This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft File: XVn0kNO2myLh4nwya69yMRBW3bg.mft (raw, json) Hash identifier: lpn0LoT40WJh7Jzed0AnD+DFlpyl2SAfhjc93NwMCOg= Subject key identifier: 93:19:9E:1B:5B:6D:11:5E:EA:CD:6B:A5:24:A5:9C:81:31:D2:2B:C2 Authority key identifier: 5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8 Certificate issuer: /CN=5d59f490d3b69b22e1e27c326baf72311056ddb8 Certificate serial: 019B6D3350F8D5E718C43EBB60BFD12AF9F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft Manifest number: 0C2B Signing time: Tue 30 Dec 2025 03:00:38 +0000 Manifest this update: Tue 30 Dec 2025 03:00:38 +0000 Manifest next update: Wed 31 Dec 2025 03:00:38 +0000 Files and hashes: 1: VRTGeEzF5FtK76qOfPyLSRNqkOo.roa (hash: pOO7nnFTp0Qht5tDg13SMXctJEqxWl0GtVbovHy2WzY=) 2: XVn0kNO2myLh4nwya69yMRBW3bg.crl (hash: rF8SsJAwvsz2NVMgN0scTXO5L0Wn0oEpsKUdqgzBoM8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 00:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6d:33:50:f8:d5:e7:18:c4:3e:bb:60:bf:d1:2a:f9:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d59f490d3b69b22e1e27c326baf72311056ddb8 Validity Not Before: Dec 30 03:00:38 2025 GMT Not After : Dec 31 03:00:38 2025 GMT Subject: CN=93199e1b5b6d115eeacd6ba524a59c8131d22bc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:7e:a9:db:7c:eb:4a:7a:c2:a8:99:8e:c5:3c: 1b:8e:52:45:f0:69:38:43:53:8e:75:8e:30:48:98: 9f:5e:1c:3a:f7:a9:a1:a1:af:80:eb:e5:06:59:c5: 6b:f9:50:8d:86:a8:48:9b:1d:a2:0d:39:16:a1:1a: bb:d4:0d:b5:42:ee:bf:c8:c2:8c:38:1b:23:29:45: 8e:db:9c:69:52:22:12:df:33:91:d0:89:2d:89:37: ad:68:ac:06:fb:39:0a:f9:1e:5c:bc:c9:8e:6f:15: ea:40:75:3b:a3:2e:0c:bc:f5:5d:d4:fa:85:e0:19: 81:0e:15:c3:31:ad:04:64:55:82:f1:9e:89:73:3b: 7d:25:6a:e9:38:57:88:e7:5c:8c:75:e3:c8:cf:2e: a4:72:5a:ae:78:81:ce:a0:85:76:9d:ac:f6:6b:ad: 76:98:6f:eb:35:e9:00:2b:fe:ec:ec:7c:ca:a7:e8: d4:97:14:34:d9:bc:c4:ba:df:b9:9e:8a:c9:69:0e: 12:7c:78:26:9b:b3:a9:a3:ac:67:61:8f:77:d9:d8: c4:54:df:ff:6e:02:af:42:81:5d:92:bb:f3:37:a7: 4b:4e:45:0f:03:82:5b:0f:2c:94:dc:d1:75:3a:cb: 10:ef:42:57:69:78:d0:43:69:2e:b9:a4:89:ae:aa: 4d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:19:9E:1B:5B:6D:11:5E:EA:CD:6B:A5:24:A5:9C:81:31:D2:2B:C2 X509v3 Authority Key Identifier: keyid:5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:70:38:13:d8:f0:af:e3:f2:3b:92:24:e3:db:ac:3a:52:16: 