This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft File: XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft (raw, json) Hash identifier: /NauGBvMd0hfsDsYr8eOTndqKRabRr/4L1FFpSEb7So= Subject key identifier: 6B:FE:DB:7D:2D:6D:33:AB:75:B2:31:5F:E5:52:1D:81:2A:E5:5E:8D Authority key identifier: 5E:40:98:F2:06:85:04:88:B7:2C:DD:E8:38:7C:31:81:C6:3F:8C:DF Certificate issuer: /CN=5e4098f206850488b72cdde8387c3181c63f8cdf Certificate serial: 019AF19B662747657FE013C11BA91E72A9C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XkCY8gaFBIi3LN3oOHwxgcY_jN8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft Manifest number: 0512 Signing time: Sat 06 Dec 2025 03:01:24 +0000 Manifest this update: Sat 06 Dec 2025 03:01:24 +0000 Manifest next update: Sun 07 Dec 2025 03:01:24 +0000 Files and hashes: 1: XkCY8gaFBIi3LN3oOHwxgcY_jN8.crl (hash: Qm13+qu04FADq2UCgTZDGybrjhAmBo8qXGPjttOmwW4=) 2: s-n3Ovf4DLNZiMVmwACfXlwBFQg.roa (hash: +v54HWEZgRWIsiIa+lVD9RDFt4kmB458GN/XYvVzPIw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.crl rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft rsync://rpki.ripe.net/repository/DEFAULT/XkCY8gaFBIi3LN3oOHwxgcY_jN8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:66:27:47:65:7f:e0:13:c1:1b:a9:1e:72:a9:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5e4098f206850488b72cdde8387c3181c63f8cdf Validity Not Before: Dec 6 03:01:24 2025 GMT Not After : Dec 7 03:01:24 2025 GMT Subject: CN=6bfedb7d2d6d33ab75b2315fe5521d812ae55e8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:62:91:8c:2a:33:39:eb:38:7e:22:f8:44:42: 56:21:50:f9:11:23:7f:9f:e5:8d:a7:91:31:34:b5: 6a:99:e4:bb:7e:73:dc:c1:3f:3f:52:9c:3d:e3:eb: 74:99:02:31:2d:f9:c4:1a:40:9a:53:b3:d1:37:53: 23:5c:9e:42:74:82:47:00:e3:7c:5a:3e:6f:1a:8e: ee:ea:18:13:ed:5b:d7:da:98:74:d8:bf:ca:98:5c: ae:ae:12:c2:76:e3:91:78:a0:85:c2:a6:31:b9:b9: f8:fd:2b:bc:3a:93:1a:7b:83:1c:db:43:c0:56:ba: 3d:c3:23:27:ff:73:f0:07:91:ca:84:b7:ca:d7:59: f9:5f:bd:55:e7:ae:7e:21:99:a4:0d:e0:46:32:22: e1:84:e1:52:98:c0:f8:a2:39:c7:4a:b7:57:01:f2: 61:14:b3:84:8b:72:04:7d:4d:a3:a1:69:dc:fc:ec: 7d:5d:53:bd:b7:24:55:3a:f1:83:bd:1b:86:d9:db: 2a:a0:a3:2e:1b:ba:ed:b4:09:36:ba:40:32:c9:d8: 02:4d:44:a9:7d:a6:da:78:5e:ce:f8:ba:78:e9:7e: 65:6c:44:a7:c0:ab:bc:34:a0:3e:de:bc:11:48:04: 44:df:23:5c:71:fd:88:25:39:36:c6:5a:b3:ac:38: ab:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:FE:DB:7D:2D:6D:33:AB:75:B2:31:5F:E5:52:1D:81:2A:E5:5E:8D X509v3 Authority Key Identifier: keyid:5E:40:98:F2:06:85:04:88:B7:2C:DD:E8:38:7C:31:81:C6:3F:8C:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XkCY8gaFBIi3LN3oOHwxgcY_jN8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:78:a0:0a:98:2b:9c:76:52:69:18:26:fa:ef:bb:ad:0a:eb: ff:18:8c:cb:2b:8c:12:0d:8f:be:2b:ea:49:00:d9:04:28:ec: a2:36:b2:11:e1:1c:f1:68:34:f3:5c:4a:3b:ea:f4:1c:03:2a: e5:d7:96:3c:92:bc:31:6f:89:78:ce:50:61:08:89:6f:00:c9: 28:85:76:07:d2:f9:1d:b6:d8:42:74:df:a3:ae:2e:fe:8b:95: 95:e1:7a:4a:1a:05:27:94:84:b3:64:30:2d:3f:56:79:f2:ea: de:92:ef:b9:e5:b1:4d:d1:e2:34:97:fd:28:17:06:ac:87:b9: 19:25:c4:56:ae:be:03:d3:b7:29:2c:44:41:aa:53:ab:c7:ab: 48:70:9a:90:e3:a8:91:6b:85:3f:2f:64:0a:6c:70:d6:c1:af: eb:f1:fc:1d:7d:8f:10:b9:7e:24:22:66:36:c7:4a:9e:41:47: cc:4e:da:03:65:8d:ee:fb:b1:db:0f:48:f8:bb:6e:fd:41:31: 33:8c:d7:99:79:a9:80:8d:31:b8:ca:5f:22:28:e3:10:a8:4c: 60:67:1d:b6:d9:72:e3:95:6c:24:c1:b5:43:ab:3a:8d:d8:ac: 82:f3:73:2b:14:f2:40:aa:39:fb:56:55:8d:2e:81:2e:f3:f2: 69:52:74:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm2YnR2V/4BPBG6kecqnCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlNDA5OGYyMDY4NTA0ODhiNzJjZGRlODM4N2MzMTgxYzYz ZjhjZGYwHhcNMjUxMjA2MDMwMTI0WhcNMjUxMjA3MDMwMTI0WjAzMTEwLwYDVQQD Eyg2YmZlZGI3ZDJkNmQzM2FiNzViMjMxNWZlNTUyMWQ4MTJhZTU1ZThkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmKRjCozOes4fiL4REJWIVD5ESN/ n+WNp5ExNLVqmeS7fnPcwT8/Upw94+t0mQIxLfnEGkCaU7PRN1MjXJ5CdIJHAON8 Wj5vGo7u6hgT7VvX2ph02L/KmFyurhLCduOReKCFwqYxubn4/Su8OpMae4Mc20PA Vro9wyMn/3PwB5HKhLfK11n5X71V565+IZmkDeBGMiLhhOFSmMD4ojnHSrdXAfJh FLOEi3IEfU2joWnc/Ox9XVO9tyRVOvGDvRuG2dsqoKMuG7rttAk2ukAyydgCTUSp fabaeF7O+Lp46X5lbESnwKu8NKA+3rwRSARE3yNccf2IJTk2xlqzrDirVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGv+230tbTOrdbIxX+VSHYEq5V6NMB8GA1UdIwQY MBaAFF5AmPIGhQSItyzd6Dh8MYHGP4zfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGtDWThnYUZCSWkzTE4zb09Id3hnY1lfak44LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS9jMGIxMDYtNmJmMS00NjYwLThhZmYt OWNmODdmZjFjZTViLzEvWGtDWThnYUZCSWkzTE4zb09Id3hnY1lfak44Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MS9jMGIxMDYtNmJmMS00NjYwLThhZmYtOWNmODdmZjFjZTVi LzEvWGtDWThnYUZCSWkzTE4zb09Id3hnY1lfak44LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApXigCpgr nHZSaRgm+u+7rQrr/xiMyyuMEg2PvivqSQDZBCjsojayEeEc8Wg081xKO+r0HAMq 5deWPJK8MW+JeM5QYQiJbwDJKIV2B9L5HbbYQnTfo64u/ouVleF6ShoFJ5SEs2Qw LT9WefLq3pLvueWxTdHiNJf9KBcGrIe5GSXEVq6+A9O3KSxEQapTq8erSHCakOOo kWuFPy9kCmxw1sGv6/H8HX2PELl+JCJmNsdKnkFHzE7aA2WN7vux2w9I+Ltu/UEx M4zXmXmpgI0xuMpfIijjEKhMYGcdttly45VsJMG1Q6s6jdisgvNzKxTyQKo5+1ZV jS6BLvPyaVJ0cw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:26:20 2025 by rpki-client