This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft File: XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft (raw, json) Hash identifier: bWStenmasWavPgYR6C8JAT3CPVq3Tz3UpiffWxOIaYg= Subject key identifier: E1:59:3C:F9:B1:7D:21:39:4F:FE:28:32:1A:B0:EB:7A:56:B0:82:65 Authority key identifier: 5C:68:A2:79:76:9D:19:3D:F3:F9:78:1D:2B:A4:C1:D9:27:7B:4F:D6 Certificate issuer: /CN=5c68a279769d193df3f9781d2ba4c1d9277b4fd6 Certificate serial: 019B1ACE2BAAED7AA7D1D725786486ED1EBB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft Manifest number: 05A6 Signing time: Sun 14 Dec 2025 03:01:17 +0000 Manifest this update: Sun 14 Dec 2025 03:01:17 +0000 Manifest next update: Mon 15 Dec 2025 03:01:17 +0000 Files and hashes: 1: FFFlJ1ntZuYfKnoxbFz369bHbCY.roa (hash: OzHlJ3L/Uq51e4UIV4xO7NIltGOZNXtcjik1Syg/eD0=) 2: XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl (hash: KVj4VQ5o6LHjvDCjad4g9yoiLGnpve3IfftWxu4cRSs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1a:ce:2b:aa:ed:7a:a7:d1:d7:25:78:64:86:ed:1e:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c68a279769d193df3f9781d2ba4c1d9277b4fd6 Validity Not Before: Dec 14 03:01:17 2025 GMT Not After : Dec 15 03:01:17 2025 GMT Subject: CN=e1593cf9b17d21394ffe28321ab0eb7a56b08265 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:2d:37:42:f1:0d:1d:6e:9c:f1:85:9a:e6:6a: 0c:b3:78:10:95:d6:d9:5d:a3:4c:76:bc:13:2b:91: af:31:72:5a:86:ec:b8:bb:7a:0a:71:23:48:ac:36: c9:5e:70:95:b8:d0:73:37:26:76:60:8c:cb:71:8f: 13:38:e8:48:f8:71:f6:42:94:31:55:f9:73:14:d4: 86:b0:96:42:6b:a9:93:c5:d5:39:fb:a0:d4:d5:60: 78:3c:e5:2b:83:e6:8a:21:3f:17:2a:4f:46:5e:96: 63:0c:12:5e:77:f1:41:0d:82:27:c1:b4:35:14:46: 11:6f:d9:2f:c8:31:1d:48:3f:d3:21:14:18:10:8c: 09:d6:e4:be:b8:9e:62:0b:31:8e:1b:aa:79:da:0b: 9c:29:a8:a7:55:b7:36:67:32:ad:93:5f:4f:d2:dd: c3:e5:c6:f0:55:d9:ee:29:16:e6:7f:40:b1:24:8f: 8a:34:17:fe:04:3d:8e:56:9a:8e:60:e0:39:99:71: eb:16:bb:37:61:c4:ba:9f:f9:00:d3:ce:6e:80:92: bd:43:43:2d:5c:4e:45:1a:14:32:d9:dc:53:bd:82: e0:94:a1:32:de:c3:2b:cc:cc:1d:d9:40:a6:87:75: de:81:74:34:a2:5a:35:05:fc:fc:1b:56:ed:09:09: b3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:59:3C:F9:B1:7D:21:39:4F:FE:28:32:1A:B0:EB:7A:56:B0:82:65 X509v3 Authority Key Identifier: keyid:5C:68:A2:79:76:9D:19:3D:F3:F9:78:1D:2B:A4:C1:D9:27:7B:4F:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:4e:f0:31:6c:a3:8e:01:42:2c:03:26:d3:00:48:71:25:3c: