This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft File: CWmio5Y1t5dHbx8WM66PJ78ztTM.mft (raw, json) Hash identifier: fDbx24Rm7XHH5kxCMFbmtp7GB34t62xMfyHjWtUw7s4= Subject key identifier: 16:52:FD:29:EF:8B:3C:3C:E3:0D:09:CB:3C:70:EF:6D:7F:9D:B6:80 Authority key identifier: 09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33 Certificate issuer: /CN=0969a2a39635b797476f1f1633ae8f27bf33b533 Certificate serial: 019B390FA6FB99B70BC73996FE5CA914EC75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft Manifest number: 08ED Signing time: Sat 20 Dec 2025 00:01:25 +0000 Manifest this update: Sat 20 Dec 2025 00:01:25 +0000 Manifest next update: Sun 21 Dec 2025 00:01:25 +0000 Files and hashes: 1: CWmio5Y1t5dHbx8WM66PJ78ztTM.crl (hash: FvYW4wn20VP7yHdoPqBfW+s+HAyI/9HLa0Lwarh+7r0=) 2: NsSedmTQW8OnTTsqv3X8CBZy-xU.roa (hash: WFkKh3bAC4MDDNtqyFfpo7GUVyreugPfu/r7LcM/fN4=) 3: TeB088r0q83Xt0BxDsUFRJ09n_w.roa (hash: G48KXbKrX68pg0VWA7DNE58/xU413WQGSqX5xHVo4rY=) 4: eZ1oRKw2ZmvD0_NWa-kdmh2g-eo.roa (hash: 2jAE9EFeYAI0mBmHLdLHHE90HLI9cIG+7iKSbXwklN4=) 5: l5LQQJ1hscP11M9PGOZJoYipJjA.roa (hash: 1Qefj38Zjj0ROOLLrKtBW86/Osz3b9lr4tBY77Lptdo=) 6: xpGPm8doChOtU-RLJwfI6J2_2pE.roa (hash: Q+zp0nrHHDLtwJs9nHZ2VnA34/82Rp5NA50n42Hv6uk=) 7: zV6ZdwRwY22YxnJ7o5KrLFiOSks.roa (hash: CU+aUbdKG8+gc+SLXpNeHe0gAI7HsoYH7L1e2ZbkQtc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.crl rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:0f:a6:fb:99:b7:0b:c7:39:96:fe:5c:a9:14:ec:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0969a2a39635b797476f1f1633ae8f27bf33b533 Validity Not Before: Dec 20 00:01:25 2025 GMT Not After : Dec 21 00:01:25 2025 GMT Subject: CN=1652fd29ef8b3c3ce30d09cb3c70ef6d7f9db680 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:cb:e1:54:6d:65:b7:57:89:a6:aa:34:27:88: 77:4e:8e:34:82:d3:1f:e7:59:06:fd:3a:a5:b4:37: 7c:76:f8:f1:76:a4:fb:a9:55:ed:99:3c:9e:6d:88: 01:13:dc:a6:1f:f2:bf:f7:cf:fc:01:59:1a:fb:25: d5:57:f1:6c:26:73:88:7b:04:0a:81:7c:4f:11:b5: a9:14:0f:3b:89:0e:26:8c:86:c7:b8:95:df:a9:74: 72:34:91:be:51:d2:29:ea:df:d8:e7:49:4c:24:54: a5:62:08:7c:17:e2:6e:da:29:98:75:b4:d8:f1:b4: 99:0b:26:fe:91:2e:63:33:73:09:26:77:f2:80:6f: cf:4c:44:6e:0d:93:5a:05:ee:08:3e:9d:95:7f:77: da:fd:66:f2:ac:bd:16:3d:e7:87:ba:5b:bb:c6:c6: be:c6:76:5d:3a:39:3d:f8:8a:bf:5c:b4:14:19:b0: 9a:8f:1d:8a:21:fa:d1:12:49:fe:51:68:9d:7c:99: a8:cd:24:f4:ae:f2:46:0e:07:8c:f5:eb:a9:f0:9c: cf:4a:b4:d6:bc:03:d3:ce:70:42:af:62:72:72:fd: 2a:43:43:bb:97:5a:fe:36:63:68:d6:d7:a8:bd:22: 68:d7:78:71:02:ef:a9:f8:b4:68:13:23:b7:13:d7: 2e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:52:FD:29:EF:8B:3C:3C:E3:0D:09:CB:3C:70:EF:6D:7F:9D:B6:80 