This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft File: XTJb79i36F40cQQgbYwKuKbg-04.mft (raw, json) Hash identifier: fxDKPHs/Ekz6X0fbjx8bUXwgOwjWJ3ci8w8/T51MvTc= Subject key identifier: 5D:E1:01:B5:D0:2F:76:DC:B7:DB:5F:93:4D:46:7E:DD:01:2B:3F:EB Authority key identifier: 5D:32:5B:EF:D8:B7:E8:5E:34:71:04:20:6D:8C:0A:B8:A6:E0:FB:4E Certificate issuer: /CN=5d325befd8b7e85e347104206d8c0ab8a6e0fb4e Certificate serial: 019AF1D22547B1EF5BE40A01F7911024D834 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTJb79i36F40cQQgbYwKuKbg-04.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft Manifest number: 153B Signing time: Sat 06 Dec 2025 04:01:12 +0000 Manifest this update: Sat 06 Dec 2025 04:01:12 +0000 Manifest next update: Sun 07 Dec 2025 04:01:12 +0000 Files and hashes: 1: 1-odAb-HXEiGLPx5y_PADnZMBf0g.roa (hash: 4z0B6lGqXvXr1EDmabK3iy+SlaX1WPh7Y1Hx0zBd0iM=) 2: XTJb79i36F40cQQgbYwKuKbg-04.crl (hash: sM7MotWgq9S6onnDLfj7kcQrs+HmfE0F+SmvwSND3iA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.crl rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft rsync://rpki.ripe.net/repository/DEFAULT/XTJb79i36F40cQQgbYwKuKbg-04.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:25:47:b1:ef:5b:e4:0a:01:f7:91:10:24:d8:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d325befd8b7e85e347104206d8c0ab8a6e0fb4e Validity Not Before: Dec 6 04:01:12 2025 GMT Not After : Dec 7 04:01:12 2025 GMT Subject: CN=5de101b5d02f76dcb7db5f934d467edd012b3feb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d1:a0:c3:c8:1b:16:ef:6d:86:e8:21:07:ad: 25:94:5c:e2:8d:d3:72:c7:92:7f:95:68:05:5d:54: 89:48:99:61:c5:c5:12:2a:db:9d:ff:d4:ac:98:51: 4e:fe:5a:aa:62:70:2b:fd:87:a2:24:fc:89:43:0d: fb:12:c6:f0:a3:0d:df:70:75:1d:40:78:37:92:f7: 71:c1:7d:fc:74:4a:5b:95:8f:5b:4d:64:9a:05:d6: da:4b:14:28:9b:70:25:d1:93:20:19:4b:85:d7:3d: 56:9b:49:77:d8:a4:d0:cd:5b:79:78:43:2e:e5:48: 95:aa:e6:10:62:11:a0:c6:5c:af:4d:49:bd:be:22: f5:3f:a9:a7:2f:23:50:b2:e6:50:29:5e:f7:44:ea: 02:c0:af:c2:cf:d8:b9:62:c3:5b:10:78:c5:52:cd: cd:7f:34:57:4d:77:5c:ac:02:86:d4:b9:ce:8a:df: 3e:04:2d:9f:2a:ab:4a:22:db:50:04:ed:58:c8:44: 54:14:40:07:8b:4d:4a:fa:9a:73:25:57:72:4c:b4: 9b:d5:5e:3f:88:f5:b1:a2:90:28:75:18:1a:79:32: 81:5a:29:e6:18:c2:81:8a:e0:e5:65:7b:81:2b:da: 78:9d:96:50:05:b5:64:c9:1f:02:d3:d5:10:a8:b9: 42:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E1:01:B5:D0:2F:76:DC:B7:DB:5F:93:4D:46:7E:DD:01:2B:3F:EB X509v3 Authority Key Identifier: keyid:5D:32:5B:EF:D8:B7:E8:5E:34:71:04:20:6D:8C:0A:B8:A6:E0:FB:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTJb79i36F40cQQgbYwKuKbg-04.