This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft File: 500-XZlL7NPyWMQd858fY-xWPh0.mft (raw, json) Hash identifier: 4+lRmb8PdIOhdJV1M9LMMJpQbEu8ZC9HOrG/uWAZ6BM= Subject key identifier: C2:AA:10:28:30:B8:4C:54:EB:F3:41:4E:A3:C7:34:AE:C6:B0:04:D5 Authority key identifier: E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D Certificate issuer: /CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d Certificate serial: 019B3420166E666FBF196515B8F6BD216803 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft Manifest number: 112E Signing time: Fri 19 Dec 2025 01:01:16 +0000 Manifest this update: Fri 19 Dec 2025 01:01:16 +0000 Manifest next update: Sat 20 Dec 2025 01:01:16 +0000 Files and hashes: 1: 500-XZlL7NPyWMQd858fY-xWPh0.crl (hash: BbD553bqlZkzGPe1xsBfhxd4wh1xuz24HPcfn6D2Brw=) 2: BBc69UDcCnvJ9YXOkYKIegaNiDE.roa (hash: u/teCtCSqk7whi20Ul6NWhHZ26QmJCDD43T9Guz4eqc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 01:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:20:16:6e:66:6f:bf:19:65:15:b8:f6:bd:21:68:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d Validity Not Before: Dec 19 01:01:16 2025 GMT Not After : Dec 20 01:01:16 2025 GMT Subject: CN=c2aa102830b84c54ebf3414ea3c734aec6b004d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6c:de:84:2d:6f:32:87:e3:37:f7:4e:d3:9c: 24:f7:1c:96:57:5e:fd:73:35:f2:e8:df:5b:a6:f1: dc:ab:c7:7d:8d:1c:a1:f1:21:24:a1:4f:25:f7:8b: c5:15:dd:f1:54:14:a3:f7:42:c2:44:60:1b:e0:ff: 10:24:28:f5:be:e8:50:ed:77:1f:7e:0f:e0:65:a6: e8:f3:e7:59:e5:fa:a1:67:9c:30:06:12:19:21:fc: 1d:16:3a:8b:c0:cc:16:82:f6:83:28:e5:6d:21:d7: 34:9f:e2:01:ff:65:b9:8a:c7:82:f3:e3:a9:7e:c2: df:27:5d:76:de:f8:2d:ae:e5:30:bc:f3:c9:52:5d: 17:b6:40:c5:20:81:6f:73:42:db:3d:dc:a8:df:60: 37:d4:2e:c2:bf:8f:8e:29:46:e6:6c:a9:3f:40:c1: af:b2:e8:e3:cc:5e:c3:8a:32:fe:f8:3a:88:dc:c6: 99:c6:90:27:82:72:09:81:d5:c7:32:96:3f:ed:ac: 9c:fb:c5:86:7f:b9:07:77:10:8f:d9:1b:1c:96:f5: 48:94:41:70:2e:e4:c3:16:6d:cd:0f:77:c9:cb:38: 4c:aa:ed:f9:3a:0d:6a:83:54:7c:03:c6:f3:79:73: 6f:83:7d:1f:54:72:75:c2:e1:75:a5:86:f0:bf:c8: f3:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:AA:10:28:30:B8:4C:54:EB:F3:41:4E:A3:C7:34:AE:C6:B0:04:D5 X509v3 Authority Key Identifier: keyid:E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:70:0d:67:81:c6:20:d8:3a:28:46:13:3e:e4:75:f8:19:51: cc:82:00:c1:fd:1d:2b:77:b9:dc:22:33:c7:30:ae:32:c3:8a: 