This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.mft File: XtGkql_QUBs-ptafQzwvFkIRYIk.mft (raw, json) Hash identifier: PzbkLX+EjNH8wu6sWpXEdnZft98vZsfd8CNb1R7pykc= Subject key identifier: C7:9E:7E:00:16:5B:7D:DF:63:DB:66:1C:BF:C5:F4:A3:98:35:7B:2D Authority key identifier: 5E:D1:A4:AA:5F:D0:50:1B:3E:A6:D6:9F:43:3C:2F:16:42:11:60:89 Certificate issuer: /CN=5ed1a4aa5fd0501b3ea6d69f433c2f1642116089 Certificate serial: 019AF38923F254A872DC05FBE68B19EC8BAC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XtGkql_QUBs-ptafQzwvFkIRYIk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.mft Manifest number: 175D Signing time: Sat 06 Dec 2025 12:00:42 +0000 Manifest this update: Sat 06 Dec 2025 12:00:42 +0000 Manifest next update: Sun 07 Dec 2025 12:00:42 +0000 Files and hashes: 1: XtGkql_QUBs-ptafQzwvFkIRYIk.crl (hash: JOwWYjd7gZwcJzBiQxS6SO83WgKMEb7I6zFPBBHhEfM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.crl rsync://rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.mft rsync://rpki.ripe.net/repository/DEFAULT/XtGkql_QUBs-ptafQzwvFkIRYIk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:23:f2:54:a8:72:dc:05:fb:e6:8b:19:ec:8b:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ed1a4aa5fd0501b3ea6d69f433c2f1642116089 Validity Not Before: Dec 6 12:00:42 2025 GMT Not After : Dec 7 12:00:42 2025 GMT Subject: CN=c79e7e00165b7ddf63db661cbfc5f4a398357b2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:6b:d1:50:78:c2:d1:6a:aa:32:0b:2a:38:46: 88:26:a2:58:bc:a5:02:dc:23:b9:65:01:e2:54:79: c2:b4:48:b1:de:46:db:2f:af:81:17:0e:08:f6:6f: b6:a8:62:ac:c3:ef:21:cc:b9:7e:68:9d:85:35:cd: 2d:c6:c7:79:ea:91:87:e4:b2:ab:a2:e7:39:bc:18: a6:d7:c4:50:a8:30:7a:2f:d0:65:a4:7a:04:75:cd: c1:eb:fc:9a:ec:7f:0e:ae:38:ba:d5:43:11:d6:7f: 5e:9d:83:1c:e6:25:90:12:40:04:8d:4c:da:2f:a6: 1d:62:c6:cc:3f:fe:e3:50:e7:b6:39:6e:e0:76:51: a8:67:c6:7c:86:4b:68:c2:18:c3:9a:ba:92:5b:cb: 5d:a8:27:e7:ae:64:81:c0:44:69:a7:8d:e5:a5:20: f8:ae:19:92:f2:62:ad:7e:01:1f:d3:5a:d7:bf:2f: 90:ad:a9:22:e4:25:3c:57:ac:6a:51:ca:71:c8:91: cf:12:08:d6:91:f9:db:47:c3:fc:9c:81:5c:82:71: 88:63:c4:ca:c3:39:ac:42:9a:15:e0:a4:fb:1f:cc: 20:a1:0d:27:4e:0b:c4:38:69:3a:7a:ab:a4:a4:ab: 20:e1:e0:e4:66:e9:89:17:28:99:a6:3d:e3:6e:6d: cd:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:9E:7E:00:16:5B:7D:DF:63:DB:66:1C:BF:C5:F4:A3:98:35:7B:2D X509v3 Authority Key Identifier: keyid:5E:D1:A4:AA:5F:D0:50:1B:3E:A6:D6:9F:43:3C:2F:16:42:11:60:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XtGkql_QUBs-ptafQzwvFkIRYIk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:4f:30:33:05:66:46:8e:53:44:23:19:24:c3:eb:0d:22:63: 