This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft File: XfEaGA3xeZTkitMxhyz9AK2augQ.mft (raw, json) Hash identifier: bLZHCXnmZEHDBCcu93ooAQL/AGIeIv59yv7V1pZ4o1U= Subject key identifier: 37:11:68:6B:8A:2A:AD:1E:5F:5D:F6:A0:27:03:2B:BF:57:D9:6F:61 Authority key identifier: 5D:F1:1A:18:0D:F1:79:94:E4:8A:D3:31:87:2C:FD:00:AD:9A:BA:04 Certificate issuer: /CN=5df11a180df17994e48ad331872cfd00ad9aba04 Certificate serial: 019B3DFEB6ECC0DA5FAFA2E64E207D51E1FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfEaGA3xeZTkitMxhyz9AK2augQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft Manifest number: 1789 Signing time: Sat 20 Dec 2025 23:01:01 +0000 Manifest this update: Sat 20 Dec 2025 23:01:01 +0000 Manifest next update: Sun 21 Dec 2025 23:01:01 +0000 Files and hashes: 1: Ncjyog8MF3WbF2yJkOiT3QGNrY0.roa (hash: mac69omVU5l4vKMkEn8yNVakFQh8bBKDgGibhl+5Pew=) 2: XfEaGA3xeZTkitMxhyz9AK2augQ.crl (hash: IN9d0woS1yB9JAPUa4GkUAmaD7gJxr4V589tjUzkTIE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.crl rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft rsync://rpki.ripe.net/repository/DEFAULT/XfEaGA3xeZTkitMxhyz9AK2augQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 23:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:fe:b6:ec:c0:da:5f:af:a2:e6:4e:20:7d:51:e1:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5df11a180df17994e48ad331872cfd00ad9aba04 Validity Not Before: Dec 20 23:01:01 2025 GMT Not After : Dec 21 23:01:01 2025 GMT Subject: CN=3711686b8a2aad1e5f5df6a027032bbf57d96f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f4:e5:94:55:69:d4:69:30:57:5c:f4:53:84: c7:04:d4:fb:0b:db:62:2e:cc:7a:04:78:49:12:7f: 14:7f:21:1d:83:37:f5:e6:03:a1:8b:db:4a:63:6c: 56:95:07:de:c1:61:d7:80:db:b6:2f:d9:7c:19:99: ce:3f:3c:fc:43:92:17:3c:0d:41:46:fb:50:27:10: b3:77:73:18:f6:c6:86:b9:15:b7:c0:bf:dd:b4:2d: 21:8e:5d:8f:c9:de:89:7d:34:01:39:34:be:3f:b6: cc:9e:2e:10:36:fd:a3:0e:8e:b8:32:d5:5f:09:ae: 8a:0f:29:b5:1d:1a:09:47:20:1c:02:d5:eb:71:6d: 79:95:db:90:da:cd:aa:74:1e:27:19:55:fd:eb:bc: b1:3e:fe:b2:63:54:43:2d:02:bb:91:33:9d:28:07: 7f:11:cd:c2:08:d7:c7:2b:1a:cc:77:a4:e9:67:36: 68:c5:f6:c7:17:0c:31:07:cf:8b:81:32:b9:a6:c7: ee:bc:9c:45:68:f2:3f:7f:88:47:7b:76:05:4f:c3: c8:d2:47:d2:1c:a6:61:01:54:ce:45:f4:27:dd:5d: 88:1e:be:67:4f:cb:32:00:db:53:77:5c:45:ef:19: 50:0c:67:37:ae:df:8f:39:01:7e:d0:2b:ea:6f:f5: 4f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:11:68:6B:8A:2A:AD:1E:5F:5D:F6:A0:27:03:2B:BF:57:D9:6F:61 X509v3 Authority Key Identifier: