This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft File: Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft (raw, json) Hash identifier: xAcR5fEct0iWm+S9BN23aEZW6q9/TGh+P56Yu5gYt6M= Subject key identifier: EA:A0:77:51:DA:5B:BF:31:CE:06:75:1B:DC:01:E1:18:D4:C2:20:C6 Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f Certificate serial: 019AF163DA71A3845BACB8AF9285B3F8E12A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft Manifest number: 1774 Signing time: Sat 06 Dec 2025 02:00:44 +0000 Manifest this update: Sat 06 Dec 2025 02:00:44 +0000 Manifest next update: Sun 07 Dec 2025 02:00:44 +0000 Files and hashes: 1: 4SxEa8qHfL0SdS-yvynVjEWywI0.roa (hash: ed273NQ5dggxiwmHaUzsS7LYiMx/0KEG21fx026Qijc=) 2: 57zAUxjN80d98_hrUg6wNGuh-LQ.roa (hash: qIcET8+9I+XlvyugPkuqmk4yArAibC2n8LmahOzKwL0=) 3: D8TVIpbhKokDS9trBBqJHsFT1UQ.roa (hash: buVD8eTr7vS6C640rVcFTDAjpCVFYAxsjVTpolrqfNA=) 4: V-G5n9JBF2fuQBXkHR943IM1SJk.roa (hash: PktwOhATCRnu/fMCAW8Roob3cNUQ8DCkE9sG1tOGfQ0=) 5: Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl (hash: bmtHLwQlmKtQdkgf17vEC91+zYfPV5jBQBt0lyJ2F+Y=) 6: rnTaQ1uEKUsJsa3f9-uniTuwHWo.roa (hash: 65NB0UfxYYmSvSLb5gS9zELjlvrzXWC3McdcTIR7Hxk=) 7: tIc5dJ9row9Jpwnimlce4tYbp44.roa (hash: ouwAo45RW/R/dO1EFuBCaboweb6Z3RjFTDf5e9DgnQU=) 8: xv_S9Q_lixnhLdeB2FeY6-83q40.roa (hash: fpHqpuP8WhUb/qgqx71BT4D9l/LEKw+tKbvv5QvJ1WU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:63:da:71:a3:84:5b:ac:b8:af:92:85:b3:f8:e1:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f Validity Not Before: Dec 6 02:00:44 2025 GMT Not After : Dec 7 02:00:44 2025 GMT Subject: CN=eaa07751da5bbf31ce06751bdc01e118d4c220c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:21:94:82:7c:39:77:b8:c3:1c:96:6b:d3:6b: 10:a7:17:a9:07:09:6d:93:0b:41:42:89:cf:8f:f1: 2f:08:21:1d:1c:f9:70:32:bf:c3:b2:a2:e9:36:17: 79:0e:2b:6a:82:ce:52:d4:fc:02:77:5b:0a:11:8c: 2a:bb:af:f2:ba:32:fe:8c:15:22:b9:27:e3:c1:1d: 81:29:f0:1a:71:21:51:c4:24:37:2d:4f:a7:36:81: 0c:9f:c2:bb:ba:54:8e:6c:d9:88:27:bf:83:bc:78: 28:ea:c2:33:ab:08:1c:2b:c4:ac:3e:67:d4:9e:52: c3:ae:b0:50:e5:bf:4a:19:a0:a1:c7:7b:c4:71:a9: 48:57:e2:cf:27:07:9e:3a:9c:07:4e:f6:c9:e5:4e: 78:ee:6c:8d:6c:f1:d0:8d:a5:68:dc:21:06:83:91: fd:04:aa:43:5e:85:1f:a1:f3:cb:09:29:a2:d1:75: 8c:30:61:4f:dd:52:20:37:b1:09:37:29:12:c1:50: 25:10:fc:e5:83:04:8f:b7:67:ad:0c:51:67:58:6c: 8d:e6:a4:7c:5f:e6:85:ab:21:26:d4:ba:70:fd:23: 23:a8:c4:3f:45:fc:6c:da:e7:c6:59:e8:de:e3:31: c7:14:6e:7c:04:14:de:84:65:07:5a:62:14:d9:00: 13:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:A0:77:51:DA:5B:BF:31:CE:06:75:1B:DC:01:E1:18:D4:C2:20:C6 