This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/329ab8-b1d9-4f9f-a9c8-cd18510edcdf/1/XDRKGsDL_EDHWgz8e-yWx8Nb0ns.mft File: XDRKGsDL_EDHWgz8e-yWx8Nb0ns.mft (raw, json) Hash identifier: 3ngLRK+5BD1Hfk71oF/oCnowzWRl24YZ0qnj1UqsS7s= Subject key identifier: 98:37:16:D0:45:0A:1F:D8:DE:82:10:BA:9C:63:8F:73:2E:06:A5:60 Authority key identifier: 5C:34:4A:1A:C0:CB:FC:40:C7:5A:0C:FC:7B:EC:96:C7:C3:5B:D2:7B Certificate issuer: /CN=5c344a1ac0cbfc40c75a0cfc7bec96c7c35bd27b Certificate serial: 019B274171B75193C210BD5F0985D7F4E7AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XDRKGsDL_EDHWgz8e-yWx8Nb0ns.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/329ab8-b1d9-4f9f-a9c8-cd18510edcdf/1/XDRKGsDL_EDHWgz8e-yWx8Nb0ns.mft Manifest number: 177B Signing time: Tue 16 Dec 2025 13:02:38 +0000 Manifest this update: Tue 16 Dec 2025 13:02:38 +0000 Manifest next update: Wed 17 Dec 2025 13:02:38 +0000 Files and hashes: 1: XDRKGsDL_EDHWgz8e-yWx8Nb0ns.crl (hash: 03/r7u0r39aLrtsKvSgSUNoh90PYDs4Af4nBJ/rxY+o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/329ab8-b1d9-4f9f-a9c8-cd18510edcdf/1/XDRKGsDL_EDHWgz8e-yWx8Nb0ns.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/329ab8-b1d9-4f9f-a9c8-cd18510edcdf/1/XDRKGsDL_EDHWgz8e-yWx8Nb0ns.mft rsync://rpki.ripe.net/repository/DEFAULT/XDRKGsDL_EDHWgz8e-yWx8Nb0ns.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 13:02:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:27:41:71:b7:51:93:c2:10:bd:5f:09:85:d7:f4:e7:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c344a1ac0cbfc40c75a0cfc7bec96c7c35bd27b Validity Not Before: Dec 16 13:02:38 2025 GMT Not After : Dec 17 13:02:38 2025 GMT Subject: CN=983716d0450a1fd8de8210ba9c638f732e06a560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:63:d0:29:17:23:bf:ea:70:43:f3:90:7e:d1: 84:98:c2:d1:6a:37:1c:70:f0:1a:76:e6:6a:f5:b2: 55:c2:55:d1:28:49:e9:27:02:45:70:37:28:83:87: f9:53:8f:b8:ea:20:35:f2:46:7f:9b:3e:7a:8d:ca: 3a:38:27:60:e3:cb:e2:cd:17:ad:32:41:b7:d6:04: 74:61:6b:27:e8:8c:a0:f6:84:82:25:fa:8b:25:9d: b5:9e:9e:c2:e6:c5:58:65:81:29:f2:b6:a6:a8:fd: 16:8d:49:99:fc:a4:41:b1:50:87:c6:a5:93:08:73: 45:ee:78:69:f0:31:c3:95:f3:4a:0e:b6:e6:7f:11: 6d:3d:d2:d4:d2:2a:ae:9f:70:5f:32:98:40:02:48: 87:b3:53:ed:de:a7:1b:cc:f1:b5:ea:1f:66:c9:57: 46:27:af:8f:0d:51:61:5d:f1:06:59:b9:ab:f5:44: c0:43:e0:00:85:bc:20:21:a9:c6:78:ac:0c:83:84: 62:d4:e3:de:aa:95:05:5e:3f:a0:60:e0:71:14:5b: cd:3d:2a:ec:64:fa:61:9e:d6:93:92:0a:08:ea:44: 77:3c:29:d7:93:b4:e9:1e:03:1a:87:75:5a:fe:ee: d5:f4:0f:45:6f:b4:5f:a9:fe:b8:0b:9f:df:2e:aa: 9a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:37:16:D0:45:0A:1F:D8:DE:82:10:BA:9C:63:8F:73:2E:06:A5:60 X509v3 Authority Key Identifier: keyid:5C:34:4A:1A:C0:CB:FC:40:C7:5A:0C:FC:7B:EC:96:C7:C3:5B:D2:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XDRKGsDL_EDHWgz8e-yWx8Nb0ns.