This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft File: XYqf18UZJuIuqKozs7iDjpPovt0.mft (raw, json) Hash identifier: A0w0E1M34G/PFzFAe/lLIrCM0bdYRj4R6N74Q+cd1cE= Subject key identifier: D8:F0:5E:1E:17:39:9B:4B:B2:F9:F9:F7:14:9E:1F:F1:29:4C:D8:13 Authority key identifier: 5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD Certificate issuer: /CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd Certificate serial: 019B4625A3C52C230C94C41F664A73E9D0F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft Manifest number: 178F Signing time: Mon 22 Dec 2025 13:00:30 +0000 Manifest this update: Mon 22 Dec 2025 13:00:30 +0000 Manifest next update: Tue 23 Dec 2025 13:00:30 +0000 Files and hashes: 1: 0RjgNRg0mrp-p0sUPcMzw9plAa8.roa (hash: /sIoNqXyJWt95PHx7AGb8pmEwy8qEaDKsd4+c9cdNhU=) 2: ByhvC5UK-f2zjyXJoOZ55QYyoFY.roa (hash: 7F3UrolhPGtbR/fySIsaZ7YzGq6FNxf2q9uu01GI6C0=) 3: DyR2WdJX7ABSVFzMG--Y2Rw480o.roa (hash: +lC9V9G29eZ0ubABsOu96g/K8AVuHJSib8VHpmomp9Q=) 4: HO-WF7oHezpfwwV3wUG7AErtTlE.roa (hash: 8SO7ZYvzAB17ADVUPvCZiM0fv0nIROPrrAJMFayW82A=) 5: XYqf18UZJuIuqKozs7iDjpPovt0.crl (hash: VAGgKziWy78odN0J39GZe8vimNvX6vwUpFkLKEuI7Mo=) 6: xZlrXqE8pd9RbauBbqs28LHvRHA.roa (hash: 2cai0/ZfgqLeuQF0rbi62rT8qPeDCMYpSTam6ord1Vg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 13:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:46:25:a3:c5:2c:23:0c:94:c4:1f:66:4a:73:e9:d0:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd Validity Not Before: Dec 22 13:00:30 2025 GMT Not After : Dec 23 13:00:30 2025 GMT Subject: CN=d8f05e1e17399b4bb2f9f9f7149e1ff1294cd813 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:3f:c9:34:2e:ca:1c:e5:56:3f:6d:eb:9b:31: f4:89:99:03:6e:ad:0f:8d:ed:1c:c4:8a:c2:68:1c: a4:3f:69:d8:3a:a5:c7:de:db:49:4f:8b:7e:ba:e1: ba:6e:fe:c5:fb:08:b0:af:f9:e9:26:4b:26:bd:a6: b7:a5:cb:ea:b7:64:fb:42:9d:25:15:98:3e:c4:53: 45:9a:c3:aa:b6:bb:c6:8c:c0:40:e9:0c:87:5b:2f: 0c:53:37:22:bb:50:40:b6:a4:7a:28:f3:59:69:e7: 15:e1:6c:11:19:3b:ea:f1:92:89:a0:ce:30:9d:dc: 4a:85:bf:1a:21:d1:ed:86:0a:6c:f7:d2:b6:97:51: fe:3a:e5:94:69:10:3e:7b:d0:1b:57:d1:bc:21:bd: 7f:0f:c6:ca:b2:74:76:be:e8:82:51:59:ad:87:64: 47:14:f8:6b:bb:bf:f1:00:29:68:ad:0b:fa:f4:67: fe:be:60:ad:b3:f7:83:d6:cf:9b:1b:f2:f1:a6:8d: a9:10:ac:82:95:15:67:ec:4e:1c:71:d5:78:20:5e: f8:8f:d8:e4:54:ae:f3:7b:c2:22:b2:eb:b3:de:de: 22:bf:91:90:fe:31:95:9d:fe:e4:6f:dc:98:51:4e: a8:6e:ce:47:bd:db:97:af:2f:cf:2f:da:86:31:70: c2:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:F0:5E:1E:17:39:9B:4B:B2:F9:F9:F7:14:9E:1F:F1:29:4C:D8:13 