X509v3 Authority Key Identifier: keyid:09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:35:87:02:5a:85:58:57:23:91:1c:32:2c:b5:d1:20:12:37: 99:3b:14:27:6b:7c:ab:c4:b8:82:29:15:2d:4a:91:8f:29:49: 3f:0b:9b:94:90:49:a1:99:c0:6c:a5:d6:94:58:72:11:8f:dd: a9:74:c3:12:6d:1f:d2:54:2d:63:fe:b3:d9:b3:cf:1c:04:44: e4:42:95:71:2c:fb:9f:f6:25:1e:e4:57:8a:48:71:f5:31:be: e7:97:33:cb:2e:fd:21:f1:bd:05:99:03:29:60:77:12:60:29: 16:e1:a3:1e:9b:2d:c3:90:fa:42:88:09:3a:eb:0c:79:37:31: 7d:13:7b:8f:ba:7c:70:41:fe:37:55:de:80:c3:93:f7:69:ad: 7c:ca:52:17:ed:94:6a:91:74:3e:c9:c7:4d:bd:46:74:21:f2: cd:24:69:43:7e:a3:ee:bd:77:9b:cd:63:d5:f1:3d:01:d4:bd: 2a:ae:30:52:bc:38:83:f0:ca:16:51:68:48:a8:ae:6e:7d:80: 75:1b:dc:9a:54:b1:62:99:7f:fb:67:f4:e8:4a:9d:f8:da:e7: a5:a2:6e:26:cd:80:e9:7c:82:ed:e5:de:e3:79:91:a9:b3:72: 60:6d:f5:00:7d:a6:ab:3a:a3:49:3a:96:03:a2:40:66:e0:4f: 1b:b0:6e:d8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs5D6b7mbcLxzmW/lypFOx1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5NjlhMmEzOTYzNWI3OTc0NzZmMWYxNjMzYWU4ZjI3YmYz M2I1MzMwHhcNMjUxMjIwMDAwMTI1WhcNMjUxMjIxMDAwMTI1WjAzMTEwLwYDVQQD EygxNjUyZmQyOWVmOGIzYzNjZTMwZDA5Y2IzYzcwZWY2ZDdmOWRiNjgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAusvhVG1lt1eJpqo0J4h3To40gtMf 51kG/TqltDd8dvjxdqT7qVXtmTyebYgBE9ymH/K/98/8AVka+yXVV/FsJnOIewQK gXxPEbWpFA87iQ4mjIbHuJXfqXRyNJG+UdIp6t/Y50lMJFSlYgh8F+Ju2imYdbTY 8bSZCyb+kS5jM3MJJnfygG/PTERuDZNaBe4IPp2Vf3fa/WbyrL0WPeeHulu7xsa+ xnZdOjk9+Iq/XLQUGbCajx2KIfrREkn+UWidfJmozST0rvJGDgeM9eup8JzPSrTW vAPTznBCr2Jycv0qQ0O7l1r+NmNo1teovSJo13hxAu+p+LRoEyO3E9cuPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBZS/Snvizw84w0Jyzxw721/nbaAMB8GA1UdIwQY MBaAFAlpoqOWNbeXR28fFjOujye/M7UzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1dtaW81WTF0NWRIYng4V002NlBKNzh6dFRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC82ZGI0MjctZjdkYy00ZWE5LWFlOTUt NDE0OTA4NzJmYzRlLzEvQ1dtaW81WTF0NWRIYng4V002NlBKNzh6dFRNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC82ZGI0MjctZjdkYy00ZWE5LWFlOTUtNDE0OTA4NzJmYzRl LzEvQ1dtaW81WTF0NWRIYng4V002NlBKNzh6dFRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjjWHAlqF WFcjkRwyLLXRIBI3mTsUJ2t8q8S4gikVLUqRjylJPwublJBJoZnAbKXWlFhyEY/d qXTDEm0f0lQtY/6z2bPPHARE5EKVcSz7n/YlHuRXikhx9TG+55czyy79IfG9BZkD KWB3EmApFuGjHpstw5D6QogJOusMeTcxfRN7j7p8cEH+N1XegMOT92mtfMpSF+2U apF0PsnHTb1GdCHyzSRpQ36j7r13m81j1fE9AdS9Kq4wUrw4g/DKFlFoSKiubn2A dRvcmlSxYpl/+2f06Eqd+NrnpaJuJs2A6XyC7eXe43mRqbNyYG31AH2mqzqjSTqW A6JAZuBPG7Bu2A== -----END CERTIFICATE-----Generated at Sat Dec 20 01:49:10 2025 by rpki-client