This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft File: XWlT20hASwxmoV8Npu-n-sCpNp4.mft (raw, json) Hash identifier: wnR5vPpQ3ZBFzgkBMqgbsMPMkJjcQcelCwaAQqjRVso= Subject key identifier: 1F:22:E4:7A:A9:D9:E1:20:0B:EF:9A:23:67:CD:A4:89:AF:C7:8E:58 Authority key identifier: 5D:69:53:DB:48:40:4B:0C:66:A1:5F:0D:A6:EF:A7:FA:C0:A9:36:9E Certificate issuer: /CN=5d6953db48404b0c66a15f0da6efa7fac0a9369e Certificate serial: 019AF2AD38E5537D8AB5FADE98BCA203062D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 08:00:29 +0000 Manifest this update: Sat 06 Dec 2025 08:00:29 +0000 Manifest next update: Sun 07 Dec 2025 08:00:29 +0000 Files and hashes: 1: XWlT20hASwxmoV8Npu-n-sCpNp4.crl (hash: kfCrhLcUfNQxqrjbL08vDDaSv/SG+eRvHnvZj3HTn4M=) 2: hC0t1cqhdoh6iyJ3cpDGc1N-nWg.roa (hash: PxIEeNMR+krZxWibCKKwK2CkVaApOYKXyBnr/5vAmac=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.crl rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:38:e5:53:7d:8a:b5:fa:de:98:bc:a2:03:06:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d6953db48404b0c66a15f0da6efa7fac0a9369e Validity Not Before: Dec 6 08:00:29 2025 GMT Not After : Dec 7 08:00:29 2025 GMT Subject: CN=1f22e47aa9d9e1200bef9a2367cda489afc78e58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:01:8a:6a:01:c8:99:87:3f:f8:3c:b7:76:4d: c4:33:c2:57:32:3b:d7:85:ad:bf:24:88:95:b4:7f: 96:1f:39:f0:c1:00:51:55:d5:bc:35:78:1b:e1:94: a4:35:60:ea:7c:ee:c8:b5:bb:2d:b9:17:ec:29:24: f7:3d:8f:e6:f1:da:24:0f:18:fd:41:d4:24:3f:07: 47:84:c3:90:65:5a:47:cf:da:30:fc:b3:4e:07:b0: c1:ac:21:c0:e9:c0:7c:d1:3c:c9:d7:0b:98:88:52: 1f:29:90:23:52:a3:e3:28:fd:9b:35:49:15:c7:49: 43:ae:62:e0:48:b4:4f:ab:c9:1b:f8:ac:8e:bf:79: ae:ee:78:0e:ff:51:54:72:c3:ad:8a:27:8f:95:e1: e5:97:09:ab:b5:8e:f0:19:d7:04:d2:02:62:5e:59: 3b:16:8a:3f:a6:21:22:4a:3c:d5:56:8a:ab:a5:ab: 76:d9:e3:ad:4d:de:59:dd:34:fc:4d:8c:5c:6a:9a: f5:0f:35:f7:b8:a6:ba:17:20:30:78:c5:a8:4d:58: 8f:72:82:ac:c3:12:b2:21:27:62:27:a4:ce:4a:af: 3a:cc:8f:7a:af:59:ac:74:47:e4:62:33:3c:a0:e1: 32:0f:38:3b:c9:e0:14:84:ba:7d:ac:62:cc:00:02: 49:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:22:E4:7A:A9:D9:E1:20:0B:EF:9A:23:67:CD:A4:89:AF:C7:8E:58 X509v3 Authority Key Identifier: keyid:5D:69:53:DB:48:40:4B:0C:66:A1:5F:0D:A6:EF:A7:FA:C0:A9:36:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:e1:34:ce:e8:93:56:37:10:66:62:46:0a:c5:53:d5:7f:ef: 