This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft File: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft (raw, json) Hash identifier: 8vQ0Y8eKCXym4GvIsR+bMvKAuhAOqvKnQoLh541MYkE= Subject key identifier: 05:B2:B4:77:06:A6:04:DA:00:03:01:B2:55:2E:FE:7F:04:49:52:A9 Authority key identifier: 5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D Certificate issuer: /CN=5e803b66b306008fb172c2dfd522b5655057360d Certificate serial: 019B4E845DA04792BE665E0BA998799A9CE0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft Manifest number: 13B1 Signing time: Wed 24 Dec 2025 04:00:56 +0000 Manifest this update: Wed 24 Dec 2025 04:00:56 +0000 Manifest next update: Thu 25 Dec 2025 04:00:56 +0000 Files and hashes: 1: Bu2qohV5DT207In6bmDkzPkl22w.roa (hash: yQgjgxJo0jD6Zb5Cbl39m04H6+9TPpDsNpPjtFWzK98=) 2: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl (hash: z7J8unriX/HKQ5IxNXhYEukZeybEjuBR/2KitjEobYs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 04:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4e:84:5d:a0:47:92:be:66:5e:0b:a9:98:79:9a:9c:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5e803b66b306008fb172c2dfd522b5655057360d Validity Not Before: Dec 24 04:00:56 2025 GMT Not After : Dec 25 04:00:56 2025 GMT Subject: CN=05b2b47706a604da000301b2552efe7f044952a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:45:d1:5c:64:73:6a:36:e5:67:1c:5d:1c:aa: a2:98:d6:25:eb:47:72:7f:f3:2c:d8:24:ce:6f:5d: 3b:ae:30:4e:ec:7e:0a:21:62:49:a8:d2:b4:f7:d9: 67:0c:21:70:11:64:d9:47:bc:6d:09:78:c5:cc:78: 70:7f:05:d3:eb:2f:66:24:b5:32:64:1d:22:e3:44: 86:bd:1c:a1:8a:77:26:05:fd:5b:55:0d:ec:57:2b: f4:58:2d:ed:69:12:db:8b:c0:47:6f:9a:9c:2e:86: 4b:a4:c4:ec:6c:22:b6:ce:8f:26:b9:c4:b8:80:25: dc:8e:c4:7f:6f:58:f4:ed:a6:c9:c3:15:61:37:a2: ad:2d:ff:c4:dc:5c:13:9a:20:9d:07:90:e8:e2:3d: 9b:58:2c:80:31:34:e2:6f:56:45:c7:2a:73:a7:57: 8b:c6:9a:5c:07:72:2b:9c:c0:c9:77:d0:9d:0e:1d: 48:c8:1f:3e:3a:f2:08:49:7c:eb:4e:a7:54:92:80: 02:3c:5e:51:5e:af:6e:e4:b3:bc:3d:66:1c:0b:dc: 9c:1a:47:3f:ea:0f:40:61:90:fe:f3:c9:7e:40:8a: 66:a2:4c:1d:5d:e7:6d:49:4a:27:93:a6:01:87:3f: b1:ca:b9:00:43:b2:71:85:e7:65:36:f9:db:06:0b: 50:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:B2:B4:77:06:A6:04:DA:00:03:01:B2:55:2E:FE:7F:04:49:52:A9 X509v3 Authority Key Identifier: keyid:5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:3a:76:e4:20:e4:38:ed:2f:b6:7c:64:cb:71:d7:26:03:87: 