7E6DC9EE3821F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 01:01:37 +0000 Manifest this update: Sat 06 Dec 2025 01:01:37 +0000 Manifest next update: Sun 07 Dec 2025 01:01:37 +0000 Files and hashes: 1: 0RjgNRg0mrp-p0sUPcMzw9plAa8.roa (hash: /sIoNqXyJWt95PHx7AGb8pmEwy8qEaDKsd4+c9cdNhU=) 2: ByhvC5UK-f2zjyXJoOZ55QYyoFY.roa (hash: 7F3UrolhPGtbR/fySIsaZ7YzGq6FNxf2q9uu01GI6C0=) 3: DyR2WdJX7ABSVFzMG--Y2Rw480o.roa (hash: +lC9V9G29eZ0ubABsOu96g/K8AVuHJSib8VHpmomp9Q=) 4: HO-WF7oHezpfwwV3wUG7AErtTlE.roa (hash: 8SO7ZYvzAB17ADVUPvCZiM0fv0nIROPrrAJMFayW82A=) 5: XYqf18UZJuIuqKozs7iDjpPovt0.crl (hash: 3HyjK/lbqBt89lijT33KfbXAO956wNWR9q9zPlpnZmg=) 6: xZlrXqE8pd9RbauBbqs28LHvRHA.roa (hash: 2cai0/ZfgqLeuQF0rbi62rT8qPeDCMYpSTam6ord1Vg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:bd:c8:69:0f:d1:38:3d:7e:6d:c9:ee:38:21:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd Validity Not Before: Dec 6 01:01:37 2025 GMT Not After : Dec 7 01:01:37 2025 GMT Subject: CN=6de165554a5d40d5ae621bfccac4aee44d295efc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c3:66:85:0d:3c:17:20:c6:56:4c:a2:04:e6: f3:47:51:89:07:8f:b4:c9:96:64:4e:fc:4f:22:29: a8:59:cc:16:ef:72:4d:33:fc:5f:7f:f1:3c:cb:7d: c9:2d:44:c5:b1:f6:1e:4d:69:3c:43:2e:e6:7d:6a: ef:05:40:24:b2:05:97:9a:28:8d:ef:3d:42:cd:6a: b2:fb:48:2c:9c:38:24:06:57:80:9b:11:7c:67:36: 62:09:a7:90:13:d4:22:de:1a:1c:93:97:fb:30:12: 0c:18:95:b9:2d:93:68:68:5d:ed:64:20:48:86:19: c2:e9:32:b4:b1:18:0c:a7:34:c2:a3:83:79:2d:42: ce:a2:4f:7b:c8:e1:17:75:4b:36:62:72:a6:03:a8: 14:34:dd:fc:51:c3:aa:3b:45:64:3c:e9:48:d7:2b: 13:4d:d7:19:25:13:60:33:e2:35:e4:1e:49:89:0f: 86:a7:dc:38:ba:63:a5:d1:c1:94:e8:74:4e:f9:9c: ad:12:60:00:44:20:a0:42:22:12:b8:4d:c1:9f:34: 83:8e:7a:7d:40:21:bb:0d:c8:20:25:bd:95:af:f6: ac:1a:15:25:94:f6:14:65:96:dc:af:e6:38:7d:0f: a4:fe:f8:d7:36:f5:50:80:d8:4a:9b:13:d8:2f:be: 05:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:E1:65:55:4A:5D:40:D5:AE:62:1B:FC:CA:C4:AE:E4:4D:29:5E:FC X509v3 Authority Key Identifier: keyid:5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:e8:a0:ab:7b:13:13:70:e9:6c:04:df:79:bf:22:d7:6e:6b: 38:a9:55:4d:66:74:5f:45:4d:33:36:73:e4:54:65:6c:85:53: 33:74:a0:1b:a3:9a:4e:84:a1:66:6d:94:92:e7:3f:0f:66:10: 21:2d:f6:88:07:29:d4:45:c8:b8:f8:ef:15:21:ec:ea:7f:bb: 