This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.mft File: iAsPesuH0TTDhZ1y0NGmHkdRusA.mft (raw, json) Hash identifier: BFshdgbMadsEhWUZWijo5Z5wf1MA5b7B8b9D+XuKgr8= Subject key identifier: 83:86:52:1C:E6:37:33:7A:55:2E:56:EC:E3:98:07:A8:8B:95:E8:E0 Authority key identifier: 88:0B:0F:7A:CB:87:D1:34:C3:85:9D:72:D0:D1:A6:1E:47:51:BA:C0 Certificate issuer: /CN=880b0f7acb87d134c3859d72d0d1a61e4751bac0 Certificate serial: 019AF3F72EBCBD720A2F5DC975E5A05E6E44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iAsPesuH0TTDhZ1y0NGmHkdRusA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.mft Manifest number: 0E0D Signing time: Sat 06 Dec 2025 14:00:54 +0000 Manifest this update: Sat 06 Dec 2025 14:00:54 +0000 Manifest next update: Sun 07 Dec 2025 14:00:54 +0000 Files and hashes: 1: UubezK0uH4JLqxbhgPEY0N-6nSw.roa (hash: Oagl7z5x1jSe2CWCzxXuth3kqDf2dweMIxQL2+jadVg=) 2: iAsPesuH0TTDhZ1y0NGmHkdRusA.crl (hash: xMrg/Yi5L121LY75AMn01CuA87UspWBTrvUO1HDGuPo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.crl rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.mft rsync://rpki.ripe.net/repository/DEFAULT/iAsPesuH0TTDhZ1y0NGmHkdRusA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:f7:2e:bc:bd:72:0a:2f:5d:c9:75:e5:a0:5e:6e:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=880b0f7acb87d134c3859d72d0d1a61e4751bac0 Validity Not Before: Dec 6 14:00:54 2025 GMT Not After : Dec 7 14:00:54 2025 GMT Subject: CN=8386521ce637337a552e56ece39807a88b95e8e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c3:11:cb:97:c0:cb:3e:5c:af:aa:65:0a:72: 47:c3:0b:3b:5c:4c:cf:be:b8:9d:72:0e:98:21:c9: d7:bc:9d:b0:e1:c8:71:46:9b:ba:8a:b7:16:0a:e9: 6c:da:29:39:53:8d:07:e2:0e:b0:26:4d:a3:d0:82: 7d:f5:93:fe:41:ba:75:12:9e:da:f4:85:fb:06:8e: d2:4d:43:60:a9:37:5a:54:0e:c3:70:51:cf:09:79: ec:a7:5d:6f:e0:20:99:b3:6f:8f:27:a5:4c:21:f4: 66:46:cc:78:d3:a4:75:47:34:5d:51:f1:3a:d8:04: 11:ff:38:6c:e3:c9:ba:e9:e0:b3:d6:65:b4:b8:12: 25:a1:d7:8e:09:c6:77:24:97:01:a0:32:e2:80:a6: ed:8d:d3:f5:41:ef:f5:ef:0e:85:ba:b4:d7:46:40: 06:e7:84:2e:a5:5b:d9:66:0a:2a:91:63:b0:f8:41: 92:e8:ed:2e:e2:da:2b:ff:89:ce:0e:e3:44:ef:d8: f6:64:d3:7b:8b:10:d7:ba:31:44:bb:5c:d4:b1:b3: 0f:59:e5:f3:ad:e3:0b:88:eb:47:93:2a:cd:9b:f9: cc:f9:91:b5:8e:95:14:59:19:b2:ca:f7:c9:99:d2: 73:1d:05:36:29:5f:57:fe:10:28:58:eb:d6:c6:fe: 9d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:86:52:1C:E6:37:33:7A:55:2E:56:EC:E3:98:07:A8:8B:95:E8:E0 X509v3 Authority Key Identifier: