This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft File: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft (raw, json) Hash identifier: e295PHLhUQbxusDajFDvEcOf1k+EFRWlR2v8bZDgwWM= Subject key identifier: CE:79:4C:1E:FA:57:F5:A4:C2:95:EB:A3:E0:E4:82:95:19:CA:CE:C6 Authority key identifier: 88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D Certificate issuer: /CN=88a8d325f97b03713342682fc408d53368740e7d Certificate serial: 019AF164934B90DA98B00BB4691856920EE5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft Manifest number: 11EE Signing time: Sat 06 Dec 2025 02:01:31 +0000 Manifest this update: Sat 06 Dec 2025 02:01:31 +0000 Manifest next update: Sun 07 Dec 2025 02:01:31 +0000 Files and hashes: 1: 1g597y06foQbOFcS_h93SwkhNOQ.roa (hash: TZdC67NT8fkd1drCN7n7TEHOt/q1UG1cqUfoMBev2T4=) 2: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl (hash: 7MT1t3BNnjmcIX02Pd5r7F8PPnsK40cuTyqVcJM+oP8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:93:4b:90:da:98:b0:0b:b4:69:18:56:92:0e:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88a8d325f97b03713342682fc408d53368740e7d Validity Not Before: Dec 6 02:01:31 2025 GMT Not After : Dec 7 02:01:31 2025 GMT Subject: CN=ce794c1efa57f5a4c295eba3e0e4829519cacec6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:89:e7:e6:d7:36:a0:0d:b7:56:3b:f8:56:bf: d9:5d:0f:30:9c:98:f4:6c:ec:fd:bf:90:20:81:b3: e2:cb:a0:8b:4a:85:06:bc:27:f5:8b:c3:90:3e:1d: 58:b0:c7:1e:23:5b:8a:96:7e:d1:e1:e6:80:17:42: 33:de:d1:6d:fa:6e:e8:57:cb:b5:74:94:06:1a:dd: d7:af:dd:6b:32:b2:42:eb:8d:e4:87:de:02:f8:c7: 6b:19:9b:df:49:da:e4:ee:bb:36:e4:31:e2:23:43: 89:ba:36:80:b1:0d:04:bb:cb:1b:00:5c:94:15:34: e6:8f:07:d5:96:04:25:ee:61:dd:96:6a:f1:3d:ff: 05:55:e4:cf:05:9c:3c:9d:74:ff:08:aa:e7:e9:0f: 4f:69:63:d2:70:a3:92:c0:c8:da:4b:2d:d6:49:77: a2:a2:33:c7:81:63:d9:fd:15:23:38:49:e6:ca:a2: ae:80:5d:59:a5:dc:2a:9f:b8:b8:f5:e5:83:a0:32: e8:d4:bc:86:0a:d8:32:85:3b:b4:86:ef:c3:3d:aa: 58:d3:df:3f:32:98:67:7a:6e:dd:5e:f2:8e:0a:a6: 94:f4:d6:7b:eb:fe:ed:40:0a:44:d1:62:21:b1:a9: d0:8a:16:76:06:50:f9:07:2b:00:5a:1c:fe:12:6f: b6:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:79:4C:1E:FA:57:F5:A4:C2:95:EB:A3:E0:E4:82:95:19:CA:CE:C6 X509v3 Authority Key Identifier: keyid:88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:1a:7e:69:ef:35:eb:98:35:0f:e3:e7:b7:c3:27:57:1c:16: f6:80:b1:7f:f0:3a:27:de:9c:55:ee:f0:98:de:7b:f4:8e:a9: ca:98:51:25:e2:25:1e:3e:d4:60:e5:d0:c0:6f:30:32:61:3c: 7d:12:fd:ab:9f:30:99:99:b7:93:82:da:ee:97:7e:77:40:a7: a4:58:24:52:00:26:e6:59:e8:45:1b:01:db:5e:5b:02:78:81: e1:e6:b6:f4:13:05:35:a2:40:fb:71:c4:a0:43:60:9a:ef:96: e8:db:a4:cd:7c:23:12:07:57:13:23:47:0d:4a:26:b5:d1:8c: 14:a1:a7:08:5b:e4:22:e9:b0:1c:c9:ee:4c:2e:33:d1:a4:67: 03:5a:cf:30:93:45:29:1b:36:08:8a:5f:d8:44:02:0f:51:b3: c3:a6:2f:9b:fb:67:07:a6:d4:f3:12:6e:20:3d:50:ce:dc:48: 64:28:78:fc:90:fe:07:8a:2a:27:7c:17:fe:41:e1:2b:dd:45: 37:a0:a2:7a:fa:b6:43:8a:ba:6e:20:4f:a9:25:61:db:fd:7c: a2:5e:34:9f:c5:7b:89:59:11:41:8b:90:30:f7:33:89:f7:f1: 43:dd:78:82:e0:ca:64:b5:7a:27:77:fa:98:7c:09:d5:cf:4f: d0:b8:ce:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZJNLkNqYsAu0aRhWkg7lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4YThkMzI1Zjk3YjAzNzEzMzQyNjgyZmM0MDhkNTMzNjg3 NDBlN2QwHhcNMjUxMjA2MDIwMTMxWhcNMjUxMjA3MDIwMTMxWjAzMTEwLwYDVQQD EyhjZTc5NGMxZWZhNTdmNWE0YzI5NWViYTNlMGU0ODI5NTE5Y2FjZWM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtInn5tc2oA23Vjv4Vr/ZXQ8wnJj0 bOz9v5AggbPiy6CLSoUGvCf1i8OQPh1YsMceI1uKln7R4eaAF0Iz3tFt+m7oV8u1 dJQGGt3Xr91rMrJC643kh94C+MdrGZvfSdrk7rs25DHiI0OJujaAsQ0Eu8sbAFyU FTTmjwfVlgQl7mHdlmrxPf8FVeTPBZw8nXT/CKrn6Q9PaWPScKOSwMjaSy3WSXei ojPHgWPZ/RUjOEnmyqKugF1Zpdwqn7i49eWDoDLo1LyGCtgyhTu0hu/DPapY098/ Mphnem7dXvKOCqaU9NZ76/7tQApE0WIhsanQihZ2BlD5BysAWhz+Em+2sQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM55TB76V/WkwpXro+DkgpUZys7GMB8GA1UdIwQY MBaAFIio0yX5ewNxM0JoL8QI1TNodA59MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUtqVEpmbDdBM0V6UW1ndnhBalZNMmgwRG4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy82NDViYjItZmMzNC00MjliLWE3ZjAt Y2YwM2ZhNGNhMDgzLzEvaUtqVEpmbDdBM0V6UW1ndnhBalZNMmgwRG4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy82NDViYjItZmMzNC00MjliLWE3ZjAtY2YwM2ZhNGNhMDgz LzEvaUtqVEpmbDdBM0V6UW1ndnhBalZNMmgwRG4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbRp+ae81 65g1D+Pnt8MnVxwW9oCxf/A6J96cVe7wmN579I6pyphRJeIlHj7UYOXQwG8wMmE8 fRL9q58wmZm3k4La7pd+d0CnpFgkUgAm5lnoRRsB215bAniB4ea29BMFNaJA+3HE oENgmu+W6NukzXwjEgdXEyNHDUomtdGMFKGnCFvkIumwHMnuTC4z0aRnA1rPMJNF KRs2CIpf2EQCD1Gzw6Yvm/tnB6bU8xJuID1QztxIZCh4/JD+B4oqJ3wX/kHhK91F N6Cievq2Q4q6biBPqSVh2/18ol40n8V7iVkRQYuQMPcziffxQ914guDKZLV6J3f6 mHwJ1c9P0LjOwg== -----END CERTIFICATE-----Generated at Sat Dec 6 11:58:53 2025 by rpki-client