This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft File: XM3soXHkIseck4wnMqkNSKjFPAY.mft (raw, json) Hash identifier: /XLMA/kDHnzCWx2GDX6u3Oh9r4hQIR5uMs46u0GaBvw= Subject key identifier: CC:35:51:EA:02:FB:31:16:C9:12:0A:B8:18:A6:1F:F3:65:27:92:54 Authority key identifier: 5C:CD:EC:A1:71:E4:22:C7:9C:93:8C:27:32:A9:0D:48:A8:C5:3C:06 Certificate issuer: /CN=5ccdeca171e422c79c938c2732a90d48a8c53c06 Certificate serial: 019B39EB0F81F9D1F64F20B250B60B138708 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft Manifest number: 1795 Signing time: Sat 20 Dec 2025 04:01:04 +0000 Manifest this update: Sat 20 Dec 2025 04:01:04 +0000 Manifest next update: Sun 21 Dec 2025 04:01:04 +0000 Files and hashes: 1: 1ZFRCjoLi_l_VlnDb8o8tJWIa2E.roa (hash: vVgcWoftvDNuMTcgCwdMnGyQwGXGLdFZoBkxUeU+jcg=) 2: Kj2NqGC5bBv1gEhFpzdHWkRY4ZI.roa (hash: 51Tc+Qzr9atasRV0RiCoKJQOUvFVgpnHk2il25DGklM=) 3: LxxlY-veNdEFSuClmgliyHMOZOA.roa (hash: eyCm9s0PQeZ1TTpko+C38z1BbPAWbfE1nA0PWObj7+Q=) 4: NqBM7SejbvGbff9d0C8tNNMd9cE.roa (hash: NsdFpCr4tDnCXl/0XE2a5AdGU138fFNht03h3yMplDQ=) 5: XM3soXHkIseck4wnMqkNSKjFPAY.crl (hash: nM83oWl+GrtFUaUS8/RVi04brqrVsMzXSqWtqDrS7F0=) 6: aa3wYkdpjQEDieV4Tr1D1UlS-yQ.roa (hash: OvNz6w0TsSCTT94cQ7JVYM2YwdlsjARoid2lWLlXj5c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 04:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:eb:0f:81:f9:d1:f6:4f:20:b2:50:b6:0b:13:87:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ccdeca171e422c79c938c2732a90d48a8c53c06 Validity Not Before: Dec 20 04:01:04 2025 GMT Not After : Dec 21 04:01:04 2025 GMT Subject: CN=cc3551ea02fb3116c9120ab818a61ff365279254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:94:26:23:cf:56:19:17:48:d8:0c:6f:00:44: b5:d3:76:6c:d8:1b:4f:0b:33:3b:e9:ce:3c:d8:9f: a1:d5:37:27:18:46:c0:60:59:e9:59:03:a5:15:3a: 6b:a3:2e:73:49:50:8f:52:1b:0e:45:8f:8b:a8:0c: e4:8e:4d:7a:ac:1e:c5:9f:8d:7c:e7:59:21:f0:fc: e6:94:f8:58:0e:35:90:b1:a9:e4:5f:f1:84:77:0b: 11:58:97:1c:9e:d0:e5:e2:de:95:cc:9b:30:16:46: 0b:2d:dc:7b:bb:70:0a:56:5c:81:fe:85:b3:3d:9f: dc:b8:d6:11:2e:57:3a:a7:7e:2c:aa:f0:f6:6d:f5: 57:1b:48:69:92:48:7e:1b:d3:87:06:6f:ba:3f:10: 02:bb:8f:c3:6d:5c:79:c9:d0:2b:cc:7a:2f:59:21: 1a:2d:e5:9b:12:f1:16:64:a6:c6:7d:e7:5b:0d:27: 94:ef:fc:75:ff:97:e7:7b:6f:43:92:7b:7c:2b:ff: b1:fc:d6:ad:4c:9f:a0:ae:97:6c:1d:22:c2:fb:3d: a4:0d:e7:ac:5e:48:41:0c:e1:0b:92:2a:ff:bb:11: 11:a2:f0:79:4f:81:77:d5:e6:2d:11:f6:ba:a4:62: fa:15:62:5b:78:cd:83:b3:d3:d0:61:f2:8e:d6:29: 9d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:35:51:EA:02:FB:31:16:C9:12:0A:B8:18:A6:1F:F3:65:27:92:54 X509v3 Authority