This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft File: CWmio5Y1t5dHbx8WM66PJ78ztTM.mft (raw, json) Hash identifier: Ee0RcsZ2MBKawQBwp5REIwKd2aMtkozvTKGaTXShucg= Subject key identifier: F2:03:F4:0A:BF:0A:72:7D:E0:D4:38:4A:CE:28:D0:95:99:1A:9D:86 Authority key identifier: 09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33 Certificate issuer: /CN=0969a2a39635b797476f1f1633ae8f27bf33b533 Certificate serial: 019B3EDA255FAF99E2F7270CB48A378C3655 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft Manifest number: 08F0 Signing time: Sun 21 Dec 2025 03:00:42 +0000 Manifest this update: Sun 21 Dec 2025 03:00:42 +0000 Manifest next update: Mon 22 Dec 2025 03:00:42 +0000 Files and hashes: 1: CWmio5Y1t5dHbx8WM66PJ78ztTM.crl (hash: KryzZ1E87Sp0nQ7vYXGADi/xkS/a0QClNSiDUeCzyck=) 2: NsSedmTQW8OnTTsqv3X8CBZy-xU.roa (hash: WFkKh3bAC4MDDNtqyFfpo7GUVyreugPfu/r7LcM/fN4=) 3: TeB088r0q83Xt0BxDsUFRJ09n_w.roa (hash: G48KXbKrX68pg0VWA7DNE58/xU413WQGSqX5xHVo4rY=) 4: eZ1oRKw2ZmvD0_NWa-kdmh2g-eo.roa (hash: 2jAE9EFeYAI0mBmHLdLHHE90HLI9cIG+7iKSbXwklN4=) 5: l5LQQJ1hscP11M9PGOZJoYipJjA.roa (hash: 1Qefj38Zjj0ROOLLrKtBW86/Osz3b9lr4tBY77Lptdo=) 6: xpGPm8doChOtU-RLJwfI6J2_2pE.roa (hash: Q+zp0nrHHDLtwJs9nHZ2VnA34/82Rp5NA50n42Hv6uk=) 7: zV6ZdwRwY22YxnJ7o5KrLFiOSks.roa (hash: CU+aUbdKG8+gc+SLXpNeHe0gAI7HsoYH7L1e2ZbkQtc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.crl rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:da:25:5f:af:99:e2:f7:27:0c:b4:8a:37:8c:36:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0969a2a39635b797476f1f1633ae8f27bf33b533 Validity Not Before: Dec 21 03:00:42 2025 GMT Not After : Dec 22 03:00:42 2025 GMT Subject: CN=f203f40abf0a727de0d4384ace28d095991a9d86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:45:98:fc:5a:9a:87:7b:cc:43:21:7f:f5:10: 19:6e:51:04:41:11:fa:b8:7f:9e:3a:39:a7:8d:59: ba:6d:d9:49:d1:5b:fe:48:c7:b3:42:ec:9f:2f:59: 37:1c:ab:69:7f:9a:44:16:c2:e8:d6:22:54:be:f5: da:63:a9:6f:f9:d8:60:71:e0:79:da:e0:8c:fd:f9: 53:10:b7:ab:24:f1:72:90:68:ae:2a:dd:3e:70:73: c1:2c:e7:bd:c7:58:e3:bb:73:1a:7e:de:81:65:0e: b9:93:31:fe:05:ab:e6:fc:e9:6b:f1:e0:d6:8e:e9: 22:dc:d0:83:68:78:a5:18:36:d2:de:d9:f9:5f:e3: c7:83:6b:6f:f6:52:73:af:4d:40:a5:c6:32:d1:58: 97:cb:ad:9e:b2:c8:a8:e7:80:94:1c:c7:3a:d2:54: da:8f:41:13:ab:a0:a1:6f:5b:a0:e3:ae:63:46:fa: 80:f3:f2:e7:e4:fd:64:55:27:5e:ed:a2:f5:f2:07: 3b:8b:c2:50:be:3b:85:5f:17:fd:e1:40:f6:b4:0c: b4:9f:f3:b5:8e:4e:76:fd:f8:cf:4c:d3:fa:72:2a: db:53:13:28:29:d6:6c:80:e6:3a:1d:13:63:82:83: 63:d7:46:ce:4a:fb:b8:98:74:59:fb:03:d0:e3:69: 88:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:03:F4:0A:BF:0A:72:7D:E0:D4:38:4A:CE:28:D0:95:99:1A:9D:86 