This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft File: xtEbZP_hjvpC9DpsdlY53uONAn4.mft (raw, json) Hash identifier: cwFiTCDhsoYgoxOYIJY1WHES8MNHIJ+UOpjH5+7/ers= Subject key identifier: 6F:B3:5D:AD:89:A1:F3:11:54:82:06:3C:C7:DC:BB:16:6E:0C:EB:97 Authority key identifier: C6:D1:1B:64:FF:E1:8E:FA:42:F4:3A:6C:76:56:39:DE:E3:8D:02:7E Certificate issuer: /CN=c6d11b64ffe18efa42f43a6c765639dee38d027e Certificate serial: 019B3EDA8537C561F16B6C913A6A92715DF8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft Manifest number: 1010 Signing time: Sun 21 Dec 2025 03:01:06 +0000 Manifest this update: Sun 21 Dec 2025 03:01:06 +0000 Manifest next update: Mon 22 Dec 2025 03:01:06 +0000 Files and hashes: 1: 5stymyV2VXExRNfPDRHs0SsKv84.roa (hash: LAJy81D8Y1W3Al27GIYu76cE8aqvZvfTwIjGsrUN8O8=) 2: wX4zTXXZMo2WWHOKinMvyAiRYeE.roa (hash: dkBnWGmwxThQE3RCE6xz1EoswQLwUBpuloKrWzo2tUE=) 3: xtEbZP_hjvpC9DpsdlY53uONAn4.crl (hash: yU0/5ER58aCagyCIw3md3BO9UWb70AtW8MN5HrVZceE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:da:85:37:c5:61:f1:6b:6c:91:3a:6a:92:71:5d:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c6d11b64ffe18efa42f43a6c765639dee38d027e Validity Not Before: Dec 21 03:01:06 2025 GMT Not After : Dec 22 03:01:06 2025 GMT Subject: CN=6fb35dad89a1f3115482063cc7dcbb166e0ceb97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:27:63:bd:3b:b6:af:54:f1:dd:97:59:1a:e4: 1b:98:a4:1a:79:51:87:eb:4b:e3:b4:a3:c3:63:42: 5e:82:9c:6e:ab:36:d7:fa:36:29:8b:b9:ca:01:ca: 17:2e:29:1d:43:fa:16:f1:48:cd:70:6a:41:cb:09: 0b:55:8b:40:8d:02:8b:b0:56:33:e2:df:d3:65:1d: 45:3a:78:35:a2:42:83:7b:ed:ba:69:18:dd:ee:f0: c0:b1:70:c3:d6:b8:ff:4d:20:d3:3b:3d:6c:e2:e7: ff:95:0c:04:0d:35:ea:92:15:a4:a0:9e:1d:86:80: 15:e7:5b:ec:f0:3d:fc:f7:ff:5d:50:21:66:50:a8: 37:74:e4:b0:4b:c4:dd:28:1d:d6:d6:e8:53:fa:78: 37:dd:bc:50:11:e2:aa:be:2b:ec:8c:93:0b:a3:80: dd:2f:fd:22:b4:4a:ac:87:89:0c:b8:fe:5d:cb:f7: 77:c5:4e:2a:a6:77:39:ed:7c:6e:48:4e:21:a8:76: cf:b3:c1:84:f4:bc:86:9a:08:be:24:cb:af:7f:e5: 8d:b7:1e:66:9e:c8:47:dd:82:7c:27:2b:86:55:9a: 83:70:36:ae:a3:e4:bb:49:a0:fd:79:22:58:ec:41: e6:3b:20:86:56:7b:05:c5:18:f1:67:38:b2:a5:79: 98:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:B3:5D:AD:89:A1:F3:11:54:82:06:3C:C7:DC:BB:16:6E:0C:EB:97 X509v3 Authority Key Identifier: keyid:C6:D1:1B:64:FF:E1:8E:FA:42:F4:3A:6C:76:56:39:DE:E3:8D:02:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:69:eb:d6:f9:da:ce:c6:c0:7d:fb:68:35:75:14:6a:8c:84: 