Key Identifier: keyid:5C:CD:EC:A1:71:E4:22:C7:9C:93:8C:27:32:A9:0D:48:A8:C5:3C:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:92:0c:cd:91:97:8c:ed:9f:21:4f:fa:84:51:05:84:de:8a: ac:64:a2:e5:3b:06:ee:08:1f:b4:72:fb:dd:a8:92:a2:d2:b7: b2:c0:10:f7:52:61:3c:e6:33:7b:cd:44:29:a0:6f:99:a5:66: 70:83:62:c5:70:90:05:39:55:90:a7:da:4e:6a:e9:2f:4d:f4: ad:cc:b1:78:40:b8:5d:99:b5:0f:fd:e8:55:8d:7f:80:8b:9a: e6:b8:17:85:8a:c9:b3:53:b3:96:a5:df:d8:54:de:ef:62:9b: 29:e9:af:90:cb:11:bd:96:6d:bd:c6:ad:a7:55:99:57:97:fe: c5:e5:cb:92:bf:4b:84:07:a2:e4:04:19:0b:4c:18:0d:33:a2: 84:25:ac:be:84:29:a5:49:3f:fa:00:bc:e7:49:fd:8f:5c:fd: f2:2e:43:0e:4a:6f:31:92:bf:67:8d:6b:ed:4b:1a:84:ac:d5: 86:99:20:5f:a5:9f:a8:ec:7e:44:ff:42:d5:ee:5b:92:a1:88: fc:14:07:06:14:6d:31:fd:d5:f2:11:bd:0a:4b:95:85:07:18: e1:08:1d:5c:0f:5d:e7:d5:d9:f6:1b:cb:e2:87:c7:80:ba:08: 3c:a4:66:41:d2:9a:42:d7:e1:c5:4b:37:dd:99:87:22:39:93: 79:1d:dc:40 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs56w+B+dH2TyCyULYLE4cIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjY2RlY2ExNzFlNDIyYzc5YzkzOGMyNzMyYTkwZDQ4YThj NTNjMDYwHhcNMjUxMjIwMDQwMTA0WhcNMjUxMjIxMDQwMTA0WjAzMTEwLwYDVQQD EyhjYzM1NTFlYTAyZmIzMTE2YzkxMjBhYjgxOGE2MWZmMzY1Mjc5MjU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZQmI89WGRdI2AxvAES103Zs2BtP CzM76c482J+h1TcnGEbAYFnpWQOlFTproy5zSVCPUhsORY+LqAzkjk16rB7Fn418 51kh8PzmlPhYDjWQsankX/GEdwsRWJccntDl4t6VzJswFkYLLdx7u3AKVlyB/oWz PZ/cuNYRLlc6p34sqvD2bfVXG0hpkkh+G9OHBm+6PxACu4/DbVx5ydArzHovWSEa LeWbEvEWZKbGfedbDSeU7/x1/5fne29Dknt8K/+x/NatTJ+grpdsHSLC+z2kDees XkhBDOELkir/uxERovB5T4F31eYtEfa6pGL6FWJbeM2Ds9PQYfKO1imdlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMw1UeoC+zEWyRIKuBimH/NlJ5JUMB8GA1UdIwQY MBaAFFzN7KFx5CLHnJOMJzKpDUioxTwGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWE0zc29YSGtJc2VjazR3bk1xa05TS2pGUEFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9iOGY1ZTYtYzk1MS00ZGRiLWI0ZjUt YTg4MWVjODIyOGI1LzEvWE0zc29YSGtJc2VjazR3bk1xa05TS2pGUEFZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi9iOGY1ZTYtYzk1MS00ZGRiLWI0ZjUtYTg4MWVjODIyOGI1 LzEvWE0zc29YSGtJc2VjazR3bk1xa05TS2pGUEFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAipIMzZGX jO2fIU/6hFEFhN6KrGSi5TsG7ggftHL73aiSotK3ssAQ91JhPOYze81EKaBvmaVm cINixXCQBTlVkKfaTmrpL030rcyxeEC4XZm1D/3oVY1/gIua5rgXhYrJs1OzlqXf 2FTe72KbKemvkMsRvZZtvcatp1WZV5f+xeXLkr9LhAei5AQZC0wYDTOihCWsvoQp pUk/+gC850n9j1z98i5DDkpvMZK/Z41r7UsahKzVhpkgX6WfqOx+RP9C1e5bkqGI /BQHBhRtMf3V8hG9CkuVhQcY4QgdXA9d59XZ9hvL4ofHgLoIPKRmQdKaQtfhxUs3 3ZmHIjmTeR3cQA== -----END CERTIFICATE-----Generated at Sat Dec 20 12:08:19 2025 by rpki-client