This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft File: XFe2FhFxnsfI4AErGv9-gfx2ib0.mft (raw, json) Hash identifier: isKmbBiTZxVBHFBOvVAZMFAwAdW4p6nNqh/woe2LHS8= Subject key identifier: 32:C4:11:73:23:A5:F5:CB:4B:A0:2F:A2:8A:0A:48:65:83:59:DB:BD Authority key identifier: 5C:57:B6:16:11:71:9E:C7:C8:E0:01:2B:1A:FF:7E:81:FC:76:89:BD Certificate issuer: /CN=5c57b61611719ec7c8e0012b1aff7e81fc7689bd Certificate serial: 019B1E05DE1ABD97D9FA0BCC8A64427666B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XFe2FhFxnsfI4AErGv9-gfx2ib0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft Manifest number: 1173 Signing time: Sun 14 Dec 2025 18:00:59 +0000 Manifest this update: Sun 14 Dec 2025 18:00:59 +0000 Manifest next update: Mon 15 Dec 2025 18:00:59 +0000 Files and hashes: 1: 736mr1KkVtoBPW1oR7owGe-ullo.roa (hash: uR2lVV+jre6sPLOQey9198pgiqdr//RLVlkZmwpBaQw=) 2: XFe2FhFxnsfI4AErGv9-gfx2ib0.crl (hash: +vtXlz6rYSZS+jhpv6TEODBZVPO3boCODWhxbN27WQg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.crl rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft rsync://rpki.ripe.net/repository/DEFAULT/XFe2FhFxnsfI4AErGv9-gfx2ib0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 18:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1e:05:de:1a:bd:97:d9:fa:0b:cc:8a:64:42:76:66:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c57b61611719ec7c8e0012b1aff7e81fc7689bd Validity Not Before: Dec 14 18:00:59 2025 GMT Not After : Dec 15 18:00:59 2025 GMT Subject: CN=32c4117323a5f5cb4ba02fa28a0a48658359dbbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:52:ef:f0:d9:73:e0:fc:26:a5:9f:6d:d3:6d: 2f:84:2e:4e:cb:a9:9d:30:9e:54:3c:8e:f4:f9:19: 1d:20:18:b0:cf:f0:8f:1d:ca:3d:fc:93:81:56:9f: 2c:40:7f:f0:29:19:5f:ac:cf:c1:fa:0e:4b:39:68: 1b:c9:14:15:1d:75:35:fc:2d:f0:60:8a:29:22:66: c3:a4:85:1a:ee:bf:63:05:0e:46:7a:31:2e:e4:50: 72:8a:f8:00:b7:2c:21:15:7f:05:3f:02:39:1e:04: 86:37:a5:1b:38:30:7c:fd:89:90:76:f1:2b:2b:ef: 41:1f:e3:32:64:64:4f:8c:46:71:af:10:5e:38:a0: a6:6d:56:06:96:08:54:53:4f:a8:14:6b:2a:e2:29: 18:4e:a5:96:e4:6d:1a:ba:b8:07:35:27:ac:17:c4: 89:05:5d:4f:f6:c4:fa:ff:fc:dc:bc:d8:1d:ba:16: fd:2e:05:9d:4d:1c:39:e0:47:b3:e7:ec:f0:96:de: ac:31:3e:8b:68:82:2d:e9:2d:4e:88:79:67:6b:b1: 1b:fd:b4:94:d6:de:80:6c:0a:71:fd:05:ab:74:cb: e0:e3:dd:87:fa:c0:62:21:e9:41:47:d1:87:53:8a: 81:c5:9d:1d:18:fb:d2:e0:d9:7d:11:b5:86:07:e4: db:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:C4:11:73:23:A5:F5:CB:4B:A0:2F:A2:8A:0A:48:65:83:59:DB:BD X509v3 Authority Key Identifier: keyid:5C:57:B6:16:11:71:9E:C7:C8:E0:01:2B:1A:FF:7E:81:FC:76:89:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XFe2FhFxnsfI4AErGv9-gfx2ib0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:3a:c6:b0:b1:16:e1:b0:51:58:a3:c8:50:0c:5b:08:0a:ed: ea:b6:3b:dc:f1:04:84:c1:37:56:dc:8e:10:65:00:22:42:5a: 38:ea:08:0a:0d:3a:00:2f:49:51:8e:6b:d8:7a:7a:f5:fb:b6: 3b:39:47:9c:e4:85:36:87:5a:17:92:97:9c:44:4e:0c:85:ea: 95:06:c3:a3:2d:06:7f:ac:d7:68:ad:26:8d:24:75:c8:3d:15: ef:60:47:64:c2:d1:06:aa:ac:fc:0a:89:a2:89:d1:4b:d0:da: 8f:cc:5d:cd:0d:39:02:3d:82:13:f9:db:bc:93:e5:f7:49:06: 13:62:53:76:ef:d5:b9:35:24:2d:a8:1c:52:7d:67:a0:34:cf: 46:93:22:bd:25:3b:ca:60:f6:49:88:bf:99:a6:96:b6:0e:72: 40:0a:61:58:db:00:fa:74:76:30:de:9d:c7:b6:91:2a:f0:6e: 8e:2d:c3:a2:c7:98:3a:df:03:8c:7f:03:9f:11:9d:19:1c:73: 64:44:f9:af:2e:55:17:c8:0f:a3:9c:db:e1:61:ee:ca:5f:a8: ed:63:9b:59:9b:a2:1c:90:99:8a:67:5c:4e:2e:df:87:2c:37: f4:d1:7c:36:f6:be:13:3e:b4:40:c8:83:70:1e:ea:c9:a0:15: 80:71:f1:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZseBd4avZfZ+gvMimRCdma0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjNTdiNjE2MTE3MTllYzdjOGUwMDEyYjFhZmY3ZTgxZmM3 Njg5YmQwHhcNMjUxMjE0MTgwMDU5WhcNMjUxMjE1MTgwMDU5WjAzMTEwLwYDVQQD EygzMmM0MTE3MzIzYTVmNWNiNGJhMDJmYTI4YTBhNDg2NTgzNTlkYmJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApVLv8Nlz4PwmpZ9t020vhC5Oy6md MJ5UPI70+RkdIBiwz/CPHco9/JOBVp8sQH/wKRlfrM/B+g5LOWgbyRQVHXU1/C3w YIopImbDpIUa7r9jBQ5GejEu5FByivgAtywhFX8FPwI5HgSGN6UbODB8/YmQdvEr K+9BH+MyZGRPjEZxrxBeOKCmbVYGlghUU0+oFGsq4ikYTqWW5G0aurgHNSesF8SJ BV1P9sT6//zcvNgduhb9LgWdTRw54Eez5+zwlt6sMT6LaIIt6S1OiHlna7Eb/bSU 1t6AbApx/QWrdMvg492H+sBiIelBR9GHU4qBxZ0dGPvS4Nl9EbWGB+TbGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDLEEXMjpfXLS6AvoooKSGWDWdu9MB8GA1UdIwQY MBaAFFxXthYRcZ7HyOABKxr/foH8dom9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEZlMkZoRnhuc2ZJNEFFckd2OS1nZngyaWIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9iN2ZlNzUtMzBlZS00YTZmLWI1Mjgt ZmEzMDcxYzQzNWYxLzEvWEZlMkZoRnhuc2ZJNEFFckd2OS1nZngyaWIwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC9iN2ZlNzUtMzBlZS00YTZmLWI1MjgtZmEzMDcxYzQzNWYx LzEvWEZlMkZoRnhuc2ZJNEFFckd2OS1nZngyaWIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkDrGsLEW 4bBRWKPIUAxbCArt6rY73PEEhME3VtyOEGUAIkJaOOoICg06AC9JUY5r2Hp69fu2 OzlHnOSFNodaF5KXnERODIXqlQbDoy0Gf6zXaK0mjSR1yD0V72BHZMLRBqqs/AqJ oonRS9Daj8xdzQ05Aj2CE/nbvJPl90kGE2JTdu/VuTUkLagcUn1noDTPRpMivSU7 ymD2SYi/maaWtg5yQAphWNsA+nR2MN6dx7aRKvBuji3DoseYOt8DjH8DnxGdGRxz ZET5ry5VF8gPo5zb4WHuyl+o7WObWZuiHJCZimdcTi7fhyw39NF8Nva+Ez60QMiD cB7qyaAVgHHxWA== -----END CERTIFICATE-----Generated at Mon Dec 15 04:56:03 2025 by rpki-client