This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.mft File: xw2_VVhwtVas-rQox06s7lb3siI.mft (raw, json) Hash identifier: tW8ICfWTkKi5YXCZR2w3LiaztbFYgDh9YC462MuLpGQ= Subject key identifier: 5B:1B:58:7D:F3:D1:E3:2E:60:79:4F:92:60:61:6F:66:23:FD:0F:7F Authority key identifier: C7:0D:BF:55:58:70:B5:56:AC:FA:B4:28:C7:4E:AC:EE:56:F7:B2:22 Certificate issuer: /CN=c70dbf555870b556acfab428c74eacee56f7b222 Certificate serial: 019B4FCEC0C4C8C8C3FF51D8ED7A1FB7077D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xw2_VVhwtVas-rQox06s7lb3siI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.mft Manifest number: 1793 Signing time: Wed 24 Dec 2025 10:01:48 +0000 Manifest this update: Wed 24 Dec 2025 10:01:48 +0000 Manifest next update: Thu 25 Dec 2025 10:01:48 +0000 Files and hashes: 1: BIAxUnW_hCjMRjCzGvcDZv9IbZI.roa (hash: lpTkJGPX7x3xgf0arKc8U2BOXhSzOpi1sRj7xRP++p4=) 2: xw2_VVhwtVas-rQox06s7lb3siI.crl (hash: YCjhp+s58WAkQtlK6k5e8UorJZP7r89qrx2rghMLTlk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.crl rsync://rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.mft rsync://rpki.ripe.net/repository/DEFAULT/xw2_VVhwtVas-rQox06s7lb3siI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 09:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4f:ce:c0:c4:c8:c8:c3:ff:51:d8:ed:7a:1f:b7:07:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c70dbf555870b556acfab428c74eacee56f7b222 Validity Not Before: Dec 24 10:01:48 2025 GMT Not After : Dec 25 10:01:48 2025 GMT Subject: CN=5b1b587df3d1e32e60794f9260616f6623fd0f7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:14:2e:c4:64:56:34:93:a7:f1:b7:3a:42:e6: a3:7c:85:f5:45:f2:e4:b7:ce:bb:72:49:60:7f:c3: 3d:6c:c1:05:c3:a4:52:6b:46:9d:6a:e3:7d:5a:7c: e6:93:d7:a8:55:3f:31:37:7d:b3:8d:67:14:9c:14: a1:18:f4:88:c7:c4:45:10:52:a1:59:ca:55:51:dc: 65:9a:af:e2:70:5d:d4:1e:f7:36:9e:84:55:20:7d: 2e:43:68:95:64:8e:45:9e:f9:4d:5f:8f:3c:79:3b: 58:62:8c:14:0e:8d:e2:81:f7:5d:89:69:6c:d5:0e: 07:bd:cb:56:ff:1b:d1:50:69:41:4f:f8:4e:41:76: 48:71:b2:e9:c0:76:2d:4a:f0:ff:82:b0:3b:cf:b7: 1b:87:a4:5a:7f:16:da:71:4e:b4:36:f7:5e:7c:19: 74:4f:12:cb:83:a0:e6:e9:40:e1:04:fa:91:48:03: 41:01:00:6c:37:0d:7a:b2:1e:7e:3c:6c:ed:d5:ef: d7:9c:bf:9d:bf:01:d3:69:2d:63:28:46:15:16:b0: dc:63:73:5b:68:ab:f0:46:db:f3:f6:0b:69:1d:bd: dc:ea:e6:b2:24:e4:85:9e:40:0b:3a:2c:4a:5f:8a: 6b:c6:1e:7a:cb:27:ee:15:c6:6b:d5:c6:c4:18:43: 83:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:1B:58:7D:F3:D1:E3:2E:60:79:4F:92:60:61:6F:66:23:FD:0F:7F X509v3 Authority Key Identifier: keyid:C7:0D:BF:55:58:70:B5:56:AC:FA:B4:28:C7:4E:AC:EE:56:F7:B2:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xw2_VVhwtVas-rQox06s7lb3siI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:13:a7:bf:ea:12:24:ef:3a:15:00:d8:40:8d:cf:a8:12:5e: 87:53:c1:e0:a0:1e:37:ba:30:53:30:8e:47:e6:e3:f6:3d:b3: 5d:9c:82:fc:30:09:84:b3:0d:44:5a:6f:a7:c6:d3:e1:ec:94: f0:81:34:f5:b7:45:22:43:60:cc:28:71:ec:fd:24:e1:20:c5: e1:cf:77:e1:b3:66:1f:8b:3c:46:a3:4d:95:40:11:9f:74:37: 96:d2:1d:c7:46:3c:2b:68:27:f6:f4:eb:00:42:43:da:13:b1: 4d:84:70:ae:03:14:07:fa:3d:d7:6f:d5:9b:31:0e:6f:c5:82: 0f:ff:44:ba:8d:d5:c8:9e:dc:39:93:95:66:a1:9d:f5:38:cb: cb:17:c9:62:42:99:be:f7:a3:35:18:bd:78:32:ac:18:d1:3a: 3e:ee:b5:eb:01:7e:c9:b3:f6:71:04:0f:19:d9:14:00:a5:e7: c9:d5:f8:d1:b9:f4:01:89:4e:5c:0b:39:63:d9:56:fd:a6:29: a9:35:95:6c:34:e6:e3:3c:48:c2:c2:e1:cc:20:c7:f7:c8:4b: 56:d0:d7:00:64:2e:f3:f2:74:47:16:8f:98:c4:86:79:89:8e: fd:2b:8c:fb:bd:9c:fe:29:3d:48:de:1d:88:12:e9:66:38:d1: 8c:0a:d9:6f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtPzsDEyMjD/1HY7Xoftwd9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3MGRiZjU1NTg3MGI1NTZhY2ZhYjQyOGM3NGVhY2VlNTZm N2IyMjIwHhcNMjUxMjI0MTAwMTQ4WhcNMjUxMjI1MTAwMTQ4WjAzMTEwLwYDVQQD Eyg1YjFiNTg3ZGYzZDFlMzJlNjA3OTRmOTI2MDYxNmY2NjIzZmQwZjdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsRQuxGRWNJOn8bc6QuajfIX1RfLk t867cklgf8M9bMEFw6RSa0adauN9Wnzmk9eoVT8xN32zjWcUnBShGPSIx8RFEFKh WcpVUdxlmq/icF3UHvc2noRVIH0uQ2iVZI5FnvlNX488eTtYYowUDo3igfddiWls 1Q4HvctW/xvRUGlBT/hOQXZIcbLpwHYtSvD/grA7z7cbh6RafxbacU60NvdefBl0 TxLLg6Dm6UDhBPqRSANBAQBsNw16sh5+PGzt1e/XnL+dvwHTaS1jKEYVFrDcY3Nb aKvwRtvz9gtpHb3c6uayJOSFnkALOixKX4prxh56yyfuFcZr1cbEGEODTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFsbWH3z0eMuYHlPkmBhb2Yj/Q9/MB8GA1UdIwQY MBaAFMcNv1VYcLVWrPq0KMdOrO5W97IiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveHcyX1ZWaHd0VmFzLXJRb3gwNnM3bGIzc2lJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS81ODJiN2YtNjBjMy00MTFhLTk2MjUt MzJkYTFkYjRiMjAzLzEveHcyX1ZWaHd0VmFzLXJRb3gwNnM3bGIzc2lJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS81ODJiN2YtNjBjMy00MTFhLTk2MjUtMzJkYTFkYjRiMjAz LzEveHcyX1ZWaHd0VmFzLXJRb3gwNnM3bGIzc2lJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARhOnv+oS JO86FQDYQI3PqBJeh1PB4KAeN7owUzCOR+bj9j2zXZyC/DAJhLMNRFpvp8bT4eyU 8IE09bdFIkNgzChx7P0k4SDF4c934bNmH4s8RqNNlUARn3Q3ltIdx0Y8K2gn9vTr AEJD2hOxTYRwrgMUB/o912/VmzEOb8WCD/9Euo3VyJ7cOZOVZqGd9TjLyxfJYkKZ vvejNRi9eDKsGNE6Pu616wF+ybP2cQQPGdkUAKXnydX40bn0AYlOXAs5Y9lW/aYp qTWVbDTm4zxIwsLhzCDH98hLVtDXAGQu8/J0RxaPmMSGeYmO/SuM+72c/ik9SN4d iBLpZjjRjArZbw== -----END CERTIFICATE-----Generated at Wed Dec 24 13:25:10 2025 by rpki-client