X509v3 Authority Key Identifier: keyid:09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:bd:cd:de:8f:d6:d0:9d:28:15:c7:5e:d0:94:3a:89:82:17: ff:c8:50:ad:38:b3:14:c4:e3:8a:c9:c3:64:08:9f:e0:f3:b7: 09:98:39:91:3e:47:18:07:4b:ad:59:9d:fa:ef:1e:86:cb:2a: b4:67:32:bf:aa:23:d0:ac:4e:8f:14:19:b3:d5:05:72:0c:81: 72:5e:68:5b:cd:ca:47:a8:16:36:46:8f:0d:a9:b3:71:3c:58: 39:0f:23:2b:d0:47:f9:b1:e6:1b:cd:b2:83:3d:4a:55:28:71: 88:c1:ec:45:1c:33:d3:18:55:78:d0:20:d5:f0:87:c3:4e:c0: 5c:ed:21:d3:dd:b4:87:99:6a:c8:d3:4d:4d:02:b0:a8:a1:74: c6:b6:e6:c2:84:de:35:8b:0e:f2:3a:6c:56:a8:e4:a2:11:76: 2b:eb:29:31:4e:5d:30:73:80:7a:cc:64:cc:34:c4:02:42:8a: 31:93:5c:1f:42:c3:55:37:91:e0:a3:a7:83:f3:3b:79:e0:05: 4c:04:f4:6a:0c:3f:39:47:3c:bf:ca:a8:5d:cb:8a:80:16:b0: 9f:ac:bc:f4:f4:96:ac:69:86:2c:f3:97:85:60:56:a5:3e:e8: 9b:5b:67:95:29:10:3a:bc:f8:0a:e2:f8:9a:db:7d:9f:88:76: 52:ec:75:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+2iVfr5ni9ycMtIo3jDZVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5NjlhMmEzOTYzNWI3OTc0NzZmMWYxNjMzYWU4ZjI3YmYz M2I1MzMwHhcNMjUxMjIxMDMwMDQyWhcNMjUxMjIyMDMwMDQyWjAzMTEwLwYDVQQD EyhmMjAzZjQwYWJmMGE3MjdkZTBkNDM4NGFjZTI4ZDA5NTk5MWE5ZDg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0WY/Fqah3vMQyF/9RAZblEEQRH6 uH+eOjmnjVm6bdlJ0Vv+SMezQuyfL1k3HKtpf5pEFsLo1iJUvvXaY6lv+dhgceB5 2uCM/flTELerJPFykGiuKt0+cHPBLOe9x1jju3Maft6BZQ65kzH+Bavm/Olr8eDW juki3NCDaHilGDbS3tn5X+PHg2tv9lJzr01ApcYy0ViXy62essio54CUHMc60lTa j0ETq6Chb1ug465jRvqA8/Ln5P1kVSde7aL18gc7i8JQvjuFXxf94UD2tAy0n/O1 jk52/fjPTNP6cirbUxMoKdZsgOY6HRNjgoNj10bOSvu4mHRZ+wPQ42mIOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPID9Aq/CnJ94NQ4Ss4o0JWZGp2GMB8GA1UdIwQY MBaAFAlpoqOWNbeXR28fFjOujye/M7UzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1dtaW81WTF0NWRIYng4V002NlBKNzh6dFRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC82ZGI0MjctZjdkYy00ZWE5LWFlOTUt NDE0OTA4NzJmYzRlLzEvQ1dtaW81WTF0NWRIYng4V002NlBKNzh6dFRNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC82ZGI0MjctZjdkYy00ZWE5LWFlOTUtNDE0OTA4NzJmYzRl LzEvQ1dtaW81WTF0NWRIYng4V002NlBKNzh6dFRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACb3N3o/W 0J0oFcde0JQ6iYIX/8hQrTizFMTjisnDZAif4PO3CZg5kT5HGAdLrVmd+u8ehssq tGcyv6oj0KxOjxQZs9UFcgyBcl5oW83KR6gWNkaPDamzcTxYOQ8jK9BH+bHmG82y gz1KVShxiMHsRRwz0xhVeNAg1fCHw07AXO0h0920h5lqyNNNTQKwqKF0xrbmwoTe NYsO8jpsVqjkohF2K+spMU5dMHOAesxkzDTEAkKKMZNcH0LDVTeR4KOng/M7eeAF TAT0agw/OUc8v8qoXcuKgBawn6y89PSWrGmGLPOXhWBWpT7om1tnlSkQOrz4CuL4 mtt9n4h2Uux1gA== -----END CERTIFICATE-----Generated at Sun Dec 21 09:34:11 2025 by rpki-client