This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.mft File: xU3YgoUsxFhrH-40wFAdXbfWDws.mft (raw, json) Hash identifier: HOEMGqJE3pOjjHVQbK6bzayLx7ZD9X5kCBFHhmpJL9w= Subject key identifier: E5:E5:E1:31:72:16:32:2A:8D:23:E4:ED:D0:B5:5F:56:32:03:7E:CF Authority key identifier: C5:4D:D8:82:85:2C:C4:58:6B:1F:EE:34:C0:50:1D:5D:B7:D6:0F:0B Certificate issuer: /CN=c54dd882852cc4586b1fee34c0501d5db7d60f0b Certificate serial: 019AF464EC27EE2DAC3576B516147EE1BE01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xU3YgoUsxFhrH-40wFAdXbfWDws.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.mft Manifest number: 0927 Signing time: Sat 06 Dec 2025 16:00:45 +0000 Manifest this update: Sat 06 Dec 2025 16:00:45 +0000 Manifest next update: Sun 07 Dec 2025 16:00:45 +0000 Files and hashes: 1: XArLVttX_wCBnKO2u8bWM8Vk3NU.roa (hash: BE5h5QGSzKEJoBRH8Cvw/x+Z7DD6UePHMldATT7VyV4=) 2: xU3YgoUsxFhrH-40wFAdXbfWDws.crl (hash: S4hRLRUstZn/RDVoNIpKclWuLJjfk5+4mCVVNsi8MAU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.crl rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.mft rsync://rpki.ripe.net/repository/DEFAULT/xU3YgoUsxFhrH-40wFAdXbfWDws.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:64:ec:27:ee:2d:ac:35:76:b5:16:14:7e:e1:be:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c54dd882852cc4586b1fee34c0501d5db7d60f0b Validity Not Before: Dec 6 16:00:45 2025 GMT Not After : Dec 7 16:00:45 2025 GMT Subject: CN=e5e5e1317216322a8d23e4edd0b55f5632037ecf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:b0:11:16:f9:f9:7f:88:94:58:27:1f:d0:8e: 24:36:72:58:d1:f3:c3:8d:ae:f9:6f:66:c9:fe:86: ae:00:5b:a5:8e:d6:89:88:a7:1a:9b:43:69:0f:7e: 5a:8f:0b:bc:e2:14:2f:dc:78:36:a1:f5:02:af:3f: e0:ca:c1:61:08:ed:76:2e:bc:85:02:df:bf:8e:66: 2c:2f:fb:0f:6b:e9:c5:8f:41:21:87:fd:08:ce:fa: 1f:95:d0:b7:21:f8:11:f4:76:41:6a:05:bb:50:b9: 09:b6:68:f4:ab:77:cd:51:e4:ce:6e:64:07:93:fd: 72:f7:4a:06:fc:6e:9e:3f:93:5c:d1:ce:50:d9:25: 54:77:a3:de:5c:77:21:b6:f0:02:46:6e:d1:49:b8: b9:f3:46:5e:39:4a:69:12:7a:81:d5:91:90:0a:b5: 74:cb:2b:b8:c0:06:0f:4d:06:9d:41:bd:72:10:56: f5:c5:4a:1b:44:6f:8d:b1:ed:db:aa:a2:36:ae:2d: d9:53:94:ca:9d:52:96:cc:6e:2e:27:ed:0d:5a:2e: ff:1e:34:22:a7:8a:9f:7d:b6:ce:ed:f9:9e:a6:87: 7d:b3:06:bc:0f:2d:83:6e:28:d4:7a:37:dc:53:3e: 87:26:5d:3d:90:70:6a:02:94:71:33:23:c7:9c:7e: 31:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:E5:E1:31:72:16:32:2A:8D:23:E4:ED:D0:B5:5F:56:32:03:7E:CF X509v3 Authority Key Identifier: keyid:C5:4D:D8:82:85:2C:C4:58:6B:1F:EE:34:C0:50:1D:5D:B7:D6:0F:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xU3YgoUsxFhrH-40wFAdXbfWDws.