This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft File: XYqf18UZJuIuqKozs7iDjpPovt0.mft (raw, json) Hash identifier: cWkqZEDp5i8wtUjQvxApP9Ud3KsOF3jww3IWDWl08RU= Subject key identifier: 72:C2:9B:AE:C2:0A:CD:68:A2:02:09:5A:D7:A6:5A:CD:AA:96:F6:3F Authority key identifier: 5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD Certificate issuer: /CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd Certificate serial: 019B650BF5CC7759C8D77970A4997A240569 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft Manifest number: 179F Signing time: Sun 28 Dec 2025 13:00:41 +0000 Manifest this update: Sun 28 Dec 2025 13:00:41 +0000 Manifest next update: Mon 29 Dec 2025 13:00:41 +0000 Files and hashes: 1: 0RjgNRg0mrp-p0sUPcMzw9plAa8.roa (hash: /sIoNqXyJWt95PHx7AGb8pmEwy8qEaDKsd4+c9cdNhU=) 2: ByhvC5UK-f2zjyXJoOZ55QYyoFY.roa (hash: 7F3UrolhPGtbR/fySIsaZ7YzGq6FNxf2q9uu01GI6C0=) 3: DyR2WdJX7ABSVFzMG--Y2Rw480o.roa (hash: +lC9V9G29eZ0ubABsOu96g/K8AVuHJSib8VHpmomp9Q=) 4: HO-WF7oHezpfwwV3wUG7AErtTlE.roa (hash: 8SO7ZYvzAB17ADVUPvCZiM0fv0nIROPrrAJMFayW82A=) 5: XYqf18UZJuIuqKozs7iDjpPovt0.crl (hash: 8DEk201AHsywCy7iYo1NWn7co1YS5qHE8YC36XCPh8g=) 6: xZlrXqE8pd9RbauBbqs28LHvRHA.roa (hash: 2cai0/ZfgqLeuQF0rbi62rT8qPeDCMYpSTam6ord1Vg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 13:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:65:0b:f5:cc:77:59:c8:d7:79:70:a4:99:7a:24:05:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd Validity Not Before: Dec 28 13:00:41 2025 GMT Not After : Dec 29 13:00:41 2025 GMT Subject: CN=72c29baec20acd68a202095ad7a65acdaa96f63f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:19:ae:a7:0a:b0:bc:8e:b1:e9:1e:f0:d7:e0: a6:de:d1:08:42:9b:60:0d:2f:00:1a:5d:f4:fe:0b: a9:5a:c8:1d:6b:04:d0:ef:c0:67:1c:aa:e3:cf:05: e6:0e:93:da:b5:a4:fa:ba:b6:38:dc:33:62:54:7d: ad:fd:67:d0:1b:94:8f:90:77:6a:c1:b9:53:2d:15: 72:f4:6d:65:cb:2a:b4:c7:87:48:34:ce:be:ac:90: ed:fb:14:1f:df:17:5d:de:55:7c:a4:00:64:0b:fa: d9:bc:f7:3e:06:ad:12:37:b7:92:43:4d:06:bb:2b: 6f:f0:fc:ce:1e:66:88:e4:8f:d5:ec:f3:63:d4:8e: a5:98:be:20:46:c7:24:0e:f4:6f:9e:eb:d2:d2:58: 98:74:1a:76:b2:0f:1f:bb:db:a3:d1:c0:6f:dc:e0: e0:7b:05:a8:ea:84:ab:4d:5c:50:52:14:c4:10:76: db:0f:d8:c6:a6:95:11:45:ad:53:91:5b:76:f1:7f: 9c:f1:f8:de:33:e1:f7:f4:52:5b:6b:c4:94:9c:7f: 6c:e0:c8:f6:fd:7c:63:dd:b3:43:8f:9e:d8:4e:b8: 95:41:94:78:81:78:94:d4:83:f3:34:75:6f:b3:46: 50:f6:fd:10:3e:c5:c3:9e:9b:51:ab:79:9b:cc:be: 88:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:C2:9B:AE:C2:0A:CD:68:A2:02:09:5A:D7:A6:5A:CD:AA:96:F6:3F