X509v3 Authority Key Identifier: keyid:5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:cf:1d:d9:22:e9:4a:ff:7c:80:8b:54:0d:d2:75:9b:79:1b: 90:90:fc:64:93:8c:94:02:93:28:33:d5:50:02:84:e5:70:ee: df:4e:4a:52:ea:70:69:46:98:1f:d6:aa:fc:43:44:b7:f0:1b: 6c:52:1c:97:b8:bd:31:08:58:04:d7:f0:06:95:4d:fe:1a:94: 0d:a6:31:c0:42:fb:41:7b:82:bd:49:3d:eb:27:04:dc:52:f1: a7:11:d1:85:67:e4:70:ce:82:9f:1d:fa:e5:05:0b:a9:35:5d: 2c:9a:ea:a0:33:5d:8d:34:fe:ed:d5:40:ff:d9:54:ee:8e:93: 2b:52:c8:55:cd:79:14:07:75:5d:fe:fc:eb:a2:64:bf:f3:cf: be:b9:a1:0f:c3:d2:14:83:d4:2c:d8:87:35:c0:3a:cb:17:a5: 39:74:9c:83:1f:a7:40:90:2e:0f:c2:49:69:5e:36:51:ad:55: 27:34:cb:19:f2:25:44:de:47:5f:8d:fb:36:7d:46:6d:fb:e5: ce:e3:82:d1:45:4c:05:15:20:cf:1d:61:46:a9:b1:e6:fa:54: ed:89:00:7d:31:de:17:71:79:ce:83:54:90:55:84:0d:da:90: 07:98:28:6c:18:b4:b8:f8:94:5e:73:2a:7f:c7:b8:2b:5b:c4: 37:21:84:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtGJaPFLCMMlMQfZkpz6dD5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkOGE5ZmQ3YzUxOTI2ZTIyZWE4YWEzM2IzYjg4MzhlOTNl OGJlZGQwHhcNMjUxMjIyMTMwMDMwWhcNMjUxMjIzMTMwMDMwWjAzMTEwLwYDVQQD EyhkOGYwNWUxZTE3Mzk5YjRiYjJmOWY5ZjcxNDllMWZmMTI5NGNkODEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjD/JNC7KHOVWP23rmzH0iZkDbq0P je0cxIrCaBykP2nYOqXH3ttJT4t+uuG6bv7F+wiwr/npJksmvaa3pcvqt2T7Qp0l FZg+xFNFmsOqtrvGjMBA6QyHWy8MUzciu1BAtqR6KPNZaecV4WwRGTvq8ZKJoM4w ndxKhb8aIdHthgps99K2l1H+OuWUaRA+e9AbV9G8Ib1/D8bKsnR2vuiCUVmth2RH FPhru7/xAClorQv69Gf+vmCts/eD1s+bG/Lxpo2pEKyClRVn7E4ccdV4IF74j9jk VK7ze8Iisuuz3t4iv5GQ/jGVnf7kb9yYUU6obs5HvduXry/PL9qGMXDCzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNjwXh4XOZtLsvn59xSeH/EpTNgTMB8GA1UdIwQY MBaAFF2Kn9fFGSbiLqiqM7O4g46T6L7dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFlxZjE4VVpKdUl1cUtvenM3aURqcFBvdnQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9iYjg2MWQtMzMwZi00YTk3LTlmOWMt NjZjNTNmMmIxZjAyLzEvWFlxZjE4VVpKdUl1cUtvenM3aURqcFBvdnQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9iYjg2MWQtMzMwZi00YTk3LTlmOWMtNjZjNTNmMmIxZjAy LzEvWFlxZjE4VVpKdUl1cUtvenM3aURqcFBvdnQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHM8d2SLp Sv98gItUDdJ1m3kbkJD8ZJOMlAKTKDPVUAKE5XDu305KUupwaUaYH9aq/ENEt/Ab bFIcl7i9MQhYBNfwBpVN/hqUDaYxwEL7QXuCvUk96ycE3FLxpxHRhWfkcM6Cnx36 5QULqTVdLJrqoDNdjTT+7dVA/9lU7o6TK1LIVc15FAd1Xf7866Jkv/PPvrmhD8PS FIPULNiHNcA6yxelOXScgx+nQJAuD8JJaV42Ua1VJzTLGfIlRN5HX437Nn1Gbfvl zuOC0UVMBRUgzx1hRqmx5vpU7YkAfTHeF3F5zoNUkFWEDdqQB5gobBi0uPiUXnMq f8e4K1vENyGEtw== -----END CERTIFICATE-----Generated at Mon Dec 22 17:31:01 2025 by rpki-client