This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft File: X017eQ8_STQyjhKaLd5N10qj4T4.mft (raw, json) Hash identifier: bDlPhxa5jhz5OYXRhQVWgORG2burAJQtHD7RDovYtXg= Subject key identifier: 9D:B1:0B:50:67:DC:BE:58:77:01:E0:ED:1F:BA:68:41:34:1F:64:2C Authority key identifier: 5F:4D:7B:79:0F:3F:49:34:32:8E:12:9A:2D:DE:4D:D7:4A:A3:E1:3E Certificate issuer: /CN=5f4d7b790f3f4934328e129a2dde4dd74aa3e13e Certificate serial: 019B3CB557DE666A06A04E44030FA368B60F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X017eQ8_STQyjhKaLd5N10qj4T4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft Manifest number: 0205 Signing time: Sat 20 Dec 2025 17:01:15 +0000 Manifest this update: Sat 20 Dec 2025 17:01:15 +0000 Manifest next update: Sun 21 Dec 2025 17:01:15 +0000 Files and hashes: 1: X017eQ8_STQyjhKaLd5N10qj4T4.crl (hash: TK59KZQSRf6oYFi7qEn6vw+U8/ZVZVlk7qVmCdVDhb4=) 2: oF0UnfdG9SgR1YrjEvyyzHdI2NQ.roa (hash: C+won2ayhOZhVuYFZ85jDDGUEWPlmXvRmRnHCUNjIgI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.crl rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft rsync://rpki.ripe.net/repository/DEFAULT/X017eQ8_STQyjhKaLd5N10qj4T4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 17:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:b5:57:de:66:6a:06:a0:4e:44:03:0f:a3:68:b6:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f4d7b790f3f4934328e129a2dde4dd74aa3e13e Validity Not Before: Dec 20 17:01:15 2025 GMT Not After : Dec 21 17:01:15 2025 GMT Subject: CN=9db10b5067dcbe587701e0ed1fba6841341f642c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ec:46:bf:5b:a9:04:2e:de:1c:2f:97:a9:e5: 9a:15:d9:85:75:8e:a0:82:06:3c:0f:7e:9f:4c:97: f0:74:6b:cd:3c:ee:d4:2e:cc:37:c3:1f:4f:ca:7a: e1:e1:02:41:8b:67:a4:6b:62:d5:4a:d8:11:7d:a1: 90:a6:fe:ec:07:df:3b:b8:76:9e:81:6a:3a:c3:bc: 46:35:e9:5b:a3:bc:97:2f:93:96:15:df:67:e9:3e: 21:9e:fb:81:42:59:9c:67:b5:0f:e1:62:a1:71:71: 17:2b:d6:1e:39:a1:c1:60:64:cb:0d:a4:34:a4:1f: 4b:b1:5f:b2:b3:e2:35:4b:5b:2e:e7:94:f1:e1:22: 28:52:66:08:17:f2:6e:da:78:49:14:0d:fa:e1:81: b3:4b:df:4e:d3:7d:5c:97:94:75:7e:4c:e2:20:e6: 3e:97:a9:69:ec:03:6e:3a:78:a0:57:0b:37:fc:7d: 2f:76:17:f9:0c:fe:5c:9f:73:36:f9:1a:21:71:e1: 0a:ea:fa:38:6e:ea:ee:29:d2:dc:b5:fd:9f:fc:a9: 10:7e:d9:b4:8f:33:0e:8c:37:63:2c:3f:d8:15:38: 72:ec:6e:7d:0b:24:69:94:c2:93:a9:9c:0b:42:84: f8:61:6e:d6:20:37:e7:08:c5:c9:ac:73:1b:87:2d: 86:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:B1:0B:50:67:DC:BE:58:77:01:E0:ED:1F:BA:68:41:34:1F:64:2C X509v3 Authority Key Identifier: keyid:5F:4D:7B:79:0F:3F:49:34:32:8E:12:9A:2D:DE:4D:D7:4A:A3:E1:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X017eQ8_STQyjhKaLd5N10qj4T4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:5e:d7:64:2c:77:67:b3:6c:7d:af:ca:8a:c6:fd:09:dc:14: db:9a:1d:1e:95:41:bb:bb:90:bb:bb:7e:12:ce:83:e3:79:70: 98:f7:eb:b0:93:0f:f3:e9:a5:65:d6:94:da:f0:f7:49:8d:41: 6b:b0:1b:ad:1d:87:37:bf:d1:cc:96:8d:aa:3f:ec:9d:0a:aa: 7e:22:8a:2c:a1:89:4b:d4:f8:ee:20:1e:f7:10:c1:79:e4:83: 9e:94:67:fe:8f:51:6c:1b:65:2d:68:93:b6:85:e1:d9:2a:fe: b1:78:e5:24:9b:42:7f:1a:e1:d8:d6:29:51:54:20:3f:2a:4e: 5e:90:15:a9:2a:c2:1d:52:a4:d9:9d:2a:32:42:19:de:b6:00: 61:96:e0:4f:eb:2c:0a:1b:f8:dc:21:21:06:b3:0a:8f:7d:55: b5:00:cf:b3:ef:e2:d2:6c:45:64:6c:7d:d1:48:29:e5:be:70: db:b6:14:a4:fa:e8:65:17:30:fb:2f:c8:73:80:1d:07:30:a5: 71:63:46:aa:64:4e:61:00:4f:e3:cf:30:74:49:c5:4b:ce:9c: 09:a5:6b:cb:22:93:fb:a1:bd:f8:c8:f4:ca:a3:e9:32:80:b6: 21:2f:0f:d0:57:73:55:f4:60:80:a7:25:b0:d1:9b:48:64:d9: 9c:5e:dd:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8tVfeZmoGoE5EAw+jaLYPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmNGQ3Yjc5MGYzZjQ5MzQzMjhlMTI5YTJkZGU0ZGQ3NGFh M2UxM2UwHhcNMjUxMjIwMTcwMTE1WhcNMjUxMjIxMTcwMTE1WjAzMTEwLwYDVQQD Eyg5ZGIxMGI1MDY3ZGNiZTU4NzcwMWUwZWQxZmJhNjg0MTM0MWY2NDJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzuxGv1upBC7eHC+XqeWaFdmFdY6g ggY8D36fTJfwdGvNPO7ULsw3wx9Pynrh4QJBi2eka2LVStgRfaGQpv7sB987uHae gWo6w7xGNelbo7yXL5OWFd9n6T4hnvuBQlmcZ7UP4WKhcXEXK9YeOaHBYGTLDaQ0 pB9LsV+ys+I1S1su55Tx4SIoUmYIF/Ju2nhJFA364YGzS99O031cl5R1fkziIOY+ l6lp7ANuOnigVws3/H0vdhf5DP5cn3M2+RohceEK6vo4buruKdLctf2f/KkQftm0 jzMOjDdjLD/YFThy7G59CyRplMKTqZwLQoT4YW7WIDfnCMXJrHMbhy2GdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ2xC1Bn3L5YdwHg7R+6aEE0H2QsMB8GA1UdIwQY MBaAFF9Ne3kPP0k0Mo4Smi3eTddKo+E+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWDAxN2VROF9TVFF5amhLYUxkNU4xMHFqNFQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85YjYwMTYtMTQyNC00MTg4LWFlNjIt N2Q1NDkyNzQ0NWY2LzEvWDAxN2VROF9TVFF5amhLYUxkNU4xMHFqNFQ0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni85YjYwMTYtMTQyNC00MTg4LWFlNjItN2Q1NDkyNzQ0NWY2 LzEvWDAxN2VROF9TVFF5amhLYUxkNU4xMHFqNFQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOF7XZCx3 Z7Nsfa/Kisb9CdwU25odHpVBu7uQu7t+Es6D43lwmPfrsJMP8+mlZdaU2vD3SY1B a7AbrR2HN7/RzJaNqj/snQqqfiKKLKGJS9T47iAe9xDBeeSDnpRn/o9RbBtlLWiT toXh2Sr+sXjlJJtCfxrh2NYpUVQgPypOXpAVqSrCHVKk2Z0qMkIZ3rYAYZbgT+ss Chv43CEhBrMKj31VtQDPs+/i0mxFZGx90Ugp5b5w27YUpProZRcw+y/Ic4AdBzCl cWNGqmROYQBP488wdEnFS86cCaVryyKT+6G9+Mj0yqPpMoC2IS8P0FdzVfRggKcl sNGbSGTZnF7dZw== -----END CERTIFICATE-----Generated at Sun Dec 21 02:09:33 2025 by rpki-client