This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft File: XYLKb462haVz5dHZH48GEhqwKjc.mft (raw, json) Hash identifier: mePCZPlU5jrgjV08uPbL8cGDbj77YBKsio6F6P5pt3Y= Subject key identifier: C7:80:62:71:6A:04:A3:3B:60:AA:1C:82:40:BD:44:08:67:97:10:D2 Authority key identifier: 5D:82:CA:6F:8E:B6:85:A5:73:E5:D1:D9:1F:8F:06:12:1A:B0:2A:37 Certificate issuer: /CN=5d82ca6f8eb685a573e5d1d91f8f06121ab02a37 Certificate serial: 019B3C103F480AA90488255B3F0A3E9953D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft Manifest number: 13BF Signing time: Sat 20 Dec 2025 14:00:56 +0000 Manifest this update: Sat 20 Dec 2025 14:00:56 +0000 Manifest next update: Sun 21 Dec 2025 14:00:56 +0000 Files and hashes: 1: 5CQ4eO5LX17KXZ4KRK1zO2WmDio.roa (hash: elGO+kkXCWf6xUhLxKQr6fK8y3EJu/aqnItwgZKwIWc=) 2: B7NZ-u78J5mcpsov1XyIGK10cH0.roa (hash: U6kZ6B0tG819VSZmmXYNrc7xdPGbBot/5/JsXAv6Iss=) 3: OoBGTJUsN0YQ8-kRUhL79IvaFTU.roa (hash: KQ8kfmaZw2mJmdCZhrX6qjUaRt+eTM3yBnvc8ppjAws=) 4: XYLKb462haVz5dHZH48GEhqwKjc.crl (hash: cFXfPMQPXv72fVStB2kf4qKLfJbsZuyFS/J0RkUDsAM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.crl rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 14:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:10:3f:48:0a:a9:04:88:25:5b:3f:0a:3e:99:53:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d82ca6f8eb685a573e5d1d91f8f06121ab02a37 Validity Not Before: Dec 20 14:00:56 2025 GMT Not After : Dec 21 14:00:56 2025 GMT Subject: CN=c78062716a04a33b60aa1c8240bd4408679710d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:95:d3:07:de:a2:4f:db:d2:49:9c:d5:9c:dd: bf:c4:16:e1:c5:03:5c:5c:94:45:36:70:00:4c:92: cd:db:3f:bb:53:3e:c9:21:03:f0:56:75:17:77:6a: 8f:a4:da:41:f6:4b:5a:66:8d:1f:fc:67:aa:78:2b: c2:32:29:2c:d1:36:09:a6:da:2c:35:75:f4:31:30: 94:67:ca:66:ab:06:4a:bc:0e:31:c2:36:8a:12:f5: 85:38:7c:ae:0d:47:3e:7d:08:c6:76:51:4b:c2:52: 6f:0b:c9:06:9d:e1:1a:7b:a4:21:e0:1a:67:44:2a: 6a:f2:4c:f4:9e:ed:8c:33:15:56:70:78:ac:ad:cf: e2:de:fe:f7:fd:2d:82:76:bf:8e:97:75:4a:fc:3a: 73:cd:41:1e:78:5f:9d:ad:b2:90:21:e8:95:30:2a: b4:69:66:5c:fe:31:49:ea:9d:59:55:77:9d:ed:bd: df:ed:8b:ff:42:ff:42:65:95:a2:87:5f:99:8f:d8: 20:4e:1a:9f:a3:92:85:40:29:01:f1:26:06:f2:0d: 66:28:1b:dd:70:7c:29:dc:68:74:33:3d:37:20:b3: 50:2c:3d:21:a6:5d:2a:02:c7:63:bc:6f:cc:52:8c: 9d:e0:4e:86:35:26:12:8b:e4:4b:63:e2:00:a4:e3: 59:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:80:62:71:6A:04:A3:3B:60:AA:1C:82:40:BD:44:08:67:97:10:D2 X509v3 Authority Key Identifier: keyid:5D:82:CA:6F:8E:B6:85:A5:73:E5:D1:D9:1F:8F:06:12:1A:B0:2A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:fe:8e:28:7e:af:e6:36:48:e7:88:ad:30:c6:df:bf:8f:65: 77:bf:54:d0:6f:3e:7b:e4:20:4e:1b:ad:d4:97:a4:41:41:52: bb:36:57:c5:78:ba:80:e1:ce:b9:fa:50:d7:64:1e:1d:9b:c4: f2:c4:66:cc:02:fd:22:fe:f1:d6:54:db:88:f1:47:b0:e2:24: 92:46:ea:49:d4:aa:e2:e4:7e:29:08:f3:3c:bc:88:f5:48:86: 6f:d4:92:95:90:9b:3e:1a:38:32:ea:8c:bc:58:88:4a:de:3d: e0:bf:71:4a:0f:c3:27:d3:94:76:35:9a:22:9f:51:b2:71:47: 37:6b:98:0a:fd:1c:5a:b9:33:f7:49:25:f0:03:23:dc:a8:c2: 94:62:34:d1:3f:31:c8:7d:5c:b4:7a:81:f0:14:e9:45:55:39: 79:28:36:33:da:24:76:29:81:05:e3:33:db:48:0a:12:f1:c9: 29:e0:89:42:c9:c0:26:77:bc:a7:0c:10:96:fc:51:0f:8a:fe: dc:69:dc:42:ea:b4:d5:9e:d6:85:8f:dd:41:57:ff:e8:f8:e2: 59:fe:71:a4:32:22:b8:bc:ee:95:18:aa:45:ca:3a:30:5f:84: d8:1c:8b:24:7b:b0:06:47:77:03:b9:50:44:73:99:12:5e:36: c7:98:d5:e6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8ED9ICqkEiCVbPwo+mVPQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkODJjYTZmOGViNjg1YTU3M2U1ZDFkOTFmOGYwNjEyMWFi MDJhMzcwHhcNMjUxMjIwMTQwMDU2WhcNMjUxMjIxMTQwMDU2WjAzMTEwLwYDVQQD EyhjNzgwNjI3MTZhMDRhMzNiNjBhYTFjODI0MGJkNDQwODY3OTcxMGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZXTB96iT9vSSZzVnN2/xBbhxQNc XJRFNnAATJLN2z+7Uz7JIQPwVnUXd2qPpNpB9ktaZo0f/GeqeCvCMiks0TYJptos NXX0MTCUZ8pmqwZKvA4xwjaKEvWFOHyuDUc+fQjGdlFLwlJvC8kGneEae6Qh4Bpn RCpq8kz0nu2MMxVWcHisrc/i3v73/S2Cdr+Ol3VK/DpzzUEeeF+drbKQIeiVMCq0 aWZc/jFJ6p1ZVXed7b3f7Yv/Qv9CZZWih1+Zj9ggThqfo5KFQCkB8SYG8g1mKBvd cHwp3Gh0Mz03ILNQLD0hpl0qAsdjvG/MUoyd4E6GNSYSi+RLY+IApONZewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMeAYnFqBKM7YKocgkC9RAhnlxDSMB8GA1UdIwQY MBaAFF2Cym+OtoWlc+XR2R+PBhIasCo3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFlMS2I0NjJoYVZ6NWRIWkg0OEdFaHF3S2pjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9kNTRiYzAtZjc4MS00OGIwLTlmNmQt YjVmMGQyMTA1M2Y4LzEvWFlMS2I0NjJoYVZ6NWRIWkg0OEdFaHF3S2pjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My9kNTRiYzAtZjc4MS00OGIwLTlmNmQtYjVmMGQyMTA1M2Y4 LzEvWFlMS2I0NjJoYVZ6NWRIWkg0OEdFaHF3S2pjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcP6OKH6v 5jZI54itMMbfv49ld79U0G8+e+QgThut1JekQUFSuzZXxXi6gOHOufpQ12QeHZvE 8sRmzAL9Iv7x1lTbiPFHsOIkkkbqSdSq4uR+KQjzPLyI9UiGb9SSlZCbPho4MuqM vFiISt494L9xSg/DJ9OUdjWaIp9RsnFHN2uYCv0cWrkz90kl8AMj3KjClGI00T8x yH1ctHqB8BTpRVU5eSg2M9okdimBBeMz20gKEvHJKeCJQsnAJne8pwwQlvxRD4r+ 3GncQuq01Z7WhY/dQVf/6PjiWf5xpDIiuLzulRiqRco6MF+E2ByLJHuwBkd3A7lQ RHOZEl42x5jV5g== -----END CERTIFICATE-----Generated at Sat Dec 20 21:06:35 2025 by rpki-client