This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft File: mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft (raw, json) Hash identifier: Ad4WB/YKyBNF1XBOrbNyzdT2OW1/VgoebU4MYg7S5oc= Subject key identifier: 01:6F:ED:3C:FF:87:D9:8C:C4:46:0A:AF:3E:A4:C8:C0:3C:D2:F8:B9 Authority key identifier: 99:6F:90:3F:91:A8:5A:60:C5:46:EE:11:41:34:8C:C3:C8:03:69:27 Certificate issuer: /CN=996f903f91a85a60c546ee1141348cc3c8036927 Certificate serial: 019B2475C23B24B2071B70BB1E4D24B779AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mW-QP5GoWmDFRu4RQTSMw8gDaSc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft Manifest number: 140E Signing time: Tue 16 Dec 2025 00:00:55 +0000 Manifest this update: Tue 16 Dec 2025 00:00:55 +0000 Manifest next update: Wed 17 Dec 2025 00:00:55 +0000 Files and hashes: 1: mW-QP5GoWmDFRu4RQTSMw8gDaSc.crl (hash: mYpF+Gtc054gL7SCRtppr2F6lR7ojygwKJgdvFZROF4=) 2: oGPLcgnT5_jMQFeXtQh3bXaXriM.roa (hash: QUvCaj08Q2TK+WnTDqsu5pyPq9XzMOcObz9WAotvcYU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft rsync://rpki.ripe.net/repository/DEFAULT/mW-QP5GoWmDFRu4RQTSMw8gDaSc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:24:75:c2:3b:24:b2:07:1b:70:bb:1e:4d:24:b7:79:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=996f903f91a85a60c546ee1141348cc3c8036927 Validity Not Before: Dec 16 00:00:55 2025 GMT Not After : Dec 17 00:00:55 2025 GMT Subject: CN=016fed3cff87d98cc4460aaf3ea4c8c03cd2f8b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:36:35:f2:86:91:8d:3c:67:f3:9b:f2:b1:6a: ff:f5:64:d1:d5:70:8b:80:2c:8a:ef:11:b8:51:11: c4:ed:ec:d5:9b:11:1c:2a:bf:b7:db:86:11:6a:21: f6:58:af:be:c8:5f:11:83:01:b5:d3:04:23:49:55: bd:25:f9:05:20:2f:1e:94:e5:f6:27:4c:19:5e:0f: 5d:16:ad:2d:c1:bb:9b:3a:69:e7:98:ec:ef:11:29: 72:d2:38:0f:82:b1:de:07:fe:d3:f4:f8:bb:6c:57: db:2c:6f:86:07:22:55:8d:72:b5:26:7f:8f:93:34: c4:28:9b:41:23:0a:bf:5f:31:b8:85:56:aa:a4:1d: 1f:87:7a:cd:14:28:c8:cb:1e:42:1e:68:4b:a5:12: 5b:bf:06:3e:ac:1f:da:78:45:d6:09:22:4a:77:3d: 32:95:8f:f6:f4:9d:27:46:b7:2d:4e:56:d0:cb:4c: df:1b:c9:18:5d:7f:59:21:40:bc:bc:35:5b:35:fe: 6d:b5:5f:31:10:02:3b:a8:0a:2e:8a:b6:01:e9:ec: 2d:5f:70:4f:54:bf:f9:a7:2c:6c:30:c4:56:7a:29: 36:f2:f7:fd:88:2a:db:cd:70:4a:36:f4:91:dc:b7: 9d:c8:ab:33:9f:1e:e4:74:1f:0c:82:27:22:85:d9: 4e:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:6F:ED:3C:FF:87:D9:8C:C4:46:0A:AF:3E:A4:C8:C0:3C:D2:F8:B9 X509v3 Authority Key Identifier: keyid:99:6F:90:3F:91:A8:5A:60:C5:46:EE:11:41:34:8C:C3:C8:03:69:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mW-QP5GoWmDFRu4RQTSMw8gDaSc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:fd:bc:2f:dc:76:90:f4:49:02:4d:93:1e:41:b0:88:75:96: 52:53:8e:57:7b:58:bc:9c:ae:1f:a6:87:22:d0:6e:34:30:cf: 08:0f:5c:60:71:b8:57:81:8d:a1:84:51:53:ce:fa:bf:58:51: d4:8e:a8:b7:47:25:e7:92:9e:23:6e:2a:40:05:44:c5:ba:14: 0e:07:cf:3b:2b:a8:90:d1:0c:1c:53:a9:ee:a3:25:8d:12:0b: ed:cc:71:ce:03:a4:a5:17:99:70:d0:bb:f2:3a:0d:fd:8e:a3: 69:ec:c5:41:51:c1:57:0e:8e:bb:99:be:37:a9:70:d1:f4:05: 06:d8:3a:df:e4:2f:8c:12:df:32:8c:63:22:c5:0b:f1:4d:6f: 96:01:93:24:95:2b:de:01:f9:04:be:c0:ed:f2:24:ff:31:0a: 41:74:76:15:16:b1:49:54:46:a4:8a:e7:e3:64:40:a6:9a:92: 62:18:2b:ad:31:50:37:06:98:b7:4b:1b:4d:c1:98:fa:d6:0b: 1e:6b:c5:3b:c6:ea:c0:61:e7:07:34:42:7a:8d:38:af:90:15: 72:bf:a2:bc:61:fd:55:62:7d:9c:d4:3b:9f:61:0e:b0:73:4a: a5:2e:08:18:28:1a:56:ec:6c:74:b6:cd:c1:37:c1:b8:15:c0: 23:fa:4c:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZskdcI7JLIHG3C7Hk0kt3muMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5NmY5MDNmOTFhODVhNjBjNTQ2ZWUxMTQxMzQ4Y2MzYzgw MzY5MjcwHhcNMjUxMjE2MDAwMDU1WhcNMjUxMjE3MDAwMDU1WjAzMTEwLwYDVQQD EygwMTZmZWQzY2ZmODdkOThjYzQ0NjBhYWYzZWE0YzhjMDNjZDJmOGI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApTY18oaRjTxn85vysWr/9WTR1XCL gCyK7xG4URHE7ezVmxEcKr+324YRaiH2WK++yF8RgwG10wQjSVW9JfkFIC8elOX2 J0wZXg9dFq0twbubOmnnmOzvESly0jgPgrHeB/7T9Pi7bFfbLG+GByJVjXK1Jn+P kzTEKJtBIwq/XzG4hVaqpB0fh3rNFCjIyx5CHmhLpRJbvwY+rB/aeEXWCSJKdz0y lY/29J0nRrctTlbQy0zfG8kYXX9ZIUC8vDVbNf5ttV8xEAI7qAouirYB6ewtX3BP VL/5pyxsMMRWeik28vf9iCrbzXBKNvSR3LedyKsznx7kdB8MgicihdlOiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAFv7Tz/h9mMxEYKrz6kyMA80vi5MB8GA1UdIwQY MBaAFJlvkD+RqFpgxUbuEUE0jMPIA2knMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVctUVA1R29XbURGUnU0UlFUU013OGdEYVNjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS9hMjAxMDEtMWM5Zi00NGM1LTgwNzct NTE5MGY3ODY5YTdmLzEvbVctUVA1R29XbURGUnU0UlFUU013OGdEYVNjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS9hMjAxMDEtMWM5Zi00NGM1LTgwNzctNTE5MGY3ODY5YTdm LzEvbVctUVA1R29XbURGUnU0UlFUU013OGdEYVNjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL/28L9x2 kPRJAk2THkGwiHWWUlOOV3tYvJyuH6aHItBuNDDPCA9cYHG4V4GNoYRRU876v1hR 1I6ot0cl55KeI24qQAVExboUDgfPOyuokNEMHFOp7qMljRIL7cxxzgOkpReZcNC7 8joN/Y6jaezFQVHBVw6Ou5m+N6lw0fQFBtg63+QvjBLfMoxjIsUL8U1vlgGTJJUr 3gH5BL7A7fIk/zEKQXR2FRaxSVRGpIrn42RAppqSYhgrrTFQNwaYt0sbTcGY+tYL HmvFO8bqwGHnBzRCeo04r5AVcr+ivGH9VWJ9nNQ7n2EOsHNKpS4IGCgaVuxsdLbN wTfBuBXAI/pMnA== -----END CERTIFICATE-----Generated at Tue Dec 16 06:03:30 2025 by rpki-client