This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.mft File: XGpfUrAC9ihsHV6yV7tehTNCooQ.mft (raw, json) Hash identifier: dIYSsQMZuul7wHgvh/mV2mytUeOw2hjj/6E/hb0rHT4= Subject key identifier: BD:D3:8C:BD:C5:B4:6C:85:7B:9A:46:7E:75:E9:74:14:9C:C1:C5:86 Authority key identifier: 5C:6A:5F:52:B0:02:F6:28:6C:1D:5E:B2:57:BB:5E:85:33:42:A2:84 Certificate issuer: /CN=5c6a5f52b002f6286c1d5eb257bb5e853342a284 Certificate serial: 019AF12CF4F00F980AE312C044D317B81E1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGpfUrAC9ihsHV6yV7tehTNCooQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.mft Manifest number: 1414 Signing time: Sat 06 Dec 2025 01:00:46 +0000 Manifest this update: Sat 06 Dec 2025 01:00:46 +0000 Manifest next update: Sun 07 Dec 2025 01:00:46 +0000 Files and hashes: 1: XGpfUrAC9ihsHV6yV7tehTNCooQ.crl (hash: tSgtMeGvLptYbyKM9+zMWw2sVG+mvf51Fx9IHEXeDPw=) 2: tscq8RR5-J67nLuusgspLPatxCY.roa (hash: mhooYjP72FJexVsRBpMnu3/8vTwdVxQOmpcDiGXdBjc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.mft rsync://rpki.ripe.net/repository/DEFAULT/XGpfUrAC9ihsHV6yV7tehTNCooQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2c:f4:f0:0f:98:0a:e3:12:c0:44:d3:17:b8:1e:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c6a5f52b002f6286c1d5eb257bb5e853342a284 Validity Not Before: Dec 6 01:00:46 2025 GMT Not After : Dec 7 01:00:46 2025 GMT Subject: CN=bdd38cbdc5b46c857b9a467e75e974149cc1c586 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a8:20:e8:21:c1:b8:10:ca:c2:c3:94:1a:c9: 7e:9b:4f:65:57:5b:70:14:ca:34:58:6d:59:de:d5: ad:45:98:d1:18:19:2e:6b:a2:bc:36:c6:3e:99:49: c7:af:e0:0e:85:8f:95:af:b1:2e:55:36:25:04:88: b7:1c:f5:6f:29:dc:59:57:01:34:9d:d9:bb:25:e4: e2:99:a7:22:4f:69:e0:06:ed:11:35:bc:70:f8:62: 37:16:8c:72:e1:61:73:ac:b3:b0:85:1f:c1:8e:05: 48:c7:58:aa:3a:62:d2:de:61:b5:8c:cd:90:ba:4a: 61:b2:03:ee:69:3b:d2:32:50:d9:3b:53:8b:4f:ab: 59:1e:f2:8d:1e:d8:a6:f1:4f:cc:20:8b:7c:f1:7d: 99:20:97:db:28:62:f7:bd:10:20:54:75:06:f6:44: e4:db:b1:c3:ad:db:14:60:4e:a2:c7:c6:ca:58:b4: 6c:c0:53:8c:bd:5a:4d:a0:2a:b2:7f:8d:1d:76:d3: 66:c9:d0:08:62:78:03:b3:94:40:a8:e5:70:9c:93: b1:52:61:5e:05:46:cd:92:49:56:89:62:7c:32:4f: 52:f6:f7:9e:3d:13:4b:b5:a7:05:f5:9a:36:40:c5: fc:a2:50:2e:95:37:29:62:36:d6:f8:b0:05:ea:87: 1a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:D3:8C:BD:C5:B4:6C:85:7B:9A:46:7E:75:E9:74:14:9C:C1:C5:86 X509v3 Authority Key Identifier: keyid:5C:6A:5F:52:B0:02:F6:28:6C:1D:5E:B2:57:BB:5E:85:33:42:A2:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGpfUrAC9ihsHV6yV7tehTNCooQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:df:55:21:e2:c2:39:e2:de:03:8a:14:c5:34:f0:90:e6:aa: 