This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft File: XwImpwTPYg6yAA8n56kZznMJkb4.mft (raw, json) Hash identifier: khF/zKyVA6g7OWss/k7VTd2lYSv6HViWodBNSL3sM/8= Subject key identifier: EB:CA:E1:9E:30:38:C0:20:AF:56:E0:86:18:B4:D6:03:11:B0:99:1E Authority key identifier: 5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE Certificate issuer: /CN=5f0226a704cf620eb2000f27e7a919ce730991be Certificate serial: 019B3833556037F3D4D13E0CA4CC274F639D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft Manifest number: 0FE4 Signing time: Fri 19 Dec 2025 20:00:46 +0000 Manifest this update: Fri 19 Dec 2025 20:00:46 +0000 Manifest next update: Sat 20 Dec 2025 20:00:46 +0000 Files and hashes: 1: P2NRYwvD64-ChL8WHsL3n2VNc0o.roa (hash: ieevRAfzDccOVGuN3ZGz3jBO2k67pRtiKtsN5CR5hf4=) 2: WePWXi4BVJvCbK70G_Bl8LvCy1A.roa (hash: KcxOlT86bPrqOuZYUTgExqyOPNUmMSnB0pr0K4kluRk=) 3: XwImpwTPYg6yAA8n56kZznMJkb4.crl (hash: s8rJpeoHqQHsmPp7FRASgufL+CNgB7wwXP5JKlcgKmA=) 4: ZN7LHZSqu6VYidqfpIPOfCxL2L4.roa (hash: HOkUkg1LrwSaHvSseUfJQzAJzpgcTNuaZCYPqCnldN0=) 5: fm5A4Lmh3Dyoqm8phCUbdJ-SJ50.roa (hash: y1l9jzGOcVZ0GENozcALgbMdp6ZfPx8sRn42vZfb0eg=) 6: mOQsXh6W-nguYweUEP-GggtQ8co.roa (hash: BRX6qGv8sEq7HbLRmf+hKda82RdBa8GI6j+263A+qA8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 20:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:38:33:55:60:37:f3:d4:d1:3e:0c:a4:cc:27:4f:63:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f0226a704cf620eb2000f27e7a919ce730991be Validity Not Before: Dec 19 20:00:46 2025 GMT Not After : Dec 20 20:00:46 2025 GMT Subject: CN=ebcae19e3038c020af56e08618b4d60311b0991e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:54:95:9b:be:da:a2:4d:6c:5b:20:8f:a8:55: a7:8b:c2:0c:03:63:d4:bd:f2:69:17:e1:1c:bf:38: e3:7b:37:e3:05:c2:91:bb:b2:12:2a:6d:99:eb:13: 31:79:f2:b3:3c:6d:46:b8:98:75:77:c7:f5:9a:f4: 41:2d:45:3f:e4:01:5d:53:9d:2f:31:93:50:98:31: 22:e3:66:28:de:5d:bf:39:b3:25:c9:10:45:8b:29: d2:83:31:4b:c7:64:f8:1f:10:a1:38:22:e8:60:31: 78:37:ba:62:2e:bc:a6:e6:a5:1c:d1:af:67:f3:db: 6e:ec:fa:70:78:75:b6:33:06:a4:82:9d:d1:67:eb: 53:b8:c3:14:ff:64:29:c4:20:c9:7b:38:55:91:0b: ca:46:85:5e:1e:79:eb:4b:2f:54:4c:08:55:33:4c: b6:d6:9b:8a:37:b4:5c:b1:83:45:b1:7b:7e:29:eb: 2e:da:23:3b:a1:93:d1:e1:68:af:fa:c8:5b:94:84: 4b:47:46:32:7b:e4:77:1d:86:0c:5e:7f:9d:48:cd: ba:24:22:ea:88:7d:ab:07:54:df:45:20:9b:ae:b6: 53:aa:ef:1c:5d:e7:81:3b:b4:f9:7e:b3:ce:ac:97: 18:e9:5d:0b:e3:cc:ce:d3:5d:ad:48:c3:cc:75:e2: 88:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:CA:E1:9E:30:38:C0:20:AF:56:E0:86:18:B4:D6:03:11:B0:99:1E