This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/5236e9-ff5a-4019-94d4-aeae6e3593a7/1/mdXL9__sUlSnHvex7fem12x1liU.mft File: mdXL9__sUlSnHvex7fem12x1liU.mft (raw, json) Hash identifier: PwZd39iE0cG4ONCjJoZeiTI5DHhjazJAgHGA7HVeObc= Subject key identifier: E4:CB:DA:A0:EA:95:C8:CA:77:2A:5E:E5:25:42:69:B8:53:B8:82:D6 Authority key identifier: 99:D5:CB:F7:FF:EC:52:54:A7:1E:F7:B1:ED:F7:A6:D7:6C:75:96:25 Certificate issuer: /CN=99d5cbf7ffec5254a71ef7b1edf7a6d76c759625 Certificate serial: 019AF12D79AF98593302F47A6D248C04D844 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdXL9__sUlSnHvex7fem12x1liU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/5236e9-ff5a-4019-94d4-aeae6e3593a7/1/mdXL9__sUlSnHvex7fem12x1liU.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 01:01:20 +0000 Manifest this update: Sat 06 Dec 2025 01:01:20 +0000 Manifest next update: Sun 07 Dec 2025 01:01:20 +0000 Files and hashes: 1: mdXL9__sUlSnHvex7fem12x1liU.crl (hash: 0D/RgWg6YPAal24/sMx6DFnRigdd80nOxyjwjNaAco4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/5236e9-ff5a-4019-94d4-aeae6e3593a7/1/mdXL9__sUlSnHvex7fem12x1liU.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/5236e9-ff5a-4019-94d4-aeae6e3593a7/1/mdXL9__sUlSnHvex7fem12x1liU.mft rsync://rpki.ripe.net/repository/DEFAULT/mdXL9__sUlSnHvex7fem12x1liU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:79:af:98:59:33:02:f4:7a:6d:24:8c:04:d8:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99d5cbf7ffec5254a71ef7b1edf7a6d76c759625 Validity Not Before: Dec 6 01:01:20 2025 GMT Not After : Dec 7 01:01:20 2025 GMT Subject: CN=e4cbdaa0ea95c8ca772a5ee5254269b853b882d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:21:a1:49:8d:ac:81:02:56:01:b5:f6:3f:6c: 64:59:19:90:21:50:8c:1a:24:56:37:1b:d9:59:a3: e3:0e:2e:80:c5:dd:63:39:40:49:04:bf:c4:54:df: 05:da:ff:c3:d5:74:75:07:1b:f1:69:1d:4a:ca:a5: 94:93:ac:d6:42:ef:02:43:d6:5c:43:3a:75:11:6a: f9:fe:62:52:c9:74:0a:21:df:a6:4e:10:9c:50:ab: 0c:bf:1c:bb:3f:64:6a:54:e8:6b:6f:6e:bf:42:90: 74:ed:73:ce:0a:c2:df:81:d8:d4:5f:c5:43:3e:55: 43:88:e8:a1:83:a2:10:73:35:a1:e1:a2:24:a3:df: 43:26:54:c2:43:60:05:83:b3:34:93:f8:33:cb:a5: a7:51:8d:8c:cb:54:10:8f:cc:5f:aa:75:be:97:bb: 9e:30:0d:3f:1a:05:fd:74:37:8e:bc:3f:82:db:93: 1b:5f:3b:41:90:b5:23:d7:7f:e1:1a:d5:34:e1:58: 15:00:f1:f4:aa:d4:f0:67:a3:25:d6:0a:a2:d3:c4: c8:49:14:4d:1b:7f:11:5e:f3:c5:51:b7:54:0b:79: 97:04:da:9e:cc:a1:89:7c:bf:c6:08:fd:f3:5a:dc: 82:ab:70:d8:8a:26:87:d2:da:99:65:13:10:88:ea: e4:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:CB:DA:A0:EA:95:C8:CA:77:2A:5E:E5:25:42:69:B8:53:B8:82:D6 X509v3 Authority Key Identifier: keyid:99:D5:CB:F7:FF:EC:52:54:A7:1E:F7:B1:ED:F7:A6:D7:6C:75:96:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdXL9__sUlSnHvex7fem12x1liU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/5236e9-ff5a-4019-94d4-aeae6e3593a7/1/mdXL9__sUlSnHvex7fem12x1liU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/5236e9-ff5a-4019-94d4-aeae6e3593a7/1/mdXL9__sUlSnHvex7fem12x1liU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:1d:d3:d9:bb:14:ad:65:68:75:70:f4:10:0b:2a:7c:3a:23: 55:16:78:1a:16:d6:cf:56:d5:cc:d6:b3:2e:1c:61:43:2c:a2: 87:f7:2a:57:4e:d4:3b:1d:ae:8a:53:47:ed:4d:62:7a:94:ad: 41:73:06:8a:b3:5f:11:34:b4:6a:f1:1e:63:44:75:70:35:a1: 59:13:b1:29:95:48:91:91:c6:9b:18:a6:2f:c5:b3:1a:8a:54: c8:42:4f:96:bb:d3:85:f6:49:3d:f4:6d:b5:1b:2e:2a:66:24: 61:09:75:db:68:98:b7:24:b7:8d:8f:f9:df:a8:17:79:42:dc: aa:ff:76:9c:92:b7:14:32:d0:ce:98:8c:f4:d3:e2:2b:c4:97: 98:8c:86:d8:1e:10:70:da:a4:b4:08:73:e7:b6:ac:0c:c2:a3: 39:32:a0:2f:88:ac:98:64:c3:d0:69:92:5a:b4:76:78:b9:65: e8:cf:f4:99:fb:46:c6:4f:15:33:f9:5f:42:b6:c2:25:29:48: 65:d7:af:7e:93:4f:21:1a:92:88:f1:de:0c:0b:ec:80:81:06: 02:40:bf:50:e8:8c:7d:4f:31:4f:14:65:87:ba:13:72:48:68: 53:f6:96:6f:9b:d4:56:89:1c:8b:b8:b1:38:00:32:fc:09:15: 36:6b:a2:53 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLXmvmFkzAvR6bSSMBNhEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5ZDVjYmY3ZmZlYzUyNTRhNzFlZjdiMWVkZjdhNmQ3NmM3 NTk2MjUwHhcNMjUxMjA2MDEwMTIwWhcNMjUxMjA3MDEwMTIwWjAzMTEwLwYDVQQD EyhlNGNiZGFhMGVhOTVjOGNhNzcyYTVlZTUyNTQyNjliODUzYjg4MmQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtSGhSY2sgQJWAbX2P2xkWRmQIVCM GiRWNxvZWaPjDi6Axd1jOUBJBL/EVN8F2v/D1XR1BxvxaR1KyqWUk6zWQu8CQ9Zc Qzp1EWr5/mJSyXQKId+mThCcUKsMvxy7P2RqVOhrb26/QpB07XPOCsLfgdjUX8VD PlVDiOihg6IQczWh4aIko99DJlTCQ2AFg7M0k/gzy6WnUY2My1QQj8xfqnW+l7ue MA0/GgX9dDeOvD+C25MbXztBkLUj13/hGtU04VgVAPH0qtTwZ6Ml1gqi08TISRRN G38RXvPFUbdUC3mXBNqezKGJfL/GCP3zWtyCq3DYiiaH0tqZZRMQiOrkdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOTL2qDqlcjKdype5SVCabhTuILWMB8GA1UdIwQY MBaAFJnVy/f/7FJUpx73se33ptdsdZYlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWRYTDlfX3NVbFNuSHZleDdmZW0xMngxbGlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi81MjM2ZTktZmY1YS00MDE5LTk0ZDQt YWVhZTZlMzU5M2E3LzEvbWRYTDlfX3NVbFNuSHZleDdmZW0xMngxbGlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi81MjM2ZTktZmY1YS00MDE5LTk0ZDQtYWVhZTZlMzU5M2E3 LzEvbWRYTDlfX3NVbFNuSHZleDdmZW0xMngxbGlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeB3T2bsU rWVodXD0EAsqfDojVRZ4GhbWz1bVzNazLhxhQyyih/cqV07UOx2uilNH7U1iepSt QXMGirNfETS0avEeY0R1cDWhWROxKZVIkZHGmximL8WzGopUyEJPlrvThfZJPfRt tRsuKmYkYQl122iYtyS3jY/536gXeULcqv92nJK3FDLQzpiM9NPiK8SXmIyG2B4Q cNqktAhz57asDMKjOTKgL4ismGTD0GmSWrR2eLll6M/0mftGxk8VM/lfQrbCJSlI ZdevfpNPIRqSiPHeDAvsgIEGAkC/UOiMfU8xTxRlh7oTckhoU/aWb5vUVokci7ix OAAy/AkVNmuiUw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:45:16 2025 by rpki-client