This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.mft File: XigJUGU6fsWMUzhdALOB77tGWCQ.mft (raw, json) Hash identifier: f0w36f+7HQzFQWNgelsz+c+JUJdj81YUtDA98bqe4p4= Subject key identifier: F2:3B:77:BF:EE:77:CB:B4:F6:33:0B:07:DE:EA:D0:F8:96:91:28:06 Authority key identifier: 5E:28:09:50:65:3A:7E:C5:8C:53:38:5D:00:B3:81:EF:BB:46:58:24 Certificate issuer: /CN=5e280950653a7ec58c53385d00b381efbb465824 Certificate serial: 019AF20948AD8F28EA3E1D20DE4427AC753B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XigJUGU6fsWMUzhdALOB77tGWCQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.mft Manifest number: 0722 Signing time: Sat 06 Dec 2025 05:01:25 +0000 Manifest this update: Sat 06 Dec 2025 05:01:25 +0000 Manifest next update: Sun 07 Dec 2025 05:01:25 +0000 Files and hashes: 1: TbP72HU__x5-xpUX6PI_i9iyDaM.roa (hash: FLkmCrV+1GGkGMAjoDFB0RSF/lM4teoeIsYHwGZQivI=) 2: U5LzRtt7TqgwcmDyAykCjfC_tyg.roa (hash: MnSBkpXKCh2/fnPZQ+yyW+as55btZcpHuSExX+Fr9KQ=) 3: XigJUGU6fsWMUzhdALOB77tGWCQ.crl (hash: Kp7GEJyN6m4cmgMQ5KMPdlSMPLy4n40qJC95F4SQz60=) 4: XsQzypEDi3dbORi7Sjru6BV7874.roa (hash: kUYaLmJEoY+QPfzf/QKKUFqO5UN/o9EcoVpI3bOIxPI=) 5: ihdmZnPFfRQouiDEX9hoP7FnJXY.roa (hash: vMOPJDVg/5XoKEVMMHXuz77Sx41YI4RzrWjRsAiZbwY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.mft rsync://rpki.ripe.net/repository/DEFAULT/XigJUGU6fsWMUzhdALOB77tGWCQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:48:ad:8f:28:ea:3e:1d:20:de:44:27:ac:75:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5e280950653a7ec58c53385d00b381efbb465824 Validity Not Before: Dec 6 05:01:25 2025 GMT Not After : Dec 7 05:01:25 2025 GMT Subject: CN=f23b77bfee77cbb4f6330b07deead0f896912806 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:69:0b:92:d3:5c:e1:9e:8c:60:b8:53:2b:a0: 76:41:0f:19:c8:63:29:36:43:48:04:95:33:76:95: 3c:3a:d9:a4:a7:01:48:e9:1c:76:38:12:41:af:37: 90:29:23:e7:5c:59:5f:14:e7:a5:bb:3a:30:63:89: 5c:58:cb:45:22:72:f3:25:b9:9d:75:3f:b4:19:d1: cf:a3:83:75:a0:16:e3:f1:db:09:f4:73:c4:63:59: cc:66:eb:f3:b3:87:cf:c4:4d:36:69:ed:56:9d:8f: f0:53:7c:c3:30:b2:f8:ca:8b:0f:e1:6f:af:79:c8: b4:f0:b5:6f:ad:c1:26:78:cd:75:72:3b:10:9f:09: 45:44:f2:88:0d:08:24:c6:bb:b5:fd:88:3a:fe:eb: b4:15:55:44:6d:50:9f:c4:dd:06:95:34:3c:9a:4f: eb:f3:e2:46:33:d5:3f:b6:4d:17:b1:09:95:7f:57: 3b:70:77:0f:b1:8f:0e:20:6f:c9:40:55:b7:df:bd: a2:84:14:7f:6f:88:98:c1:f1:a5:81:d7:3e:e9:98: 36:af:4c:ff:09:ab:72:93:67:da:97:4a:af:22:09: e2:0e:50:39:af:42:c1:86:20:7c:4f:6f:e8:af:02: 92:6a:37:7e:8c:5e:f1:c3:27:29:13:5e:29:4d:af: 58:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:3B:77:BF:EE:77:CB:B4:F6:33:0B:07:DE:EA:D0:F8:96:91:28:06 X509v3 Authority Key