This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.mft File: xRlGjFXmvnFcDagFzvta7IXTKSY.mft (raw, json) Hash identifier: TLR7Tt0PeM2Avl76p33DQuSlQxkk+CexTIyus5HlZZk= Subject key identifier: 83:47:5E:9F:2B:E5:A6:AE:C8:2F:19:29:35:E9:01:F3:44:E5:9A:74 Authority key identifier: C5:19:46:8C:55:E6:BE:71:5C:0D:A8:05:CE:FB:5A:EC:85:D3:29:26 Certificate issuer: /CN=c519468c55e6be715c0da805cefb5aec85d32926 Certificate serial: 019AF31D421B4040BE3A6D25F7A55B9940A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xRlGjFXmvnFcDagFzvta7IXTKSY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.mft Manifest number: 105B Signing time: Sat 06 Dec 2025 10:02:52 +0000 Manifest this update: Sat 06 Dec 2025 10:02:52 +0000 Manifest next update: Sun 07 Dec 2025 10:02:52 +0000 Files and hashes: 1: xRlGjFXmvnFcDagFzvta7IXTKSY.crl (hash: HLrm411WVt47qZnCdu1j22MOhRnRJtNgqLHCvLro5iI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.crl rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.mft rsync://rpki.ripe.net/repository/DEFAULT/xRlGjFXmvnFcDagFzvta7IXTKSY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1d:42:1b:40:40:be:3a:6d:25:f7:a5:5b:99:40:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c519468c55e6be715c0da805cefb5aec85d32926 Validity Not Before: Dec 6 10:02:52 2025 GMT Not After : Dec 7 10:02:52 2025 GMT Subject: CN=83475e9f2be5a6aec82f192935e901f344e59a74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:00:0b:97:28:5f:3d:60:8f:5f:9d:f3:fd:d2: 4f:7e:4b:67:b8:28:5e:c4:9f:01:01:77:37:56:84: c2:92:4c:d9:61:04:1d:fd:04:e9:d7:b3:ea:f5:9f: 37:46:27:53:27:47:17:0d:1e:19:70:a9:c2:9f:87: e4:8c:89:2f:25:4d:40:42:fc:dd:cf:0e:a9:a0:e1: 1d:35:54:1b:0c:90:20:30:07:9e:da:87:9b:31:e2: 3b:13:77:c3:4e:03:91:78:cd:50:61:3f:aa:89:19: b9:34:ae:4f:1d:45:ac:a9:99:f9:66:5a:81:dd:9f: 46:29:5e:88:f1:5b:7a:23:ea:51:0b:b2:af:68:13: b9:0c:a7:85:c9:34:62:19:26:db:6d:b7:9d:e8:e0: e5:fe:7b:ce:28:ab:e9:98:fe:6f:3e:36:7b:80:2c: cf:ef:49:63:0b:fa:24:96:4a:e1:ac:87:cd:7d:75: fc:73:d6:0c:ec:76:29:6e:db:9b:fc:df:ce:6a:ef: 15:53:aa:5c:51:a3:9e:c9:a6:bf:5f:4f:7a:ad:09: be:c2:b9:55:2c:f5:87:9b:e1:c2:65:42:23:0c:41: 64:3d:08:a2:f0:45:0b:a0:1b:c1:fd:53:60:2c:8d: 27:84:64:b9:61:d8:68:c7:29:6c:e5:99:2c:d7:99: 97:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:47:5E:9F:2B:E5:A6:AE:C8:2F:19:29:35:E9:01:F3:44:E5:9A:74 X509v3 Authority Key Identifier: keyid:C5:19:46:8C:55:E6:BE:71:5C:0D:A8:05:CE:FB:5A:EC:85:D3:29:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xRlGjFXmvnFcDagFzvta7IXTKSY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:00:4a:34:e3:09:1b:a3:3b:12:e0:c6:7b:12:a2:56:2c:a6: 