This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft File: XQwn-FWB4ue94MmPvVS-HUlnBRc.mft (raw, json) Hash identifier: C1uLFJLYNLEQGhzThUNFhtvtx9V3XQyLXXnHoWlyFGQ= Subject key identifier: FA:5F:A6:53:2F:32:14:70:16:C2:1C:7E:65:42:7A:9F:6A:8D:59:66 Authority key identifier: 5D:0C:27:F8:55:81:E2:E7:BD:E0:C9:8F:BD:54:BE:1D:49:67:05:17 Certificate issuer: /CN=5d0c27f85581e2e7bde0c98fbd54be1d49670517 Certificate serial: 019B2852C8EB3F8F89DDD681BCD3963D6350 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft Manifest number: 177E Signing time: Tue 16 Dec 2025 18:01:12 +0000 Manifest this update: Tue 16 Dec 2025 18:01:12 +0000 Manifest next update: Wed 17 Dec 2025 18:01:12 +0000 Files and hashes: 1: 5lc5ZmxcIf_S-qtTdxwVFYdfw74.roa (hash: nWQ6LzHmMcNUWFVJjD8F6A2IBDinnQ/3GkZ+tOcMhcc=) 2: XQwn-FWB4ue94MmPvVS-HUlnBRc.crl (hash: c5QIHatNwVp6w5qMEDGujKGOrQ518+8nVsuoS9BWZ8o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.crl rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:28:52:c8:eb:3f:8f:89:dd:d6:81:bc:d3:96:3d:63:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d0c27f85581e2e7bde0c98fbd54be1d49670517 Validity Not Before: Dec 16 18:01:12 2025 GMT Not After : Dec 17 18:01:12 2025 GMT Subject: CN=fa5fa6532f32147016c21c7e65427a9f6a8d5966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:92:6e:e4:0f:bf:08:2a:2b:28:b5:bd:0d:16: 3c:bb:c5:5f:78:24:d8:27:07:e9:f5:61:ab:90:a2: ac:43:ef:f4:4d:f6:dd:da:fa:b7:9a:52:7a:3f:bf: f2:83:40:7b:47:8b:2e:7a:ef:87:86:df:1f:36:a8: dc:00:6e:85:52:7f:80:d3:cb:1c:84:6c:3e:9a:17: 7b:af:fe:da:51:b6:98:38:7c:74:9c:c4:d0:bb:6a: 88:3b:63:5f:08:3c:4f:3f:5a:d6:c7:e9:ee:3b:aa: 44:2d:fc:35:06:8a:43:9f:a9:43:a9:72:f8:96:d4: 9f:ef:2f:44:16:93:87:d4:f9:2e:9e:71:8a:90:e3: 3a:8f:df:2a:b4:0f:f6:c2:79:84:95:67:4c:73:62: a1:89:55:9c:10:94:83:d5:cd:94:45:97:47:47:79: 2b:6d:f9:a4:f8:55:e7:d3:77:dd:f3:81:d6:68:36: bf:28:70:fb:dc:00:36:59:7c:73:b3:d5:8f:e5:1e: 43:21:80:9a:5b:09:2f:33:42:36:22:30:cb:43:ab: 23:7f:ad:a6:47:2d:e1:9b:05:f9:de:83:97:ca:f0: 71:fb:5d:2e:83:cc:96:d7:c7:bc:28:74:45:cc:38: 8a:f1:6f:1d:08:6b:57:20:92:85:ef:95:0e:3b:44: 95:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:5F:A6:53:2F:32:14:70:16:C2:1C:7E:65:42:7A:9F:6A:8D:59:66 X509v3 Authority Key Identifier: keyid:5D:0C:27:F8:55:81:E2:E7:BD:E0:C9:8F:BD:54:BE:1D:49:67:05:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:75:50:93:84:74:bd:c8:b8:a5:da:fa:c9:08:ac:c2:10:4f: 