This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft File: XHbv8miEvwBiB9cis7AaRNK1YZk.mft (raw, json) Hash identifier: cyAuvFbCdBKdkbRM0l02ZFg0nHnn84rUXzYNfR7D+O0= Subject key identifier: 78:B5:B4:0F:55:A3:21:C3:2A:E5:8F:55:6A:E5:93:B3:63:9A:4F:48 Authority key identifier: 5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99 Certificate issuer: /CN=5c76eff26884bf006207d722b3b01a44d2b56199 Certificate serial: 019AF12EC436B15C12C022A872A4F155501B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft Manifest number: 0F98 Signing time: Sat 06 Dec 2025 01:02:45 +0000 Manifest this update: Sat 06 Dec 2025 01:02:45 +0000 Manifest next update: Sun 07 Dec 2025 01:02:45 +0000 Files and hashes: 1: XHbv8miEvwBiB9cis7AaRNK1YZk.crl (hash: C8DAXg5p/rjvqhx7JwsY2MVKEgo3R6NxietEEdb3lXM=) 2: aeqC4EE0KUZ0Hdgey5muRSCYEvc.roa (hash: aH7XcxnHv3qEq7LQXqlBVrjotePFAy5nc/77ZI52Ock=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:c4:36:b1:5c:12:c0:22:a8:72:a4:f1:55:50:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c76eff26884bf006207d722b3b01a44d2b56199 Validity Not Before: Dec 6 01:02:45 2025 GMT Not After : Dec 7 01:02:45 2025 GMT Subject: CN=78b5b40f55a321c32ae58f556ae593b3639a4f48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7b:9d:65:1b:f4:c7:e0:c0:dc:3d:af:ea:b4: ca:ac:91:bf:69:56:a0:50:cf:6a:06:60:d4:41:7a: c7:6b:b1:bf:ff:01:00:0c:dd:fd:28:5d:d7:b4:c3: ac:69:9a:84:d7:3a:f6:0c:17:3a:d9:5f:93:7f:78: 2d:81:f9:c4:63:d6:8f:01:7c:0e:d9:cb:bb:53:a7: 5f:13:15:59:db:e7:5a:9a:c7:0f:ff:75:d8:57:34: 99:cb:83:4f:91:e7:65:4f:8a:1b:b1:e7:73:f0:11: ea:4f:b2:ca:94:ff:7a:98:27:c9:c3:bb:85:4e:7c: 21:42:84:40:8c:e0:c0:d2:53:4d:e4:08:55:e1:f4: 8a:8d:93:57:42:32:89:5a:86:c8:db:57:9e:ef:70: 98:47:75:de:09:0e:e0:25:35:a1:f4:a3:97:dd:5c: 9b:74:88:1d:d8:85:a4:2e:1e:ba:aa:9b:4a:04:2f: 5f:03:e0:93:9a:7a:46:48:4b:d8:ef:7c:d7:0b:9f: 80:c8:cb:52:ff:75:95:e2:59:12:62:65:82:49:af: f9:24:3b:5e:0d:93:db:da:a6:88:e4:7e:b9:1a:92: 8a:d6:cc:f4:1a:96:99:d8:ad:18:a9:f6:4f:ce:93: d2:68:5c:78:60:ff:ba:bb:bf:09:d0:c4:ea:f8:fa: 0d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:B5:B4:0F:55:A3:21:C3:2A:E5:8F:55:6A:E5:93:B3:63:9A:4F:48 X509v3 Authority Key Identifier: keyid:5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:0b:4b:4d:09:6c:22:57:0b:b1:10:31:cb:f0:14:a6:14:06: 78:cf:fc:08:0e:17:97:00:42:c6:49:e1:02:e9:30:7c:92:18: 