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:27:81:e7:b5:60:b0:b9:fb:e3:21:2f:37:8c:51:06:12:f6: a3:78:40:ed:3b:db:50:2b:cb:e8:3a:30:f6:93:f3:1b:03:2a: ae:f3:ec:ff:27:67:2e:68:74:9b:5d:dd:08:4b:7c:f2:a2:f9: ac:7d:1d:23:40:be:0d:09:c6:7b:e1:64:28:2f:ba:c4:6b:74: 3d:29:d1:05:23:d5:f9:c4:35:66:63:94:d0:d8:8d:45:95:e4: 0d:eb:60:2e:d9:03:b2:c7:43:4d:b6:c5:71:08:38:3a:3e:84: 7a:32:91:9c:94:58:91:f8:30:65:91:a1:1c:d0:95:b6:a9:5d: bb:90:e2:a9:ab:f9:66:c2:ff:99:56:85:9d:09:cb:9a:5b:5b: ad:57:38:9d:87:81:37:d1:d7:3a:96:43:85:83:a1:b7:3e:6f: ac:c5:7e:75:f9:68:be:1e:7c:33:9a:86:d8:61:e4:4b:d0:02: de:b6:50:43:84:71:08:36:c1:a6:32:58:02:d5:c1:e1:40:89: c8:95:e4:a8:d8:a4:c6:b9:cc:d0:40:c9:13:67:6b:95:9c:2a: 70:f6:8b:d1:85:ce:44:aa:d0:29:fe:f3:07:60:f9:ae:22:9f: 5e:a8:59:fb:c6:de:40:66:e2:d4:a3:e1:af:00:93:5c:8a:8d: 79:45:3f:77 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0ZOwn7i2sNXa1FhR+4b4BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1NGRkODgyODUyY2M0NTg2YjFmZWUzNGMwNTAxZDVkYjdk NjBmMGIwHhcNMjUxMjA2MTYwMDQ1WhcNMjUxMjA3MTYwMDQ1WjAzMTEwLwYDVQQD EyhlNWU1ZTEzMTcyMTYzMjJhOGQyM2U0ZWRkMGI1NWY1NjMyMDM3ZWNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA77ARFvn5f4iUWCcf0I4kNnJY0fPD ja75b2bJ/oauAFuljtaJiKcam0NpD35ajwu84hQv3Hg2ofUCrz/gysFhCO12LryF At+/jmYsL/sPa+nFj0Ehh/0IzvofldC3IfgR9HZBagW7ULkJtmj0q3fNUeTObmQH k/1y90oG/G6eP5Nc0c5Q2SVUd6PeXHchtvACRm7RSbi580ZeOUppEnqB1ZGQCrV0 yyu4wAYPTQadQb1yEFb1xUobRG+Nse3bqqI2ri3ZU5TKnVKWzG4uJ+0NWi7/HjQi p4qffbbO7fmepod9swa8Dy2DbijUejfcUz6HJl09kHBqApRxMyPHnH4xGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOXl4TFyFjIqjSPk7dC1X1YyA37PMB8GA1UdIwQY MBaAFMVN2IKFLMRYax/uNMBQHV231g8LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveFUzWWdvVXN4RmhySC00MHdGQWRYYmZXRHdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny82NDg3OWItNmM2OC00NTk3LTlmYWIt NmZiZTI5MzE3MWZlLzEveFUzWWdvVXN4RmhySC00MHdGQWRYYmZXRHdzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny82NDg3OWItNmM2OC00NTk3LTlmYWItNmZiZTI5MzE3MWZl LzEveFUzWWdvVXN4RmhySC00MHdGQWRYYmZXRHdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAASeB57Vg sLn74yEvN4xRBhL2o3hA7TvbUCvL6Dow9pPzGwMqrvPs/ydnLmh0m13dCEt88qL5 rH0dI0C+DQnGe+FkKC+6xGt0PSnRBSPV+cQ1ZmOU0NiNRZXkDetgLtkDssdDTbbF cQg4Oj6EejKRnJRYkfgwZZGhHNCVtqldu5Diqav5ZsL/mVaFnQnLmltbrVc4nYeB N9HXOpZDhYOhtz5vrMV+dflovh58M5qG2GHkS9AC3rZQQ4RxCDbBpjJYAtXB4UCJ yJXkqNikxrnM0EDJE2drlZwqcPaL0YXORKrQKf7zB2D5riKfXqhZ+8beQGbi1KPh rwCTXIqNeUU/dw== -----END CERTIFICATE-----Generated at Sat Dec 6 18:54:12 2025 by rpki-client