This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft File: XpNr6hsMOiCKuifYsQsnXkdN3iw.mft (raw, json) Hash identifier: pef0DSGPQkExKSAZFERvfu2l1jfr6erN+PDx9+SIHS0= Subject key identifier: 4C:AC:B2:27:0F:8F:96:2B:B5:C0:03:48:40:14:54:90:8F:90:A6:DB Authority key identifier: 5E:93:6B:EA:1B:0C:3A:20:8A:BA:27:D8:B1:0B:27:5E:47:4D:DE:2C Certificate issuer: /CN=5e936bea1b0c3a208aba27d8b10b275e474dde2c Certificate serial: 019B74B5F95B288F18D17C756FE3681BFE57 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft Manifest number: 17A6 Signing time: Wed 31 Dec 2025 14:00:41 +0000 Manifest this update: Wed 31 Dec 2025 14:00:41 +0000 Manifest next update: Thu 01 Jan 2026 14:00:41 +0000 Files and hashes: 1: Nw7X2LCFZpQsGc2GoXyrFKElkBk.roa (hash: y5oQHHhbifcLGWzUQAXcT2e3MvPfBEuWSolqQY+gsts=) 2: XpNr6hsMOiCKuifYsQsnXkdN3iw.crl (hash: 3p7Uzjv87nyGxlgg9e+Udr9zbS+GhmYxTVY0xK0m/tw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.crl rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 01 Jan 2026 14:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:74:b5:f9:5b:28:8f:18:d1:7c:75:6f:e3:68:1b:fe:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5e936bea1b0c3a208aba27d8b10b275e474dde2c Validity Not Before: Dec 31 14:00:41 2025 GMT Not After : Jan 1 14:00:41 2026 GMT Subject: CN=4cacb2270f8f962bb5c00348401454908f90a6db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:5d:d7:87:fe:5b:e1:2c:00:41:2f:91:74:05: 7a:4d:84:f8:09:6d:56:d8:99:e3:f7:d2:a6:f2:96: 1d:79:dc:46:fe:3f:60:b7:88:af:e9:25:18:77:60: d4:a1:2d:8a:3d:95:4c:0b:a0:3f:08:fe:e1:b2:dd: 6f:13:e1:93:16:dd:15:e3:ff:f9:7a:36:65:ae:4a: 57:8d:c1:2d:11:bf:dc:8f:a7:e6:5b:5f:bf:e4:60: 63:b4:b8:e2:04:69:e7:72:9c:f3:83:0c:c0:58:14: 78:a2:28:e1:0d:7d:d3:be:e0:04:e7:a3:26:2f:de: 63:ef:13:d6:49:61:b4:55:cb:f8:a4:4f:56:78:34: be:40:19:70:11:8e:86:30:e1:17:20:3f:49:f9:43: 6f:50:0b:10:78:e6:df:f5:86:e6:79:4d:e9:85:57: e1:ef:21:36:22:29:b3:16:56:5a:5c:c8:ed:5b:d3: df:17:a9:9a:61:6d:cc:fa:fb:bd:ec:0a:ae:09:87: 91:92:5b:fa:0f:10:0a:7c:c5:3a:4d:92:2b:bb:e5: db:ce:49:3a:21:cc:fe:04:d0:ea:13:04:a0:9b:3b: 4f:94:57:fb:30:18:d5:7a:29:1b:32:15:3d:17:20: 58:b6:eb:ec:c1:8b:2b:33:e0:1e:fc:14:07:5d:01: a7:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:AC:B2:27:0F:8F:96:2B:B5:C0:03:48:40:14:54:90:8F:90:A6:DB X509v3 Authority Key Identifier: keyid:5E:93:6B:EA:1B:0C:3A:20:8A:BA:27:D8:B1:0B:27:5E:47:4D:DE:2C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:85:88:a4:ce:0a:a8:10:32:b6:d5:16:4a:20:e7:22:71:bf: 