X509v3 Authority Key Identifier: keyid:5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:f4:e7:0f:52:c2:09:02:79:4e:7f:c0:1c:e2:1b:4f:97:e8: 8c:43:6f:cf:50:88:15:89:ab:ce:2b:9f:5c:9f:df:5f:fb:2b: e1:e1:d3:3a:2d:ae:0c:6f:a9:45:14:08:c3:7d:d9:0f:51:cc: 59:b1:1e:76:64:b1:9d:9d:ba:fb:67:44:66:71:36:18:ac:bf: 6e:38:41:5a:22:42:7f:db:64:28:3f:54:32:fc:7d:94:7a:dd: 15:b1:3e:c7:63:18:a3:ba:6e:5c:bb:65:fc:40:a1:19:fb:05: 86:e9:26:50:1f:b2:b0:6f:a7:84:64:ae:e8:cc:90:48:dc:85: 87:2c:63:55:b2:70:98:a8:32:35:cb:aa:e6:65:bb:e5:cc:32: 38:c7:01:0b:dc:47:04:9d:46:98:66:fb:68:d2:73:4c:98:e2: 01:17:7f:3e:93:8d:e4:48:47:71:36:7d:cc:ac:6d:66:35:ba: ea:6b:13:df:e7:ad:a6:3d:f4:2c:97:d4:54:ce:08:6a:f8:61: e7:b5:41:40:e5:27:c3:b5:b9:31:9a:99:44:02:2f:8c:5f:cd: c7:bf:6d:1d:cc:05:37:ae:4a:4f:ce:b5:fa:0d:3b:ab:ca:98: f0:23:09:86:bd:03:06:a8:df:92:0c:4f:05:ad:70:5d:6b:e3: 0e:5e:bc:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs4M1VgN/PU0T4MpMwnT2OdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmMDIyNmE3MDRjZjYyMGViMjAwMGYyN2U3YTkxOWNlNzMw OTkxYmUwHhcNMjUxMjE5MjAwMDQ2WhcNMjUxMjIwMjAwMDQ2WjAzMTEwLwYDVQQD EyhlYmNhZTE5ZTMwMzhjMDIwYWY1NmUwODYxOGI0ZDYwMzExYjA5OTFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlVSVm77aok1sWyCPqFWni8IMA2PU vfJpF+EcvzjjezfjBcKRu7ISKm2Z6xMxefKzPG1GuJh1d8f1mvRBLUU/5AFdU50v MZNQmDEi42Yo3l2/ObMlyRBFiynSgzFLx2T4HxChOCLoYDF4N7piLrym5qUc0a9n 89tu7PpweHW2Mwakgp3RZ+tTuMMU/2QpxCDJezhVkQvKRoVeHnnrSy9UTAhVM0y2 1puKN7RcsYNFsXt+Kesu2iM7oZPR4Wiv+shblIRLR0Yye+R3HYYMXn+dSM26JCLq iH2rB1TfRSCbrrZTqu8cXeeBO7T5frPOrJcY6V0L48zO012tSMPMdeKIZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOvK4Z4wOMAgr1bghhi01gMRsJkeMB8GA1UdIwQY MBaAFF8CJqcEz2IOsgAPJ+epGc5zCZG+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHdJbXB3VFBZZzZ5QUE4bjU2a1p6bk1Ka2I0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC82M2VmYjgtYmYyNC00OGMyLThjNTAt NzVkOWNlNWI4ZDljLzEvWHdJbXB3VFBZZzZ5QUE4bjU2a1p6bk1Ka2I0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC82M2VmYjgtYmYyNC00OGMyLThjNTAtNzVkOWNlNWI4ZDlj LzEvWHdJbXB3VFBZZzZ5QUE4bjU2a1p6bk1Ka2I0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO/TnD1LC CQJ5Tn/AHOIbT5fojENvz1CIFYmrziufXJ/fX/sr4eHTOi2uDG+pRRQIw33ZD1HM WbEedmSxnZ26+2dEZnE2GKy/bjhBWiJCf9tkKD9UMvx9lHrdFbE+x2MYo7puXLtl /EChGfsFhukmUB+ysG+nhGSu6MyQSNyFhyxjVbJwmKgyNcuq5mW75cwyOMcBC9xH BJ1GmGb7aNJzTJjiARd/PpON5EhHcTZ9zKxtZjW66msT3+etpj30LJfUVM4Iavhh 57VBQOUnw7W5MZqZRAIvjF/Nx79tHcwFN65KT861+g07q8qY8CMJhr0DBqjfkgxP Ba1wXWvjDl68nA== -----END CERTIFICATE-----Generated at Sat Dec 20 04:22:01 2025 by rpki-client