This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft File: XYqf18UZJuIuqKozs7iDjpPovt0.mft (raw, json) Hash identifier: i/eP3gFhJ6bb9uewcFE8Qeilc18lC6069ebZ/EBjty8= Subject key identifier: 3B:16:2F:B1:2A:74:22:72:D2:95:BB:B3:B1:35:84:C2:5E:D4:AA:80 Authority key identifier: 5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD Certificate issuer: /CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd Certificate serial: 019B72907FD83D1C2F95D468C268101BB688 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft Manifest number: 17A6 Signing time: Wed 31 Dec 2025 04:00:31 +0000 Manifest this update: Wed 31 Dec 2025 04:00:31 +0000 Manifest next update: Thu 01 Jan 2026 04:00:31 +0000 Files and hashes: 1: 0RjgNRg0mrp-p0sUPcMzw9plAa8.roa (hash: /sIoNqXyJWt95PHx7AGb8pmEwy8qEaDKsd4+c9cdNhU=) 2: ByhvC5UK-f2zjyXJoOZ55QYyoFY.roa (hash: 7F3UrolhPGtbR/fySIsaZ7YzGq6FNxf2q9uu01GI6C0=) 3: DyR2WdJX7ABSVFzMG--Y2Rw480o.roa (hash: +lC9V9G29eZ0ubABsOu96g/K8AVuHJSib8VHpmomp9Q=) 4: HO-WF7oHezpfwwV3wUG7AErtTlE.roa (hash: 8SO7ZYvzAB17ADVUPvCZiM0fv0nIROPrrAJMFayW82A=) 5: XYqf18UZJuIuqKozs7iDjpPovt0.crl (hash: 4h/kHxgyrip1eG+YXc6DFHQq8UPCTrYJ/H2BfcHddBU=) 6: xZlrXqE8pd9RbauBbqs28LHvRHA.roa (hash: 2cai0/ZfgqLeuQF0rbi62rT8qPeDCMYpSTam6ord1Vg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 01 Jan 2026 00:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:72:90:7f:d8:3d:1c:2f:95:d4:68:c2:68:10:1b:b6:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd Validity Not Before: Dec 31 04:00:31 2025 GMT Not After : Jan 1 04:00:31 2026 GMT Subject: CN=3b162fb12a742272d295bbb3b13584c25ed4aa80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:a8:40:71:7e:a4:5d:b3:55:e7:93:7b:43:62: c4:48:96:2d:78:b5:e6:77:f1:69:30:b7:03:f8:ef: a8:f6:44:fc:1d:9e:be:44:bf:27:9e:56:28:88:22: 21:43:2d:49:c0:69:94:8f:20:4c:26:f2:4e:9b:c4: 1b:5c:0e:5c:61:0f:01:f4:0f:79:76:90:bd:0c:81: 68:9e:a1:be:d0:94:b2:c3:92:d5:cd:16:58:67:85: 41:76:44:97:3a:d7:5d:71:fc:e7:39:47:78:7b:5f: 3e:07:b6:00:2a:ff:a5:ed:4c:f3:52:fd:df:c2:fc: c9:d0:09:33:eb:ac:c2:06:60:ea:1b:af:88:37:8e: e3:77:a3:04:11:32:0c:4f:f8:67:62:90:6a:06:3e: 24:13:d8:a4:54:da:8f:21:a7:76:b8:56:c0:e4:d1: a6:e0:69:22:ce:da:3a:2b:71:a4:56:32:0a:7f:7b: f6:4a:7f:e9:50:10:02:cd:50:e4:5c:47:98:eb:c0: 42:ad:11:39:2c:43:79:19:02:c2:65:eb:e0:4d:14: 37:89:81:64:c4:08:34:1f:52:d4:e0:f8:ec:86:4a: b5:54:98:3f:f0:32:14:62:cc:ca:09:68:80:aa:74: 66:27:91:b4:b0:16:2a:41:2a:53:1b:ac:85:75:8f: c5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:16:2F:B1:2A:74:22:72:D2:95:BB:B3:B1:35:84:C2:5E:D4:AA:80 