1d:e9:b5:4b:4b:f9:b5:7c:e7:3c:dc:08:91:c9:90:ed:d8:97: af:3a:29:56:c2:43:4c:cc:a2:b0:17:5f:40:dd:a1:85:73:99: 09:1b:1f:8e:4a:b6:c7:66:bc:e4:25:f8:49:dc:cf:ed:d7:fa: 23:5f:78:83:ed:8f:07:6f:22:9a:f0:d1:ef:53:17:be:22:e6: aa:20:8a:ab:34:4d:a2:1a:81:cf:b7:d8:d8:0a:79:9b:61:96: 93:16:f3:6f:03:7b:0a:7b:27:78:f8:69:d7:6f:38:3f:00:b9: ff:50:8a:88:4f:82:35:0f:98:af:c2:63:d5:7b:35:bb:d8:bc: 2b:6a:b6:24:3f:f9:12:f6:77:8a:a0:5e:50:80:31:09:e3:db: d0:9c:3c:9a:83:2e:8b:5f:de:4a:4d:25:05:92:8c:43:f7:96: f6:1d:23:fc:38:41:bc:d6:ed:41:9e:32:85:e8:7f:d6:d8:90: 2a:2b:0b:ee:73:ff:68:6d:d7:54:5c:91:82:7c:e9:30:f9:2a: 92:c9:e5:21:09:b5:7b:f7:59:41:0e:01:2b:42:cd:5f:8e:44: aa:90:64:1b:c8:cc:9e:58:8b:ea:bc:8f:b4:6e:72:bb:10:0f: f0:6a:aa:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+2oU3xWHxa2yROmqScV34MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2ZDExYjY0ZmZlMThlZmE0MmY0M2E2Yzc2NTYzOWRlZTM4 ZDAyN2UwHhcNMjUxMjIxMDMwMTA2WhcNMjUxMjIyMDMwMTA2WjAzMTEwLwYDVQQD Eyg2ZmIzNWRhZDg5YTFmMzExNTQ4MjA2M2NjN2RjYmIxNjZlMGNlYjk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0CdjvTu2r1Tx3ZdZGuQbmKQaeVGH 60vjtKPDY0JegpxuqzbX+jYpi7nKAcoXLikdQ/oW8UjNcGpBywkLVYtAjQKLsFYz 4t/TZR1FOng1okKDe+26aRjd7vDAsXDD1rj/TSDTOz1s4uf/lQwEDTXqkhWkoJ4d hoAV51vs8D389/9dUCFmUKg3dOSwS8TdKB3W1uhT+ng33bxQEeKqvivsjJMLo4Dd L/0itEqsh4kMuP5dy/d3xU4qpnc57XxuSE4hqHbPs8GE9LyGmgi+JMuvf+WNtx5m nshH3YJ8JyuGVZqDcDauo+S7SaD9eSJY7EHmOyCGVnsFxRjxZziypXmYdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG+zXa2JofMRVIIGPMfcuxZuDOuXMB8GA1UdIwQY MBaAFMbRG2T/4Y76QvQ6bHZWOd7jjQJ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveHRFYlpQX2hqdnBDOURwc2RsWTUzdU9OQW40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy80Y2FjNmItOGUwNS00NDhhLTgzZjct NjgzNTg1MjE1OGQ4LzEveHRFYlpQX2hqdnBDOURwc2RsWTUzdU9OQW40Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy80Y2FjNmItOGUwNS00NDhhLTgzZjctNjgzNTg1MjE1OGQ4 LzEveHRFYlpQX2hqdnBDOURwc2RsWTUzdU9OQW40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgWnr1vna zsbAfftoNXUUaoyEHem1S0v5tXznPNwIkcmQ7diXrzopVsJDTMyisBdfQN2hhXOZ CRsfjkq2x2a85CX4SdzP7df6I194g+2PB28imvDR71MXviLmqiCKqzRNohqBz7fY 2Ap5m2GWkxbzbwN7CnsnePhp1284PwC5/1CKiE+CNQ+Yr8Jj1Xs1u9i8K2q2JD/5 EvZ3iqBeUIAxCePb0Jw8moMui1/eSk0lBZKMQ/eW9h0j/DhBvNbtQZ4yheh/1tiQ KisL7nP/aG3XVFyRgnzpMPkqksnlIQm1e/dZQQ4BK0LNX45EqpBkG8jMnliL6ryP tG5yuxAP8GqqqQ== -----END CERTIFICATE-----Generated at Sun Dec 21 07:20:27 2025 by rpki-client