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/329ab8-b1d9-4f9f-a9c8-cd18510edcdf/1/XDRKGsDL_EDHWgz8e-yWx8Nb0ns.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/329ab8-b1d9-4f9f-a9c8-cd18510edcdf/1/XDRKGsDL_EDHWgz8e-yWx8Nb0ns.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d3:37:38:15:dd:c6:9b:87:a0:7e:38:2c:9a:2a:8f:68:39:ca: 34:f3:76:b8:be:c9:fd:9b:26:ae:84:39:f1:a3:eb:38:ce:9f: c5:c2:86:b3:13:b1:10:00:1d:fa:31:84:47:1a:63:2a:bd:0c: df:5d:44:43:09:b8:77:9a:32:f8:74:41:05:00:3a:3d:2d:82: ca:f9:ee:7a:4e:b8:eb:4b:28:1f:d1:03:cb:51:fa:2e:fe:f7: 7b:ff:3e:39:9f:a6:9f:24:be:19:36:50:12:39:83:4d:b3:aa: 29:75:da:79:c6:05:85:af:c7:01:0a:f1:bf:42:46:ea:1c:52: b2:50:0d:7d:f3:bc:e6:b3:e5:39:f1:a4:ea:5f:d4:71:23:f9: 8a:14:86:e8:8a:c7:87:2d:7e:3d:c2:94:bb:15:33:99:4a:49: 9c:b7:48:82:72:9b:7c:3f:9f:81:f2:aa:aa:07:58:88:21:17: 2b:a0:47:6f:ff:cd:36:8b:d1:d0:5f:60:7f:90:c1:76:1b:67: f1:ea:a6:7a:0d:54:f0:a9:40:a1:8a:38:3e:9a:f6:93:a7:d8: a3:2e:bc:72:f7:7f:a6:3f:41:f8:78:8a:7a:07:40:a2:0e:35: f0:2b:bb:55:ee:34:d3:e4:6b:42:54:7e:29:c9:05:a0:a1:96: 02:a5:96:c6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsnQXG3UZPCEL1fCYXX9OevMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjMzQ0YTFhYzBjYmZjNDBjNzVhMGNmYzdiZWM5NmM3YzM1 YmQyN2IwHhcNMjUxMjE2MTMwMjM4WhcNMjUxMjE3MTMwMjM4WjAzMTEwLwYDVQQD Eyg5ODM3MTZkMDQ1MGExZmQ4ZGU4MjEwYmE5YzYzOGY3MzJlMDZhNTYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnmPQKRcjv+pwQ/OQftGEmMLRajcc cPAaduZq9bJVwlXRKEnpJwJFcDcog4f5U4+46iA18kZ/mz56jco6OCdg48vizRet MkG31gR0YWsn6Iyg9oSCJfqLJZ21np7C5sVYZYEp8ramqP0WjUmZ/KRBsVCHxqWT CHNF7nhp8DHDlfNKDrbmfxFtPdLU0iqun3BfMphAAkiHs1Pt3qcbzPG16h9myVdG J6+PDVFhXfEGWbmr9UTAQ+AAhbwgIanGeKwMg4Ri1OPeqpUFXj+gYOBxFFvNPSrs ZPphntaTkgoI6kR3PCnXk7TpHgMah3Va/u7V9A9Fb7Rfqf64C5/fLqqayQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJg3FtBFCh/Y3oIQupxjj3MuBqVgMB8GA1UdIwQY MBaAFFw0ShrAy/xAx1oM/HvslsfDW9J7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWERSS0dzRExfRURIV2d6OGUteVd4OE5iMG5zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zMjlhYjgtYjFkOS00ZjlmLWE5Yzgt Y2QxODUxMGVkY2RmLzEvWERSS0dzRExfRURIV2d6OGUteVd4OE5iMG5zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zMjlhYjgtYjFkOS00ZjlmLWE5YzgtY2QxODUxMGVkY2Rm LzEvWERSS0dzRExfRURIV2d6OGUteVd4OE5iMG5zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0zc4Fd3G m4egfjgsmiqPaDnKNPN2uL7J/ZsmroQ58aPrOM6fxcKGsxOxEAAd+jGERxpjKr0M 311EQwm4d5oy+HRBBQA6PS2Cyvnuek6460soH9EDy1H6Lv73e/8+OZ+mnyS+GTZQ EjmDTbOqKXXaecYFha/HAQrxv0JG6hxSslANffO85rPlOfGk6l/UcSP5ihSG6IrH hy1+PcKUuxUzmUpJnLdIgnKbfD+fgfKqqgdYiCEXK6BHb//NNovR0F9gf5DBdhtn 8eqmeg1U8KlAoYo4Ppr2k6fYoy68cvd/pj9B+HiKegdAog418Cu7Ve400+RrQlR+ KckFoKGWAqWWxg== -----END CERTIFICATE-----Generated at Tue Dec 16 22:34:46 2025 by rpki-client