5b:82:cf:17:20:b0:93:6b:5c:02:74:10:0d:54:e4:ee:28:cb: 06:b1:88:80:20:de:db:11:df:d6:a8:e6:6e:2e:dd:0c:9d:b0: 0e:07:91:22:fb:07:6c:b7:97:a8:37:b0:08:83:ed:8c:a6:f2: ec:a7:b4:a7:41:10:e8:4e:37:85:9d:a7:49:2c:7a:85:a1:e0: 66:63:df:55:04:28:7a:c1:a8:9a:a8:8b:ab:40:7d:48:84:5b: 89:6f:15:e9:4f:e7:37:56:70:e7:8e:a6:4d:ab:d2:71:46:ef: 12:e1:85:a4:13:78:83:03:c8:6d:8c:ab:3c:39:04:84:2d:d2: 92:b3:30:36:c8:2a:ca:dd:af:51:26:8c:24:8a:a6:75:41:6f: ee:f5:ed:19:0e:e7:4e:75:bc:91:7c:e7:e3:23:54:29:5e:80: 1a:d2:b6:4f:48:1c:35:a9:1c:16:0f:e3:a2:be:89:01:12:ae: 05:f1:07:d3:0b:82:3b:45:5f:7c:2d:bc:4c:ae:f6:d9:f8:47: 8d:c5:d6:60:47:1e:99:50:9a:9c:99:ec:e9:08:12:99:ee:d3: 94:9b:22:13 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLsQ2sVwSwCKocqTxVVAbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjNzZlZmYyNjg4NGJmMDA2MjA3ZDcyMmIzYjAxYTQ0ZDJi NTYxOTkwHhcNMjUxMjA2MDEwMjQ1WhcNMjUxMjA3MDEwMjQ1WjAzMTEwLwYDVQQD Eyg3OGI1YjQwZjU1YTMyMWMzMmFlNThmNTU2YWU1OTNiMzYzOWE0ZjQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtnudZRv0x+DA3D2v6rTKrJG/aVag UM9qBmDUQXrHa7G//wEADN39KF3XtMOsaZqE1zr2DBc62V+Tf3gtgfnEY9aPAXwO 2cu7U6dfExVZ2+damscP/3XYVzSZy4NPkedlT4obsedz8BHqT7LKlP96mCfJw7uF TnwhQoRAjODA0lNN5AhV4fSKjZNXQjKJWobI21ee73CYR3XeCQ7gJTWh9KOX3Vyb dIgd2IWkLh66qptKBC9fA+CTmnpGSEvY73zXC5+AyMtS/3WV4lkSYmWCSa/5JDte DZPb2qaI5H65GpKK1sz0GpaZ2K0YqfZPzpPSaFx4YP+6u78J0MTq+PoNIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHi1tA9VoyHDKuWPVWrlk7Njmk9IMB8GA1UdIwQY MBaAFFx27/JohL8AYgfXIrOwGkTStWGZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEhidjhtaUV2d0JpQjljaXM3QWFSTksxWVprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny84NjIyMzItNThkNy00YzFkLWIxOTgt NjYwNDExYjlkMTY3LzEvWEhidjhtaUV2d0JpQjljaXM3QWFSTksxWVprLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny84NjIyMzItNThkNy00YzFkLWIxOTgtNjYwNDExYjlkMTY3 LzEvWEhidjhtaUV2d0JpQjljaXM3QWFSTksxWVprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsgtLTQls IlcLsRAxy/AUphQGeM/8CA4XlwBCxknhAukwfJIYW4LPFyCwk2tcAnQQDVTk7ijL BrGIgCDe2xHf1qjmbi7dDJ2wDgeRIvsHbLeXqDewCIPtjKby7Ke0p0EQ6E43hZ2n SSx6haHgZmPfVQQoesGomqiLq0B9SIRbiW8V6U/nN1Zw546mTavScUbvEuGFpBN4 gwPIbYyrPDkEhC3SkrMwNsgqyt2vUSaMJIqmdUFv7vXtGQ7nTnW8kXzn4yNUKV6A GtK2T0gcNakcFg/jor6JARKuBfEH0wuCO0VffC28TK722fhHjcXWYEcemVCanJns 6QgSme7TlJsiEw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:53:21 2025 by rpki-client