Identifier: keyid:5E:28:09:50:65:3A:7E:C5:8C:53:38:5D:00:B3:81:EF:BB:46:58:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XigJUGU6fsWMUzhdALOB77tGWCQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:30:d7:06:c1:ea:cf:2c:9b:1a:fa:08:b8:df:b6:05:e8:39: a2:b5:0a:15:a0:6b:6d:af:b6:8e:60:9d:a9:06:92:dd:3a:e7: 94:74:0d:7e:06:35:2b:76:e3:42:85:32:63:b2:a0:31:c9:48: 0e:b8:eb:49:56:22:51:19:55:16:23:d1:e0:71:42:bd:67:67: 27:13:6d:4c:88:f4:49:28:8b:b5:81:8f:f0:e3:09:ae:e6:be: d6:a1:31:fb:24:40:f4:55:78:2e:8e:d4:e8:48:38:9a:04:25: b9:04:df:3b:a4:67:a1:b8:dd:4b:8d:9a:90:aa:8d:f3:ff:40: 8a:d5:09:55:69:fa:85:09:78:05:02:8b:55:f4:db:c7:55:86: fa:a5:13:38:d0:0a:ec:11:06:59:2d:da:98:07:b2:a3:2f:7f: 0f:a2:61:c8:5e:0f:66:25:80:bf:d4:d0:07:12:da:90:1f:0b: a8:d7:b1:be:f9:22:83:25:5c:ff:53:9d:b7:f2:a9:1e:d1:ac: a3:f1:92:40:72:bf:59:d7:7b:91:2c:7b:71:fc:11:42:55:8a: ac:e4:ed:fb:50:73:e9:05:6b:f6:db:b1:4b:19:b6:7a:51:94: 10:8b:1d:2a:8e:6e:4b:a9:8a:db:39:1f:82:8d:28:34:79:f4: bf:bc:27:2d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCUitjyjqPh0g3kQnrHU7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlMjgwOTUwNjUzYTdlYzU4YzUzMzg1ZDAwYjM4MWVmYmI0 NjU4MjQwHhcNMjUxMjA2MDUwMTI1WhcNMjUxMjA3MDUwMTI1WjAzMTEwLwYDVQQD EyhmMjNiNzdiZmVlNzdjYmI0ZjYzMzBiMDdkZWVhZDBmODk2OTEyODA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjWkLktNc4Z6MYLhTK6B2QQ8ZyGMp NkNIBJUzdpU8OtmkpwFI6Rx2OBJBrzeQKSPnXFlfFOeluzowY4lcWMtFInLzJbmd dT+0GdHPo4N1oBbj8dsJ9HPEY1nMZuvzs4fPxE02ae1WnY/wU3zDMLL4yosP4W+v eci08LVvrcEmeM11cjsQnwlFRPKIDQgkxru1/Yg6/uu0FVVEbVCfxN0GlTQ8mk/r 8+JGM9U/tk0XsQmVf1c7cHcPsY8OIG/JQFW3372ihBR/b4iYwfGlgdc+6Zg2r0z/ Catyk2fal0qvIgniDlA5r0LBhiB8T2/orwKSajd+jF7xwycpE14pTa9YYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPI7d7/ud8u09jMLB97q0PiWkSgGMB8GA1UdIwQY MBaAFF4oCVBlOn7FjFM4XQCzge+7RlgkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGlnSlVHVTZmc1dNVXpoZEFMT0I3N3RHV0NRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC83MmM1ODctYzVjYi00MGU0LThjZTEt ZTFiNTM1NTZjMWMzLzEvWGlnSlVHVTZmc1dNVXpoZEFMT0I3N3RHV0NRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC83MmM1ODctYzVjYi00MGU0LThjZTEtZTFiNTM1NTZjMWMz LzEvWGlnSlVHVTZmc1dNVXpoZEFMT0I3N3RHV0NRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUTDXBsHq zyybGvoIuN+2Beg5orUKFaBrba+2jmCdqQaS3TrnlHQNfgY1K3bjQoUyY7KgMclI DrjrSVYiURlVFiPR4HFCvWdnJxNtTIj0SSiLtYGP8OMJrua+1qEx+yRA9FV4Lo7U 6Eg4mgQluQTfO6RnobjdS42akKqN8/9AitUJVWn6hQl4BQKLVfTbx1WG+qUTONAK 7BEGWS3amAeyoy9/D6JhyF4PZiWAv9TQBxLakB8LqNexvvkigyVc/1Odt/KpHtGs o/GSQHK/Wdd7kSx7cfwRQlWKrOTt+1Bz6QVr9tuxSxm2elGUEIsdKo5uS6mK2zkf go0oNHn0v7wnLQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:24:25 2025 by rpki-client