This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft File: XQwn-FWB4ue94MmPvVS-HUlnBRc.mft (raw, json) Hash identifier: 1DCRx3ZyZexgY30ZWN1+qRUK5kvn+liMuMXLAL0gD20= Subject key identifier: 98:D4:6D:8D:68:A3:5E:33:75:66:1F:94:61:DF:99:2F:63:07:BC:60 Authority key identifier: 5D:0C:27:F8:55:81:E2:E7:BD:E0:C9:8F:BD:54:BE:1D:49:67:05:17 Certificate issuer: /CN=5d0c27f85581e2e7bde0c98fbd54be1d49670517 Certificate serial: 019AF42E04658F342E57C2B9526EA73F01F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 15:00:47 +0000 Manifest this update: Sat 06 Dec 2025 15:00:47 +0000 Manifest next update: Sun 07 Dec 2025 15:00:47 +0000 Files and hashes: 1: 5lc5ZmxcIf_S-qtTdxwVFYdfw74.roa (hash: nWQ6LzHmMcNUWFVJjD8F6A2IBDinnQ/3GkZ+tOcMhcc=) 2: XQwn-FWB4ue94MmPvVS-HUlnBRc.crl (hash: poM7TsDsl/8D1DrFsepmV7WU0cq+PdEuEiYpGTPsm0I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.crl rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:2e:04:65:8f:34:2e:57:c2:b9:52:6e:a7:3f:01:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d0c27f85581e2e7bde0c98fbd54be1d49670517 Validity Not Before: Dec 6 15:00:47 2025 GMT Not After : Dec 7 15:00:47 2025 GMT Subject: CN=98d46d8d68a35e3375661f9461df992f6307bc60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ec:e7:d8:c0:80:f1:2f:c1:2e:82:03:ee:d1: ed:24:46:c1:a0:ef:eb:27:16:49:96:d0:d5:32:81: a6:3e:d2:2d:41:da:c9:5c:19:d4:b4:9b:2d:49:e4: b9:1a:f0:f7:00:0e:c7:a4:1a:22:61:42:01:b9:9e: 95:23:73:84:60:ac:19:cc:aa:c9:b6:79:cc:78:47: a6:76:ba:bd:1c:9d:0a:98:4b:0b:fd:ee:15:5d:71: c4:50:39:28:b7:31:26:ce:ed:78:ff:0c:a5:d0:b7: 41:82:3f:ac:df:30:37:4d:15:30:3e:aa:13:39:eb: 96:1f:6d:73:4a:8c:d8:86:ef:fa:18:27:8a:26:ad: e0:7f:04:aa:78:52:a4:d5:9a:a1:83:47:d1:b6:94: a6:45:eb:a0:c3:27:d7:4d:a6:60:10:5d:de:5a:ff: cd:8e:c0:71:02:bb:4c:2c:a8:fe:2d:d9:54:19:e2: 1f:ee:31:28:91:bb:d1:bf:a5:58:e2:c8:b3:5c:d8: 15:c5:c7:32:c8:eb:ac:e7:30:9c:52:20:bb:d9:cb: f0:e3:35:3e:48:57:eb:39:b3:64:ce:88:59:66:46: 9f:f2:91:3c:54:79:0b:ca:bc:33:99:3a:e7:80:80: 48:21:8a:c0:09:09:a6:ee:ac:6d:e6:60:0e:18:fd: 07:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:D4:6D:8D:68:A3:5E:33:75:66:1F:94:61:DF:99:2F:63:07:BC:60 X509v3 Authority Key Identifier: keyid:5D:0C:27:F8:55:81:E2:E7:BD:E0:C9:8F:BD:54:BE:1D:49:67:05:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:80:f2:6c:d7:03:af:1b:a6:e7:61:96:dc:46:bc:b8:96:0e: 