This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft File: XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft (raw, json) Hash identifier: 4My9tzGqCE4FO8Ibbda0Qtmnskv2RCMjpGIjVdKR5JI= Subject key identifier: D3:4E:67:D4:16:19:93:94:75:77:44:A3:0C:36:25:D8:E0:76:73:36 Authority key identifier: 5D:E4:58:F2:1D:40:64:66:BD:F6:82:40:F5:05:EE:FD:19:7B:A9:36 Certificate issuer: /CN=5de458f21d406466bdf68240f505eefd197ba936 Certificate serial: 019AF276C7B14C16CE517BB714CE1883F2CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XeRY8h1AZGa99oJA9QXu_Rl7qTY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 07:01:01 +0000 Manifest this update: Sat 06 Dec 2025 07:01:01 +0000 Manifest next update: Sun 07 Dec 2025 07:01:01 +0000 Files and hashes: 1: 8x6SWTgZKaQldoz2iRV_QSdqbtg.roa (hash: LzTLrE8ZLdriPR/s+lretToH9KQur6QiGymJnQCIGiw=) 2: XeRY8h1AZGa99oJA9QXu_Rl7qTY.crl (hash: eXVItLTh05DhWvzEpC32OWxfPdEDodtys+Xe/MT7ndA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.crl rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft rsync://rpki.ripe.net/repository/DEFAULT/XeRY8h1AZGa99oJA9QXu_Rl7qTY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:c7:b1:4c:16:ce:51:7b:b7:14:ce:18:83:f2:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5de458f21d406466bdf68240f505eefd197ba936 Validity Not Before: Dec 6 07:01:01 2025 GMT Not After : Dec 7 07:01:01 2025 GMT Subject: CN=d34e67d416199394757744a30c3625d8e0767336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1a:32:c5:33:a8:ed:d4:a8:a3:d2:68:d8:e5: 6e:51:0b:44:14:26:57:ed:42:6c:e7:e4:ae:ac:ac: 3c:94:9c:af:3f:1a:e9:21:b4:87:78:76:2f:b2:72: 4c:a0:08:9d:f1:cf:45:f9:59:a4:e9:f8:3b:ec:d1: 73:cd:97:45:38:61:f4:1c:83:7c:5a:70:59:dd:c2: 71:7e:49:61:75:06:e0:e9:c3:06:45:62:71:92:08: dd:e5:04:1a:e0:63:a9:46:83:f4:e4:db:49:71:24: d4:ce:22:52:9c:4e:0e:2e:fd:37:cb:ce:0d:fb:5f: b2:73:06:65:1b:dd:87:50:39:8f:f3:64:77:57:1e: 3d:b8:78:a2:23:0e:7d:5f:ef:26:49:50:12:97:bf: a8:dd:f7:08:25:2c:86:73:da:6f:3b:ff:9c:14:4c: d5:33:40:56:44:7b:93:a0:26:8f:89:4d:0a:07:9e: 28:65:3b:28:c7:bb:5b:6e:4c:c0:cc:35:3b:da:a0: f5:bc:75:d6:4b:7d:90:8b:9f:5d:bf:6c:68:a1:97: 4b:26:b3:41:d4:55:ce:40:1e:3c:c8:a0:f7:e1:da: f4:1b:5b:c8:fe:2f:43:68:a2:bc:43:86:13:0c:06: aa:37:76:bd:47:3b:46:1b:8d:3a:c9:64:b5:15:07: 4a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:4E:67:D4:16:19:93:94:75:77:44:A3:0C:36:25:D8:E0:76:73:36 X509v3 Authority Key Identifier: keyid:5D:E4:58:F2:1D:40:64:66:BD:F6:82:40:F5:05:EE:FD:19:7B:A9:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XeRY8h1AZGa99oJA9QXu_Rl7qTY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:55:5d:85:d4:11:1e:f1:70:6f:f3:0c:2c:60:a6:be:72:1e: 08:6b:26:6b:d5:17:b9:1c:31:f3:e7:7b:a6:09:82:25:d2:91: a9:7d:09:51:32:80:c9:9b:c4:18:fd:51:d8:08:1e:f1:0c:13: 23:61:ed:c1:64:6f:c1:b1:f4:91:11:44:eb:9e:f9:47:97:aa: 75:4f:4b:e1:9d:04:d2:75:28:13:b4:80:e0:54:97:46:93:fa: b4:9c:5b:00:39:db:76:5d:8b:89:47:fb:e4:ef:73:1a:0c:ce: 20:1a:2e:5b:45:bf:db:40:60:c9:b4:dc:dc:06:03:ea:db:08: b1:f6:52:39:61:92:98:8c:3f:cb:b7:7f:37:ef:6a:f7:18:7d: b0:4e:84:e5:d9:ee:0b:4e:28:1d:03:5c:b7:c5:38:ba:8d:fc: d4:49:e5:5b:7f:ad:24:00:a5:90:3e:59:6a:0e:dc:15:90:1a: 1d:b7:39:c9:3a:6b:e8:74:14:26:bf:3d:df:79:70:37:e2:d4: ec:19:6b:30:dc:b9:70:fb:84:bc:67:5e:76:f1:f5:90:68:97: c4:81:32:e8:6f:55:b2:01:8a:07:1d:5f:b3:2e:f5:3a:45:f0: 76:ef:68:e5:9d:87:38:d9:93:43:ad:25:5d:9d:c1:72:59:99: 7a:af:53:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydsexTBbOUXu3FM4Yg/LPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkZTQ1OGYyMWQ0MDY0NjZiZGY2ODI0MGY1MDVlZWZkMTk3 YmE5MzYwHhcNMjUxMjA2MDcwMTAxWhcNMjUxMjA3MDcwMTAxWjAzMTEwLwYDVQQD EyhkMzRlNjdkNDE2MTk5Mzk0NzU3NzQ0YTMwYzM2MjVkOGUwNzY3MzM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArBoyxTOo7dSoo9Jo2OVuUQtEFCZX 7UJs5+SurKw8lJyvPxrpIbSHeHYvsnJMoAid8c9F+Vmk6fg77NFzzZdFOGH0HIN8 WnBZ3cJxfklhdQbg6cMGRWJxkgjd5QQa4GOpRoP05NtJcSTUziJSnE4OLv03y84N +1+ycwZlG92HUDmP82R3Vx49uHiiIw59X+8mSVASl7+o3fcIJSyGc9pvO/+cFEzV M0BWRHuToCaPiU0KB54oZTsox7tbbkzAzDU72qD1vHXWS32Qi59dv2xooZdLJrNB 1FXOQB48yKD34dr0G1vI/i9DaKK8Q4YTDAaqN3a9RztGG406yWS1FQdKswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNNOZ9QWGZOUdXdEoww2JdjgdnM2MB8GA1UdIwQY MBaAFF3kWPIdQGRmvfaCQPUF7v0Ze6k2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGVSWThoMUFaR2E5OW9KQTlRWHVfUmw3cVRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9lMTU1ZWEtODhjZC00NDE0LWFhYjYt MjNhYjU4ZDY0MTVhLzEvWGVSWThoMUFaR2E5OW9KQTlRWHVfUmw3cVRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS9lMTU1ZWEtODhjZC00NDE0LWFhYjYtMjNhYjU4ZDY0MTVh LzEvWGVSWThoMUFaR2E5OW9KQTlRWHVfUmw3cVRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfVVdhdQR HvFwb/MMLGCmvnIeCGsma9UXuRwx8+d7pgmCJdKRqX0JUTKAyZvEGP1R2Age8QwT I2HtwWRvwbH0kRFE6575R5eqdU9L4Z0E0nUoE7SA4FSXRpP6tJxbADnbdl2LiUf7 5O9zGgzOIBouW0W/20BgybTc3AYD6tsIsfZSOWGSmIw/y7d/N+9q9xh9sE6E5dnu C04oHQNct8U4uo381EnlW3+tJAClkD5Zag7cFZAaHbc5yTpr6HQUJr8933lwN+LU 7BlrMNy5cPuEvGdedvH1kGiXxIEy6G9VsgGKBx1fsy71OkXwdu9o5Z2HONmTQ60l XZ3BclmZeq9TJQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:07:22 2025 by rpki-client