99:96:d3:09:2e:25:1f:41:e1:be:fa:11:4c:20:03:8e:e1:69: f1:b9:5c:0d:98:e9:4a:d2:84:47:1e:fd:d9:f6:a9:17:3a:0f: 6c:d3:81:c1:f3:8f:b5:4b:fb:21:f5:1d:18:48:d1:09:f1:18: ab:7d:db:07:3b:14:df:97:54:a7:03:ee:1e:4d:c3:bd:42:c6: b6:68:ac:6e:4f:9f:f8:ca:dc:e9:34:f8:2f:d6:27:1e:cb:be: eb:28:0b:f9:3e:e1:61:b2:9b:2f:05:7b:f7:a3:3b:72:c1:1b: bc:66:1f:e2:9f:11:83:0e:97:c1:81:db:96:72:71:a4:da:de: 23:26:e2:f9:dd:f7:7e:79:d7:87:a7:81:cf:7f:61:12:21:25: 15:c0:56:e1:45:cf:46:f6:dc:2f:20:51:f5:68:3e:0f:29:9f: 84:03:ad:1f:1d:ba:84:88:43:33:66:2a:45:29:37:cf:fe:8a: 11:35:bf:61:df:79:fa:7a:10:90:19:62:33:c9:49:5c:b3:22: 34:a7:f0:05:1e:89:23:f5:6c:7f:93:12:ca:29:9e:6e:88:2d: 90:cf:7f:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0IBZuZm+/GWUVuPa9IWgDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3NGQzZTVkOTk0YmVjZDNmMjU4YzQxZGYzOWYxZjYzZWM1 NjNlMWQwHhcNMjUxMjE5MDEwMTE2WhcNMjUxMjIwMDEwMTE2WjAzMTEwLwYDVQQD EyhjMmFhMTAyODMwYjg0YzU0ZWJmMzQxNGVhM2M3MzRhZWM2YjAwNGQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWzehC1vMofjN/dO05wk9xyWV179 czXy6N9bpvHcq8d9jRyh8SEkoU8l94vFFd3xVBSj90LCRGAb4P8QJCj1vuhQ7Xcf fg/gZabo8+dZ5fqhZ5wwBhIZIfwdFjqLwMwWgvaDKOVtIdc0n+IB/2W5iseC8+Op fsLfJ1123vgtruUwvPPJUl0XtkDFIIFvc0LbPdyo32A31C7Cv4+OKUbmbKk/QMGv sujjzF7DijL++DqI3MaZxpAngnIJgdXHMpY/7ayc+8WGf7kHdxCP2RsclvVIlEFw LuTDFm3ND3fJyzhMqu35Og1qg1R8A8bzeXNvg30fVHJ1wuF1pYbwv8jzxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMKqECgwuExU6/NBTqPHNK7GsATVMB8GA1UdIwQY MBaAFOdNPl2ZS+zT8ljEHfOfH2PsVj4dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNTAwLVhabEw3TlB5V01RZDg1OGZZLXhXUGgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC80MmUyNGMtMjFmNS00NDFmLWI2YmMt YzIzZDdhZGJlYmRjLzEvNTAwLVhabEw3TlB5V01RZDg1OGZZLXhXUGgwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC80MmUyNGMtMjFmNS00NDFmLWI2YmMtYzIzZDdhZGJlYmRj LzEvNTAwLVhabEw3TlB5V01RZDg1OGZZLXhXUGgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJnANZ4HG INg6KEYTPuR1+BlRzIIAwf0dK3e53CIzxzCuMsOKmZbTCS4lH0HhvvoRTCADjuFp 8blcDZjpStKERx792fapFzoPbNOBwfOPtUv7IfUdGEjRCfEYq33bBzsU35dUpwPu Hk3DvULGtmisbk+f+Mrc6TT4L9YnHsu+6ygL+T7hYbKbLwV796M7csEbvGYf4p8R gw6XwYHblnJxpNreIybi+d33fnnXh6eBz39hEiElFcBW4UXPRvbcLyBR9Wg+Dymf hAOtHx26hIhDM2YqRSk3z/6KETW/Yd95+noQkBliM8lJXLMiNKfwBR6JI/Vsf5MS yimebogtkM9/kA== -----END CERTIFICATE-----Generated at Fri Dec 19 10:23:05 2025 by rpki-client