This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft File: XWU9B97R6Nf08uoEvTaELFsS8V4.mft (raw, json) Hash identifier: JcydXX5S7tQRYDOvi49ohsRoE3tr66jBMTbt8FmqTOQ= Subject key identifier: 07:39:FC:21:99:B0:98:CD:DC:41:5F:F0:3D:99:1B:26:61:71:21:FD Authority key identifier: 5D:65:3D:07:DE:D1:E8:D7:F4:F2:EA:04:BD:36:84:2C:5B:12:F1:5E Certificate issuer: /CN=5d653d07ded1e8d7f4f2ea04bd36842c5b12f15e Certificate serial: 019AF19AA8BD98E04AA365E0FC0E71627774 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft Manifest number: 0F89 Signing time: Sat 06 Dec 2025 03:00:35 +0000 Manifest this update: Sat 06 Dec 2025 03:00:35 +0000 Manifest next update: Sun 07 Dec 2025 03:00:35 +0000 Files and hashes: 1: LETlz166RFHGtOnMtZqu-hVYTtY.roa (hash: R/HDeBwYS+y6cI45NJn8rpNKDr4lgvNm8JPFpPhGnoo=) 2: XWU9B97R6Nf08uoEvTaELFsS8V4.crl (hash: 26uxvAAgSc6Ji3jjTl+XvizpEYX8DlZbHv8QHoVUR1Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.crl rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:a8:bd:98:e0:4a:a3:65:e0:fc:0e:71:62:77:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d653d07ded1e8d7f4f2ea04bd36842c5b12f15e Validity Not Before: Dec 6 03:00:35 2025 GMT Not After : Dec 7 03:00:35 2025 GMT Subject: CN=0739fc2199b098cddc415ff03d991b26617121fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2e:03:08:6a:a3:ff:1c:b5:35:cc:e9:86:1b: f8:a2:6a:04:09:11:2b:a0:ed:f3:e8:a9:e9:cf:6d: 49:b7:d6:32:11:d6:87:ce:cd:ce:70:20:e1:30:dc: c3:ac:e4:9c:05:59:99:50:62:cb:98:01:8b:45:7f: 22:d2:de:57:20:71:33:1d:a9:74:80:8e:d1:15:36: 79:b0:fe:6f:bd:ba:ab:99:8d:e0:a5:f9:fe:e1:46: 30:3a:82:6f:52:bb:f1:38:7b:1b:85:0f:63:9d:4f: 6f:d9:e1:3b:90:c3:b2:6f:7d:e8:e6:5e:e8:13:4e: 01:5b:73:80:3c:7d:d4:ba:11:49:92:6e:cd:ee:22: 9d:be:24:c0:75:36:6d:cd:3d:79:71:ce:47:f2:28: bb:a3:89:52:89:a0:f8:ff:d9:92:f1:89:86:fb:e6: b5:9b:d8:a9:bd:03:15:79:18:10:04:e7:2b:d1:97: cf:19:56:08:61:6c:fc:77:4f:d1:ad:86:32:f2:fc: 01:d8:a9:1c:96:4d:54:2c:05:0d:f8:3b:e6:f6:5b: d2:82:ce:9c:c7:d5:d9:0e:7c:1f:49:92:b0:4d:14: 8e:97:f7:5e:40:c8:e2:1b:8e:a9:b7:cd:d6:ef:9e: 87:65:1c:fb:25:98:ed:b7:58:c5:d8:6b:90:a5:8a: 5c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:39:FC:21:99:B0:98:CD:DC:41:5F:F0:3D:99:1B:26:61:71:21:FD X509v3 Authority Key Identifier: keyid:5D:65:3D:07:DE:D1:E8:D7:F4:F2:EA:04:BD:36:84:2C:5B:12:F1:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:e4:7a:23:e2:56:80:b1:96:b3:7c:e3:b8:d0:06:68:95:a2: e6:be:8e:f5:87:9f:d1:ab:18:84:17:cc:7c:4b:d3:bb:35:fe: e1:89:65:03:0f:e8:9f:de:b2:63:51:2a:87:c5:86:2c:af:08: b2:ac:3e:54:dc:e4:a3:68:e4:4c:b8:a7:81:ed:bc:f1:ef:a8: e9:34:78:5d:bb:bb:86:a7:52:ff:24:ab:8b:b4:65:06:ab:3a: 2d:f1:0e:c5:1d:fc:69:02:ea:d8:a8:18:75:69:c9:18:b2:23: 75:e1:85:72:e3:ed:52:94:8c:83:4c:be:6f:aa:8d:be:fe:31: 8d:3e:a9:e6:27:fb:0e:d0:de:01:15:cd:23:4d:76:24:43:8a: 2d:a8:3d:18:68:f0:2b:4c:aa:cc:3f:4f:bc:9c:79:9c:7a:e7: 91:75:4f:f2:e9:f1:14:29:1c:5d:9e:ac:90:0d:9a:64:ba:e6: f2:00:75:ad:9e:dc:51:38:fb:5f:70:a3:73:d1:ab:34:0d:71: a8:05:1d:be:9a:27:a1:01:6a:69:43:5b:8f:a7:50:08:73:f8: 2f:4b:38:c4:83:f4:03:7f:22:c6:67:0e:ab:11:4f:e3:c2:dc: 1f:50:1d:d4:85:19:20:e6:5f:af:6d:59:d3:e6:89:6f:3a:a2: 63:88:e1:6f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmqi9mOBKo2Xg/A5xYnd0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkNjUzZDA3ZGVkMWU4ZDdmNGYyZWEwNGJkMzY4NDJjNWIx MmYxNWUwHhcNMjUxMjA2MDMwMDM1WhcNMjUxMjA3MDMwMDM1WjAzMTEwLwYDVQQD EygwNzM5ZmMyMTk5YjA5OGNkZGM0MTVmZjAzZDk5MWIyNjYxNzEyMWZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqi4DCGqj/xy1Nczphhv4omoECREr oO3z6Knpz21Jt9YyEdaHzs3OcCDhMNzDrOScBVmZUGLLmAGLRX8i0t5XIHEzHal0 gI7RFTZ5sP5vvbqrmY3gpfn+4UYwOoJvUrvxOHsbhQ9jnU9v2eE7kMOyb33o5l7o E04BW3OAPH3UuhFJkm7N7iKdviTAdTZtzT15cc5H8ii7o4lSiaD4/9mS8YmG++a1 m9ipvQMVeRgQBOcr0ZfPGVYIYWz8d0/RrYYy8vwB2Kkclk1ULAUN+Dvm9lvSgs6c x9XZDnwfSZKwTRSOl/deQMjiG46pt83W756HZRz7JZjtt1jF2GuQpYpcPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAc5/CGZsJjN3EFf8D2ZGyZhcSH9MB8GA1UdIwQY MBaAFF1lPQfe0ejX9PLqBL02hCxbEvFeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFdVOUI5N1I2TmYwOHVvRXZUYUVMRnNTOFY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9hMDQ3NWYtY2E5Ny00YjE2LTk2ZGIt MjE0NWNhNzVlMzgzLzEvWFdVOUI5N1I2TmYwOHVvRXZUYUVMRnNTOFY0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy9hMDQ3NWYtY2E5Ny00YjE2LTk2ZGItMjE0NWNhNzVlMzgz LzEvWFdVOUI5N1I2TmYwOHVvRXZUYUVMRnNTOFY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABuR6I+JW gLGWs3zjuNAGaJWi5r6O9Yef0asYhBfMfEvTuzX+4YllAw/on96yY1Eqh8WGLK8I sqw+VNzko2jkTLinge288e+o6TR4Xbu7hqdS/ySri7RlBqs6LfEOxR38aQLq2KgY dWnJGLIjdeGFcuPtUpSMg0y+b6qNvv4xjT6p5if7DtDeARXNI012JEOKLag9GGjw K0yqzD9PvJx5nHrnkXVP8unxFCkcXZ6skA2aZLrm8gB1rZ7cUTj7X3Cjc9GrNA1x qAUdvponoQFqaUNbj6dQCHP4L0s4xIP0A38ixmcOqxFP48LcH1Ad1IUZIOZfr21Z 0+aJbzqiY4jhbw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:19:59 2025 by rpki-client