This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft File: XwImpwTPYg6yAA8n56kZznMJkb4.mft (raw, json) Hash identifier: qo7pZTu2bigWYXo83wZ/RHB9jObvY5Hhz/IC/XzkAB0= Subject key identifier: 2C:87:9C:C1:41:81:D2:07:B9:DB:79:F9:DF:92:2E:87:47:BD:A2:F8 Authority key identifier: 5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE Certificate issuer: /CN=5f0226a704cf620eb2000f27e7a919ce730991be Certificate serial: 019B22F520764628F044F170B35EC3FDB597 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft Manifest number: 0FD9 Signing time: Mon 15 Dec 2025 17:00:48 +0000 Manifest this update: Mon 15 Dec 2025 17:00:48 +0000 Manifest next update: Tue 16 Dec 2025 17:00:48 +0000 Files and hashes: 1: P2NRYwvD64-ChL8WHsL3n2VNc0o.roa (hash: ieevRAfzDccOVGuN3ZGz3jBO2k67pRtiKtsN5CR5hf4=) 2: WePWXi4BVJvCbK70G_Bl8LvCy1A.roa (hash: KcxOlT86bPrqOuZYUTgExqyOPNUmMSnB0pr0K4kluRk=) 3: XwImpwTPYg6yAA8n56kZznMJkb4.crl (hash: SeWd4h/f7fUM6k4R/9OaKJiPJwteZQcXH2N1N5dKL1I=) 4: ZN7LHZSqu6VYidqfpIPOfCxL2L4.roa (hash: HOkUkg1LrwSaHvSseUfJQzAJzpgcTNuaZCYPqCnldN0=) 5: fm5A4Lmh3Dyoqm8phCUbdJ-SJ50.roa (hash: y1l9jzGOcVZ0GENozcALgbMdp6ZfPx8sRn42vZfb0eg=) 6: mOQsXh6W-nguYweUEP-GggtQ8co.roa (hash: BRX6qGv8sEq7HbLRmf+hKda82RdBa8GI6j+263A+qA8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 17:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:22:f5:20:76:46:28:f0:44:f1:70:b3:5e:c3:fd:b5:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f0226a704cf620eb2000f27e7a919ce730991be Validity Not Before: Dec 15 17:00:48 2025 GMT Not After : Dec 16 17:00:48 2025 GMT Subject: CN=2c879cc14181d207b9db79f9df922e8747bda2f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ca:3d:30:0e:d2:6a:55:37:f0:66:93:4e:92: 7d:b5:ce:82:ee:7f:90:09:32:6f:62:79:58:81:4a: 8b:2d:30:2b:b9:23:49:a5:66:c6:66:0e:95:1b:e9: 7a:62:df:4f:c8:8d:49:35:fb:6b:0b:7a:53:a4:7f: 33:0e:45:ad:a5:72:56:f9:23:e2:b6:71:d5:0f:0e: e8:f0:27:79:08:36:59:dd:e8:44:93:d4:9e:1a:10: 3a:83:22:e9:6b:6f:c2:ce:7d:44:e2:79:ea:bf:e3: 36:ca:c8:8d:a8:9b:54:f0:44:c8:a1:b1:8c:26:b8: b9:ce:28:d1:a8:bb:4d:0b:32:5d:f2:b9:74:cc:2c: 6e:32:2a:68:d4:b1:7e:64:65:71:8e:d1:b1:3f:e6: b4:1c:90:8b:22:85:65:0a:d3:0b:89:ed:ac:f6:2d: 81:ed:8a:3d:1b:23:c2:c5:3b:34:6d:7b:54:7a:8b: 15:37:c4:ae:e4:d9:f7:f7:f9:6b:4e:7e:53:0f:0f: a7:ba:e9:0f:d7:0f:9c:83:8f:26:a0:ad:8b:aa:9e: 07:b0:39:0a:98:03:ef:de:47:a5:38:8b:27:6a:e9: 00:3a:b3:d4:08:84:10:2d:4d:af:5d:1e:64:a5:a5: 25:3c:a8:ed:08:a5:8d:19:4d:e9:92:7f:3b:89:f6: 02:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:87:9C:C1:41:81:D2:07:B9:DB:79:F9:DF:92:2E:87:47:BD:A2:F8 