f4:ae:24:3b:10:fb:77:e0:58:84:8e:fb:d3:9a:73:b4:6b:21: f4:01:75:73:83:ad:a3:72:b3:58:8c:0b:6e:d2:c5:44:11:0f: d9:24:6b:2c:61:22:e5:2e:b9:5f:d4:91:a4:14:be:ed:2c:3a: e3:16:43:d8:fc:86:04:fd:b4:24:28:8a:b1:34:0d:a3:1c:d4: 2e:48:89:c8:95:51:09:6e:45:ce:06:0b:4f:3e:57:2b:1e:16: cd:fc:a4:6c:b3:c1:8c:c2:f3:40:f9:f1:34:9e:6a:1f:13:ac: 45:8d:a8:26:4d:f9:35:d7:9b:d3:7d:ca:47:68:eb:28:e7:cd: 97:be:23:b7:79:7f:fa:63:fe:ca:e3:2d:67:7b:47:e6:fd:b5: 87:95:34:3c:76:e8:0a:a3:d6:3c:18:fd:e0:28:74:f5:db:26: 87:cc:ee:e1:2b:18:e1:72:fd:14:ed:a3:cc:82:15:12:52:32: 83:43:43:53:de:55:a0:7d:a2:17:7b:4d:6f:6a:56:81:d1:91: 95:7c:83:11:ac:62:fc:5f:79:cd:8c:9f:3b:fb:ef:8a:ab:77: e0:1f:d7:db:ae:55:74:a6:d7:9c:3d:b8:1b:29:ee:59:87:1d: f4:ad:fe:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsaziuq7Xqn0dcleGSG7R67MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjNjhhMjc5NzY5ZDE5M2RmM2Y5NzgxZDJiYTRjMWQ5Mjc3 YjRmZDYwHhcNMjUxMjE0MDMwMTE3WhcNMjUxMjE1MDMwMTE3WjAzMTEwLwYDVQQD EyhlMTU5M2NmOWIxN2QyMTM5NGZmZTI4MzIxYWIwZWI3YTU2YjA4MjY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAki03QvENHW6c8YWa5moMs3gQldbZ XaNMdrwTK5GvMXJahuy4u3oKcSNIrDbJXnCVuNBzNyZ2YIzLcY8TOOhI+HH2QpQx VflzFNSGsJZCa6mTxdU5+6DU1WB4POUrg+aKIT8XKk9GXpZjDBJed/FBDYInwbQ1 FEYRb9kvyDEdSD/TIRQYEIwJ1uS+uJ5iCzGOG6p52gucKainVbc2ZzKtk19P0t3D 5cbwVdnuKRbmf0CxJI+KNBf+BD2OVpqOYOA5mXHrFrs3YcS6n/kA085ugJK9Q0Mt XE5FGhQy2dxTvYLglKEy3sMrzMwd2UCmh3XegXQ0olo1Bfz8G1btCQmzXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOFZPPmxfSE5T/4oMhqw63pWsIJlMB8GA1UdIwQY MBaAFFxoonl2nRk98/l4HSukwdkne0/WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEdpaWVYYWRHVDN6LVhnZEs2VEIyU2Q3VDlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9mNWM5NmEtYjcwZi00MTllLTgyNmYt MTUzOThiYTViMGU3LzEvWEdpaWVYYWRHVDN6LVhnZEs2VEIyU2Q3VDlZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi9mNWM5NmEtYjcwZi00MTllLTgyNmYtMTUzOThiYTViMGU3 LzEvWEdpaWVYYWRHVDN6LVhnZEs2VEIyU2Q3VDlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARk7wMWyj jgFCLAMm0wBIcSU89K4kOxD7d+BYhI7705pztGsh9AF1c4Oto3KzWIwLbtLFRBEP 2SRrLGEi5S65X9SRpBS+7Sw64xZD2PyGBP20JCiKsTQNoxzULkiJyJVRCW5FzgYL Tz5XKx4WzfykbLPBjMLzQPnxNJ5qHxOsRY2oJk35Ndeb033KR2jrKOfNl74jt3l/ +mP+yuMtZ3tH5v21h5U0PHboCqPWPBj94Ch09dsmh8zu4SsY4XL9FO2jzIIVElIy g0NDU95VoH2iF3tNb2pWgdGRlXyDEaxi/F95zYyfO/vviqt34B/X265VdKbXnD24 GynuWYcd9K3+sg== -----END CERTIFICATE-----Generated at Sun Dec 14 05:32:42 2025 by rpki-client