94:dc:2b:f7:0b:81:9f:d3:ea:e0:9f:38:d0:f2:82:af:e6:b7: 46:05:e6:63:36:9a:b5:c0:ce:e3:1b:a6:f1:59:ad:83:56:8c: 1e:ab:b8:30:03:d8:d7:bc:2e:c2:ee:54:d7:65:7b:af:f2:47: f1:16:7b:5b:09:17:89:46:21:1f:d8:61:15:44:fb:6c:04:ba: 93:08:f3:ab:66:fe:5f:7e:12:d9:12:99:b0:56:f1:48:e7:f1: 5c:25:9a:c5:f2:f3:9e:bb:15:86:c9:fb:76:0b:4f:ed:cb:fb: 77:cf:da:af:be:4d:45:3c:0e:bd:bf:04:18:5f:37:4c:e8:66: 2d:d5:1f:92:4e:4c:eb:22:d1:33:f1:d8:8c:23:14:48:a4:83: b1:d9:e7:4d:99:19:15:d0:bf:d7:dd:1a:cf:7b:50:06:a6:1d: a5:81:44:e4:70:f5:f0:22:c0:1d:41:d9:57:eb:68:d8:87:6e: 02:ef:0e:95:f5:06:a5:59:09:b2:b7:2e:2c:95:61:85:cb:bc: 82:61:5b:4b:a6:a9:4a:26:c5:65:87:b2:b0:6a:4d:e7:1b:3a: 92:86:53:db:d9:74:ce:c0:19:70:6a:6a:8a:09:4e:93:51:94: 5f:d8:14:a7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZttM1D41ecYxD67YL/RKvn3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkNTlmNDkwZDNiNjliMjJlMWUyN2MzMjZiYWY3MjMxMTA1 NmRkYjgwHhcNMjUxMjMwMDMwMDM4WhcNMjUxMjMxMDMwMDM4WjAzMTEwLwYDVQQD Eyg5MzE5OWUxYjViNmQxMTVlZWFjZDZiYTUyNGE1OWM4MTMxZDIyYmMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkH6p23zrSnrCqJmOxTwbjlJF8Gk4 Q1OOdY4wSJifXhw696mhoa+A6+UGWcVr+VCNhqhImx2iDTkWoRq71A21Qu6/yMKM OBsjKUWO25xpUiIS3zOR0IktiTetaKwG+zkK+R5cvMmObxXqQHU7oy4MvPVd1PqF 4BmBDhXDMa0EZFWC8Z6Jczt9JWrpOFeI51yMdePIzy6kclqueIHOoIV2naz2a612 mG/rNekAK/7s7HzKp+jUlxQ02bzEut+5norJaQ4SfHgmm7Opo6xnYY932djEVN// bgKvQoFdkrvzN6dLTkUPA4JbDyyU3NF1OssQ70JXaXjQQ2kuuaSJrqpNJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJMZnhtbbRFe6s1rpSSlnIEx0ivCMB8GA1UdIwQY MBaAFF1Z9JDTtpsi4eJ8MmuvcjEQVt24MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFZuMGtOTzJteUxoNG53eWE2OXlNUkJXM2JnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS8yYWViNzktMzU4Mi00ZWJmLWIxOWEt NzkzNDhlODM2NmJjLzEvWFZuMGtOTzJteUxoNG53eWE2OXlNUkJXM2JnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS8yYWViNzktMzU4Mi00ZWJmLWIxOWEtNzkzNDhlODM2NmJj LzEvWFZuMGtOTzJteUxoNG53eWE2OXlNUkJXM2JnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcXA4E9jw r+PyO5Ik49usOlIWlNwr9wuBn9Pq4J840PKCr+a3RgXmYzaatcDO4xum8Vmtg1aM Hqu4MAPY17wuwu5U12V7r/JH8RZ7WwkXiUYhH9hhFUT7bAS6kwjzq2b+X34S2RKZ sFbxSOfxXCWaxfLznrsVhsn7dgtP7cv7d8/ar75NRTwOvb8EGF83TOhmLdUfkk5M 6yLRM/HYjCMUSKSDsdnnTZkZFdC/190az3tQBqYdpYFE5HD18CLAHUHZV+to2Idu Au8OlfUGpVkJsrcuLJVhhcu8gmFbS6apSibFZYeysGpN5xs6koZT29l0zsAZcGpq iglOk1GUX9gUpw== -----END CERTIFICATE-----Generated at Tue Dec 30 10:34:34 2025 by rpki-client