X509v3 Authority Key Identifier: keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:63:15:ce:6b:55:9a:e1:44:d7:cf:c9:50:3d:12:3c:6f:28: 76:73:73:ee:d8:f1:f1:ba:46:20:1b:72:5d:25:5e:e0:92:9a: 30:ff:d1:b6:14:6e:bb:22:6c:c3:5b:eb:c5:9e:2e:70:b0:18: 89:8b:b4:f9:f0:fa:8c:55:be:f2:26:20:2f:a8:ae:37:59:2f: 06:66:75:fc:7d:64:e6:a5:1b:ec:5d:d7:27:de:99:17:cf:e5: bd:e5:f7:12:dd:f5:9a:37:7f:70:80:95:2d:5d:23:32:d1:7a: 9b:d4:b4:37:74:13:bb:7b:c7:01:84:ba:8b:87:2e:12:27:84: 29:88:95:55:b3:8f:3d:7f:02:86:ff:f2:8d:f6:c0:58:26:f2: 39:6e:8f:6e:79:e7:df:d2:18:bb:8e:2c:a9:7f:e2:96:64:4a: 91:c8:6e:23:2f:d3:3b:ac:bc:51:7c:28:40:82:01:2c:50:bc: ac:a5:c6:70:a6:78:fb:80:a2:af:f1:b5:e0:67:8d:2e:62:fe: 32:a2:4b:32:1e:9f:f1:61:1e:7d:1a:e5:d2:e2:1b:20:3b:f9: fd:42:8a:c3:b4:4b:55:6d:d3:3d:48:4a:ac:03:39:9d:fa:6e: 36:ea:1b:70:9b:f6:63:1d:26:5a:57:3e:87:fd:ba:0d:af:ce: 60:1e:b3:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxY9pxo4RbrLivkoWz+OEqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkZGU0YjNiODJmMjA5YjcwMWFlMzQwY2Y1M2I5NzQwNzhm MTZhOWYwHhcNMjUxMjA2MDIwMDQ0WhcNMjUxMjA3MDIwMDQ0WjAzMTEwLwYDVQQD EyhlYWEwNzc1MWRhNWJiZjMxY2UwNjc1MWJkYzAxZTExOGQ0YzIyMGM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4iGUgnw5d7jDHJZr02sQpxepBwlt kwtBQonPj/EvCCEdHPlwMr/DsqLpNhd5Ditqgs5S1PwCd1sKEYwqu6/yujL+jBUi uSfjwR2BKfAacSFRxCQ3LU+nNoEMn8K7ulSObNmIJ7+DvHgo6sIzqwgcK8SsPmfU nlLDrrBQ5b9KGaChx3vEcalIV+LPJweeOpwHTvbJ5U547myNbPHQjaVo3CEGg5H9 BKpDXoUfofPLCSmi0XWMMGFP3VIgN7EJNykSwVAlEPzlgwSPt2etDFFnWGyN5qR8 X+aFqyEm1Lpw/SMjqMQ/Rfxs2ufGWeje4zHHFG58BBTehGUHWmIU2QATuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOqgd1HaW78xzgZ1G9wB4RjUwiDGMB8GA1UdIwQY MBaAFF3eSzuC8gm3Aa40DPU7l0B48WqfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGQ1TE80THlDYmNCcmpRTTlUdVhRSGp4YXA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8wMmJkZjAtYmYyOS00ZGFlLWIxOWIt ODZhNTUxOGUyZDUyLzEvWGQ1TE80THlDYmNCcmpRTTlUdVhRSGp4YXA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Zi8wMmJkZjAtYmYyOS00ZGFlLWIxOWItODZhNTUxOGUyZDUy LzEvWGQ1TE80THlDYmNCcmpRTTlUdVhRSGp4YXA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZmMVzmtV muFE18/JUD0SPG8odnNz7tjx8bpGIBtyXSVe4JKaMP/RthRuuyJsw1vrxZ4ucLAY iYu0+fD6jFW+8iYgL6iuN1kvBmZ1/H1k5qUb7F3XJ96ZF8/lveX3Et31mjd/cICV LV0jMtF6m9S0N3QTu3vHAYS6i4cuEieEKYiVVbOPPX8Chv/yjfbAWCbyOW6Pbnnn 39IYu44sqX/ilmRKkchuIy/TO6y8UXwoQIIBLFC8rKXGcKZ4+4Cir/G14GeNLmL+ MqJLMh6f8WEefRrl0uIbIDv5/UKKw7RLVW3TPUhKrAM5nfpuNuobcJv2Yx0mWlc+ h/26Da/OYB6zSA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:21:30 2025 by rpki-client