This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/xorAnHI17TE4Ph_ThzkY3RgzNCo.mft File: xorAnHI17TE4Ph_ThzkY3RgzNCo.mft (raw, json) Hash identifier: 5gqtbjFpBmpQL6OcE7aMzOU636WoPuECClMiTGLFWe4= Subject key identifier: 7F:8C:C4:3A:F7:62:6C:FE:D2:31:A1:89:C3:C9:8A:06:1D:DA:D5:4D Authority key identifier: C6:8A:C0:9C:72:35:ED:31:38:3E:1F:D3:87:39:18:DD:18:33:34:2A Certificate issuer: /CN=c68ac09c7235ed31383e1fd3873918dd1833342a Certificate serial: 019AF42E7C4D16F9CBB695FF8942EB55AE26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xorAnHI17TE4Ph_ThzkY3RgzNCo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/xorAnHI17TE4Ph_ThzkY3RgzNCo.mft Manifest number: 0732 Signing time: Sat 06 Dec 2025 15:01:18 +0000 Manifest this update: Sat 06 Dec 2025 15:01:18 +0000 Manifest next update: Sun 07 Dec 2025 15:01:18 +0000 Files and hashes: 1: xorAnHI17TE4Ph_ThzkY3RgzNCo.crl (hash: KYSAJyHRD9YpERVs6OAnsTWHhz2+bZ/tXg3nmoYRxEM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/xorAnHI17TE4Ph_ThzkY3RgzNCo.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/xorAnHI17TE4Ph_ThzkY3RgzNCo.mft rsync://rpki.ripe.net/repository/DEFAULT/xorAnHI17TE4Ph_ThzkY3RgzNCo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:2e:7c:4d:16:f9:cb:b6:95:ff:89:42:eb:55:ae:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c68ac09c7235ed31383e1fd3873918dd1833342a Validity Not Before: Dec 6 15:01:18 2025 GMT Not After : Dec 7 15:01:18 2025 GMT Subject: CN=7f8cc43af7626cfed231a189c3c98a061ddad54d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:dc:1d:6e:14:b7:fc:9c:90:f6:a6:2d:9c:cb: 89:ec:11:39:17:22:1c:f6:fe:e4:b1:de:42:dd:cb: c4:18:80:a4:f8:6f:58:30:be:b4:f1:40:06:6b:98: b9:69:3a:36:8c:cf:07:97:3e:72:aa:72:5d:e9:96: d1:81:c9:37:9e:7f:8a:8c:99:b1:08:3c:ee:aa:a7: 0f:9f:db:a3:cb:a2:26:00:0c:f7:a4:8e:02:78:47: 8f:19:6d:7f:29:ea:c1:e6:fb:8e:3d:3f:79:96:6c: fb:6a:dd:6c:bb:4c:a5:a3:fe:f3:aa:7a:a8:da:7a: 98:a0:18:4c:9c:53:7a:44:41:c7:3c:0a:15:93:8f: 68:1b:4a:6d:a5:e1:f9:67:83:cc:75:f1:0d:2a:6b: 6b:0d:a9:b9:dc:5b:05:53:9f:73:49:cb:87:e8:44: 5d:01:39:57:d3:09:8d:5d:d4:ef:53:5b:19:fb:d8: 19:1e:a9:23:97:a1:67:3e:84:48:a1:35:6c:eb:77: 13:42:ba:6c:88:5e:bc:a4:af:fa:bd:c9:aa:c9:d2: f4:db:41:97:58:1f:0b:00:35:88:c2:7b:34:13:33: aa:d5:67:81:e8:3a:c9:4b:be:ef:d1:43:d6:52:d9: dd:b5:5f:a4:2e:ef:5d:9d:df:32:a7:b2:3e:18:d2: be:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:8C:C4:3A:F7:62:6C:FE:D2:31:A1:89:C3:C9:8A:06:1D:DA:D5:4D X509v3 Authority Key Identifier: keyid:C6:8A:C0:9C:72:35:ED:31:38:3E:1F:D3:87:39:18:DD:18:33:34:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xorAnHI17TE4Ph_ThzkY3RgzNCo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/xorAnHI17TE4Ph_ThzkY3RgzNCo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/xorAnHI17TE4Ph_ThzkY3RgzNCo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:cd:0f:41:56:03:6a:8d:a4:23:11:8a:d8:0d:d3:b0:61:5b: 53:4b:18:96:b4:71:6b:a2:63:76:cc:44:78:aa:b0:8b:f5:d9: a1:d7:22:7f:7d:8d:74:a6:ef:20:de:c4:c1:52:eb:fb:0e:cb: 5c:89:a6:68:cc:f7:f8:1e:70:16:fb:e2:56:20:6b:79:a3:57: 68:bc:81:24:46:23:81:56:de:b2:55:a3:f2:b0:a3:ca:4e:bf: 3a:2d:d5:b7:fb:20:f6:f0:2a:45:2c:ed:c8:0e:25:10:49:0d: bd:ce:01:5e:b9:ac:c0:45:55:50:fb:97:68:23:3e:bc:5c:48: 9e:59:08:82:c3:c5:bd:ab:70:ba:c9:ca:a1:b6:26:9c:34:91: e2:bc:d7:ba:7f:a1:bc:f6:de:49:39:c2:a9:0f:90:50:4f:27: 92:7c:61:fd:79:db:34:d9:78:40:c8:6d:a4:f2:cf:82:2d:66: ed:d3:ec:50:b0:ab:b5:4f:c9:85:05:62:04:5d:0d:22:c3:ec: e2:bf:2c:72:f6:dc:f5:c9:77:df:ad:40:3f:a7:2d:da:ae:5d: 07:2d:29:9c:72:71:02:e0:d8:a4:39:e4:c5:8f:1f:1e:d6:46: 3d:e5:43:6c:c5:7b:5f:2b:8a:12:f6:7d:e9:27:fc:77:6f:de: ee:a0:8f:99 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0LnxNFvnLtpX/iULrVa4mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2OGFjMDljNzIzNWVkMzEzODNlMWZkMzg3MzkxOGRkMTgz MzM0MmEwHhcNMjUxMjA2MTUwMTE4WhcNMjUxMjA3MTUwMTE4WjAzMTEwLwYDVQQD Eyg3ZjhjYzQzYWY3NjI2Y2ZlZDIzMWExODljM2M5OGEwNjFkZGFkNTRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsNwdbhS3/JyQ9qYtnMuJ7BE5FyIc 9v7ksd5C3cvEGICk+G9YML608UAGa5i5aTo2jM8Hlz5yqnJd6ZbRgck3nn+KjJmx CDzuqqcPn9ujy6ImAAz3pI4CeEePGW1/KerB5vuOPT95lmz7at1su0ylo/7zqnqo 2nqYoBhMnFN6REHHPAoVk49oG0ptpeH5Z4PMdfENKmtrDam53FsFU59zScuH6ERd ATlX0wmNXdTvU1sZ+9gZHqkjl6FnPoRIoTVs63cTQrpsiF68pK/6vcmqydL020GX WB8LADWIwns0EzOq1WeB6DrJS77v0UPWUtndtV+kLu9dnd8yp7I+GNK+rwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH+MxDr3Ymz+0jGhicPJigYd2tVNMB8GA1UdIwQY MBaAFMaKwJxyNe0xOD4f04c5GN0YMzQqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG9yQW5ISTE3VEU0UGhfVGh6a1kzUmd6TkNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS80OTJiZDAtOTkzYi00NzZlLThmYWMt OWRlNDhkNDNiMWRiLzEveG9yQW5ISTE3VEU0UGhfVGh6a1kzUmd6TkNvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85YS80OTJiZDAtOTkzYi00NzZlLThmYWMtOWRlNDhkNDNiMWRi LzEveG9yQW5ISTE3VEU0UGhfVGh6a1kzUmd6TkNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS80PQVYD ao2kIxGK2A3TsGFbU0sYlrRxa6JjdsxEeKqwi/XZodcif32NdKbvIN7EwVLr+w7L XImmaMz3+B5wFvviViBreaNXaLyBJEYjgVbeslWj8rCjyk6/Oi3Vt/sg9vAqRSzt yA4lEEkNvc4BXrmswEVVUPuXaCM+vFxInlkIgsPFvatwusnKobYmnDSR4rzXun+h vPbeSTnCqQ+QUE8nknxh/XnbNNl4QMhtpPLPgi1m7dPsULCrtU/JhQViBF0NIsPs 4r8scvbc9cl3361AP6ct2q5dBy0pnHJxAuDYpDnkxY8fHtZGPeVDbMV7XyuKEvZ9 6Sf8d2/e7qCPmQ== -----END CERTIFICATE-----Generated at Sat Dec 6 19:56:06 2025 by rpki-client