This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft File: XHkaG6CbnU01jvBare1_DoXogbY.mft (raw, json) Hash identifier: WOf5Ty0V/q/zr5gzGr++eBZjSn8pXRpZc94wv8aevhk= Subject key identifier: 7B:01:77:14:B9:A6:B9:45:22:82:81:9A:2D:BE:63:CA:2C:92:B3:E3 Authority key identifier: 5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6 Certificate issuer: /CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6 Certificate serial: 019B2E8B58C41FE08B957A1082A9FEBBAA84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft Manifest number: 0CBD Signing time: Wed 17 Dec 2025 23:00:42 +0000 Manifest this update: Wed 17 Dec 2025 23:00:42 +0000 Manifest next update: Thu 18 Dec 2025 23:00:42 +0000 Files and hashes: 1: XHkaG6CbnU01jvBare1_DoXogbY.crl (hash: OOX5JrG3+AOI3OHHRCLhrRgpnbC9JMPD7AzDju2yJ4E=) 2: _GYD1AJUDNposAkJpRDfG9xq6dk.roa (hash: afY5Qh0XccEeUiEofkFyRBQd+JnAG3mTgUzmW0se7YQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.crl rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:8b:58:c4:1f:e0:8b:95:7a:10:82:a9:fe:bb:aa:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6 Validity Not Before: Dec 17 23:00:42 2025 GMT Not After : Dec 18 23:00:42 2025 GMT Subject: CN=7b017714b9a6b9452282819a2dbe63ca2c92b3e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:41:9f:d6:05:7a:da:83:4a:04:a7:da:9c:58: 9a:70:d8:a7:00:a5:53:85:9a:5e:33:b9:16:0d:e2: 71:e8:b4:27:23:6f:4b:cb:0d:1c:e1:ea:2f:23:c1: 0f:88:ac:73:a3:4d:e5:a9:83:d0:61:c4:9e:67:64: 53:ae:a8:3b:e7:b0:ef:ad:f4:de:71:b2:32:8d:ff: 39:ab:1b:87:cf:3f:3b:8f:b1:51:eb:20:e7:65:e6: d4:85:a7:18:a6:cd:c4:6b:96:13:51:b0:3a:7a:32: 72:60:9d:c6:78:48:8c:20:83:5c:bd:88:6b:59:28: 72:5f:d5:21:18:a8:2b:d5:b8:71:8f:1b:9f:fd:73: eb:10:12:13:7d:f3:9c:97:3d:1b:0c:e2:c8:c7:d8: 70:c4:0b:34:a5:1a:b2:92:7c:aa:a5:5d:cd:57:19: a8:ff:15:58:6a:3f:09:d9:9d:dd:60:eb:26:ae:10: c5:84:30:f3:ec:fc:a9:a2:1d:bb:0e:25:34:0f:ed: c5:b3:c8:9c:77:11:a6:15:5a:a2:2c:bb:e6:4c:60: 23:f1:ed:cc:f7:82:de:b3:7d:2d:09:d4:3b:9e:2e: aa:b6:ad:3f:9d:ee:1c:1a:f3:58:1b:25:7c:f9:8a: ae:22:56:36:7a:a9:91:ec:3e:6c:c8:24:93:98:0e: 08:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:01:77:14:B9:A6:B9:45:22:82:81:9A:2D:BE:63:CA:2C:92:B3:E3 X509v3 Authority Key Identifier: keyid:5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:9c:5c:78:0d:f9:3e:e3:9a:e5:d5:99:e0:fa:1f:cb:3e:67: 0b:ea:80:06:16:c2:c6:cc:6e:c5:66:38:f4:7f:38:f2:ef:89: 