7d:a9:79:a5:b0:1d:d0:92:17:1b:71:e5:e8:d4:69:60:e7:33: 74:db:7e:04:57:7e:7f:0b:30:c0:bb:65:28:0a:54:d3:63:46: 69:a2:35:e5:4b:42:50:53:9d:cf:f2:f4:e2:25:1d:95:ff:54: c8:e3:65:40:d8:76:4e:f6:25:5d:26:a0:d4:41:2d:f4:ec:c8: 34:36:1e:6e:72:b9:bd:ba:57:0c:3e:c3:80:95:1a:61:02:9d: e3:a3:6e:f8:0e:86:82:58:12:c3:41:35:85:70:cc:4f:81:b0: 32:e0:1a:31:c2:1a:ae:d7:25:11:9c:de:4a:29:54:74:65:7a: 00:f7:9c:2d:fb:06:18:fc:b7:40:35:1d:50:7e:f9:d5:92:45: 46:db:bb:d8:7a:c8:08:b1:ee:cb:67:d1:73:4d:5c:11:71:dc: 9d:71:74:4b:d3:df:df:1c:a0:fb:82:f4:d3:16:c3:77:c9:d8: 9b:09:3a:e3:bc:19:79:34:f0:45:a7:af:ef:37:f6:8a:7d:89: 48:93:51:9e:b4:23:3f:85:d4:ac:41:a9:eb:91:f1:e8:a1:54: 76:e2:3d:9c:77:60:28:b6:cd:5e:9d:3d:6d:7c:41:83:11:ef: 84:b3:97:86 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLPTwD5gK4xLARNMXuB4fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjNmE1ZjUyYjAwMmY2Mjg2YzFkNWViMjU3YmI1ZTg1MzM0 MmEyODQwHhcNMjUxMjA2MDEwMDQ2WhcNMjUxMjA3MDEwMDQ2WjAzMTEwLwYDVQQD EyhiZGQzOGNiZGM1YjQ2Yzg1N2I5YTQ2N2U3NWU5NzQxNDljYzFjNTg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuqgg6CHBuBDKwsOUGsl+m09lV1tw FMo0WG1Z3tWtRZjRGBkua6K8NsY+mUnHr+AOhY+Vr7EuVTYlBIi3HPVvKdxZVwE0 ndm7JeTimaciT2ngBu0RNbxw+GI3Foxy4WFzrLOwhR/BjgVIx1iqOmLS3mG1jM2Q ukphsgPuaTvSMlDZO1OLT6tZHvKNHtim8U/MIIt88X2ZIJfbKGL3vRAgVHUG9kTk 27HDrdsUYE6ix8bKWLRswFOMvVpNoCqyf40ddtNmydAIYngDs5RAqOVwnJOxUmFe BUbNkklWiWJ8Mk9S9veePRNLtacF9Zo2QMX8olAulTcpYjbW+LAF6ocaYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL3TjL3FtGyFe5pGfnXpdBScwcWGMB8GA1UdIwQY MBaAFFxqX1KwAvYobB1esle7XoUzQqKEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEdwZlVyQUM5aWhzSFY2eVY3dGVoVE5Db29RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9iNGVjYjEtYTBmNS00MjYxLWJjZGUt MDk2YzljMDdhZTE4LzEvWEdwZlVyQUM5aWhzSFY2eVY3dGVoVE5Db29RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi9iNGVjYjEtYTBmNS00MjYxLWJjZGUtMDk2YzljMDdhZTE4 LzEvWEdwZlVyQUM5aWhzSFY2eVY3dGVoVE5Db29RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARd9VIeLC OeLeA4oUxTTwkOaqfal5pbAd0JIXG3Hl6NRpYOczdNt+BFd+fwswwLtlKApU02NG aaI15UtCUFOdz/L04iUdlf9UyONlQNh2TvYlXSag1EEt9OzINDYebnK5vbpXDD7D gJUaYQKd46Nu+A6GglgSw0E1hXDMT4GwMuAaMcIartclEZzeSilUdGV6APecLfsG GPy3QDUdUH751ZJFRtu72HrICLHuy2fRc01cEXHcnXF0S9Pf3xyg+4L00xbDd8nY mwk647wZeTTwRaev7zf2in2JSJNRnrQjP4XUrEGp65Hx6KFUduI9nHdgKLbNXp09 bXxBgxHvhLOXhg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:18:16 2025 by rpki-client