This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.mft File: CWbgXRUnUN-q3l-veRutOR3G0tQ.mft (raw, json) Hash identifier: gDNTpe4BPQfb6bsli3pPbfzdHxcS1TI1MiLYeso73nM= Subject key identifier: 3B:5A:B6:7B:D7:79:93:E8:48:DB:7D:3F:C0:81:BE:27:4A:B7:69:86 Authority key identifier: 09:66:E0:5D:15:27:50:DF:AA:DE:5F:AF:79:1B:AD:39:1D:C6:D2:D4 Certificate issuer: /CN=0966e05d152750dfaade5faf791bad391dc6d2d4 Certificate serial: 019B3D5A47F73589D77B3AA61A270DD35993 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWbgXRUnUN-q3l-veRutOR3G0tQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.mft Manifest number: 0FCA Signing time: Sat 20 Dec 2025 20:01:25 +0000 Manifest this update: Sat 20 Dec 2025 20:01:25 +0000 Manifest next update: Sun 21 Dec 2025 20:01:25 +0000 Files and hashes: 1: 5bzk29WC2HSF9C0WZb2ngqPQ56o.roa (hash: fHgyyYyWXqEUztNgt56ZVo1FPxKD7CyfYBjgqkUt9TI=) 2: CWbgXRUnUN-q3l-veRutOR3G0tQ.crl (hash: 1BgIxjOtM++/U8DdWTOLKNUVDbnsLXeHgMIGviIoI4E=) 3: VYOb-2PB3WKsCUYPT2j-nf80wMs.roa (hash: YpnMPKkA2P+LHKT+FLRfK5zKYPPPwWgoJKnxE9kTcx8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.mft rsync://rpki.ripe.net/repository/DEFAULT/CWbgXRUnUN-q3l-veRutOR3G0tQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:5a:47:f7:35:89:d7:7b:3a:a6:1a:27:0d:d3:59:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0966e05d152750dfaade5faf791bad391dc6d2d4 Validity Not Before: Dec 20 20:01:25 2025 GMT Not After : Dec 21 20:01:25 2025 GMT Subject: CN=3b5ab67bd77993e848db7d3fc081be274ab76986 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:4c:30:eb:f1:e2:54:78:24:89:6d:c6:12:6f: 95:97:97:70:36:2e:3c:2f:ae:10:29:e7:77:f9:b1: 65:89:d4:45:3c:d3:f7:d2:00:2f:b9:0f:ac:b7:64: f0:46:30:ae:3e:d1:5b:08:b1:34:5a:c8:51:f4:5e: e5:7d:c3:8c:96:c1:47:48:64:9f:0c:50:b1:09:df: 10:25:b4:8f:db:31:ca:58:ec:6e:ac:e3:cb:1a:f6: 22:44:72:89:c8:ad:72:d6:78:b5:e3:48:94:49:18: 17:a8:ca:c3:f9:5d:58:ab:63:22:a1:0e:f4:e1:53: 22:5d:d2:12:cb:69:78:f1:10:b1:13:54:60:0f:f1: 04:4f:8f:10:ce:3e:bc:3c:df:11:3e:a4:01:ef:b1: 97:3a:0f:e6:13:ef:96:98:44:07:cb:4d:97:1a:63: d6:88:fb:4f:40:1d:4a:f1:4f:57:77:2c:70:4a:e3: 18:07:e3:3c:f9:87:e0:bc:0a:8d:e2:84:9e:51:ad: 6f:90:58:12:87:1b:e5:53:cb:0d:68:d2:7d:fe:4f: 1f:6b:4c:ca:f1:38:b8:c4:25:7b:db:f4:2b:e5:4c: 68:7a:3e:8c:11:f9:c5:67:10:34:98:53:1a:5b:94: 2e:19:6c:43:d3:4a:92:52:5d:cc:92:26:31:e3:c6: 65:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:5A:B6:7B:D7:79:93:E8:48:DB:7D:3F:C0:81:BE:27:4A:B7:69:86 X509v3 Authority Key Identifier: keyid:09:66:E0:5D:15:27:50:DF:AA:DE:5F:AF:79:1B:AD:39:1D:C6:D2:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWbgXRUnUN-q3l-veRutOR3G0tQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:53:8d:7a:96:8b:6f:82:a2:cb:25:ee:19:d7:89:49:60:3f: 75:de:73:5b:ae:55:cb:b2:da:65:20:5c:15:97:93:28:f8:f8: c1:81:61:59:db:10:c8:42:34:b8:47:48:da:c4:d0:e6:84:c6: dd:41:01:e5:57:8f:be:2f:0f:d1:d1:c7:e7:f3:7b:ff:61:0d: ce:d3:16:ab:81:90:ba:27:5d:6b:49:05:85:42:90:23:01:07: 5e:4f:a4:87:df:41:a4:13:40:52:fc:f1:bd:4a:ca:64:02:2c: 91:a5:dd:40:a7:18:3e:59:b4:e6:78:6e:72:69:19:59:84:8f: a4:b4:ed:1c:6a:f2:06:47:44:e9:bd:00:4e:32:91:99:8e:ac: a7:e4:62:83:ef:76:c1:08:ce:a0:3d:a0:e9:93:45:84:0a:0f: ee:95:83:67:36:08:ad:88:b8:b1:a5:bf:97:74:ec:19:a1:62: cf:40:0b:f9:ab:f6:dd:dc:4f:db:dc:aa:ca:d1:2f:2f:9d:97: 31:7b:1a:48:e4:7e:bf:29:8c:5e:32:a6:62:d5:94:e3:85:88: 59:6d:ae:e3:38:47:ed:11:5f:23:c8:f7:d6:b7:dc:61:4d:6f: 32:45:f1:77:26:22:3e:5f:e4:65:99:ad:e8:95:ac:a8:c7:38: 45:c7:2c:1d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9Wkf3NYnXezqmGicN01mTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5NjZlMDVkMTUyNzUwZGZhYWRlNWZhZjc5MWJhZDM5MWRj NmQyZDQwHhcNMjUxMjIwMjAwMTI1WhcNMjUxMjIxMjAwMTI1WjAzMTEwLwYDVQQD EygzYjVhYjY3YmQ3Nzk5M2U4NDhkYjdkM2ZjMDgxYmUyNzRhYjc2OTg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAokww6/HiVHgkiW3GEm+Vl5dwNi48 L64QKed3+bFlidRFPNP30gAvuQ+st2TwRjCuPtFbCLE0WshR9F7lfcOMlsFHSGSf DFCxCd8QJbSP2zHKWOxurOPLGvYiRHKJyK1y1ni140iUSRgXqMrD+V1Yq2MioQ70 4VMiXdISy2l48RCxE1RgD/EET48Qzj68PN8RPqQB77GXOg/mE++WmEQHy02XGmPW iPtPQB1K8U9XdyxwSuMYB+M8+YfgvAqN4oSeUa1vkFgShxvlU8sNaNJ9/k8fa0zK 8Ti4xCV72/Qr5Uxoej6MEfnFZxA0mFMaW5QuGWxD00qSUl3MkiYx48ZltQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDtatnvXeZPoSNt9P8CBvidKt2mGMB8GA1UdIwQY MBaAFAlm4F0VJ1Dfqt5fr3kbrTkdxtLUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1diZ1hSVW5VTi1xM2wtdmVSdXRPUjNHMHRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC80ZTFiYzgtZjgxMC00MTgyLWE2ZTMt NzIxYmI0ZmM4YzE2LzEvQ1diZ1hSVW5VTi1xM2wtdmVSdXRPUjNHMHRRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC80ZTFiYzgtZjgxMC00MTgyLWE2ZTMtNzIxYmI0ZmM4YzE2 LzEvQ1diZ1hSVW5VTi1xM2wtdmVSdXRPUjNHMHRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbVONepaL b4KiyyXuGdeJSWA/dd5zW65Vy7LaZSBcFZeTKPj4wYFhWdsQyEI0uEdI2sTQ5oTG 3UEB5VePvi8P0dHH5/N7/2ENztMWq4GQuidda0kFhUKQIwEHXk+kh99BpBNAUvzx vUrKZAIskaXdQKcYPlm05nhucmkZWYSPpLTtHGryBkdE6b0ATjKRmY6sp+Rig+92 wQjOoD2g6ZNFhAoP7pWDZzYIrYi4saW/l3TsGaFiz0AL+av23dxP29yqytEvL52X MXsaSOR+vymMXjKmYtWU44WIWW2u4zhH7RFfI8j31rfcYU1vMkXxdyYiPl/kZZmt 6JWsqMc4RccsHQ== -----END CERTIFICATE-----Generated at Sat Dec 20 21:13:37 2025 by rpki-client