This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.mft File: XEKIRvhNgYNh9rnApGOy5XQqFJs.mft (raw, json) Hash identifier: 4+KDSj1Fk++OvmcgaVuCTZtNKKydtQdV17hR+eAgmEw= Subject key identifier: CF:59:98:FE:8A:A4:E1:C3:51:58:E4:AD:DA:C3:1B:D5:48:14:0C:63 Authority key identifier: 5C:42:88:46:F8:4D:81:83:61:F6:B9:C0:A4:63:B2:E5:74:2A:14:9B Certificate issuer: /CN=5c428846f84d818361f6b9c0a463b2e5742a149b Certificate serial: 019AF2AD72B18334F0760E1CE8F2C689A834 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEKIRvhNgYNh9rnApGOy5XQqFJs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.mft Manifest number: B6 Signing time: Sat 06 Dec 2025 08:00:44 +0000 Manifest this update: Sat 06 Dec 2025 08:00:44 +0000 Manifest next update: Sun 07 Dec 2025 08:00:44 +0000 Files and hashes: 1: NGqc3PXNR68XW7YXcEn1g2VSKl8.roa (hash: +/PHsnyXGebFnTuzYemBsGLnJ0LY3kDT60X4/tWYA0k=) 2: XEKIRvhNgYNh9rnApGOy5XQqFJs.crl (hash: n4MyM0DaDiSXtnn4JXGwwnHl+NKIOUl19Xo5CkV40sI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.crl rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.mft rsync://rpki.ripe.net/repository/DEFAULT/XEKIRvhNgYNh9rnApGOy5XQqFJs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:72:b1:83:34:f0:76:0e:1c:e8:f2:c6:89:a8:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c428846f84d818361f6b9c0a463b2e5742a149b Validity Not Before: Dec 6 08:00:44 2025 GMT Not After : Dec 7 08:00:44 2025 GMT Subject: CN=cf5998fe8aa4e1c35158e4addac31bd548140c63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:79:fa:f2:d0:fb:3c:4c:f2:0b:6b:33:8d:03: 8d:52:bb:93:31:8b:c8:8f:8e:2a:79:eb:2d:71:09: 55:38:82:08:86:88:f0:8c:6a:a3:7e:5e:3a:d6:39: ef:ca:2e:a5:ac:14:99:07:be:c7:55:4b:55:b6:ab: 11:15:c7:a2:00:c0:6a:82:df:7e:db:0d:ce:33:30: 8e:af:06:33:6b:de:04:41:01:79:5a:c6:93:74:0d: ee:b2:15:fb:a3:e6:98:d1:0f:52:64:24:8b:aa:21: 91:67:5a:45:bc:4d:9a:4a:ae:5e:fe:bc:6a:f6:88: 62:3a:6d:21:e0:25:a4:9f:4f:28:17:07:6d:15:0f: 7b:e3:a8:b2:d6:b2:7f:83:07:09:92:a8:4b:4c:91: 50:10:41:3f:33:08:c5:48:f7:82:e5:3f:74:16:3c: ba:ac:dc:fb:5e:c3:c4:09:c5:fe:a0:aa:19:3b:a7: a7:44:33:1f:75:74:16:e4:ea:10:29:16:8e:c9:b4: ef:f1:81:a0:58:2a:67:34:23:80:9e:4a:f3:5d:d2: bd:a2:c9:9e:04:e7:4c:1c:89:48:52:88:bf:bf:6d: 83:86:af:74:7c:54:a2:4f:29:00:81:57:da:47:42: d2:5b:0d:f7:6a:c7:78:07:57:5a:0c:9b:57:f4:fd: 5f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:59:98:FE:8A:A4:E1:C3:51:58:E4:AD:DA:C3:1B:D5:48:14:0C:63 X509v3 Authority Key Identifier: keyid:5C:42:88:46:F8:4D:81:83:61:F6:B9:C0:A4:63:B2:E5:74:2A:14:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEKIRvhNgYNh9rnApGOy5XQqFJs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:f4:4f:99:59:ab:92:c7:86:56:19:69:74:11:40:80:0f:f1: bd:0e:b3:34:16:3f:46:71:c7:f9:c8:a1:61:d2:c6:65:e4:a3: 9f:40:b5:de:ab:a7:ee:4f:b3:61:5b:d9:60:09:a5:2e:bd:11: 8a:15:05:63:ea:d8:ae:38:86:3c:99:f3:e9:49:1f:3e:57:4c: da:fe:36:dc:2c:4b:59:eb:16:b0:d6:9e:d6:f6:d5:a8:54:3e: d0:49:84:9f:5c:02:07:6c:73:82:45:da:2b:8b:05:f5:83:ff: 09:94:32:75:4e:b6:3b:6e:d1:cc:62:ef:90:90:7d:ba:e1:83: fb:d8:62:07:da:a0:a3:c9:80:ef:8c:12:af:81:51:56:be:85: e9:2d:5a:04:e8:98:f7:71:e1:47:8f:a9:11:44:9f:93:a6:18: 7b:76:8d:ff:d7:8e:61:05:56:13:2b:5e:b7:fb:00:1c:1c:0f: 66:d6:1e:5d:0c:21:d9:c6:65:3a:b4:5c:e6:43:7e:f3:33:da: 97:6c:c8:89:84:0a:6a:c9:cb:9b:bf:ae:a7:c4:f2:80:ea:6c: 47:2f:5d:c2:00:81:76:f6:c4:ec:72:ca:ca:d9:53:52:2a:fb: 92:47:aa:95:30:20:68:3f:52:ab:b4:3f:90:51:52:39:cc:e9: 05:98:f7:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrXKxgzTwdg4c6PLGiag0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjNDI4ODQ2Zjg0ZDgxODM2MWY2YjljMGE0NjNiMmU1NzQy YTE0OWIwHhcNMjUxMjA2MDgwMDQ0WhcNMjUxMjA3MDgwMDQ0WjAzMTEwLwYDVQQD EyhjZjU5OThmZThhYTRlMWMzNTE1OGU0YWRkYWMzMWJkNTQ4MTQwYzYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArHn68tD7PEzyC2szjQONUruTMYvI j44qeestcQlVOIIIhojwjGqjfl461jnvyi6lrBSZB77HVUtVtqsRFceiAMBqgt9+ 2w3OMzCOrwYza94EQQF5WsaTdA3ushX7o+aY0Q9SZCSLqiGRZ1pFvE2aSq5e/rxq 9ohiOm0h4CWkn08oFwdtFQ9746iy1rJ/gwcJkqhLTJFQEEE/MwjFSPeC5T90Fjy6 rNz7XsPECcX+oKoZO6enRDMfdXQW5OoQKRaOybTv8YGgWCpnNCOAnkrzXdK9osme BOdMHIlIUoi/v22Dhq90fFSiTykAgVfaR0LSWw33asd4B1daDJtX9P1flwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM9ZmP6KpOHDUVjkrdrDG9VIFAxjMB8GA1UdIwQY MBaAFFxCiEb4TYGDYfa5wKRjsuV0KhSbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEVLSVJ2aE5nWU5oOXJuQXBHT3k1WFFxRkpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My84OWE4NzItZDA0ZC00MjE3LThmYzQt YzkwZGI4MjM1ZjM5LzEvWEVLSVJ2aE5nWU5oOXJuQXBHT3k1WFFxRkpzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My84OWE4NzItZDA0ZC00MjE3LThmYzQtYzkwZGI4MjM1ZjM5 LzEvWEVLSVJ2aE5nWU5oOXJuQXBHT3k1WFFxRkpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF/RPmVmr kseGVhlpdBFAgA/xvQ6zNBY/RnHH+cihYdLGZeSjn0C13qun7k+zYVvZYAmlLr0R ihUFY+rYrjiGPJnz6UkfPldM2v423CxLWesWsNae1vbVqFQ+0EmEn1wCB2xzgkXa K4sF9YP/CZQydU62O27RzGLvkJB9uuGD+9hiB9qgo8mA74wSr4FRVr6F6S1aBOiY 93HhR4+pEUSfk6YYe3aN/9eOYQVWEytet/sAHBwPZtYeXQwh2cZlOrRc5kN+8zPa l2zIiYQKasnLm7+up8TygOpsRy9dwgCBdvbE7HLKytlTUir7kkeqlTAgaD9Sq7Q/ kFFSOczpBZj3GA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:00:32 2025 by rpki-client