64:80:8d:0e:da:b3:f4:ca:bf:90:11:ec:93:68:05:77:50:4f: 92:65:f0:1a:66:1a:34:0f:96:0f:5b:d4:13:eb:3b:54:a4:3e: 67:84:99:e3:8a:59:35:c4:ed:4f:76:22:a5:25:d2:6f:6f:89: 0d:ff:c3:66:c8:62:77:99:38:81:c0:86:f9:82:05:06:df:1c: 73:57:a4:86:59:01:e1:8f:60:10:53:c7:a3:5f:8b:50:82:b9: 4f:f4:45:6d:c7:01:00:90:2f:7a:cf:6e:71:5f:81:71:70:4f: 7e:df:d7:cb:a9:17:ec:d3:b2:7c:d5:ba:aa:3c:51:b0:18:41: f2:6e:77:a8:0b:df:08:05:59:4c:28:65:00:4e:35:4c:90:c4: ae:05:23:44:9a:71:96:05:29:9c:9d:b8:00:b2:66:56:8a:9f: 28:19:84:1b:85:e6:78:db:71:78:ed:6b:27:7a:bb:b8:ad:6b: 7b:22:19:43:f4:7a:b7:cc:3f:bc:ef:b2:35:70:ef:4b:3a:49: 3f:8e:06:6a:7b:d8:b4:c0:68:70:55:64:5d:34:c4:ae:f3:d0: fe:ac:da:80:5b:03:c3:d2:f8:ba:6d:61:6d:13:5a:71:8c:fb: 56:0a:07:f3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrTjlU32KtfremLyiAwYtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkNjk1M2RiNDg0MDRiMGM2NmExNWYwZGE2ZWZhN2ZhYzBh OTM2OWUwHhcNMjUxMjA2MDgwMDI5WhcNMjUxMjA3MDgwMDI5WjAzMTEwLwYDVQQD EygxZjIyZTQ3YWE5ZDllMTIwMGJlZjlhMjM2N2NkYTQ4OWFmYzc4ZTU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtQGKagHImYc/+Dy3dk3EM8JXMjvX ha2/JIiVtH+WHznwwQBRVdW8NXgb4ZSkNWDqfO7ItbstuRfsKST3PY/m8dokDxj9 QdQkPwdHhMOQZVpHz9ow/LNOB7DBrCHA6cB80TzJ1wuYiFIfKZAjUqPjKP2bNUkV x0lDrmLgSLRPq8kb+KyOv3mu7ngO/1FUcsOtiiePleHllwmrtY7wGdcE0gJiXlk7 Foo/piEiSjzVVoqrpat22eOtTd5Z3TT8TYxcapr1DzX3uKa6FyAweMWoTViPcoKs wxKyISdiJ6TOSq86zI96r1msdEfkYjM8oOEyDzg7yeAUhLp9rGLMAAJJqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB8i5Hqp2eEgC++aI2fNpImvx45YMB8GA1UdIwQY MBaAFF1pU9tIQEsMZqFfDabvp/rAqTaeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFdsVDIwaEFTd3htb1Y4TnB1LW4tc0NwTnA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi81MzZmZGUtYTAyZC00OGY1LWE3NWQt ZmEyZmI5NGRhMWEyLzEvWFdsVDIwaEFTd3htb1Y4TnB1LW4tc0NwTnA0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNi81MzZmZGUtYTAyZC00OGY1LWE3NWQtZmEyZmI5NGRhMWEy LzEvWFdsVDIwaEFTd3htb1Y4TnB1LW4tc0NwTnA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh+E0zuiT VjcQZmJGCsVT1X/vZICNDtqz9Mq/kBHsk2gFd1BPkmXwGmYaNA+WD1vUE+s7VKQ+ Z4SZ44pZNcTtT3YipSXSb2+JDf/DZshid5k4gcCG+YIFBt8cc1ekhlkB4Y9gEFPH o1+LUIK5T/RFbccBAJAves9ucV+BcXBPft/Xy6kX7NOyfNW6qjxRsBhB8m53qAvf CAVZTChlAE41TJDErgUjRJpxlgUpnJ24ALJmVoqfKBmEG4XmeNtxeO1rJ3q7uK1r eyIZQ/R6t8w/vO+yNXDvSzpJP44GanvYtMBocFVkXTTErvPQ/qzagFsDw9L4um1h bRNacYz7VgoH8w== -----END CERTIFICATE-----Generated at Sat Dec 6 10:55:58 2025 by rpki-client