This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft File: iCGjmu2dpO46tmOdJEUI-h6NIPY.mft (raw, json) Hash identifier: IPySOEzY3v5A2Iw8mVTZA/VB6iLk6rVE3N6eb1DHC0w= Subject key identifier: 2D:50:48:D6:88:A5:42:2A:86:8B:72:65:15:88:A5:43:5E:B0:C5:E2 Authority key identifier: 88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6 Certificate issuer: /CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6 Certificate serial: 019AF4D2B8A10DC437B2079527FF804F8CFE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft Manifest number: 1486 Signing time: Sat 06 Dec 2025 18:00:41 +0000 Manifest this update: Sat 06 Dec 2025 18:00:41 +0000 Manifest next update: Sun 07 Dec 2025 18:00:41 +0000 Files and hashes: 1: Rtf3Ok46m4V-jUnqVqrnK78wScU.roa (hash: 5UDxCVwkQxutl6l/6ucW6O+828gQteGd8WnS/oyBd0U=) 2: WYkwsfl1LrYxcZc4hOn_dwqrnKU.roa (hash: OFI3Jc8HI7chg6jym9Pd2h5sq7FHfkNT1WJbvujMSAY=) 3: iCGjmu2dpO46tmOdJEUI-h6NIPY.crl (hash: F4jd9QdGrhMyddAC8yeKsfOkMhZzD3Mr472JqLEvZC4=) 4: jzZ4tYbzqiuSSftAW3fppDa1Wqc.roa (hash: hnzQ/ndmvGoDKQ41tJpQwJMDQ2yQeCPQibsiuKB0+OU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:d2:b8:a1:0d:c4:37:b2:07:95:27:ff:80:4f:8c:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6 Validity Not Before: Dec 6 18:00:41 2025 GMT Not After : Dec 7 18:00:41 2025 GMT Subject: CN=2d5048d688a5422a868b72651588a5435eb0c5e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ed:67:70:e5:4d:4c:d2:2e:6b:6b:3f:86:ff: 9d:ba:79:61:fd:80:0a:a9:01:b5:77:06:1b:ce:8d: 56:5e:43:51:06:08:c0:9a:a4:11:58:2d:e4:5e:3d: 1b:c0:bc:bc:c3:76:01:26:fc:88:c9:08:8d:95:e2: f9:e6:21:cc:a5:d3:a6:59:65:b4:8b:7d:24:01:65: 8c:28:8a:79:19:b3:84:93:b7:aa:69:e4:0f:23:37: 37:62:01:0f:ed:62:2a:0d:a7:03:22:7a:8b:12:34: 41:9f:b1:28:91:36:e3:91:51:5e:07:1b:e7:06:68: 55:a5:15:43:13:c9:e5:5e:5b:33:fd:a3:b9:75:ee: 5b:56:3f:6b:a5:ec:e2:d5:a4:6d:92:10:59:39:7c: aa:4f:bd:9c:23:9e:29:6a:f7:9e:08:ce:4f:b3:72: 77:c6:0f:b0:1b:eb:47:85:ac:fd:a1:38:18:70:b3: 51:32:2e:da:f1:e4:49:87:10:eb:93:81:d3:fa:a2: 87:ce:96:23:66:90:65:a7:d0:e3:9c:d8:b7:cf:c8: d1:e6:77:d3:4d:d3:78:a1:e2:9f:76:ca:9b:df:ff: 8a:b8:c0:aa:93:ae:84:f7:c9:68:d3:89:a5:02:4b: 22:06:fa:27:8e:84:be:fd:33:eb:2f:72:d9:e7:1c: a4:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:50:48:D6:88:A5:42:2A:86:8B:72:65:15:88:A5:43:5E:B0:C5:E2 X509v3 Authority Key Identifier: keyid:88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:26:d2:b7:4c:00:98:b6:5c:3f:03:e2:c7:37:51:08:ff:9b: 