83:35:50:cf:1a:38:6d:67:6f:40:05:c9:68:5d:4c:48:8a:54: 8e:b9:3a:38:f5:77:ed:66:60:0f:fc:1b:e9:0b:7f:cd:ac:06: 44:06:ac:09:a8:4a:23:a9:33:a6:2d:51:8d:d9:2a:b0:1c:09: 5f:e2:c1:91:5b:75:c4:4b:4e:82:af:22:cb:4c:14:f9:3e:d3: bb:a3:5e:95:e4:2e:f9:3e:37:53:28:7c:0d:b7:5f:80:09:3f: b9:5e:56:3d:1e:f9:29:fa:20:23:4e:03:53:91:2c:65:bf:18: 16:02:46:c6:5e:2c:86:54:97:ef:65:3b:ad:d1:2f:33:0d:0b: 3c:97:3a:35:26:ca:85:16:87:46:d9:32:b5:12:f3:0d:97:2c: 8e:e3:09:5c:32:e6:f5:32:a5:ba:2f:ee:05:29:1b:ac:67:a3: ec:b2:2f:80:ba:fd:8a:26:dd:85:bf:52:77:7d:f5:8a:98:ec: 74:35:44:ae:f2:4b:b1:2c:6d:9a:12:12:65:9b:3e:78:52:ca: 79:42:3a:fa:35:67:b2:50:02:ab:fa:0f:05:02:2f:e4:b4:bf: e1:86:0c:2b:3a:00:20:46:94:38:13:2c:de:27:b3:80:b9:70: a7:37:f6:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsoUsjrP4+J3daBvNOWPWNQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkMGMyN2Y4NTU4MWUyZTdiZGUwYzk4ZmJkNTRiZTFkNDk2 NzA1MTcwHhcNMjUxMjE2MTgwMTEyWhcNMjUxMjE3MTgwMTEyWjAzMTEwLwYDVQQD EyhmYTVmYTY1MzJmMzIxNDcwMTZjMjFjN2U2NTQyN2E5ZjZhOGQ1OTY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApZJu5A+/CCorKLW9DRY8u8VfeCTY Jwfp9WGrkKKsQ+/0Tfbd2vq3mlJ6P7/yg0B7R4sueu+Hht8fNqjcAG6FUn+A08sc hGw+mhd7r/7aUbaYOHx0nMTQu2qIO2NfCDxPP1rWx+nuO6pELfw1BopDn6lDqXL4 ltSf7y9EFpOH1PkunnGKkOM6j98qtA/2wnmElWdMc2KhiVWcEJSD1c2URZdHR3kr bfmk+FXn03fd84HWaDa/KHD73AA2WXxzs9WP5R5DIYCaWwkvM0I2IjDLQ6sjf62m Ry3hmwX53oOXyvBx+10ug8yW18e8KHRFzDiK8W8dCGtXIJKF75UOO0SVvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPpfplMvMhRwFsIcfmVCep9qjVlmMB8GA1UdIwQY MBaAFF0MJ/hVgeLnveDJj71Uvh1JZwUXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFF3bi1GV0I0dWU5NE1tUHZWUy1IVWxuQlJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy9mNzg3YTktNTc2My00YzM2LThjNzMt MzQxZjUxNzNmY2Y3LzEvWFF3bi1GV0I0dWU5NE1tUHZWUy1IVWxuQlJjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yy9mNzg3YTktNTc2My00YzM2LThjNzMtMzQxZjUxNzNmY2Y3 LzEvWFF3bi1GV0I0dWU5NE1tUHZWUy1IVWxuQlJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGHVQk4R0 vci4pdr6yQiswhBPgzVQzxo4bWdvQAXJaF1MSIpUjrk6OPV37WZgD/wb6Qt/zawG RAasCahKI6kzpi1RjdkqsBwJX+LBkVt1xEtOgq8iy0wU+T7Tu6NeleQu+T43Uyh8 DbdfgAk/uV5WPR75KfogI04DU5EsZb8YFgJGxl4shlSX72U7rdEvMw0LPJc6NSbK hRaHRtkytRLzDZcsjuMJXDLm9TKlui/uBSkbrGej7LIvgLr9iibdhb9Sd331ipjs dDVErvJLsSxtmhISZZs+eFLKeUI6+jVnslACq/oPBQIv5LS/4YYMKzoAIEaUOBMs 3iezgLlwpzf2xw== -----END CERTIFICATE-----Generated at Tue Dec 16 20:59:49 2025 by rpki-client