7c:50:bb:d4:a6:64:d3:71:28:54:0f:c3:50:71:e2:98:00:25: 26:06:c8:0d:58:e2:53:38:f1:8c:ea:d8:1e:37:cf:7c:ed:1e: 1c:7a:e6:ed:40:01:10:08:af:30:90:f3:56:d6:e0:95:74:a8: 9d:69:9e:bf:51:b6:d6:85:5a:5e:7e:79:f4:18:59:2b:4c:92: 90:9d:cf:ec:d5:6d:af:71:23:15:3b:d5:ab:08:2c:53:a5:c1: 8f:43:1a:9b:66:ba:35:63:f2:12:e7:dc:bf:62:23:a8:88:70: 75:86:32:53:88:ec:46:fd:e0:1b:30:a7:2e:d2:52:93:d4:29: 86:0c:e0:f9:32:58:f0:b1:47:dc:1c:ff:b9:9d:33:1c:06:74: a2:13:34:36:08:fe:12:06:b6:56:d5:65:3e:57:c9:e5:c6:47: 29:86:72:eb:af:cc:06:e8:5b:ba:03:2b:8c:3f:9c:a6:fa:fe: ef:41:2c:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLb3IaQ/ROD1+bcnuOCHzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkOGE5ZmQ3YzUxOTI2ZTIyZWE4YWEzM2IzYjg4MzhlOTNl OGJlZGQwHhcNMjUxMjA2MDEwMTM3WhcNMjUxMjA3MDEwMTM3WjAzMTEwLwYDVQQD Eyg2ZGUxNjU1NTRhNWQ0MGQ1YWU2MjFiZmNjYWM0YWVlNDRkMjk1ZWZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvcNmhQ08FyDGVkyiBObzR1GJB4+0 yZZkTvxPIimoWcwW73JNM/xff/E8y33JLUTFsfYeTWk8Qy7mfWrvBUAksgWXmiiN 7z1CzWqy+0gsnDgkBleAmxF8ZzZiCaeQE9Qi3hock5f7MBIMGJW5LZNoaF3tZCBI hhnC6TK0sRgMpzTCo4N5LULOok97yOEXdUs2YnKmA6gUNN38UcOqO0VkPOlI1ysT TdcZJRNgM+I15B5JiQ+Gp9w4umOl0cGU6HRO+ZytEmAARCCgQiISuE3BnzSDjnp9 QCG7DcggJb2Vr/asGhUllPYUZZbcr+Y4fQ+k/vjXNvVQgNhKmxPYL74FvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG3hZVVKXUDVrmIb/MrEruRNKV78MB8GA1UdIwQY MBaAFF2Kn9fFGSbiLqiqM7O4g46T6L7dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFlxZjE4VVpKdUl1cUtvenM3aURqcFBvdnQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9iYjg2MWQtMzMwZi00YTk3LTlmOWMt NjZjNTNmMmIxZjAyLzEvWFlxZjE4VVpKdUl1cUtvenM3aURqcFBvdnQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9iYjg2MWQtMzMwZi00YTk3LTlmOWMtNjZjNTNmMmIxZjAy LzEvWFlxZjE4VVpKdUl1cUtvenM3aURqcFBvdnQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIeigq3sT E3DpbATfeb8i125rOKlVTWZ0X0VNMzZz5FRlbIVTM3SgG6OaToShZm2Ukuc/D2YQ IS32iAcp1EXIuPjvFSHs6n+7fFC71KZk03EoVA/DUHHimAAlJgbIDVjiUzjxjOrY HjfPfO0eHHrm7UABEAivMJDzVtbglXSonWmev1G21oVaXn559BhZK0ySkJ3P7NVt r3EjFTvVqwgsU6XBj0Mam2a6NWPyEufcv2IjqIhwdYYyU4jsRv3gGzCnLtJSk9Qp hgzg+TJY8LFH3Bz/uZ0zHAZ0ohM0Ngj+Ega2VtVlPlfJ5cZHKYZy66/MBuhbugMr jD+cpvr+70Es2w== -----END CERTIFICATE-----Generated at Sat Dec 6 11:42:52 2025 by rpki-client