This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft File: XM3soXHkIseck4wnMqkNSKjFPAY.mft (raw, json) Hash identifier: 7tHTC9JkY1rNUqqWyTmHTEBTtFICTedrrFTQw3Z6nBM= Subject key identifier: 42:58:B6:98:34:4F:58:07:66:76:75:C9:6B:FC:06:05:3A:CF:27:05 Authority key identifier: 5C:CD:EC:A1:71:E4:22:C7:9C:93:8C:27:32:A9:0D:48:A8:C5:3C:06 Certificate issuer: /CN=5ccdeca171e422c79c938c2732a90d48a8c53c06 Certificate serial: 019AEE99CF74593566428493BEBBC42823C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft Manifest number: 176E Signing time: Fri 05 Dec 2025 13:00:48 +0000 Manifest this update: Fri 05 Dec 2025 13:00:48 +0000 Manifest next update: Sat 06 Dec 2025 13:00:48 +0000 Files and hashes: 1: 1ZFRCjoLi_l_VlnDb8o8tJWIa2E.roa (hash: vVgcWoftvDNuMTcgCwdMnGyQwGXGLdFZoBkxUeU+jcg=) 2: Kj2NqGC5bBv1gEhFpzdHWkRY4ZI.roa (hash: 51Tc+Qzr9atasRV0RiCoKJQOUvFVgpnHk2il25DGklM=) 3: LxxlY-veNdEFSuClmgliyHMOZOA.roa (hash: eyCm9s0PQeZ1TTpko+C38z1BbPAWbfE1nA0PWObj7+Q=) 4: NqBM7SejbvGbff9d0C8tNNMd9cE.roa (hash: NsdFpCr4tDnCXl/0XE2a5AdGU138fFNht03h3yMplDQ=) 5: XM3soXHkIseck4wnMqkNSKjFPAY.crl (hash: Pd9/iC8+6Zv5o5mQAruvH+U9nTbZxMuICT+kdqMkWxc=) 6: aa3wYkdpjQEDieV4Tr1D1UlS-yQ.roa (hash: OvNz6w0TsSCTT94cQ7JVYM2YwdlsjARoid2lWLlXj5c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 13:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:ee:99:cf:74:59:35:66:42:84:93:be:bb:c4:28:23:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ccdeca171e422c79c938c2732a90d48a8c53c06 Validity Not Before: Dec 5 13:00:48 2025 GMT Not After : Dec 6 13:00:48 2025 GMT Subject: CN=4258b698344f5807667675c96bfc06053acf2705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:27:3f:94:3c:29:92:69:44:c1:e9:2c:89:4e: 10:1c:94:c0:3d:43:35:13:13:17:ee:dc:55:8a:a9: 32:ec:f3:52:0b:6f:93:64:f8:fd:e6:67:ef:1b:f3: f5:d1:d4:ac:92:a6:5c:1a:86:ec:46:76:53:cc:2c: 1b:42:3b:c6:3b:de:92:2f:ff:92:10:c8:70:b6:6c: 42:20:6d:76:4c:0f:6d:12:6b:e5:40:51:14:34:d4: 78:d7:ff:a4:fb:7a:b3:e9:e2:98:c2:25:35:76:3b: 98:30:ca:69:6a:4b:76:f6:aa:20:14:cd:28:c9:17: 0c:5c:5b:72:9b:49:ca:9c:53:a8:ba:78:57:2e:cb: 30:c4:08:e1:83:b8:50:13:f0:46:b1:a3:dd:21:7e: 6b:23:cb:7c:fa:5b:3a:ec:12:f8:f1:82:82:6b:a2: 56:5c:f8:54:e0:1b:cb:65:6c:1a:49:21:f4:f6:f7: 5a:cb:31:21:27:d7:8d:77:cb:2c:8f:7a:88:56:65: 27:4c:2d:4b:7b:bd:7d:4b:c1:f0:cb:d3:4a:ea:f5: e8:c4:28:67:80:2e:e2:fd:11:87:18:12:4b:44:13: 16:90:ac:83:bb:f4:87:e5:bc:e4:80:89:70:17:86: 13:2d:46:ef:7c:be:19:78:fd:99:61:9b:2d:c9:91: 72:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:58:B6:98:34:4F:58:07:66:76:75:C9:6B:FC:06:05:3A:CF:27:05 X509v3 Authority