1f:bc:7d:4d:b2:20:bf:d7:82:bb:b2:8f:8a:d1:cd:ea:f3:d9: 4c:ca:c6:cd:8a:56:25:ff:08:a6:d3:21:f6:19:44:1a:3c:99: 51:f1:5e:d5:f2:dc:79:93:19:8c:7b:9a:4e:66:e8:b5:14:8a: 80:ea:e3:09:78:a2:96:5e:30:54:4e:c0:44:d2:1a:c1:26:bc: 2b:6d:99:4d:1e:e6:d2:2e:b2:2c:ec:11:30:46:49:6f:41:f6: f2:04:0b:82:d0:53:22:d9:20:6f:cf:7d:73:5f:5c:af:db:74: 87:4d:d2:d3:fd:92:df:3e:ad:f8:17:03:40:eb:9f:51:c6:b8: f8:0e:41:5a:f3:d7:11:d0:70:23:e1:7c:e4:38:2d:e1:3c:fb: ee:e5:cd:bf:d1:e3:97:0a:ad:91:1a:bf:94:a7:f7:34:9e:a4: 37:1f:89:47:e1:c1:1e:91:43:c2:27:93:85:61:83:7d:44:89: 9a:66:6f:41:e6:ab:db:b8:dc:20:9e:ad:15:b2:1a:ff:80:6f: 2d:c4:72:76:33:3b:1f:e1:d4:8e:ed:e4:b9:f1:07:b0:d1:91: 46:d7:41:70:6f:55:a9:06:32:3b:90:b0:34:65:b1:29:67:aa: 49:0e:e1:98 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt0tflbKI8Y0Xx1b+NoG/5XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlOTM2YmVhMWIwYzNhMjA4YWJhMjdkOGIxMGIyNzVlNDc0 ZGRlMmMwHhcNMjUxMjMxMTQwMDQxWhcNMjYwMTAxMTQwMDQxWjAzMTEwLwYDVQQD Eyg0Y2FjYjIyNzBmOGY5NjJiYjVjMDAzNDg0MDE0NTQ5MDhmOTBhNmRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAol3Xh/5b4SwAQS+RdAV6TYT4CW1W 2Jnj99Km8pYdedxG/j9gt4iv6SUYd2DUoS2KPZVMC6A/CP7hst1vE+GTFt0V4//5 ejZlrkpXjcEtEb/cj6fmW1+/5GBjtLjiBGnncpzzgwzAWBR4oijhDX3TvuAE56Mm L95j7xPWSWG0Vcv4pE9WeDS+QBlwEY6GMOEXID9J+UNvUAsQeObf9YbmeU3phVfh 7yE2IimzFlZaXMjtW9PfF6maYW3M+vu97AquCYeRklv6DxAKfMU6TZIru+Xbzkk6 Icz+BNDqEwSgmztPlFf7MBjVeikbMhU9FyBYtuvswYsrM+Ae/BQHXQGnJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEyssicPj5YrtcADSEAUVJCPkKbbMB8GA1UdIwQY MBaAFF6Ta+obDDogiron2LELJ15HTd4sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHBOcjZoc01PaUNLdWlmWXNRc25Ya2ROM2l3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS8zMjg3NmItYTgyYi00NzA0LWJhNjct OTg0NzdhODY1M2M3LzEvWHBOcjZoc01PaUNLdWlmWXNRc25Ya2ROM2l3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS8zMjg3NmItYTgyYi00NzA0LWJhNjctOTg0NzdhODY1M2M3 LzEvWHBOcjZoc01PaUNLdWlmWXNRc25Ya2ROM2l3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD4WIpM4K qBAyttUWSiDnInG/H7x9TbIgv9eCu7KPitHN6vPZTMrGzYpWJf8IptMh9hlEGjyZ UfFe1fLceZMZjHuaTmbotRSKgOrjCXiill4wVE7ARNIawSa8K22ZTR7m0i6yLOwR MEZJb0H28gQLgtBTItkgb899c19cr9t0h03S0/2S3z6t+BcDQOufUca4+A5BWvPX EdBwI+F85Dgt4Tz77uXNv9HjlwqtkRq/lKf3NJ6kNx+JR+HBHpFDwieThWGDfUSJ mmZvQear27jcIJ6tFbIa/4BvLcRydjM7H+HUju3kufEHsNGRRtdBcG9VqQYyO5Cw NGWxKWeqSQ7hmA== -----END CERTIFICATE-----Generated at Wed Dec 31 23:29:53 2025 by rpki-client