X509v3 Authority Key Identifier: keyid:5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:10:b1:98:a2:79:aa:08:42:ce:71:8c:3b:11:a1:3d:df:20: 09:94:8a:ca:d4:e8:41:39:21:e6:fe:9e:f3:9e:aa:d3:95:4b: bc:b0:fa:3a:06:41:52:8f:0b:71:11:ef:9d:7b:ab:76:d0:31: 14:e0:51:71:fb:0f:eb:37:a9:a2:31:c6:8c:b9:49:0b:bf:59: 42:ed:31:6b:ad:d6:c0:14:2e:92:c8:b8:10:65:40:5a:31:ba: 52:b2:ce:bb:34:43:bb:a8:8a:e1:14:b3:cd:85:bb:aa:f4:5b: 47:41:6b:1f:59:af:d3:4d:6e:9f:53:ef:d0:42:58:50:d7:3c: 89:b5:90:1d:d6:bc:cf:83:94:59:4f:c6:9a:14:a1:22:30:b8: 78:27:94:40:f8:67:46:86:46:57:99:61:8e:62:0d:d4:15:35: 55:75:0b:bb:4c:a1:4b:00:42:14:77:c2:7a:9b:62:37:21:6e: 96:8e:04:98:83:0a:bd:ba:3f:ee:5a:06:94:b8:25:e7:eb:4f: f0:bf:b5:c2:9d:07:8a:d6:95:a0:f0:91:56:a6:56:19:b2:c4: 54:9f:31:11:91:ad:44:26:20:92:94:01:e3:aa:a0:96:34:18: 19:28:93:88:01:ee:90:a8:a4:4c:c5:41:29:8c:53:75:cc:b4: 28:f2:51:81 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtlC/XMd1nI13lwpJl6JAVpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkOGE5ZmQ3YzUxOTI2ZTIyZWE4YWEzM2IzYjg4MzhlOTNl OGJlZGQwHhcNMjUxMjI4MTMwMDQxWhcNMjUxMjI5MTMwMDQxWjAzMTEwLwYDVQQD Eyg3MmMyOWJhZWMyMGFjZDY4YTIwMjA5NWFkN2E2NWFjZGFhOTZmNjNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4BmupwqwvI6x6R7w1+Cm3tEIQptg DS8AGl30/gupWsgdawTQ78BnHKrjzwXmDpPataT6urY43DNiVH2t/WfQG5SPkHdq wblTLRVy9G1lyyq0x4dINM6+rJDt+xQf3xdd3lV8pABkC/rZvPc+Bq0SN7eSQ00G uytv8PzOHmaI5I/V7PNj1I6lmL4gRsckDvRvnuvS0liYdBp2sg8fu9uj0cBv3ODg ewWo6oSrTVxQUhTEEHbbD9jGppURRa1TkVt28X+c8fjeM+H39FJba8SUnH9s4Mj2 /Xxj3bNDj57YTriVQZR4gXiU1IPzNHVvs0ZQ9v0QPsXDnptRq3mbzL6IwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHLCm67CCs1oogIJWtemWs2qlvY/MB8GA1UdIwQY MBaAFF2Kn9fFGSbiLqiqM7O4g46T6L7dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFlxZjE4VVpKdUl1cUtvenM3aURqcFBvdnQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9iYjg2MWQtMzMwZi00YTk3LTlmOWMt NjZjNTNmMmIxZjAyLzEvWFlxZjE4VVpKdUl1cUtvenM3aURqcFBvdnQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9iYjg2MWQtMzMwZi00YTk3LTlmOWMtNjZjNTNmMmIxZjAy LzEvWFlxZjE4VVpKdUl1cUtvenM3aURqcFBvdnQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADBCxmKJ5 qghCznGMOxGhPd8gCZSKytToQTkh5v6e856q05VLvLD6OgZBUo8LcRHvnXurdtAx FOBRcfsP6zepojHGjLlJC79ZQu0xa63WwBQuksi4EGVAWjG6UrLOuzRDu6iK4RSz zYW7qvRbR0FrH1mv001un1Pv0EJYUNc8ibWQHda8z4OUWU/GmhShIjC4eCeUQPhn RoZGV5lhjmIN1BU1VXULu0yhSwBCFHfCeptiNyFulo4EmIMKvbo/7loGlLgl5+tP 8L+1wp0HitaVoPCRVqZWGbLEVJ8xEZGtRCYgkpQB46qgljQYGSiTiAHukKikTMVB KYxTdcy0KPJRgQ== -----END CERTIFICATE-----Generated at Sun Dec 28 23:22:19 2025 by rpki-client