This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft File: MGwIZtwlII5sB9SiHX2AULUI1qI.mft (raw, json) Hash identifier: tm9tUAV6XoriRxZW1DdEN2hE0Cb4MkTb1UCe0brb/Ss= Subject key identifier: 21:8C:A8:8F:B8:DF:2B:26:D1:4A:A5:28:51:E2:3B:44:7A:6E:88:B1 Authority key identifier: 30:6C:08:66:DC:25:20:8E:6C:07:D4:A2:1D:7D:80:50:B5:08:D6:A2 Certificate issuer: /CN=306c0866dc25208e6c07d4a21d7d8050b508d6a2 Certificate serial: 019B26D2530FFBC6701CC5AF2542251303D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft Manifest number: 15F5 Signing time: Tue 16 Dec 2025 11:01:16 +0000 Manifest this update: Tue 16 Dec 2025 11:01:16 +0000 Manifest next update: Wed 17 Dec 2025 11:01:16 +0000 Files and hashes: 1: DhdGK18Qr8BfEi425qb4XqU3Df0.roa (hash: zUZN1xRmcwh2/G+LSnUGvmnpV/nEFzaIhdcZknHnKqM=) 2: HdR6Ah0Qe32r7472JEBtQ7R-uic.roa (hash: 9q8qH00PICKWGR7GNHvqSbuGck7QEOPOmn1zpnijT28=) 3: MGwIZtwlII5sB9SiHX2AULUI1qI.crl (hash: QXTutq1ly8AdA042J8EX+2m5GYxvH3nEi5u5NfgjHVw=) 4: fijUe6qDGFgvjf20rKDx3KsLKhg.roa (hash: foZAP48xDa0sL73147a0de2CyfWzFAaIZ8oA6qYD28M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.crl rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 09:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:26:d2:53:0f:fb:c6:70:1c:c5:af:25:42:25:13:03:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=306c0866dc25208e6c07d4a21d7d8050b508d6a2 Validity Not Before: Dec 16 11:01:16 2025 GMT Not After : Dec 17 11:01:16 2025 GMT Subject: CN=218ca88fb8df2b26d14aa52851e23b447a6e88b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:12:50:5e:99:4a:0c:a2:c1:05:70:e8:a1:68: be:ee:7f:94:f4:59:24:b2:72:74:7f:ba:3b:cc:01: e0:77:0b:f0:55:b1:62:e4:26:d2:e5:20:b6:45:ab: 2d:c5:8a:60:5c:b4:f2:cd:1a:5d:1e:a8:9b:0d:e0: f5:54:4a:4e:4e:fd:6b:be:61:64:31:79:da:ce:d4: 66:51:9c:e6:35:db:70:98:be:72:b0:ac:ad:65:c8: 2a:a9:30:cb:4f:02:29:67:64:4d:a6:af:44:20:c3: 4a:04:c0:9b:4e:47:f7:2f:43:54:de:74:4a:0f:ac: 16:66:08:0a:b6:65:96:65:e5:e2:a0:b0:39:82:56: 04:c4:39:97:53:04:03:ae:2e:ae:7e:66:4a:c6:5a: 6d:7e:aa:1e:1c:00:f1:3b:f6:d0:dc:02:35:c1:6f: d4:45:84:c3:62:bf:2d:d7:d6:0c:b1:1c:4f:6d:34: 2e:88:fc:26:dc:f3:4d:af:56:63:b1:00:e7:2e:cb: 87:80:29:98:2a:f6:f5:f1:36:f0:8c:17:0f:3d:2d: 33:31:34:fb:3c:9d:5a:74:0f:16:c0:a7:1a:6e:99: ba:9c:45:0f:39:48:f4:b6:99:f6:fc:e8:62:86:5e: e1:eb:ef:42:48:d7:c9:72:be:e1:1d:2f:51:b9:6b: 00:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:8C:A8:8F:B8:DF:2B:26:D1:4A:A5:28:51:E2:3B:44:7A:6E:88:B1 X509v3 Authority Key Identifier: keyid:30:6C:08:66:DC:25:20:8E:6C:07:D4:A2:1D:7D:80:50:B5:08:D6:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:ee:93:1d:d6:9a:0b:ee:53:5b:5b:65:99:a3:33:c3:fb:54: 90:6c:27:af:ba:92:38:ba:46:5d:49:20:79:70:6f:35:83:3b: 69:ca:51:82:e8:88:12:0a:1a:16:55:e8:8a:92:f2:fd:74:2a: 05:f2:b3:19:b2:b1:56:db:67:59:b2:fb:f4:b4:73:f6:7c:81: d6:1e:40:60:39:40:23:4f:ab:4f:41:ab:e4:d8:6f:91:d0:5d: 2f:8a:7c:d3:2e:25:18:98:52:9c:08:57:81:f9:21:bd:25:8c: c7:b1:78:75:b7:a2:3e:1f:ea:e2:74:55:3a:8d:57:72:28:95: e6:23:53:e7:99:00:48:9d:be:75:e3:29:e1:cb:e2:70:1c:a4: 6a:a9:69:dc:61:ee:92:6e:de:0c:c6:f0:cf:1b:94:b2:da:e7: d2:32:c0:91:dc:40:23:b6:85:e4:60:dc:17:0b:65:2c:4b:e4: 60:21:4c:0d:0b:da:7e:87:78:05:e1:0b:7e:29:f6:5f:43:56: fb:25:06:f1:26:2b:1e:3f:aa:86:60:c0:ef:46:06:f1:e5:e6: 2c:00:b1:d0:76:a1:da:ac:eb:79:e7:6b:22:ad:09:c5:98:56: c4:b6:70:e5:2f:41:4a:f8:0f:4d:3c:41:d7:ec:ff:fb:68:c0: 5d:ad:b0:75 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsm0lMP+8ZwHMWvJUIlEwPVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwNmMwODY2ZGMyNTIwOGU2YzA3ZDRhMjFkN2Q4MDUwYjUw OGQ2YTIwHhcNMjUxMjE2MTEwMTE2WhcNMjUxMjE3MTEwMTE2WjAzMTEwLwYDVQQD EygyMThjYTg4ZmI4ZGYyYjI2ZDE0YWE1Mjg1MWUyM2I0NDdhNmU4OGIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhxJQXplKDKLBBXDooWi+7n+U9Fkk snJ0f7o7zAHgdwvwVbFi5CbS5SC2RastxYpgXLTyzRpdHqibDeD1VEpOTv1rvmFk MXnaztRmUZzmNdtwmL5ysKytZcgqqTDLTwIpZ2RNpq9EIMNKBMCbTkf3L0NU3nRK D6wWZggKtmWWZeXioLA5glYExDmXUwQDri6ufmZKxlptfqoeHADxO/bQ3AI1wW/U RYTDYr8t19YMsRxPbTQuiPwm3PNNr1ZjsQDnLsuHgCmYKvb18TbwjBcPPS0zMTT7 PJ1adA8WwKcabpm6nEUPOUj0tpn2/Ohihl7h6+9CSNfJcr7hHS9RuWsAmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCGMqI+43ysm0UqlKFHiO0R6boixMB8GA1UdIwQY MBaAFDBsCGbcJSCObAfUoh19gFC1CNaiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUd3SVp0d2xJSTVzQjlTaUhYMkFVTFVJMXFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9iYWRlZGYtZDBlOS00NWE5LWFmNzUt MTBlZGI1NDFlNmZmLzEvTUd3SVp0d2xJSTVzQjlTaUhYMkFVTFVJMXFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC9iYWRlZGYtZDBlOS00NWE5LWFmNzUtMTBlZGI1NDFlNmZm LzEvTUd3SVp0d2xJSTVzQjlTaUhYMkFVTFVJMXFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd+6THdaa C+5TW1tlmaMzw/tUkGwnr7qSOLpGXUkgeXBvNYM7acpRguiIEgoaFlXoipLy/XQq BfKzGbKxVttnWbL79LRz9nyB1h5AYDlAI0+rT0Gr5NhvkdBdL4p80y4lGJhSnAhX gfkhvSWMx7F4dbeiPh/q4nRVOo1XciiV5iNT55kASJ2+deMp4cvicBykaqlp3GHu km7eDMbwzxuUstrn0jLAkdxAI7aF5GDcFwtlLEvkYCFMDQvafod4BeELfin2X0NW +yUG8SYrHj+qhmDA70YG8eXmLACx0Hah2qzreedrIq0JxZhWxLZw5S9BSvgPTTxB 1+z/+2jAXa2wdQ== -----END CERTIFICATE-----Generated at Tue Dec 16 12:17:14 2025 by rpki-client