This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.mft File: xhjwP5h0NwZTqjoCb2cHwuDnR2Q.mft (raw, json) Hash identifier: zaswK8cc0ILH4SZS0qixCedq0Rz1eTJNkq7JsRcUfp8= Subject key identifier: 72:A0:B0:4E:32:82:DE:52:14:CC:16:EF:96:48:19:F4:F1:28:D1:68 Authority key identifier: C6:18:F0:3F:98:74:37:06:53:AA:3A:02:6F:67:07:C2:E0:E7:47:64 Certificate issuer: /CN=c618f03f9874370653aa3a026f6707c2e0e74764 Certificate serial: 019B63F99E97561BB7C694BAE6C52CECC4D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.mft Manifest number: 0881 Signing time: Sun 28 Dec 2025 08:01:01 +0000 Manifest this update: Sun 28 Dec 2025 08:01:01 +0000 Manifest next update: Mon 29 Dec 2025 08:01:01 +0000 Files and hashes: 1: xhjwP5h0NwZTqjoCb2cHwuDnR2Q.crl (hash: NWqcsOIqGE6Q8GWlvmgHhnP/lU8IEqyR9CQbotx3GYw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.mft rsync://rpki.ripe.net/repository/DEFAULT/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 03:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:63:f9:9e:97:56:1b:b7:c6:94:ba:e6:c5:2c:ec:c4:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c618f03f9874370653aa3a026f6707c2e0e74764 Validity Not Before: Dec 28 08:01:01 2025 GMT Not After : Dec 29 08:01:01 2025 GMT Subject: CN=72a0b04e3282de5214cc16ef964819f4f128d168 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:c6:63:35:fd:8a:7b:2e:35:6e:60:31:b3:a5: ae:e0:35:c5:85:05:f2:a0:6b:de:27:c1:ba:7b:e5: b6:07:7e:b5:85:f1:6a:43:ab:1e:8b:3a:2a:f0:e3: d5:e5:a3:ff:73:50:2a:4c:1c:73:fa:37:4a:fe:aa: 4a:e2:35:f2:85:aa:ec:64:40:b8:b0:01:e8:73:25: 62:75:9b:6a:ef:cc:11:e1:6d:59:be:a6:97:78:cd: 87:ef:26:17:3b:fa:70:19:74:96:4d:b8:f4:29:9d: f7:e0:46:29:d2:ac:eb:1c:c0:77:a1:98:17:e4:e0: d3:59:91:bf:74:1e:26:03:6a:0d:f2:48:cd:e9:83: 75:11:ab:c4:cb:73:6e:9b:34:e1:5e:f4:04:3a:6e: ca:b5:1e:b7:97:04:63:d6:c1:b1:b8:bd:dd:23:05: db:16:68:fd:11:f5:05:f7:52:09:8d:da:3c:03:8e: 89:b3:78:f4:d1:ea:c8:c4:94:fe:90:45:ba:3e:e3: 74:aa:ab:3c:b6:a7:5d:3e:54:db:f3:66:0b:59:16: 0e:0f:28:81:9b:17:f8:6f:56:35:50:24:9f:ea:14: 45:d8:79:58:c6:2c:89:f5:b2:44:55:63:6a:c8:30: cc:8b:fc:d0:84:0a:ae:f4:a7:ae:c1:e5:f5:30:13: 46:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:A0:B0:4E:32:82:DE:52:14:CC:16:EF:96:48:19:F4:F1:28:D1:68 X509v3 Authority Key Identifier: keyid:C6:18:F0:3F:98:74:37:06:53:AA:3A:02:6F:67:07:C2:E0:E7:47:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:8e:b6:0f:77:0b:30:ff:a7:e7:41:b5:f1:b4:8c:22:cf:0a: c8:25:57:84:5f:ef:d9:c5:7b:1f:f8:26:f0:14:1e:e1:09:58: 43:54:42:68:1a:f1:d2:9c:ac:e8:95:d1:8a:22:9f:53:13:63: 25:6b:06:aa:07:f6:3f:57:8a:4e:65:23:a1:1e:80:34:c2:17: a1:93:73:77:90:7a:a0:4d:33:4c:6b:06:8d:4e:e0:3a:38:78: 20:99:68:3a:90:00:e5:24:aa:e9:18:e2:cc:aa:6d:87:29:51: 1d:69:5c:88:d4:b0:32:f7:df:14:40:5d:17:77:09:df:97:d2: de:e8:f3:35:08:89:f1:10:36:6b:40:7b:94:02:e3:38:fa:6e: 14:76:a3:24:36:9b:2c:bb:21:c7:38:28:e8:8e:b3:16:01:29: ad:8d:da:e9:be:01:f2:f5:a1:c8:9a:61:7a:91:4b:84:f2:b5: 63:35:39:46:c3:d9:d9:03:1a:15:46:23:4d:18:69:d1:f7:38: 75:ed:88:7f:69:dd:2a:4a:d4:82:8f:6e:c6:da:ad:2e:a4:6c: d1:0c:bc:71:66:47:2e:47:0a:a4:d8:32:f8:4d:f1:48:9c:98: f3:04:53:b5:9c:9a:66:4f:3e:1a:e3:28:67:5a:6a:4f:48:65: 7a:fc:e6:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtj+Z6XVhu3xpS65sUs7MTSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2MThmMDNmOTg3NDM3MDY1M2FhM2EwMjZmNjcwN2MyZTBl NzQ3NjQwHhcNMjUxMjI4MDgwMTAxWhcNMjUxMjI5MDgwMTAxWjAzMTEwLwYDVQQD Eyg3MmEwYjA0ZTMyODJkZTUyMTRjYzE2ZWY5NjQ4MTlmNGYxMjhkMTY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi8ZjNf2Key41bmAxs6Wu4DXFhQXy oGveJ8G6e+W2B361hfFqQ6seizoq8OPV5aP/c1AqTBxz+jdK/qpK4jXyharsZEC4 sAHocyVidZtq78wR4W1ZvqaXeM2H7yYXO/pwGXSWTbj0KZ334EYp0qzrHMB3oZgX 5ODTWZG/dB4mA2oN8kjN6YN1EavEy3NumzThXvQEOm7KtR63lwRj1sGxuL3dIwXb Fmj9EfUF91IJjdo8A46Js3j00erIxJT+kEW6PuN0qqs8tqddPlTb82YLWRYODyiB mxf4b1Y1UCSf6hRF2HlYxiyJ9bJEVWNqyDDMi/zQhAqu9KeuweX1MBNGmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHKgsE4ygt5SFMwW75ZIGfTxKNFoMB8GA1UdIwQY MBaAFMYY8D+YdDcGU6o6Am9nB8Lg50dkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGhqd1A1aDBOd1pUcWpvQ2IyY0h3dURuUjJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS8xNmZkZWUtZDM5Ny00MWZkLTg4OGYt NTFkZTQ5NjRhOTEzLzEveGhqd1A1aDBOd1pUcWpvQ2IyY0h3dURuUjJRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS8xNmZkZWUtZDM5Ny00MWZkLTg4OGYtNTFkZTQ5NjRhOTEz LzEveGhqd1A1aDBOd1pUcWpvQ2IyY0h3dURuUjJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP462D3cL MP+n50G18bSMIs8KyCVXhF/v2cV7H/gm8BQe4QlYQ1RCaBrx0pys6JXRiiKfUxNj JWsGqgf2P1eKTmUjoR6ANMIXoZNzd5B6oE0zTGsGjU7gOjh4IJloOpAA5SSq6Rji zKpthylRHWlciNSwMvffFEBdF3cJ35fS3ujzNQiJ8RA2a0B7lALjOPpuFHajJDab LLshxzgo6I6zFgEprY3a6b4B8vWhyJphepFLhPK1YzU5RsPZ2QMaFUYjTRhp0fc4 de2If2ndKkrUgo9uxtqtLqRs0Qy8cWZHLkcKpNgy+E3xSJyY8wRTtZyaZk8+GuMo Z1pqT0hlevzmIA== -----END CERTIFICATE-----Generated at Sun Dec 28 11:24:44 2025 by rpki-client