This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft File: XWU9B97R6Nf08uoEvTaELFsS8V4.mft (raw, json) Hash identifier: blCvf5qXxJWTnW95yODdXKQpd3CD3IcBCz5u75svLEM= Subject key identifier: F9:70:CF:65:5B:CB:DB:C5:AC:3C:5A:9F:56:F0:56:79:F9:01:3E:61 Authority key identifier: 5D:65:3D:07:DE:D1:E8:D7:F4:F2:EA:04:BD:36:84:2C:5B:12:F1:5E Certificate issuer: /CN=5d653d07ded1e8d7f4f2ea04bd36842c5b12f15e Certificate serial: 019B59E37E59959EC61ADDE8D362007851F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft Manifest number: 0FBF Signing time: Fri 26 Dec 2025 09:00:39 +0000 Manifest this update: Fri 26 Dec 2025 09:00:39 +0000 Manifest next update: Sat 27 Dec 2025 09:00:39 +0000 Files and hashes: 1: LETlz166RFHGtOnMtZqu-hVYTtY.roa (hash: R/HDeBwYS+y6cI45NJn8rpNKDr4lgvNm8JPFpPhGnoo=) 2: XWU9B97R6Nf08uoEvTaELFsS8V4.crl (hash: Dhvp4etAibpTQsHmPrcm1Z1/DVG5BfwmEnk7fcZvEi8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.crl rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e3:7e:59:95:9e:c6:1a:dd:e8:d3:62:00:78:51:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d653d07ded1e8d7f4f2ea04bd36842c5b12f15e Validity Not Before: Dec 26 09:00:39 2025 GMT Not After : Dec 27 09:00:39 2025 GMT Subject: CN=f970cf655bcbdbc5ac3c5a9f56f05679f9013e61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:3f:77:0d:c5:7c:96:2b:ad:8a:8f:04:8b:e5: b0:38:ed:c3:37:73:f3:5d:37:55:96:f1:9a:08:82: 57:8b:e2:d9:47:74:00:f8:b6:08:6e:ab:fb:db:4f: c3:cb:83:5e:f1:6d:4e:01:00:56:c4:69:2e:99:f7: dc:72:80:25:c1:97:58:2c:b0:52:43:ee:59:71:7e: e7:22:6d:57:65:7c:5b:20:56:0b:70:33:f7:5a:69: 9e:fa:62:c0:1b:2a:e7:c3:be:3b:64:61:89:6d:48: 7b:98:65:e3:58:b0:99:3a:fc:05:01:d7:57:27:59: 30:bc:a5:b5:1a:fe:6c:3d:46:ba:98:d9:99:de:14: 14:1d:06:fc:7e:50:44:39:01:28:6f:2b:cd:2d:f1: fd:fc:a6:39:56:19:39:d2:ef:d2:98:0d:81:dd:e5: 0d:b2:33:72:06:aa:83:ca:07:31:ff:a0:62:e3:76: 15:2c:52:61:7a:d3:98:0c:4f:23:e5:71:f3:e4:f9: 18:9a:4e:23:4d:48:56:1a:19:e3:5f:d1:d7:e6:2a: 27:3f:f8:17:f7:e5:2b:e2:19:51:47:c2:5f:5f:f6: 0d:87:58:38:e4:79:0c:ef:8d:f8:b3:b8:61:48:2a: 93:87:e5:b7:fa:70:13:3e:d2:d6:df:a2:d9:47:ed: 30:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:70:CF:65:5B:CB:DB:C5:AC:3C:5A:9F:56:F0:56:79:F9:01:3E:61 X509v3 Authority Key Identifier: keyid:5D:65:3D:07:DE:D1:E8:D7:F4:F2:EA:04:BD:36:84:2C:5B:12:F1:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:63:9b:95:ba:ae:5b:71:21:23:02:34:80:df:f2:f9:ff:68: 