keyid:88:0B:0F:7A:CB:87:D1:34:C3:85:9D:72:D0:D1:A6:1E:47:51:BA:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iAsPesuH0TTDhZ1y0NGmHkdRusA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:6a:4d:2c:cc:8b:72:ed:99:fb:85:bf:2e:55:f9:72:01:63: e4:14:a7:db:e5:66:fe:2f:98:4a:92:34:c3:2e:95:e7:04:c8: 08:67:77:ac:cc:3d:2d:30:5f:58:00:c4:fd:1a:5d:ad:15:53: 08:d4:e3:78:68:5a:37:80:b5:1b:ab:8b:a1:f7:ae:50:24:fe: 7d:8b:58:ce:75:1a:73:2e:41:bc:dc:e8:cd:45:9a:e9:db:e0: fb:64:e6:46:5f:f7:89:19:98:4f:af:45:5b:5b:da:60:73:e4: 56:9b:35:4e:89:c9:4b:7f:0b:c0:46:8b:a4:9b:cc:a5:db:72: c0:26:a1:04:d1:10:0e:c2:b0:66:1d:07:c5:33:b1:d7:2b:2d: 98:fe:83:f7:3e:73:2a:75:90:49:18:7e:f9:ad:f1:29:a6:1b: 8d:1b:d5:50:cd:ea:d6:fc:20:25:3b:c5:1b:84:75:81:76:0e: 0c:48:a2:2d:1a:cb:e3:7a:39:9a:61:b5:9c:17:10:47:c6:00: fc:94:c1:dc:9a:08:3f:a0:ed:7d:e5:e7:c2:b5:c4:21:1d:ee: 7e:82:66:21:3a:78:fa:de:c1:18:b6:df:6f:92:e9:44:18:36: f1:dd:be:15:72:29:b3:a4:b0:5e:c4:67:87:31:8d:6d:29:49: a7:dd:23:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrz9y68vXIKL13JdeWgXm5EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4MGIwZjdhY2I4N2QxMzRjMzg1OWQ3MmQwZDFhNjFlNDc1 MWJhYzAwHhcNMjUxMjA2MTQwMDU0WhcNMjUxMjA3MTQwMDU0WjAzMTEwLwYDVQQD Eyg4Mzg2NTIxY2U2MzczMzdhNTUyZTU2ZWNlMzk4MDdhODhiOTVlOGUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3cMRy5fAyz5cr6plCnJHwws7XEzP vridcg6YIcnXvJ2w4chxRpu6ircWCuls2ik5U40H4g6wJk2j0IJ99ZP+Qbp1Ep7a 9IX7Bo7STUNgqTdaVA7DcFHPCXnsp11v4CCZs2+PJ6VMIfRmRsx406R1RzRdUfE6 2AQR/zhs48m66eCz1mW0uBIlodeOCcZ3JJcBoDLigKbtjdP1Qe/17w6FurTXRkAG 54QupVvZZgoqkWOw+EGS6O0u4tor/4nODuNE79j2ZNN7ixDXujFEu1zUsbMPWeXz reMLiOtHkyrNm/nM+ZG1jpUUWRmyyvfJmdJzHQU2KV9X/hAoWOvWxv6dzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIOGUhzmNzN6VS5W7OOYB6iLlejgMB8GA1UdIwQY MBaAFIgLD3rLh9E0w4WdctDRph5HUbrAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUFzUGVzdUgwVFREaFoxeTBOR21Ia2RSdXNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi80NDVhNjYtYjc2Yi00YjQ4LWEwMmQt YmMyODlhOTMxYjRiLzEvaUFzUGVzdUgwVFREaFoxeTBOR21Ia2RSdXNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi80NDVhNjYtYjc2Yi00YjQ4LWEwMmQtYmMyODlhOTMxYjRi LzEvaUFzUGVzdUgwVFREaFoxeTBOR21Ia2RSdXNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAmpNLMyL cu2Z+4W/LlX5cgFj5BSn2+Vm/i+YSpI0wy6V5wTICGd3rMw9LTBfWADE/RpdrRVT CNTjeGhaN4C1G6uLofeuUCT+fYtYznUacy5BvNzozUWa6dvg+2TmRl/3iRmYT69F W1vaYHPkVps1TonJS38LwEaLpJvMpdtywCahBNEQDsKwZh0HxTOx1ystmP6D9z5z KnWQSRh++a3xKaYbjRvVUM3q1vwgJTvFG4R1gXYODEiiLRrL43o5mmG1nBcQR8YA /JTB3JoIP6DtfeXnwrXEIR3ufoJmITp4+t7BGLbfb5LpRBg28d2+FXIps6SwXsRn hzGNbSlJp90jwQ== -----END CERTIFICATE-----Generated at Sat Dec 6 17:01:16 2025 by rpki-client