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:87:db:cc:7a:08:6e:b9:fd:47:98:f1:8d:80:7a:ed:e0:1d: 84:fa:b8:f9:e2:a9:78:58:bd:f3:a7:75:8a:e6:09:e8:7e:1b: 85:7d:b5:a5:b9:ae:ff:e1:87:ae:e2:23:e5:8e:c2:3e:9f:9b: b4:84:59:ff:7f:d0:94:9f:18:58:e4:4c:27:31:ac:6c:20:7e: 24:78:07:be:73:c6:96:c4:67:28:de:b0:d3:15:93:b0:69:50: 49:1a:5a:ef:1e:41:13:36:b1:b3:3c:54:62:b5:d7:30:a8:00: a5:af:63:1c:e5:6f:2e:8b:33:57:d6:90:29:20:59:a9:5e:30: 21:8d:42:f6:bc:52:0d:bb:59:52:bc:1b:8b:44:bb:ec:0e:47: 71:fb:93:01:40:30:fa:f6:3c:6a:e7:f8:d0:c0:6b:5d:5f:13: e0:4c:53:e9:c9:87:79:b7:1b:c8:3b:96:7b:ff:b1:5f:77:c3: f9:49:28:f1:7a:4f:84:39:64:18:03:28:69:58:c1:52:4a:3d: 1f:6f:8b:72:29:06:55:9c:52:26:89:bf:f3:97:76:b5:8d:0b: 7e:c1:cd:28:b5:61:df:d8:ba:73:e7:74:84:86:b1:bd:ff:3c: 77:d6:c7:2a:d2:1e:fb:31:78:ac:fb:c4:85:ed:9f:e5:d2:00: bf:bd:0e:e8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0iVHse9b5AoB95EQJNg0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkMzI1YmVmZDhiN2U4NWUzNDcxMDQyMDZkOGMwYWI4YTZl MGZiNGUwHhcNMjUxMjA2MDQwMTEyWhcNMjUxMjA3MDQwMTEyWjAzMTEwLwYDVQQD Eyg1ZGUxMDFiNWQwMmY3NmRjYjdkYjVmOTM0ZDQ2N2VkZDAxMmIzZmViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAndGgw8gbFu9thughB60llFzijdNy x5J/lWgFXVSJSJlhxcUSKtud/9SsmFFO/lqqYnAr/YeiJPyJQw37Esbwow3fcHUd QHg3kvdxwX38dEpblY9bTWSaBdbaSxQom3Al0ZMgGUuF1z1Wm0l32KTQzVt5eEMu 5UiVquYQYhGgxlyvTUm9viL1P6mnLyNQsuZQKV73ROoCwK/Cz9i5YsNbEHjFUs3N fzRXTXdcrAKG1LnOit8+BC2fKqtKIttQBO1YyERUFEAHi01K+ppzJVdyTLSb1V4/ iPWxopAodRgaeTKBWinmGMKBiuDlZXuBK9p4nZZQBbVkyR8C09UQqLlCowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF3hAbXQL3bct9tfk01Gft0BKz/rMB8GA1UdIwQY MBaAFF0yW+/Yt+heNHEEIG2MCrim4PtOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFRKYjc5aTM2RjQwY1FRZ2JZd0t1S2JnLTA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC81MTQ2ZDAtM2U3NC00N2ExLWFhM2Ut Zjk5OTViNzhhODVmLzEvWFRKYjc5aTM2RjQwY1FRZ2JZd0t1S2JnLTA0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMC81MTQ2ZDAtM2U3NC00N2ExLWFhM2UtZjk5OTViNzhhODVm LzEvWFRKYjc5aTM2RjQwY1FRZ2JZd0t1S2JnLTA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbofbzHoI brn9R5jxjYB67eAdhPq4+eKpeFi986d1iuYJ6H4bhX21pbmu/+GHruIj5Y7CPp+b tIRZ/3/QlJ8YWORMJzGsbCB+JHgHvnPGlsRnKN6w0xWTsGlQSRpa7x5BEzaxszxU YrXXMKgApa9jHOVvLoszV9aQKSBZqV4wIY1C9rxSDbtZUrwbi0S77A5HcfuTAUAw +vY8auf40MBrXV8T4ExT6cmHebcbyDuWe/+xX3fD+Uko8XpPhDlkGAMoaVjBUko9 H2+LcikGVZxSJom/85d2tY0LfsHNKLVh39i6c+d0hIaxvf88d9bHKtIe+zF4rPvE he2f5dIAv70O6A== -----END CERTIFICATE-----Generated at Sat Dec 6 14:42:13 2025 by rpki-client