52:aa:8a:57:79:c4:02:6a:71:90:c9:1a:4b:8a:52:e0:67:b4: d8:52:04:43:5b:73:50:74:30:d5:01:f0:9e:6c:4d:a2:77:1f: 09:2f:a4:e9:ce:11:fb:c0:af:9f:7c:72:15:e0:a2:f8:81:4d: dd:17:39:e2:a2:eb:08:48:00:fd:59:30:07:79:ec:ae:d1:e2: c4:8c:91:45:79:f6:a6:fc:f4:1d:6f:12:28:93:72:53:b7:1e: 02:68:5d:1e:9d:45:a6:7b:4e:78:88:c5:6e:bf:57:c1:a6:37: ac:90:af:a7:57:17:a0:90:53:4a:d5:00:45:ba:f3:3c:c1:03: 2a:30:b6:d7:30:4b:34:ae:24:d6:c4:70:fe:ea:70:c9:99:ae: c3:b7:fd:6b:d7:b2:d9:86:9f:df:f0:75:09:c4:1e:fa:cb:51: fb:54:4a:d7:36:56:ba:3c:24:1b:4f:4c:35:43:52:34:bc:e9: e1:83:ff:91:4a:41:63:04:09:05:41:1b:00:a2:57:50:7b:2d: 91:23:90:6b:1d:5b:75:f0:76:ea:89:2f:b2:29:04:6c:2d:bd: ca:60:c6:27:c5:a7:d6:63:4c:c4:78:91:cf:0e:d8:f3:13:99: c9:38:65:72 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ435ZlZ7GGt3o02IAeFHxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkNjUzZDA3ZGVkMWU4ZDdmNGYyZWEwNGJkMzY4NDJjNWIx MmYxNWUwHhcNMjUxMjI2MDkwMDM5WhcNMjUxMjI3MDkwMDM5WjAzMTEwLwYDVQQD EyhmOTcwY2Y2NTViY2JkYmM1YWMzYzVhOWY1NmYwNTY3OWY5MDEzZTYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1D93DcV8liutio8Ei+WwOO3DN3Pz XTdVlvGaCIJXi+LZR3QA+LYIbqv720/Dy4Ne8W1OAQBWxGkumffccoAlwZdYLLBS Q+5ZcX7nIm1XZXxbIFYLcDP3Wmme+mLAGyrnw747ZGGJbUh7mGXjWLCZOvwFAddX J1kwvKW1Gv5sPUa6mNmZ3hQUHQb8flBEOQEobyvNLfH9/KY5Vhk50u/SmA2B3eUN sjNyBqqDygcx/6Bi43YVLFJhetOYDE8j5XHz5PkYmk4jTUhWGhnjX9HX5ionP/gX 9+Ur4hlRR8JfX/YNh1g45HkM7434s7hhSCqTh+W3+nATPtLW36LZR+0wpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPlwz2Vby9vFrDxan1bwVnn5AT5hMB8GA1UdIwQY MBaAFF1lPQfe0ejX9PLqBL02hCxbEvFeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFdVOUI5N1I2TmYwOHVvRXZUYUVMRnNTOFY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9hMDQ3NWYtY2E5Ny00YjE2LTk2ZGIt MjE0NWNhNzVlMzgzLzEvWFdVOUI5N1I2TmYwOHVvRXZUYUVMRnNTOFY0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy9hMDQ3NWYtY2E5Ny00YjE2LTk2ZGItMjE0NWNhNzVlMzgz LzEvWFdVOUI5N1I2TmYwOHVvRXZUYUVMRnNTOFY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS2Oblbqu W3EhIwI0gN/y+f9oUqqKV3nEAmpxkMkaS4pS4Ge02FIEQ1tzUHQw1QHwnmxNoncf CS+k6c4R+8Cvn3xyFeCi+IFN3Rc54qLrCEgA/VkwB3nsrtHixIyRRXn2pvz0HW8S KJNyU7ceAmhdHp1FpntOeIjFbr9XwaY3rJCvp1cXoJBTStUARbrzPMEDKjC21zBL NK4k1sRw/upwyZmuw7f9a9ey2Yaf3/B1CcQe+stR+1RK1zZWujwkG09MNUNSNLzp 4YP/kUpBYwQJBUEbAKJXUHstkSOQax1bdfB26okvsikEbC29ymDGJ8Wn1mNMxHiR zw7Y8xOZyThlcg== -----END CERTIFICATE-----Generated at Fri Dec 26 14:07:10 2025 by rpki-client