48:fc:d5:82:30:f2:34:0a:31:47:75:a0:55:84:a7:61:5f:f3: f8:3c:2a:8c:cb:0b:03:cd:c4:2c:03:68:46:cd:14:01:97:62: 40:ea:38:a9:73:e5:81:39:54:1c:89:83:cb:8a:3a:81:6d:34: 84:b7:77:29:85:73:d7:39:bc:a8:8f:f8:e1:0a:ca:e3:47:dc: b0:6b:9a:f4:be:97:0d:5e:fa:3f:11:b4:33:6d:21:00:24:ac: a1:05:1a:4a:02:08:73:fe:35:88:c9:39:ad:c7:09:12:62:72: 1b:cf:1f:43:1c:ce:7d:d1:9e:5d:ec:a2:30:78:29:99:41:ff: 45:1b:69:a9:e1:28:9f:62:db:f5:0d:34:f4:77:be:fd:70:41: fe:e8:be:f2:8b:3d:3d:b7:4a:43:d8:3d:22:8b:49:61:fc:da: 68:04:a9:12:99:25:cc:6d:01:b5:ca:0e:b7:99:fa:d7:4a:63: 7f:21:5c:88:f7:c4:23:e9:d2:8f:f9:00:4c:1a:b2:bd:a5:7b: e6:f7:fc:6d:ad:39:40:2d:43:12:cb:31:bd:28:83:24:8e:48: b3:28:27:c1:90:ce:a2:10:1e:5e:3f:c0:b5:b5:93:d7:a6:a4: 98:85:02:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0LgRljzQuV8K5Um6nPwHxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkMGMyN2Y4NTU4MWUyZTdiZGUwYzk4ZmJkNTRiZTFkNDk2 NzA1MTcwHhcNMjUxMjA2MTUwMDQ3WhcNMjUxMjA3MTUwMDQ3WjAzMTEwLwYDVQQD Eyg5OGQ0NmQ4ZDY4YTM1ZTMzNzU2NjFmOTQ2MWRmOTkyZjYzMDdiYzYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuezn2MCA8S/BLoID7tHtJEbBoO/r JxZJltDVMoGmPtItQdrJXBnUtJstSeS5GvD3AA7HpBoiYUIBuZ6VI3OEYKwZzKrJ tnnMeEemdrq9HJ0KmEsL/e4VXXHEUDkotzEmzu14/wyl0LdBgj+s3zA3TRUwPqoT OeuWH21zSozYhu/6GCeKJq3gfwSqeFKk1Zqhg0fRtpSmReugwyfXTaZgEF3eWv/N jsBxArtMLKj+LdlUGeIf7jEokbvRv6VY4sizXNgVxccyyOus5zCcUiC72cvw4zU+ SFfrObNkzohZZkaf8pE8VHkLyrwzmTrngIBIIYrACQmm7qxt5mAOGP0HNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJjUbY1oo14zdWYflGHfmS9jB7xgMB8GA1UdIwQY MBaAFF0MJ/hVgeLnveDJj71Uvh1JZwUXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFF3bi1GV0I0dWU5NE1tUHZWUy1IVWxuQlJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy9mNzg3YTktNTc2My00YzM2LThjNzMt MzQxZjUxNzNmY2Y3LzEvWFF3bi1GV0I0dWU5NE1tUHZWUy1IVWxuQlJjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yy9mNzg3YTktNTc2My00YzM2LThjNzMtMzQxZjUxNzNmY2Y3 LzEvWFF3bi1GV0I0dWU5NE1tUHZWUy1IVWxuQlJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn4DybNcD rxum52GW3Ea8uJYOSPzVgjDyNAoxR3WgVYSnYV/z+DwqjMsLA83ELANoRs0UAZdi QOo4qXPlgTlUHImDy4o6gW00hLd3KYVz1zm8qI/44QrK40fcsGua9L6XDV76PxG0 M20hACSsoQUaSgIIc/41iMk5rccJEmJyG88fQxzOfdGeXeyiMHgpmUH/RRtpqeEo n2Lb9Q009He+/XBB/ui+8os9PbdKQ9g9IotJYfzaaASpEpklzG0BtcoOt5n610pj fyFciPfEI+nSj/kATBqyvaV75vf8ba05QC1DEssxvSiDJI5IsygnwZDOohAeXj/A tbWT16akmIUCKg== -----END CERTIFICATE-----Generated at Sat Dec 6 22:16:00 2025 by rpki-client