This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/52740e-5cb0-4814-a21a-a0967a435a6a/1/XbeSdWWd2WHHQr8h2NyhhKRDDYU.mft File: XbeSdWWd2WHHQr8h2NyhhKRDDYU.mft (raw, json) Hash identifier: YlQR2j6Spt1NR6a7gg7KnbzF8B2Vd66bNWgLuY+YHdg= Subject key identifier: 83:2E:92:E2:B6:1F:57:92:C4:C4:91:DC:F4:3E:FC:C0:19:75:74:C2 Authority key identifier: 5D:B7:92:75:65:9D:D9:61:C7:42:BF:21:D8:DC:A1:84:A4:43:0D:85 Certificate issuer: /CN=5db79275659dd961c742bf21d8dca184a4430d85 Certificate serial: 019AF31BFDE9EFE2308C2D7854DD7E46B488 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XbeSdWWd2WHHQr8h2NyhhKRDDYU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/52740e-5cb0-4814-a21a-a0967a435a6a/1/XbeSdWWd2WHHQr8h2NyhhKRDDYU.mft Manifest number: 0DDE Signing time: Sat 06 Dec 2025 10:01:29 +0000 Manifest this update: Sat 06 Dec 2025 10:01:29 +0000 Manifest next update: Sun 07 Dec 2025 10:01:29 +0000 Files and hashes: 1: XbeSdWWd2WHHQr8h2NyhhKRDDYU.crl (hash: vJNvnpVXVpt9bGLa6erJ8NlGVrJAFKTzKzJpOZlyMmo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/52740e-5cb0-4814-a21a-a0967a435a6a/1/XbeSdWWd2WHHQr8h2NyhhKRDDYU.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/52740e-5cb0-4814-a21a-a0967a435a6a/1/XbeSdWWd2WHHQr8h2NyhhKRDDYU.mft rsync://rpki.ripe.net/repository/DEFAULT/XbeSdWWd2WHHQr8h2NyhhKRDDYU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:fd:e9:ef:e2:30:8c:2d:78:54:dd:7e:46:b4:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5db79275659dd961c742bf21d8dca184a4430d85 Validity Not Before: Dec 6 10:01:29 2025 GMT Not After : Dec 7 10:01:29 2025 GMT Subject: CN=832e92e2b61f5792c4c491dcf43efcc0197574c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ab:a6:a5:1c:1e:f6:f2:3e:8d:eb:8f:c6:51: 91:71:8a:d9:b6:b7:d6:91:fc:d5:af:c7:f3:78:bb: 2d:f1:95:ee:4e:b1:b9:1c:68:61:34:17:0b:06:28: 4e:8a:5a:75:c3:5b:d7:93:15:f5:a1:cb:6f:c5:89: c0:60:c7:3a:bd:a1:7a:c1:bf:d3:d5:96:3f:bd:70: 40:b3:ae:ed:c4:e7:af:19:13:d2:11:bc:9f:bc:01: bb:ba:ee:22:93:67:4b:7c:bf:9f:c2:02:d3:dd:35: 0a:8c:6c:be:84:ef:bd:c7:b5:3b:ca:9d:aa:42:d8: fa:3a:45:d8:26:83:0e:07:fb:b8:94:4e:a1:9f:7f: a1:ad:79:0a:1c:8b:ad:20:02:79:e1:e6:a5:ae:7e: b9:7f:d8:51:60:43:ab:b5:dd:60:1d:3a:ce:7c:58: fc:b6:80:6f:55:5e:62:6d:a7:29:19:51:7e:05:20: a4:15:ff:ed:4f:29:36:88:6b:7c:4e:74:23:90:75: bc:30:6a:a1:95:5c:2e:9b:1c:e8:ea:2a:28:99:8b: ac:b4:10:c1:c6:4d:48:34:54:e0:8f:a2:4d:1f:96: f9:40:69:b4:ab:0b:8f:40:0d:6b:14:e1:cc:1f:8a: 44:cb:a4:92:7e:f9:a2:2c:04:f7:6d:ef:0d:d5:ef: 47:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:2E:92:E2:B6:1F:57:92:C4:C4:91:DC:F4:3E:FC:C0:19:75:74:C2 X509v3 Authority Key Identifier: keyid:5D:B7:92:75:65:9D:D9:61:C7:42:BF:21:D8:DC:A1:84:A4:43:0D:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XbeSdWWd2WHHQr8h2NyhhKRDDYU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/52740e-5cb0-4814-a21a-a0967a435a6a/1/XbeSdWWd2WHHQr8h2NyhhKRDDYU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/52740e-5cb0-4814-a21a-a0967a435a6a/1/XbeSdWWd2WHHQr8h2NyhhKRDDYU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption be:43:e5:04:ef:eb:5e:04:75:10:3e:d5:c7:6a:88:54:cc:76: 72:d7:ac:a9:33:68:bc:78:49:5b:31:c4:c6:1c:ec:82:9b:05: 84:bd:aa:38:7e:b7:39:98:fa:93:a8:4f:27:fb:bc:42:94:a3: ea:2c:6e:73:a4:50:89:41:b8:76:0a:90:de:88:38:8f:32:bd: 33:cd:ba:ed:77:f7:9e:62:6a:4c:7e:1f:35:74:4c:80:5a:63: f0:11:f8:b6:f8:00:1c:9d:8d:ef:68:10:4c:10:8d:21:e3:e7: 50:19:de:1b:05:8e:ae:30:6b:27:62:05:9f:3a:93:86:f0:f2: 34:04:c7:79:c5:07:35:d9:d1:94:57:57:f9:93:0e:20:32:4c: 22:97:c9:76:c0:13:4a:c9:60:49:78:b4:e4:40:ec:0d:13:fc: 3b:37:99:ca:d1:99:db:5d:19:01:80:1a:18:15:c2:60:b5:e4: 2c:53:3a:ab:74:54:c7:4f:20:43:4d:64:73:4e:9a:35:86:ac: df:d6:35:c5:62:b6:3b:18:a8:81:1f:27:4d:35:90:1e:1c:7e: 14:4b:1f:3d:ae:93:01:f3:96:e4:0e:47:bc:95:0a:b8:28:68: d2:de:5a:87:80:47:3b:4a:36:52:95:ad:b7:3e:ec:0f:e9:30: 2c:f6:4d:eb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG/3p7+IwjC14VN1+RrSIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkYjc5Mjc1NjU5ZGQ5NjFjNzQyYmYyMWQ4ZGNhMTg0YTQ0 MzBkODUwHhcNMjUxMjA2MTAwMTI5WhcNMjUxMjA3MTAwMTI5WjAzMTEwLwYDVQQD Eyg4MzJlOTJlMmI2MWY1NzkyYzRjNDkxZGNmNDNlZmNjMDE5NzU3NGMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr6umpRwe9vI+jeuPxlGRcYrZtrfW kfzVr8fzeLst8ZXuTrG5HGhhNBcLBihOilp1w1vXkxX1octvxYnAYMc6vaF6wb/T 1ZY/vXBAs67txOevGRPSEbyfvAG7uu4ik2dLfL+fwgLT3TUKjGy+hO+9x7U7yp2q Qtj6OkXYJoMOB/u4lE6hn3+hrXkKHIutIAJ54ealrn65f9hRYEOrtd1gHTrOfFj8 toBvVV5ibacpGVF+BSCkFf/tTyk2iGt8TnQjkHW8MGqhlVwumxzo6ioomYustBDB xk1INFTgj6JNH5b5QGm0qwuPQA1rFOHMH4pEy6SSfvmiLAT3be8N1e9HjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIMukuK2H1eSxMSR3PQ+/MAZdXTCMB8GA1UdIwQY MBaAFF23knVlndlhx0K/IdjcoYSkQw2FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGJlU2RXV2QyV0hIUXI4aDJOeWhoS1JERFlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS81Mjc0MGUtNWNiMC00ODE0LWEyMWEt YTA5NjdhNDM1YTZhLzEvWGJlU2RXV2QyV0hIUXI4aDJOeWhoS1JERFlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS81Mjc0MGUtNWNiMC00ODE0LWEyMWEtYTA5NjdhNDM1YTZh LzEvWGJlU2RXV2QyV0hIUXI4aDJOeWhoS1JERFlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvkPlBO/r XgR1ED7Vx2qIVMx2ctesqTNovHhJWzHExhzsgpsFhL2qOH63OZj6k6hPJ/u8QpSj 6ixuc6RQiUG4dgqQ3og4jzK9M8267Xf3nmJqTH4fNXRMgFpj8BH4tvgAHJ2N72gQ TBCNIePnUBneGwWOrjBrJ2IFnzqThvDyNATHecUHNdnRlFdX+ZMOIDJMIpfJdsAT SslgSXi05EDsDRP8OzeZytGZ210ZAYAaGBXCYLXkLFM6q3RUx08gQ01kc06aNYas 39Y1xWK2OxiogR8nTTWQHhx+FEsfPa6TAfOW5A5HvJUKuCho0t5ah4BHO0o2UpWt tz7sD+kwLPZN6w== -----END CERTIFICATE-----Generated at Sat Dec 6 15:00:14 2025 by rpki-client