This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft File: I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft (raw, json) Hash identifier: k5jvIlwxraJAOQo+Q8JiS2+abFQ72f/4nFD7b/G/vzw= Subject key identifier: 9B:FB:71:F5:1C:7A:57:A5:4D:D2:53:05:CC:91:C7:F1:CE:06:29:50 Authority key identifier: 23:F8:9F:57:D0:72:84:9E:0C:AB:21:95:CD:0B:AF:25:57:93:5E:A0 Certificate issuer: /CN=23f89f57d072849e0cab2195cd0baf2557935ea0 Certificate serial: 019AF276C9B1D57371740082A23982892429 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 07:01:02 +0000 Manifest this update: Sat 06 Dec 2025 07:01:02 +0000 Manifest next update: Sun 07 Dec 2025 07:01:02 +0000 Files and hashes: 1: I_ifV9ByhJ4MqyGVzQuvJVeTXqA.crl (hash: cs1Rb1hDXWJv5BYqG4GfqErLofs9sIt3gO6ipVBRa3M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.crl rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft rsync://rpki.ripe.net/repository/DEFAULT/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:c9:b1:d5:73:71:74:00:82:a2:39:82:89:24:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23f89f57d072849e0cab2195cd0baf2557935ea0 Validity Not Before: Dec 6 07:01:02 2025 GMT Not After : Dec 7 07:01:02 2025 GMT Subject: CN=9bfb71f51c7a57a54dd25305cc91c7f1ce062950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:eb:cc:29:64:34:a7:bc:2a:2c:98:0f:7d:22: bb:89:72:9e:ff:08:6f:50:af:ed:d1:b7:90:cf:eb: 62:a8:51:81:31:43:f8:65:a0:46:e0:29:73:24:a8: a4:99:e2:e0:02:9a:8d:9a:d9:d8:01:a3:93:98:62: 9f:86:09:6d:39:f0:67:25:f9:29:e7:d1:36:b0:be: 80:7f:4c:a3:e7:92:c9:be:5c:32:31:d7:bc:97:fa: 44:86:cb:5c:c9:5d:53:78:d0:04:25:1f:03:6c:44: 62:13:3d:2a:fc:f3:f9:5b:96:45:c1:b7:bd:e7:9e: 4c:97:96:fe:5d:5a:59:8d:09:48:ac:24:2a:42:5c: 57:53:70:4f:9e:77:bf:cd:5f:2d:23:52:c2:0a:44: 6e:f5:66:54:c7:65:2a:28:c8:8a:2c:a0:b3:11:e8: 1e:17:13:d7:7c:73:b0:8a:05:05:d5:77:6c:32:ed: 77:ec:d8:18:34:2d:c2:c9:62:39:4c:9a:38:36:0b: 6e:a4:f4:c8:a4:92:e6:fe:a5:16:db:aa:cb:52:8b: 4f:47:5a:74:14:bd:af:fd:84:f8:92:e1:b0:0a:ea: 8d:c3:85:a7:9b:e9:05:3d:eb:94:6c:cb:70:9c:a7: 98:f6:e8:d9:73:e1:06:eb:2a:88:62:b9:bf:51:be: a2:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:FB:71:F5:1C:7A:57:A5:4D:D2:53:05:CC:91:C7:F1:CE:06:29:50 X509v3 Authority Key Identifier: keyid:23:F8:9F:57:D0:72:84:9E:0C:AB:21:95:CD:0B:AF:25:57:93:5E:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:0a:32:6d:9e:5d:a7:da:56:30:b8:85:3d:0f:f5:cc:4a:ab: dd:34:c4:68:90:40:2f:c7:0d:19:7d:47:73:83:21:2b:de:c6: 45:7c:ee:9f:c9:fc:41:69:a4:cf:c6:ff:83:e4:53:16:af:19: 6c:d9:ab:f7:21:94:cb:1e:4f:da:52:62:73:59:89:74:7c:c7: 7f:1c:bc:de:11:b9:48:de:0f:d5:c0:0d:41:a2:af:4a:67:c3: 8f:f6:25:4e:1d:3f:8e:64:bd:ea:44:83:30:93:a4:b9:86:d1: 7d:1e:c2:d2:1d:b4:90:91:64:a1:27:93:47:0c:50:71:44:69: fb:dc:c4:b0:66:46:7e:73:fe:54:f8:f4:3e:87:5d:dd:1a:ce: c0:6f:c8:40:85:5b:ff:6a:48:17:42:83:ad:86:e2:c4:4d:10: 5b:0e:2e:95:89:13:71:45:23:d1:c9:1e:ba:ef:19:39:e1:02: 74:23:81:e3:16:71:d3:89:d6:db:ad:6d:5a:25:b0:de:3f:5c: a7:eb:11:d0:a3:ce:22:2e:d5:9a:95:cf:4c:b2:f8:9d:ed:1e: d8:dc:5e:fa:18:db:75:33:10:a1:a7:0c:d3:8b:67:02:14:35: 04:ac:7b:84:70:98:ab:e6:cf:3b:ad:5b:fb:30:10:96:17:0d: df:d3:12:ec -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydsmx1XNxdACCojmCiSQpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzZjg5ZjU3ZDA3Mjg0OWUwY2FiMjE5NWNkMGJhZjI1NTc5 MzVlYTAwHhcNMjUxMjA2MDcwMTAyWhcNMjUxMjA3MDcwMTAyWjAzMTEwLwYDVQQD Eyg5YmZiNzFmNTFjN2E1N2E1NGRkMjUzMDVjYzkxYzdmMWNlMDYyOTUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAouvMKWQ0p7wqLJgPfSK7iXKe/whv UK/t0beQz+tiqFGBMUP4ZaBG4ClzJKikmeLgApqNmtnYAaOTmGKfhgltOfBnJfkp 59E2sL6Af0yj55LJvlwyMde8l/pEhstcyV1TeNAEJR8DbERiEz0q/PP5W5ZFwbe9 555Ml5b+XVpZjQlIrCQqQlxXU3BPnne/zV8tI1LCCkRu9WZUx2UqKMiKLKCzEege FxPXfHOwigUF1XdsMu137NgYNC3CyWI5TJo4NgtupPTIpJLm/qUW26rLUotPR1p0 FL2v/YT4kuGwCuqNw4Wnm+kFPeuUbMtwnKeY9ujZc+EG6yqIYrm/Ub6i2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJv7cfUcelelTdJTBcyRx/HOBilQMB8GA1UdIwQY MBaAFCP4n1fQcoSeDKshlc0LryVXk16gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSV9pZlY5QnloSjRNcXlHVnpRdXZKVmVUWHFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9mMWQ0MzktN2NjNy00NDlmLWE5ZTIt MmVhNmY1ZWZiMjdmLzEvSV9pZlY5QnloSjRNcXlHVnpRdXZKVmVUWHFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC9mMWQ0MzktN2NjNy00NDlmLWE5ZTItMmVhNmY1ZWZiMjdm LzEvSV9pZlY5QnloSjRNcXlHVnpRdXZKVmVUWHFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApQoybZ5d p9pWMLiFPQ/1zEqr3TTEaJBAL8cNGX1Hc4MhK97GRXzun8n8QWmkz8b/g+RTFq8Z bNmr9yGUyx5P2lJic1mJdHzHfxy83hG5SN4P1cANQaKvSmfDj/YlTh0/jmS96kSD MJOkuYbRfR7C0h20kJFkoSeTRwxQcURp+9zEsGZGfnP+VPj0Podd3RrOwG/IQIVb /2pIF0KDrYbixE0QWw4ulYkTcUUj0ckeuu8ZOeECdCOB4xZx04nW261tWiWw3j9c p+sR0KPOIi7VmpXPTLL4ne0e2Nxe+hjbdTMQoacM04tnAhQ1BKx7hHCYq+bPO61b +zAQlhcN39MS7A== -----END CERTIFICATE-----Generated at Sat Dec 6 14:18:38 2025 by rpki-client