40:34:c1:af:26:05:94:59:af:b9:22:b1:e3:e8:95:b5:54:ea: c6:e8:bc:9c:8d:f3:c6:93:cb:37:c4:6d:a0:7e:6c:b9:7c:b2: fc:26:4e:49:9e:05:05:06:5d:5b:d8:e7:1d:d7:90:de:7e:78: 3d:73:81:82:d1:14:da:e5:9a:9e:1a:15:60:d9:68:40:fe:bc: 67:7f:3b:1f:72:47:b7:ac:35:c9:cd:6a:cb:06:01:38:5c:85: cf:b4:5d:c2:88:52:a8:e8:0f:11:ff:80:77:70:ba:a6:93:9f: 55:23:83:95:ec:d0:3e:da:22:95:66:5e:92:4c:a4:a6:fa:31: 05:61:08:b8:86:4f:04:58:da:25:00:77:34:ae:1c:84:48:e7: 33:23:4b:2a:12:74:d0:80:4c:0b:84:fd:ba:81:b8:03:dd:b7: 7e:f3:ee:62:a1:38:80:db:69:66:10:ee:e1:2f:ed:b4:42:62: a1:43:a8:6a:34:f7:c2:67:91:e2:1b:de:60:1f:f0:1b:1a:d8: c7:c3:fc:24:48:86:a9:df:42:98:7b:cc:f3:11:2b:61:da:b5: 15:6c:1c:05 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsui1jEH+CLlXoQgqn+u6qEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjNzkxYTFiYTA5YjlkNGQzNThlZjA1YWFkZWQ3ZjBlODVl ODgxYjYwHhcNMjUxMjE3MjMwMDQyWhcNMjUxMjE4MjMwMDQyWjAzMTEwLwYDVQQD Eyg3YjAxNzcxNGI5YTZiOTQ1MjI4MjgxOWEyZGJlNjNjYTJjOTJiM2UzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxkGf1gV62oNKBKfanFiacNinAKVT hZpeM7kWDeJx6LQnI29Lyw0c4eovI8EPiKxzo03lqYPQYcSeZ2RTrqg757DvrfTe cbIyjf85qxuHzz87j7FR6yDnZebUhacYps3Ea5YTUbA6ejJyYJ3GeEiMIINcvYhr WShyX9UhGKgr1bhxjxuf/XPrEBITffOclz0bDOLIx9hwxAs0pRqyknyqpV3NVxmo /xVYaj8J2Z3dYOsmrhDFhDDz7Pypoh27DiU0D+3Fs8icdxGmFVqiLLvmTGAj8e3M 94Les30tCdQ7ni6qtq0/ne4cGvNYGyV8+YquIlY2eqmR7D5syCSTmA4ImQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHsBdxS5prlFIoKBmi2+Y8oskrPjMB8GA1UdIwQY MBaAFFx5Ghugm51NNY7wWq3tfw6F6IG2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEhrYUc2Q2JuVTAxanZCYXJlMV9Eb1hvZ2JZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC9hMjdhMDMtZjY0NS00NjJiLTk0ZTct NjZjNWFlOGEzNmI0LzEvWEhrYUc2Q2JuVTAxanZCYXJlMV9Eb1hvZ2JZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZC9hMjdhMDMtZjY0NS00NjJiLTk0ZTctNjZjNWFlOGEzNmI0 LzEvWEhrYUc2Q2JuVTAxanZCYXJlMV9Eb1hvZ2JZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeZxceA35 PuOa5dWZ4Pofyz5nC+qABhbCxsxuxWY49H848u+JQDTBryYFlFmvuSKx4+iVtVTq xui8nI3zxpPLN8RtoH5suXyy/CZOSZ4FBQZdW9jnHdeQ3n54PXOBgtEU2uWanhoV YNloQP68Z387H3JHt6w1yc1qywYBOFyFz7RdwohSqOgPEf+Ad3C6ppOfVSODlezQ PtoilWZekkykpvoxBWEIuIZPBFjaJQB3NK4chEjnMyNLKhJ00IBMC4T9uoG4A923 fvPuYqE4gNtpZhDu4S/ttEJioUOoajT3wmeR4hveYB/wGxrYx8P8JEiGqd9CmHvM 8xErYdq1FWwcBQ== -----END CERTIFICATE-----Generated at Thu Dec 18 05:04:03 2025 by rpki-client