This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/5236e9-ff5a-4019-94d4-aeae6e3593a7/1/mdXL9__sUlSnHvex7fem12x1liU.mft File: mdXL9__sUlSnHvex7fem12x1liU.mft (raw, json) Hash identifier: EukF0lRrTl5Btcp6I/RV1vIRLLUjg3EVv2os6NBu4Xk= Subject key identifier: D0:67:90:5E:BA:30:5D:13:22:91:FA:AF:D0:FE:F3:F5:B7:86:48:CF Authority key identifier: 99:D5:CB:F7:FF:EC:52:54:A7:1E:F7:B1:ED:F7:A6:D7:6C:75:96:25 Certificate issuer: /CN=99d5cbf7ffec5254a71ef7b1edf7a6d76c759625 Certificate serial: 019B51BCC89A6435996831935C729F376837 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdXL9__sUlSnHvex7fem12x1liU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/5236e9-ff5a-4019-94d4-aeae6e3593a7/1/mdXL9__sUlSnHvex7fem12x1liU.mft Manifest number: 1790 Signing time: Wed 24 Dec 2025 19:01:25 +0000 Manifest this update: Wed 24 Dec 2025 19:01:25 +0000 Manifest next update: Thu 25 Dec 2025 19:01:25 +0000 Files and hashes: 1: mdXL9__sUlSnHvex7fem12x1liU.crl (hash: NcRsKPnp7AVjDNfK9gopWuyop9e2dddvbgOEyWpoabU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/5236e9-ff5a-4019-94d4-aeae6e3593a7/1/mdXL9__sUlSnHvex7fem12x1liU.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/5236e9-ff5a-4019-94d4-aeae6e3593a7/1/mdXL9__sUlSnHvex7fem12x1liU.mft rsync://rpki.ripe.net/repository/DEFAULT/mdXL9__sUlSnHvex7fem12x1liU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:51:bc:c8:9a:64:35:99:68:31:93:5c:72:9f:37:68:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99d5cbf7ffec5254a71ef7b1edf7a6d76c759625 Validity Not Before: Dec 24 19:01:25 2025 GMT Not After : Dec 25 19:01:25 2025 GMT Subject: CN=d067905eba305d132291faafd0fef3f5b78648cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:8a:05:c2:56:e1:35:4e:a7:4a:db:d0:9b:04: c5:bc:82:2e:b9:b3:ac:1d:93:e0:47:41:f2:e3:d2: 90:0f:59:bb:8f:65:28:34:91:1f:60:b8:4f:c9:d0: 91:45:d1:63:06:ba:b0:bc:dc:37:55:58:18:6c:79: a9:5c:cd:e5:7f:5b:e2:50:e6:7c:9e:35:10:f1:1c: b8:9c:61:0c:32:ad:eb:ce:d7:b2:29:9b:b4:e8:2d: f6:09:bb:50:59:60:3c:ef:db:61:66:f6:a2:34:cc: 67:8e:06:a2:37:cd:c4:85:2a:8f:ae:bc:cd:72:c0: c0:c0:db:b1:1b:d3:5d:86:31:cc:61:cd:e8:5a:80: 5d:c7:ae:a0:6f:6f:7c:ea:bc:45:a6:a6:47:f4:c5: 99:ec:ef:69:2a:b0:f6:31:c5:8b:95:0c:94:b3:c7: 10:e6:7d:33:39:c4:60:19:56:7d:eb:81:04:92:f6: 57:16:3e:04:19:0b:cc:bf:ce:d7:09:83:ca:da:9f: fb:93:61:3d:e9:9a:8d:f5:ed:5e:66:f2:1b:38:88: 85:36:bf:13:6e:6f:27:8c:4c:2c:89:6f:91:08:c9: e8:d4:90:9c:ac:10:b8:6e:02:62:f1:89:1a:78:a3: d0:f2:6c:55:2e:8b:ed:8b:20:92:aa:72:3a:50:0e: 4d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:67:90:5E:BA:30:5D:13:22:91:FA:AF:D0:FE:F3:F5:B7:86:48:CF X509v3 Authority Key Identifier: keyid:99:D5:CB:F7:FF:EC:52:54:A7:1E:F7:B1:ED:F7:A6:D7:6C:75:96:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdXL9__sUlSnHvex7fem12x1liU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/5236e9-ff5a-4019-94d4-aeae6e3593a7/1/mdXL9__sUlSnHvex7fem12x1liU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/5236e9-ff5a-4019-94d4-aeae6e3593a7/1/mdXL9__sUlSnHvex7fem12x1liU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:4b:08:ee:53:29:90:87:7d:04:5f:66:5c:f3:88:ee:a6:29: 13:8d:04:65:85:6f:28:fb:19:fd:fe:6c:f8:16:e9:6b:c4:fb: 61:4a:c5:72:6e:a5:dc:f8:8d:12:92:71:c6:16:55:a7:1d:0c: 2a:ce:34:de:6f:1c:4d:88:49:7e:ca:8f:aa:12:20:14:66:26: a5:cb:db:e1:28:5f:df:53:ba:d6:de:5b:28:87:60:00:7b:35: 5b:12:a8:a4:d3:dd:00:cf:cb:ab:ef:a4:eb:3f:56:a1:38:86: 4f:a1:f2:dd:84:bb:13:7e:96:cd:a9:67:f8:21:2c:b2:fc:74: e0:1b:97:40:00:05:ab:d0:53:b6:8d:25:2b:98:5f:d1:fb:f2: b4:ac:8d:a6:0d:44:fd:a9:42:d6:44:73:0e:99:45:ee:fe:13: 45:0a:0b:e6:5a:fc:d1:7f:d6:4a:5d:aa:1b:cb:a6:12:a3:ff: 3c:5f:d3:f5:90:69:6f:7a:7d:a2:f0:13:a9:a4:27:22:da:5a: ba:9b:24:6d:8d:a5:a6:9b:dc:0e:9f:72:df:08:ba:59:1b:ac: cd:f9:ac:d2:da:46:b1:f6:a3:56:52:20:01:4f:4d:e4:60:fb: 94:4b:df:ce:e3:09:d8:13:a7:64:2c:83:27:69:0d:43:79:f3: f8:6d:d1:de -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtRvMiaZDWZaDGTXHKfN2g3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5ZDVjYmY3ZmZlYzUyNTRhNzFlZjdiMWVkZjdhNmQ3NmM3 NTk2MjUwHhcNMjUxMjI0MTkwMTI1WhcNMjUxMjI1MTkwMTI1WjAzMTEwLwYDVQQD EyhkMDY3OTA1ZWJhMzA1ZDEzMjI5MWZhYWZkMGZlZjNmNWI3ODY0OGNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqIoFwlbhNU6nStvQmwTFvIIuubOs HZPgR0Hy49KQD1m7j2UoNJEfYLhPydCRRdFjBrqwvNw3VVgYbHmpXM3lf1viUOZ8 njUQ8Ry4nGEMMq3rzteyKZu06C32CbtQWWA879thZvaiNMxnjgaiN83EhSqPrrzN csDAwNuxG9NdhjHMYc3oWoBdx66gb2986rxFpqZH9MWZ7O9pKrD2McWLlQyUs8cQ 5n0zOcRgGVZ964EEkvZXFj4EGQvMv87XCYPK2p/7k2E96ZqN9e1eZvIbOIiFNr8T bm8njEwsiW+RCMno1JCcrBC4bgJi8YkaeKPQ8mxVLovtiyCSqnI6UA5NMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNBnkF66MF0TIpH6r9D+8/W3hkjPMB8GA1UdIwQY MBaAFJnVy/f/7FJUpx73se33ptdsdZYlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWRYTDlfX3NVbFNuSHZleDdmZW0xMngxbGlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi81MjM2ZTktZmY1YS00MDE5LTk0ZDQt YWVhZTZlMzU5M2E3LzEvbWRYTDlfX3NVbFNuSHZleDdmZW0xMngxbGlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi81MjM2ZTktZmY1YS00MDE5LTk0ZDQtYWVhZTZlMzU5M2E3 LzEvbWRYTDlfX3NVbFNuSHZleDdmZW0xMngxbGlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUUsI7lMp kId9BF9mXPOI7qYpE40EZYVvKPsZ/f5s+Bbpa8T7YUrFcm6l3PiNEpJxxhZVpx0M Ks403m8cTYhJfsqPqhIgFGYmpcvb4Shf31O61t5bKIdgAHs1WxKopNPdAM/Lq++k 6z9WoTiGT6Hy3YS7E36Wzaln+CEssvx04BuXQAAFq9BTto0lK5hf0fvytKyNpg1E /alC1kRzDplF7v4TRQoL5lr80X/WSl2qG8umEqP/PF/T9ZBpb3p9ovATqaQnItpa upskbY2lppvcDp9y3wi6WRuszfms0tpGsfajVlIgAU9N5GD7lEvfzuMJ2BOnZCyD J2kNQ3nz+G3R3g== -----END CERTIFICATE-----Generated at Thu Dec 25 04:33:51 2025 by rpki-client