11:d5:7d:cc:18:98:bc:23:96:fe:b2:f6:fb:c9:ce:ff:7a:b9: 53:5a:dc:c5:31:00:e5:54:69:02:22:fd:6f:b3:df:d6:23:34: 6b:b3:6d:d5:cd:67:54:a8:14:4a:e3:a6:cb:76:6d:f7:e3:a7: ce:6a:33:02:3f:cb:3c:e4:85:4b:09:f9:94:26:de:f0:cf:3d: 34:f4:ee:f5:fe:e3:1c:18:18:d8:4f:2b:3b:96:dd:52:06:b8: 9d:78:56:e3:9a:4f:0a:0a:cd:14:dc:09:17:4a:2e:c3:05:02: 4a:03:cd:f4:ab:68:ee:e9:d1:85:91:19:1e:25:2d:7a:7d:b2: 19:ec:46:05:50:fc:1d:d0:39:81:7b:98:6c:ef:6e:01:8c:77: c6:61:b2:80:11:74:45:a2:f3:4b:40:f7:91:ab:9a:db:89:97: 18:e4:d7:9b:78:96:1d:49:0c:2d:e7:24:54:02:18:5e:f6:91: f3:66:2a:76:19:cb:70:47:a8:0f:bd:f9:6e:f2:78:de:6d:06: 81:95:ff:33:34:fc:c6:e4:d9:5a:3b:52:19:26:b1:ff:65:6c: 39:c3:c9:06:d6:b6:bb:32:2b:e0:7b:e4:65:50:3c:45:29:6d: ba:21:63:81 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziSPyVKhy3AX75osZ7IusMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlZDFhNGFhNWZkMDUwMWIzZWE2ZDY5ZjQzM2MyZjE2NDIx MTYwODkwHhcNMjUxMjA2MTIwMDQyWhcNMjUxMjA3MTIwMDQyWjAzMTEwLwYDVQQD EyhjNzllN2UwMDE2NWI3ZGRmNjNkYjY2MWNiZmM1ZjRhMzk4MzU3YjJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjmvRUHjC0WqqMgsqOEaIJqJYvKUC 3CO5ZQHiVHnCtEix3kbbL6+BFw4I9m+2qGKsw+8hzLl+aJ2FNc0txsd56pGH5LKr ouc5vBim18RQqDB6L9BlpHoEdc3B6/ya7H8Orji61UMR1n9enYMc5iWQEkAEjUza L6YdYsbMP/7jUOe2OW7gdlGoZ8Z8hktowhjDmrqSW8tdqCfnrmSBwERpp43lpSD4 rhmS8mKtfgEf01rXvy+Qraki5CU8V6xqUcpxyJHPEgjWkfnbR8P8nIFcgnGIY8TK wzmsQpoV4KT7H8wgoQ0nTgvEOGk6equkpKsg4eDkZumJFyiZpj3jbm3NfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMeefgAWW33fY9tmHL/F9KOYNXstMB8GA1UdIwQY MBaAFF7RpKpf0FAbPqbWn0M8LxZCEWCJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHRHa3FsX1FVQnMtcHRhZlF6d3ZGa0lSWUlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi85Yzc3MDMtOGQxNC00YmMwLTg4YTkt YjlhODZhYzNlOGJlLzEvWHRHa3FsX1FVQnMtcHRhZlF6d3ZGa0lSWUlrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi85Yzc3MDMtOGQxNC00YmMwLTg4YTktYjlhODZhYzNlOGJl LzEvWHRHa3FsX1FVQnMtcHRhZlF6d3ZGa0lSWUlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAek8wMwVm Ro5TRCMZJMPrDSJjEdV9zBiYvCOW/rL2+8nO/3q5U1rcxTEA5VRpAiL9b7Pf1iM0 a7Nt1c1nVKgUSuOmy3Zt9+OnzmozAj/LPOSFSwn5lCbe8M89NPTu9f7jHBgY2E8r O5bdUga4nXhW45pPCgrNFNwJF0ouwwUCSgPN9Kto7unRhZEZHiUten2yGexGBVD8 HdA5gXuYbO9uAYx3xmGygBF0RaLzS0D3kaua24mXGOTXm3iWHUkMLeckVAIYXvaR 82YqdhnLcEeoD735bvJ43m0GgZX/MzT8xuTZWjtSGSax/2VsOcPJBta2uzIr4Hvk ZVA8RSltuiFjgQ== -----END CERTIFICATE-----Generated at Sat Dec 6 20:02:16 2025 by rpki-client