X509v3 Authority Key Identifier: keyid:5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:f9:73:cd:d4:ff:ee:88:3c:c2:9a:01:c5:a2:a7:7c:a1:db: c4:50:88:55:46:12:73:e4:02:5a:e5:3f:56:87:15:bc:0f:b8: 80:65:be:57:f9:da:43:a2:48:41:08:1a:8d:c1:c7:19:69:1d: a3:32:2a:53:a1:73:f8:21:95:d2:b0:a1:f2:b1:03:7c:46:32: 8c:24:ba:8b:a5:ef:b4:cc:ac:4e:be:2c:6d:c6:3d:cb:b0:4d: 31:9b:55:90:e9:d6:a2:03:f1:19:15:d4:04:e9:81:82:a1:80: c0:9e:71:f9:f5:66:1b:1a:0f:3c:2e:e2:b9:b5:3d:2e:61:ef: 84:16:4c:bd:2d:fd:ec:02:be:17:76:6d:c4:78:fd:a8:ac:9d: ef:b3:b1:b9:76:aa:4d:53:0b:7b:3f:3f:a8:c1:85:cc:fe:8f: 41:62:61:19:cd:e2:20:3c:80:c3:34:e7:3d:e0:ec:92:b5:0b: 99:88:46:9c:3c:f0:b2:a4:0f:98:03:96:73:d8:26:cb:de:d9: 61:57:7b:87:bc:02:dd:f0:ae:e3:ae:da:ba:28:66:e1:31:a2: f7:f2:d3:c4:56:c9:1c:10:29:36:0d:72:74:91:10:6a:7a:7a: ac:84:57:c3:dd:88:3c:9c:2e:31:f8:ad:df:fc:48:48:8b:4d: a5:a2:79:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtykH/YPRwvldRowmgQG7aIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkOGE5ZmQ3YzUxOTI2ZTIyZWE4YWEzM2IzYjg4MzhlOTNl OGJlZGQwHhcNMjUxMjMxMDQwMDMxWhcNMjYwMTAxMDQwMDMxWjAzMTEwLwYDVQQD EygzYjE2MmZiMTJhNzQyMjcyZDI5NWJiYjNiMTM1ODRjMjVlZDRhYTgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6qhAcX6kXbNV55N7Q2LESJYteLXm d/FpMLcD+O+o9kT8HZ6+RL8nnlYoiCIhQy1JwGmUjyBMJvJOm8QbXA5cYQ8B9A95 dpC9DIFonqG+0JSyw5LVzRZYZ4VBdkSXOtddcfznOUd4e18+B7YAKv+l7UzzUv3f wvzJ0Akz66zCBmDqG6+IN47jd6MEETIMT/hnYpBqBj4kE9ikVNqPIad2uFbA5NGm 4Gkizto6K3GkVjIKf3v2Sn/pUBACzVDkXEeY68BCrRE5LEN5GQLCZevgTRQ3iYFk xAg0H1LU4Pjshkq1VJg/8DIUYszKCWiAqnRmJ5G0sBYqQSpTG6yFdY/FpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDsWL7EqdCJy0pW7s7E1hMJe1KqAMB8GA1UdIwQY MBaAFF2Kn9fFGSbiLqiqM7O4g46T6L7dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFlxZjE4VVpKdUl1cUtvenM3aURqcFBvdnQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9iYjg2MWQtMzMwZi00YTk3LTlmOWMt NjZjNTNmMmIxZjAyLzEvWFlxZjE4VVpKdUl1cUtvenM3aURqcFBvdnQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9iYjg2MWQtMzMwZi00YTk3LTlmOWMtNjZjNTNmMmIxZjAy LzEvWFlxZjE4VVpKdUl1cUtvenM3aURqcFBvdnQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhflzzdT/ 7og8wpoBxaKnfKHbxFCIVUYSc+QCWuU/VocVvA+4gGW+V/naQ6JIQQgajcHHGWkd ozIqU6Fz+CGV0rCh8rEDfEYyjCS6i6XvtMysTr4sbcY9y7BNMZtVkOnWogPxGRXU BOmBgqGAwJ5x+fVmGxoPPC7iubU9LmHvhBZMvS397AK+F3ZtxHj9qKyd77OxuXaq TVMLez8/qMGFzP6PQWJhGc3iIDyAwzTnPeDskrULmYhGnDzwsqQPmAOWc9gmy97Z YVd7h7wC3fCu467auihm4TGi9/LTxFbJHBApNg1ydJEQanp6rIRXw92IPJwuMfit 3/xISItNpaJ5hA== -----END CERTIFICATE-----Generated at Wed Dec 31 09:02:40 2025 by rpki-client