This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft File: IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft (raw, json) Hash identifier: JoyrpoAiUYQBzSt6IzEI4y9Y/Cb8aAobS8zhD6kMmEw= Subject key identifier: 35:5D:59:8B:98:D3:D2:3E:F9:76:DE:05:F2:64:48:F5:BC:27:31:B7 Authority key identifier: 21:7B:49:1D:CC:B5:63:22:16:D8:0B:48:F8:D6:28:6B:1E:FF:D8:D7 Certificate issuer: /CN=217b491dccb5632216d80b48f8d6286b1effd8d7 Certificate serial: 019B077DA75A9C91215E5C7C7FD64EEA2FA5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft Manifest number: 12C0 Signing time: Wed 10 Dec 2025 09:00:33 +0000 Manifest this update: Wed 10 Dec 2025 09:00:33 +0000 Manifest next update: Thu 11 Dec 2025 09:00:33 +0000 Files and hashes: 1: EJEuDnvuXiXSyssiuX3zmzznLmY.roa (hash: Oz6+eDgQ3iUmX8LJR3oXdjyr343hyansN3/KTvsHwJc=) 2: IXtJHcy1YyIW2AtI-NYoax7_2Nc.crl (hash: uYmno2Kd2a/2sOHFynJ9x4Hrs946nGvs0aWgw60nkiw=) 3: nrEMql0zV0P3dpHmZH6RSxKuJFg.roa (hash: 1gVFTzoG8NuAbMx8im63wNse5kBK1gIOddqrPu/oX6A=) 4: oCdnapI8_jAqvSx-q8QqfeZBfpI.roa (hash: 4dP+f2erpGi6jIqWI+u+ltnYaQjR1Rx/ox+mHYa6aIY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.crl rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 09:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:07:7d:a7:5a:9c:91:21:5e:5c:7c:7f:d6:4e:ea:2f:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=217b491dccb5632216d80b48f8d6286b1effd8d7 Validity Not Before: Dec 10 09:00:33 2025 GMT Not After : Dec 11 09:00:33 2025 GMT Subject: CN=355d598b98d3d23ef976de05f26448f5bc2731b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:66:3d:67:10:3d:e5:29:76:16:c0:c3:29:b3: c1:20:6f:1c:3f:bd:dd:76:4f:55:35:31:6f:a2:02: 0d:64:98:e0:4a:7f:cb:8d:99:9f:0c:83:0b:6e:62: 90:a9:6e:7b:d1:f2:ac:b9:40:90:56:0d:f7:90:e2: 29:6d:9b:a8:7f:28:be:24:89:93:15:b1:1a:eb:1c: 66:03:77:24:32:68:af:d6:eb:06:35:16:1a:2f:5a: 3a:a2:4a:d6:a7:03:94:a5:7e:91:11:54:39:bf:c1: 3e:ee:fb:d8:93:dc:34:00:48:a3:c6:3e:5f:fc:96: 0c:fa:7a:63:e8:bc:5a:93:5e:7b:c3:82:40:71:04: a8:a6:6d:fc:d7:56:fb:74:cf:30:c5:73:f7:62:c9: d9:3e:70:89:e4:04:9f:d5:fa:4c:6d:ab:dd:b4:f4: 4e:9b:39:61:1e:3a:eb:4d:fb:1b:f3:0f:3e:c8:70: 67:23:c7:b5:84:fb:87:88:19:f3:2b:6f:a8:79:e7: 77:11:b4:ec:b4:d1:44:ca:17:50:f9:ec:85:c1:27: af:20:3c:63:ba:0d:d6:82:ac:49:6f:24:c3:3b:d8: 23:15:d1:ee:30:b3:e3:af:2f:90:a1:2d:b5:fe:70: a2:4a:96:77:68:1b:3d:95:40:93:84:b7:a9:af:cb: ec:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:5D:59:8B:98:D3:D2:3E:F9:76:DE:05:F2:64:48:F5:BC:27:31:B7 X509v3 Authority Key Identifier: keyid:21:7B:49:1D:CC:B5:63:22:16:D8:0B:48:F8:D6:28:6B:1E:FF:D8:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:e2:63:34:c8:cb:e0:f2:03:60:0c:06:72:52:5d:5b:64:7f: 16:58:0b:b6:9f:65:f8:39:41:d3:dd:cf:51:4f:04:a6:cd:fa: 77:4d:c0:39:f1:97:14:0e:f8:54:54:e3:73:8e:6b:5f:2b:2b: d9:c7:9b:10:32:3a:ed:93:e8:be:97:34:2b:13:c3:f0:37:b8: 60:3c:96:3c:cc:48:25:b2:e2:9c:3b:52:3f:ce:1c:13:81:99: f8:36:a1:ec:53:a3:d7:ac:0e:7a:ec:e3:e3:5c:7e:59:c6:d3: d9:d8:21:f7:3a:42:0f:5e:6c:1e:94:7b:8d:84:9a:58:d8:65: 36:97:12:9c:6c:2b:10:d1:34:b3:5a:a7:46:c7:81:36:b2:92: 29:34:bc:ee:38:4b:65:40:ae:8f:c6:2d:8e:89:5b:51:03:e9: 2e:a7:af:c2:14:16:2d:d4:a4:80:75:3f:ee:a6:b2:14:b1:51: b4:4f:ed:14:a5:17:68:78:23:5c:17:2f:43:3d:33:fb:e6:66: aa:09:40:a1:c5:fc:6d:65:52:96:6b:e1:16:44:1a:d8:56:ca: 26:e7:42:39:3f:14:2e:30:e2:71:c2:0c:21:5b:46:67:64:17: bb:35:d0:03:df:4a:1b:7d:2d:53:51:32:3e:71:45:4d:cc:55: a0:f4:de:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsHfadanJEhXlx8f9ZO6i+lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxN2I0OTFkY2NiNTYzMjIxNmQ4MGI0OGY4ZDYyODZiMWVm ZmQ4ZDcwHhcNMjUxMjEwMDkwMDMzWhcNMjUxMjExMDkwMDMzWjAzMTEwLwYDVQQD EygzNTVkNTk4Yjk4ZDNkMjNlZjk3NmRlMDVmMjY0NDhmNWJjMjczMWI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArGY9ZxA95Sl2FsDDKbPBIG8cP73d dk9VNTFvogINZJjgSn/LjZmfDIMLbmKQqW570fKsuUCQVg33kOIpbZuofyi+JImT FbEa6xxmA3ckMmiv1usGNRYaL1o6okrWpwOUpX6REVQ5v8E+7vvYk9w0AEijxj5f /JYM+npj6Lxak157w4JAcQSopm3811b7dM8wxXP3YsnZPnCJ5ASf1fpMbavdtPRO mzlhHjrrTfsb8w8+yHBnI8e1hPuHiBnzK2+oeed3EbTstNFEyhdQ+eyFwSevIDxj ug3WgqxJbyTDO9gjFdHuMLPjry+QoS21/nCiSpZ3aBs9lUCThLepr8vsAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDVdWYuY09I++XbeBfJkSPW8JzG3MB8GA1UdIwQY MBaAFCF7SR3MtWMiFtgLSPjWKGse/9jXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVh0SkhjeTFZeUlXMkF0SS1OWW9heDdfMk5jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9lOWYyOWMtOTIzMS00NTBkLWFkYjAt NmRlMDVhMzE2MjM5LzEvSVh0SkhjeTFZeUlXMkF0SS1OWW9heDdfMk5jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9lOWYyOWMtOTIzMS00NTBkLWFkYjAtNmRlMDVhMzE2MjM5 LzEvSVh0SkhjeTFZeUlXMkF0SS1OWW9heDdfMk5jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfuJjNMjL 4PIDYAwGclJdW2R/FlgLtp9l+DlB093PUU8Eps36d03AOfGXFA74VFTjc45rXysr 2cebEDI67ZPovpc0KxPD8De4YDyWPMxIJbLinDtSP84cE4GZ+Dah7FOj16wOeuzj 41x+WcbT2dgh9zpCD15sHpR7jYSaWNhlNpcSnGwrENE0s1qnRseBNrKSKTS87jhL ZUCuj8YtjolbUQPpLqevwhQWLdSkgHU/7qayFLFRtE/tFKUXaHgjXBcvQz0z++Zm qglAocX8bWVSlmvhFkQa2FbKJudCOT8ULjDiccIMIVtGZ2QXuzXQA99KG30tU1Ey PnFFTcxVoPTeSw== -----END CERTIFICATE-----Generated at Wed Dec 10 13:44:40 2025 by rpki-client