keyid:5D:F1:1A:18:0D:F1:79:94:E4:8A:D3:31:87:2C:FD:00:AD:9A:BA:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfEaGA3xeZTkitMxhyz9AK2augQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:44:34:2a:70:b0:f7:c3:fd:68:c4:20:61:9c:9d:05:9f:dd: b1:d5:47:9a:03:13:20:88:34:09:5f:6c:c7:4c:63:2c:62:c5: e9:2b:32:e4:4b:89:eb:ec:e3:04:82:08:2d:da:ec:7a:b8:b6: 48:df:ea:43:0a:43:ba:17:af:26:31:32:62:d3:a6:e6:52:89: 30:87:22:24:d1:a8:29:10:da:c5:2d:4b:0c:27:4d:94:f9:a4: 6e:c9:1a:dc:8e:e9:81:a2:f1:6f:17:4e:b6:1b:8e:74:38:21: 5e:4f:a8:ea:8f:bb:ab:eb:9e:17:22:db:33:e9:cc:c2:2f:ee: 18:1d:2f:7b:58:8b:cb:b7:60:b6:c0:a5:53:8d:64:ab:2d:bc: ba:43:1b:4f:43:d4:5d:6f:63:18:a3:2a:e5:01:3f:a8:24:23: ab:c2:5e:17:39:19:18:41:fb:46:89:d8:af:a7:9e:2b:46:bd: 1c:e1:f2:c1:e1:ea:db:de:76:ee:77:07:e5:8f:de:32:cf:6d: aa:14:67:5e:58:73:ca:64:be:74:d2:32:2f:20:e1:fb:4a:29: 67:bb:bd:12:08:a3:d6:68:b7:60:17:38:a0:88:fc:e7:8c:cd: f1:97:60:2d:04:17:5f:cf:73:50:94:f4:8d:df:88:58:23:2d: bf:d3:52:a2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9/rbswNpfr6LmTiB9UeH6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkZjExYTE4MGRmMTc5OTRlNDhhZDMzMTg3MmNmZDAwYWQ5 YWJhMDQwHhcNMjUxMjIwMjMwMTAxWhcNMjUxMjIxMjMwMTAxWjAzMTEwLwYDVQQD EygzNzExNjg2YjhhMmFhZDFlNWY1ZGY2YTAyNzAzMmJiZjU3ZDk2ZjYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2fTllFVp1GkwV1z0U4THBNT7C9ti Lsx6BHhJEn8UfyEdgzf15gOhi9tKY2xWlQfewWHXgNu2L9l8GZnOPzz8Q5IXPA1B RvtQJxCzd3MY9saGuRW3wL/dtC0hjl2Pyd6JfTQBOTS+P7bMni4QNv2jDo64MtVf Ca6KDym1HRoJRyAcAtXrcW15lduQ2s2qdB4nGVX967yxPv6yY1RDLQK7kTOdKAd/ Ec3CCNfHKxrMd6TpZzZoxfbHFwwxB8+LgTK5psfuvJxFaPI/f4hHe3YFT8PI0kfS HKZhAVTORfQn3V2IHr5nT8syANtTd1xF7xlQDGc3rt+POQF+0Cvqb/VPXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDcRaGuKKq0eX132oCcDK79X2W9hMB8GA1UdIwQY MBaAFF3xGhgN8XmU5IrTMYcs/QCtmroEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGZFYUdBM3hlWlRraXRNeGh5ejlBSzJhdWdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy83M2QxNDUtZWI5OS00YmQ4LWE4MTct NmJjZTc3OTljYmVhLzEvWGZFYUdBM3hlWlRraXRNeGh5ejlBSzJhdWdRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy83M2QxNDUtZWI5OS00YmQ4LWE4MTctNmJjZTc3OTljYmVh LzEvWGZFYUdBM3hlWlRraXRNeGh5ejlBSzJhdWdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgUQ0KnCw 98P9aMQgYZydBZ/dsdVHmgMTIIg0CV9sx0xjLGLF6Ssy5EuJ6+zjBIIILdrseri2 SN/qQwpDuhevJjEyYtOm5lKJMIciJNGoKRDaxS1LDCdNlPmkbska3I7pgaLxbxdO thuOdDghXk+o6o+7q+ueFyLbM+nMwi/uGB0ve1iLy7dgtsClU41kqy28ukMbT0PU XW9jGKMq5QE/qCQjq8JeFzkZGEH7RonYr6eeK0a9HOHyweHq29527ncH5Y/eMs9t qhRnXlhzymS+dNIyLyDh+0opZ7u9Egij1mi3YBc4oIj854zN8ZdgLQQXX89zUJT0 jd+IWCMtv9NSog== -----END CERTIFICATE-----Generated at Sun Dec 21 09:00:45 2025 by rpki-client