08:f1:23:53:2a:bf:71:e2:69:14:02:d4:75:68:51:42:91:aa: 12:cc:bf:14:4b:9b:fe:a4:3a:b6:93:2b:fc:a6:2e:fb:11:d2: 31:13:5a:fa:2e:8a:3b:e7:82:bd:1e:f4:d6:77:e8:e5:d4:93: 3a:69:0a:14:29:c3:99:48:69:3b:02:91:cb:a4:e6:09:51:10: 98:7e:85:20:ba:0a:9f:ab:5c:3e:2e:4e:d4:45:13:81:58:53: 4f:4b:b7:9d:1e:f9:03:e6:35:0a:0b:0c:e0:41:46:04:27:9d: 01:02:d5:30:40:bd:91:34:2a:48:e8:5d:bc:4b:0d:1f:13:9d: 65:0b:f9:89:fa:c0:05:00:53:dd:50:ab:65:77:01:7f:20:dd: eb:5e:28:c2:ad:42:f1:0d:00:fa:77:a3:fc:5d:f0:67:39:3b: d0:ff:01:95:5d:36:59:5f:c9:7b:80:02:04:1f:ae:bf:07:8a: a0:76:62:4c:c8:57:1a:71:1a:7d:6a:59:46:ed:8e:bb:38:af: 44:a3:fa:1b:15:8a:22:b2:16:6a:f3:8c:b8:d3:12:ed:b8:a2: aa:34:cc:84:d4:e2:d9:02:26:10:bb:9c:07:8a:23:45:d1:28: b4:a3:4f:38 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHUIbQEC+Om0l96VbmUCjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1MTk0NjhjNTVlNmJlNzE1YzBkYTgwNWNlZmI1YWVjODVk MzI5MjYwHhcNMjUxMjA2MTAwMjUyWhcNMjUxMjA3MTAwMjUyWjAzMTEwLwYDVQQD Eyg4MzQ3NWU5ZjJiZTVhNmFlYzgyZjE5MjkzNWU5MDFmMzQ0ZTU5YTc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqwALlyhfPWCPX53z/dJPfktnuChe xJ8BAXc3VoTCkkzZYQQd/QTp17Pq9Z83RidTJ0cXDR4ZcKnCn4fkjIkvJU1AQvzd zw6poOEdNVQbDJAgMAee2oebMeI7E3fDTgOReM1QYT+qiRm5NK5PHUWsqZn5ZlqB 3Z9GKV6I8Vt6I+pRC7KvaBO5DKeFyTRiGSbbbbed6ODl/nvOKKvpmP5vPjZ7gCzP 70ljC/oklkrhrIfNfXX8c9YM7HYpbtub/N/Oau8VU6pcUaOeyaa/X096rQm+wrlV LPWHm+HCZUIjDEFkPQii8EULoBvB/VNgLI0nhGS5Ydhoxyls5Zks15mX3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFINHXp8r5aauyC8ZKTXpAfNE5Zp0MB8GA1UdIwQY MBaAFMUZRoxV5r5xXA2oBc77WuyF0ykmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveFJsR2pGWG12bkZjRGFnRnp2dGE3SVhUS1NZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS8yY2EyYzMtZTIwZi00OTRlLWIxY2Ut NmE3MWI4NDRhZDY2LzEveFJsR2pGWG12bkZjRGFnRnp2dGE3SVhUS1NZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS8yY2EyYzMtZTIwZi00OTRlLWIxY2UtNmE3MWI4NDRhZDY2 LzEveFJsR2pGWG12bkZjRGFnRnp2dGE3SVhUS1NZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIwBKNOMJ G6M7EuDGexKiViymCPEjUyq/ceJpFALUdWhRQpGqEsy/FEub/qQ6tpMr/KYu+xHS MRNa+i6KO+eCvR701nfo5dSTOmkKFCnDmUhpOwKRy6TmCVEQmH6FILoKn6tcPi5O 1EUTgVhTT0u3nR75A+Y1CgsM4EFGBCedAQLVMEC9kTQqSOhdvEsNHxOdZQv5ifrA BQBT3VCrZXcBfyDd614owq1C8Q0A+nej/F3wZzk70P8BlV02WV/Je4ACBB+uvweK oHZiTMhXGnEafWpZRu2OuzivRKP6GxWKIrIWavOMuNMS7biiqjTMhNTi2QImELuc B4ojRdEotKNPOA== -----END CERTIFICATE-----Generated at Sat Dec 6 12:37:56 2025 by rpki-client