31:fa:81:43:cd:ed:7d:65:19:91:e3:31:8d:72:8b:d7:ee:e3: 1d:15:e3:23:f9:d3:83:92:44:be:8f:77:c9:78:7a:87:f2:34: f8:1c:3b:bd:0b:86:2c:b8:00:fd:32:de:36:39:e6:1f:f9:96: 0b:5e:9b:02:7f:61:28:af:1a:58:79:88:fb:f7:ec:bb:3c:66: 0a:0b:3c:9b:f4:b8:06:a9:81:d8:3b:fa:9f:fd:71:0d:fd:aa: a2:d5:79:79:10:2c:79:3d:ea:fc:1e:ae:7e:98:f6:25:e0:b1: 29:12:56:e5:b4:30:11:e5:22:54:cf:17:a1:b1:3e:27:25:19: 08:91:34:53:9e:a1:bd:51:3f:c3:73:61:01:5c:73:ec:fb:50: 34:29:86:3f:51:bd:d5:bb:81:a8:59:ca:f1:dc:1c:07:4f:b8: fe:e9:4d:3d:77:4f:f7:11:7c:db:17:40:9b:e9:8e:42:ea:d5: 73:ab:3e:e8:5e:33:1e:a6:00:6b:c8:69:95:fd:0f:8d:a6:75: f4:b5:f1:2a:38:b3:3f:f9:62:8f:1b:bb:11:e6:d1:40:44:1b: 11:2c:87:90:0d:f1:36:52:76:7e:2e:c9:72:a5:3d:b6:68:29: f0:e7:ed:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr00rihDcQ3sgeVJ/+AT4z+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4MjFhMzlhZWQ5ZGE0ZWUzYWI2NjM5ZDI0NDUwOGZhMWU4 ZDIwZjYwHhcNMjUxMjA2MTgwMDQxWhcNMjUxMjA3MTgwMDQxWjAzMTEwLwYDVQQD EygyZDUwNDhkNjg4YTU0MjJhODY4YjcyNjUxNTg4YTU0MzVlYjBjNWUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4u1ncOVNTNIua2s/hv+dunlh/YAK qQG1dwYbzo1WXkNRBgjAmqQRWC3kXj0bwLy8w3YBJvyIyQiNleL55iHMpdOmWWW0 i30kAWWMKIp5GbOEk7eqaeQPIzc3YgEP7WIqDacDInqLEjRBn7EokTbjkVFeBxvn BmhVpRVDE8nlXlsz/aO5de5bVj9rpezi1aRtkhBZOXyqT72cI54paveeCM5Ps3J3 xg+wG+tHhaz9oTgYcLNRMi7a8eRJhxDrk4HT+qKHzpYjZpBlp9DjnNi3z8jR5nfT TdN4oeKfdsqb3/+KuMCqk66E98lo04mlAksiBvonjoS+/TPrL3LZ5xykiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC1QSNaIpUIqhotyZRWIpUNesMXiMB8GA1UdIwQY MBaAFIgho5rtnaTuOrZjnSRFCPoejSD2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUNHam11MmRwTzQ2dG1PZEpFVUktaDZOSVBZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC80OTY3NzMtNTAxOC00OGRjLWEyNDAt ZjYwZDZmNzE4MmExLzEvaUNHam11MmRwTzQ2dG1PZEpFVUktaDZOSVBZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC80OTY3NzMtNTAxOC00OGRjLWEyNDAtZjYwZDZmNzE4MmEx LzEvaUNHam11MmRwTzQ2dG1PZEpFVUktaDZOSVBZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAESbSt0wA mLZcPwPixzdRCP+bMfqBQ83tfWUZkeMxjXKL1+7jHRXjI/nTg5JEvo93yXh6h/I0 +Bw7vQuGLLgA/TLeNjnmH/mWC16bAn9hKK8aWHmI+/fsuzxmCgs8m/S4BqmB2Dv6 n/1xDf2qotV5eRAseT3q/B6ufpj2JeCxKRJW5bQwEeUiVM8XobE+JyUZCJE0U56h vVE/w3NhAVxz7PtQNCmGP1G91buBqFnK8dwcB0+4/ulNPXdP9xF82xdAm+mOQurV c6s+6F4zHqYAa8hplf0PjaZ19LXxKjizP/lijxu7EebRQEQbESyHkA3xNlJ2fi7J cqU9tmgp8OftzA== -----END CERTIFICATE-----Generated at Sat Dec 6 22:55:33 2025 by rpki-client