Key Identifier: keyid:5C:CD:EC:A1:71:E4:22:C7:9C:93:8C:27:32:A9:0D:48:A8:C5:3C:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:a2:f9:83:07:8d:d8:a5:7b:88:e4:71:31:da:b2:da:7a:41: 74:b6:0c:65:fd:83:ee:a7:b4:81:9f:af:c8:ed:4e:4d:c2:b3: 94:04:9b:43:97:12:43:28:96:3b:8c:a7:7b:1a:b6:b6:07:fd: 5d:ba:ad:ad:b1:fe:d9:ac:7f:1a:59:fd:de:94:f6:62:44:2e: 27:47:f4:57:98:8f:6d:8d:48:51:6d:dc:19:fc:ad:0f:f2:eb: 4d:a2:97:55:b4:7e:60:7d:b5:8f:72:71:6a:63:84:fc:14:7e: 41:92:02:e8:fc:75:6f:66:00:fe:c9:16:9f:87:05:63:68:49: 7a:ab:49:1d:da:79:93:87:e4:97:36:24:da:cf:1a:af:7f:dc: 8f:81:78:91:ea:c8:20:e1:54:2b:c0:5c:af:b8:a0:6c:e9:2f: 2b:0b:a1:85:22:b0:b2:3d:6c:90:61:79:54:3a:6b:4f:bd:2c: e5:fc:52:0d:0c:ea:0d:2a:5e:04:ee:c6:4b:40:0b:83:56:d9: 13:2b:2b:e2:4d:5a:ca:c2:45:25:4f:5b:3a:37:49:26:cc:56: 62:e6:df:dd:26:78:79:0f:39:cc:44:f0:d1:23:ee:87:05:4c: ed:91:5a:39:19:f1:90:ed:eb:68:ee:4e:e2:7d:b5:1d:54:d0: 57:5c:11:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrumc90WTVmQoSTvrvEKCPDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjY2RlY2ExNzFlNDIyYzc5YzkzOGMyNzMyYTkwZDQ4YThj NTNjMDYwHhcNMjUxMjA1MTMwMDQ4WhcNMjUxMjA2MTMwMDQ4WjAzMTEwLwYDVQQD Eyg0MjU4YjY5ODM0NGY1ODA3NjY3Njc1Yzk2YmZjMDYwNTNhY2YyNzA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Sc/lDwpkmlEweksiU4QHJTAPUM1 ExMX7txViqky7PNSC2+TZPj95mfvG/P10dSskqZcGobsRnZTzCwbQjvGO96SL/+S EMhwtmxCIG12TA9tEmvlQFEUNNR41/+k+3qz6eKYwiU1djuYMMppakt29qogFM0o yRcMXFtym0nKnFOounhXLsswxAjhg7hQE/BGsaPdIX5rI8t8+ls67BL48YKCa6JW XPhU4BvLZWwaSSH09vdayzEhJ9eNd8ssj3qIVmUnTC1Le719S8Hwy9NK6vXoxChn gC7i/RGHGBJLRBMWkKyDu/SH5bzkgIlwF4YTLUbvfL4ZeP2ZYZstyZFyRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEJYtpg0T1gHZnZ1yWv8BgU6zycFMB8GA1UdIwQY MBaAFFzN7KFx5CLHnJOMJzKpDUioxTwGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWE0zc29YSGtJc2VjazR3bk1xa05TS2pGUEFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9iOGY1ZTYtYzk1MS00ZGRiLWI0ZjUt YTg4MWVjODIyOGI1LzEvWE0zc29YSGtJc2VjazR3bk1xa05TS2pGUEFZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi9iOGY1ZTYtYzk1MS00ZGRiLWI0ZjUtYTg4MWVjODIyOGI1 LzEvWE0zc29YSGtJc2VjazR3bk1xa05TS2pGUEFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFaL5gweN 2KV7iORxMdqy2npBdLYMZf2D7qe0gZ+vyO1OTcKzlASbQ5cSQyiWO4ynexq2tgf9 XbqtrbH+2ax/Gln93pT2YkQuJ0f0V5iPbY1IUW3cGfytD/LrTaKXVbR+YH21j3Jx amOE/BR+QZIC6Px1b2YA/skWn4cFY2hJeqtJHdp5k4fklzYk2s8ar3/cj4F4kerI IOFUK8Bcr7igbOkvKwuhhSKwsj1skGF5VDprT70s5fxSDQzqDSpeBO7GS0ALg1bZ Eysr4k1aysJFJU9bOjdJJsxWYubf3SZ4eQ85zETw0SPuhwVM7ZFaORnxkO3raO5O 4n21HVTQV1wR3A== -----END CERTIFICATE-----Generated at Fri Dec 5 23:02:56 2025 by rpki-client