This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.mft File: XqFlPhd6opVUAIBcjHW9DWhYOvw.mft (raw, json) Hash identifier: VlIJW8LhHcfHjKjU/iN8iJXWfgkK2An81or0ryMcZbk= Subject key identifier: B3:DB:41:0A:20:2C:4D:A7:12:08:23:28:2C:A2:F4:58:44:E0:9D:A8 Authority key identifier: 5E:A1:65:3E:17:7A:A2:95:54:00:80:5C:8C:75:BD:0D:68:58:3A:FC Certificate issuer: /CN=5ea1653e177aa2955400805c8c75bd0d68583afc Certificate serial: 019B330CE3EAE9A519149E64C60007652E53 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XqFlPhd6opVUAIBcjHW9DWhYOvw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.mft Manifest number: 0C13 Signing time: Thu 18 Dec 2025 20:00:40 +0000 Manifest this update: Thu 18 Dec 2025 20:00:40 +0000 Manifest next update: Fri 19 Dec 2025 20:00:40 +0000 Files and hashes: 1: XqFlPhd6opVUAIBcjHW9DWhYOvw.crl (hash: 5iha/9i+zcn21Xbwfni3ROyx1E94uDpx4poRAWTb77Y=) 2: pG0gZB0nkw3GnTji0o-IVbuNrD4.roa (hash: viA8g+053tZ6I/BKlBgt30tnVs0+WwkriBcMwHPLKm4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.mft rsync://rpki.ripe.net/repository/DEFAULT/XqFlPhd6opVUAIBcjHW9DWhYOvw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:0c:e3:ea:e9:a5:19:14:9e:64:c6:00:07:65:2e:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ea1653e177aa2955400805c8c75bd0d68583afc Validity Not Before: Dec 18 20:00:40 2025 GMT Not After : Dec 19 20:00:40 2025 GMT Subject: CN=b3db410a202c4da7120823282ca2f45844e09da8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a1:82:2f:b2:48:37:ca:25:b0:b7:bb:3f:fb: 1d:40:a7:62:11:41:6e:7e:fa:29:49:39:e1:d2:e9: 96:46:3c:6e:05:4c:94:6e:1d:aa:fd:65:ad:60:6a: e8:84:96:4d:1b:68:94:16:6f:f5:e5:90:48:c3:44: 0f:b2:1e:d9:2d:75:29:f1:00:9d:49:f1:84:f1:df: 7a:40:ba:1c:cc:08:fe:69:ec:55:89:0e:15:71:cf: b8:e5:a0:f5:05:fd:dd:e8:dd:9f:93:bf:29:7e:21: e1:6c:d2:72:87:0b:14:18:a7:5b:43:8a:be:59:10: 96:59:cf:66:32:f0:4c:6d:08:61:e6:72:23:9b:41: 30:0b:7b:eb:91:ea:e8:92:91:f5:76:65:6f:9a:17: 1b:85:09:c5:b5:9b:76:33:7a:d4:63:0e:82:65:a5: 97:8c:60:41:6f:0c:d2:3e:8d:1c:9b:f6:c7:e8:30: 7c:c5:9a:9d:45:3d:fe:eb:3c:c7:c9:81:5a:f1:f3: 1a:9f:2f:09:63:c6:4c:79:a5:24:94:0a:c0:68:33: bf:a6:20:9e:48:30:24:58:98:00:4a:b5:68:b9:7c: 5d:05:31:20:21:5a:41:71:66:6b:07:31:45:a1:b8: 3f:5b:55:cf:b9:fa:47:f0:b8:7e:d7:47:40:bc:dc: 0a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:DB:41:0A:20:2C:4D:A7:12:08:23:28:2C:A2:F4:58:44:E0:9D:A8 X509v3 Authority Key Identifier: keyid:5E:A1:65:3E:17:7A:A2:95:54:00:80:5C:8C:75:BD:0D:68:58:3A:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XqFlPhd6opVUAIBcjHW9DWhYOvw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:fc:5d:b1:3a:97:78:b7:fa:40:a4:7c:c2:54:44:6d:33:18: b1:e4:02:88:17:96:28:47:4b:31:38:c2:70:1d:4e:6f:62:f6: 61:59:81:1b:8f:00:17:5f:e8:1e:c8:5b:a1:b6:16:ff:d3:de: bc:eb:de:bb:4e:b4:e2:4a:58:3c:9f:c8:a9:74:7a:d3:1c:ec: e5:f3:ca:13:19:26:84:0a:b4:46:9a:94:bf:c7:34:90:0f:97: 8b:56:fe:a0:83:f6:23:56:d6:a9:05:50:6e:90:cf:92:7b:e6: 6d:42:93:19:e5:37:1d:34:b4:90:06:ae:5b:5c:de:27:8d:3e: 48:79:87:36:00:61:d9:31:bd:58:09:be:5a:11:2b:3d:cb:e9: 2a:d4:39:71:d5:50:9b:38:00:02:a6:54:69:4a:c8:07:39:9d: d5:c5:f1:f5:22:b0:b7:8c:04:31:f8:8a:d6:27:19:0f:79:f2: 6a:67:d3:2f:85:a3:2a:cb:0b:c8:88:6d:ef:49:b2:f8:cf:b1: af:13:a5:c3:24:02:b8:c1:82:2a:45:3e:7e:b4:7b:7c:02:d9: ad:ce:a4:2a:4b:e5:74:8a:b3:c5:9e:e3:f9:11:d6:95:8d:91: 65:cd:34:68:64:46:35:cb:bf:73:c7:de:49:f4:b8:82:ad:12: d4:79:3e:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszDOPq6aUZFJ5kxgAHZS5TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlYTE2NTNlMTc3YWEyOTU1NDAwODA1YzhjNzViZDBkNjg1 ODNhZmMwHhcNMjUxMjE4MjAwMDQwWhcNMjUxMjE5MjAwMDQwWjAzMTEwLwYDVQQD EyhiM2RiNDEwYTIwMmM0ZGE3MTIwODIzMjgyY2EyZjQ1ODQ0ZTA5ZGE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuqGCL7JIN8olsLe7P/sdQKdiEUFu fvopSTnh0umWRjxuBUyUbh2q/WWtYGrohJZNG2iUFm/15ZBIw0QPsh7ZLXUp8QCd SfGE8d96QLoczAj+aexViQ4Vcc+45aD1Bf3d6N2fk78pfiHhbNJyhwsUGKdbQ4q+ WRCWWc9mMvBMbQhh5nIjm0EwC3vrkerokpH1dmVvmhcbhQnFtZt2M3rUYw6CZaWX jGBBbwzSPo0cm/bH6DB8xZqdRT3+6zzHyYFa8fMany8JY8ZMeaUklArAaDO/piCe SDAkWJgASrVouXxdBTEgIVpBcWZrBzFFobg/W1XPufpH8Lh+10dAvNwKLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLPbQQogLE2nEggjKCyi9FhE4J2oMB8GA1UdIwQY MBaAFF6hZT4XeqKVVACAXIx1vQ1oWDr8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHFGbFBoZDZvcFZVQUlCY2pIVzlEV2hZT3Z3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy9hNGFmMTUtN2ZkZC00NWE0LWExNzIt MWRmOGZhMjBmYTllLzEvWHFGbFBoZDZvcFZVQUlCY2pIVzlEV2hZT3Z3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy9hNGFmMTUtN2ZkZC00NWE0LWExNzItMWRmOGZhMjBmYTll LzEvWHFGbFBoZDZvcFZVQUlCY2pIVzlEV2hZT3Z3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaPxdsTqX eLf6QKR8wlREbTMYseQCiBeWKEdLMTjCcB1Ob2L2YVmBG48AF1/oHshbobYW/9Pe vOveu0604kpYPJ/IqXR60xzs5fPKExkmhAq0RpqUv8c0kA+Xi1b+oIP2I1bWqQVQ bpDPknvmbUKTGeU3HTS0kAauW1zeJ40+SHmHNgBh2TG9WAm+WhErPcvpKtQ5cdVQ mzgAAqZUaUrIBzmd1cXx9SKwt4wEMfiK1icZD3nyamfTL4WjKssLyIht70my+M+x rxOlwyQCuMGCKkU+frR7fALZrc6kKkvldIqzxZ7j+RHWlY2RZc00aGRGNcu/c8fe SfS4gq0S1Hk+qQ== -----END CERTIFICATE-----Generated at Fri Dec 19 00:08:54 2025 by rpki-client