3e:98:26:57:5b:1e:04:e5:ca:e5:d8:9e:41:a5:49:14:b1:93: 75:0c:01:b7:25:a8:ec:1f:b9:f8:ed:de:70:ef:39:8e:a3:19: 18:79:a7:0d:cd:58:b2:f8:0a:2c:ea:a0:cb:d6:0c:31:ef:33: bf:ac:18:d9:4f:86:e2:4b:aa:c5:d0:55:bb:ce:f1:94:92:04: 8f:2f:66:11:40:21:ab:5d:5b:c2:10:14:06:f8:bf:c0:be:ea: 4e:22:fd:25:6f:37:a7:9c:c8:6d:c8:ba:32:41:cd:5a:60:63: 53:fc:67:a8:2e:47:19:93:97:09:55:57:26:e1:6b:58:d0:d0: a1:0c:a0:c8:51:4a:68:e7:40:57:ca:d2:e0:f4:c3:12:f3:49: 85:d1:5f:f0:93:69:ec:25:ad:36:24:3b:f0:51:4c:9b:51:8d: d9:f5:d0:b0:d7:83:4f:b3:31:af:58:05:b2:c1:ff:06:af:8a: 74:b0:69:21:bf:57:7e:30:e8:69:b6:b9:ad:a6:da:e0:4c:0f: e3:00:01:7b:3c:b4:55:3e:a7:08:e5:86:47:95:9a:fa:8b:3d: 30:a4:2b:f4:a9:b3:52:33:46:18:51:42:c2:a4:0e:8d:24:25: c9:f5:f8:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtOhF2gR5K+Zl4LqZh5mpzgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlODAzYjY2YjMwNjAwOGZiMTcyYzJkZmQ1MjJiNTY1NTA1 NzM2MGQwHhcNMjUxMjI0MDQwMDU2WhcNMjUxMjI1MDQwMDU2WjAzMTEwLwYDVQQD EygwNWIyYjQ3NzA2YTYwNGRhMDAwMzAxYjI1NTJlZmU3ZjA0NDk1MmE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsUXRXGRzajblZxxdHKqimNYl60dy f/Ms2CTOb107rjBO7H4KIWJJqNK099lnDCFwEWTZR7xtCXjFzHhwfwXT6y9mJLUy ZB0i40SGvRyhincmBf1bVQ3sVyv0WC3taRLbi8BHb5qcLoZLpMTsbCK2zo8mucS4 gCXcjsR/b1j07abJwxVhN6KtLf/E3FwTmiCdB5Do4j2bWCyAMTTib1ZFxypzp1eL xppcB3IrnMDJd9CdDh1IyB8+OvIISXzrTqdUkoACPF5RXq9u5LO8PWYcC9ycGkc/ 6g9AYZD+88l+QIpmokwdXedtSUonk6YBhz+xyrkAQ7JxhedlNvnbBgtQTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAWytHcGpgTaAAMBslUu/n8ESVKpMB8GA1UdIwQY MBaAFF6AO2azBgCPsXLC39UitWVQVzYNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWG9BN1pyTUdBSS14Y3NMZjFTSzFaVkJYTmcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy85ZDM0MmMtN2NlNy00YzY5LWFlY2Ut OTM4NTA2YTlmMmE3LzEvWG9BN1pyTUdBSS14Y3NMZjFTSzFaVkJYTmcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy85ZDM0MmMtN2NlNy00YzY5LWFlY2UtOTM4NTA2YTlmMmE3 LzEvWG9BN1pyTUdBSS14Y3NMZjFTSzFaVkJYTmcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEDp25CDk OO0vtnxky3HXJgOHPpgmV1seBOXK5dieQaVJFLGTdQwBtyWo7B+5+O3ecO85jqMZ GHmnDc1YsvgKLOqgy9YMMe8zv6wY2U+G4kuqxdBVu87xlJIEjy9mEUAhq11bwhAU Bvi/wL7qTiL9JW83p5zIbci6MkHNWmBjU/xnqC5HGZOXCVVXJuFrWNDQoQygyFFK aOdAV8rS4PTDEvNJhdFf8JNp7CWtNiQ78FFMm1GN2fXQsNeDT7Mxr1gFssH/Bq+K dLBpIb9XfjDoaba5raba4EwP4wABezy0VT6nCOWGR5Wa+os9MKQr9KmzUjNGGFFC wqQOjSQlyfX4ow== -----END CERTIFICATE-----Generated at Wed Dec 24 12:25:52 2025 by rpki-client