X509v3 Authority Key Identifier: keyid:5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:11:ee:ab:45:9c:49:46:71:cb:80:50:f2:51:19:72:25:cf: 85:ff:9b:99:6e:2e:60:24:ff:e3:86:7a:75:e1:92:d8:8c:ee: 88:7d:21:fe:c3:07:81:41:76:9e:dd:42:a2:b8:46:b6:b8:fc: 5b:11:67:2b:2a:ae:68:34:0e:af:01:d3:af:d0:fe:09:7a:b8: d0:43:f1:4c:e1:e1:dc:5a:ac:c1:fc:a6:dc:7d:78:dd:e6:f6: 77:cb:06:8a:29:ba:7f:6a:3b:f0:74:1e:6a:60:ee:a9:9c:87: 1a:6f:76:f2:cb:47:cd:63:91:df:c6:c0:03:dc:95:36:02:82: b1:58:e9:e8:dc:2c:d1:d6:48:77:34:78:52:14:b7:fc:ad:22: 73:0c:1c:7a:26:3e:76:bc:d2:2f:65:85:43:41:1f:86:50:44: bd:06:fe:eb:50:11:9f:a7:86:0b:17:46:58:39:db:07:06:d7: fe:17:1d:24:68:40:4b:f8:9c:fa:61:ea:92:0b:36:72:49:3e: f3:a7:95:08:36:6e:96:32:f3:9c:47:ea:a7:90:11:45:4d:ac: 2a:18:e6:f8:10:a4:ac:03:ee:b5:9f:3e:8d:87:42:4b:27:d1: c4:7a:8b:ad:2e:2d:86:76:49:51:8c:23:c5:d2:33:df:1e:e6: 5a:f5:20:98 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsi9SB2RijwRPFws17D/bWXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmMDIyNmE3MDRjZjYyMGViMjAwMGYyN2U3YTkxOWNlNzMw OTkxYmUwHhcNMjUxMjE1MTcwMDQ4WhcNMjUxMjE2MTcwMDQ4WjAzMTEwLwYDVQQD EygyYzg3OWNjMTQxODFkMjA3YjlkYjc5ZjlkZjkyMmU4NzQ3YmRhMmY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmso9MA7SalU38GaTTpJ9tc6C7n+Q CTJvYnlYgUqLLTAruSNJpWbGZg6VG+l6Yt9PyI1JNftrC3pTpH8zDkWtpXJW+SPi tnHVDw7o8Cd5CDZZ3ehEk9SeGhA6gyLpa2/Czn1E4nnqv+M2ysiNqJtU8ETIobGM Jri5zijRqLtNCzJd8rl0zCxuMipo1LF+ZGVxjtGxP+a0HJCLIoVlCtMLie2s9i2B 7Yo9GyPCxTs0bXtUeosVN8Su5Nn39/lrTn5TDw+nuukP1w+cg48moK2Lqp4HsDkK mAPv3kelOIsnaukAOrPUCIQQLU2vXR5kpaUlPKjtCKWNGU3pkn87ifYCwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCyHnMFBgdIHudt5+d+SLodHvaL4MB8GA1UdIwQY MBaAFF8CJqcEz2IOsgAPJ+epGc5zCZG+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHdJbXB3VFBZZzZ5QUE4bjU2a1p6bk1Ka2I0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC82M2VmYjgtYmYyNC00OGMyLThjNTAt NzVkOWNlNWI4ZDljLzEvWHdJbXB3VFBZZzZ5QUE4bjU2a1p6bk1Ka2I0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC82M2VmYjgtYmYyNC00OGMyLThjNTAtNzVkOWNlNWI4ZDlj LzEvWHdJbXB3VFBZZzZ5QUE4bjU2a1p6bk1Ka2I0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVBHuq0Wc SUZxy4BQ8lEZciXPhf+bmW4uYCT/44Z6deGS2IzuiH0h/sMHgUF2nt1CorhGtrj8 WxFnKyquaDQOrwHTr9D+CXq40EPxTOHh3Fqswfym3H143eb2d8sGiim6f2o78HQe amDuqZyHGm928stHzWOR38bAA9yVNgKCsVjp6Nws0dZIdzR4UhS3/K0icwwceiY+ drzSL2WFQ0EfhlBEvQb+61ARn6eGCxdGWDnbBwbX/hcdJGhAS/ic+mHqkgs2ckk+ 86eVCDZuljLznEfqp5ARRU2sKhjm+BCkrAPutZ8+jYdCSyfRxHqLrS4thnZJUYwj xdIz3x7mWvUgmA== -----END CERTIFICATE-----Generated at Tue Dec 16 02:20:53 2025 by rpki-client