This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft File: IbgvyO2I-ZyrV9doAxdusnqfC_o.mft (raw, json) Hash identifier: z6Pr8mOvGOyO0j0nZDzsFWXQH5eeuBysyAA8NiCR0vs= Subject key identifier: 7C:BB:3B:22:88:C1:6A:7E:87:B6:48:D3:08:E2:C2:F1:1B:A3:97:23 Authority key identifier: 21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA Certificate issuer: /CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa Certificate serial: 019B2EF91C910CA357B19405F2A70264160D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft Manifest number: 0F0D Signing time: Thu 18 Dec 2025 01:00:36 +0000 Manifest this update: Thu 18 Dec 2025 01:00:36 +0000 Manifest next update: Fri 19 Dec 2025 01:00:36 +0000 Files and hashes: 1: IbgvyO2I-ZyrV9doAxdusnqfC_o.crl (hash: AVLPvtpl0p46werqEIbHzedH7om/qAIAFlsQNsCv5M8=) 2: ItUhScrgPwKkKUyhqEMMP6UQG5o.roa (hash: gmpeHaOEVGgSYmwc/n6Xey1Y6I6lJR2qqLtWqmrTzmc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:f9:1c:91:0c:a3:57:b1:94:05:f2:a7:02:64:16:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa Validity Not Before: Dec 18 01:00:36 2025 GMT Not After : Dec 19 01:00:36 2025 GMT Subject: CN=7cbb3b2288c16a7e87b648d308e2c2f11ba39723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:06:6b:f4:f3:bd:8e:e7:86:3b:1d:1b:f0:d8: 21:51:8f:83:80:c4:92:47:64:df:d1:14:38:a5:f1: 09:94:b3:a4:20:dd:50:ef:d0:e3:04:a7:f2:6c:7a: dc:d0:57:89:43:a9:ae:e3:84:23:01:ef:c0:2b:50: cb:6f:65:eb:03:20:fc:83:71:d8:7c:f4:7c:b6:ec: c2:02:bd:1b:48:ae:65:7d:7d:01:ed:7d:c5:e4:0f: ff:23:18:11:9e:81:7f:b2:9d:ca:e1:90:03:f6:54: 1d:5f:69:69:e3:3e:36:b8:c8:aa:c9:13:dc:6c:58: 95:6a:d1:45:ae:64:57:34:f6:1d:ce:ee:19:85:e1: 43:2f:45:b4:cc:76:af:91:9b:ae:e4:f8:ef:b4:65: b8:89:83:d2:fb:da:c5:0a:37:25:27:1b:93:6a:cc: 56:b1:6b:6e:de:6a:2f:bc:80:43:b4:a2:97:49:59: 0c:27:03:33:45:23:ad:e1:25:96:3a:37:81:6a:d4: a6:ba:32:87:f1:11:9b:b1:33:b7:02:36:fe:05:d4: fe:3d:d7:e1:76:ac:ec:25:e9:4b:d9:44:3d:78:7e: 69:d5:1d:da:1d:35:31:00:ed:ca:ef:92:4d:69:dd: 63:bb:75:f6:17:8e:72:fc:15:7b:9a:c0:67:a7:1b: 38:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:BB:3B:22:88:C1:6A:7E:87:B6:48:D3:08:E2:C2:F1:1B:A3:97:23 X509v3 Authority Key Identifier: keyid:21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:c4:db:8c:ce:03:8c:4e:93:40:9c:21:e7:70:08:a6:b6:a7: cf:af:48:53:b0:f0:d7:b4:f9:1c:34:6f:02:b9:4f:e9:c8:cd: d4:3c:ad:54:5f:f1:86:33:0f:2b:f9:d2:c6:72:36:1f:75:7e: 88:25:c6:f4:aa:42:ff:b8:b6:ce:fa:9d:24:c1:ca:ff:e8:f9: 6b:38:7c:aa:14:ae:a5:cc:11:d2:bc:1c:38:be:66:69:7b:d0: 2d:1e:0b:0e:a2:e9:29:f5:00:e9:ad:1f:da:6a:83:0d:5f:d3: e5:b4:78:a0:53:b8:66:2a:dd:3d:83:2c:0f:22:fc:be:91:4f: d1:8c:20:c0:1a:fa:0f:9a:65:c2:36:3f:95:df:07:69:71:c2: 50:e3:aa:64:06:44:65:db:d8:a5:56:38:27:23:91:ab:bf:60: 5b:9f:28:9f:ae:50:86:c5:55:08:4d:64:af:9e:40:47:0e:83: 71:7d:27:8c:87:c5:1b:4f:fc:af:54:92:20:37:26:78:7f:d8: 4e:3e:8e:f1:a2:4e:20:b3:60:0f:5e:31:f7:3a:fd:ed:f6:43: e6:dc:68:a2:ee:a5:e2:4f:50:a4:7f:83:fa:ed:c9:a7:80:45: 65:bd:55:51:09:ac:e9:56:64:7e:a7:b5:fd:aa:f5:39:b7:be: 3b:4d:80:4f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsu+RyRDKNXsZQF8qcCZBYNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxYjgyZmM4ZWQ4OGY5OWNhYjU3ZDc2ODAzMTc2ZWIyN2E5 ZjBiZmEwHhcNMjUxMjE4MDEwMDM2WhcNMjUxMjE5MDEwMDM2WjAzMTEwLwYDVQQD Eyg3Y2JiM2IyMjg4YzE2YTdlODdiNjQ4ZDMwOGUyYzJmMTFiYTM5NzIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqAZr9PO9jueGOx0b8NghUY+DgMSS R2Tf0RQ4pfEJlLOkIN1Q79DjBKfybHrc0FeJQ6mu44QjAe/AK1DLb2XrAyD8g3HY fPR8tuzCAr0bSK5lfX0B7X3F5A//IxgRnoF/sp3K4ZAD9lQdX2lp4z42uMiqyRPc bFiVatFFrmRXNPYdzu4ZheFDL0W0zHavkZuu5PjvtGW4iYPS+9rFCjclJxuTasxW sWtu3movvIBDtKKXSVkMJwMzRSOt4SWWOjeBatSmujKH8RGbsTO3Ajb+BdT+Pdfh dqzsJelL2UQ9eH5p1R3aHTUxAO3K75JNad1ju3X2F45y/BV7msBnpxs4cwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHy7OyKIwWp+h7ZI0wjiwvEbo5cjMB8GA1UdIwQY MBaAFCG4L8jtiPmcq1fXaAMXbrJ6nwv6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWJndnlPMkktWnlyVjlkb0F4ZHVzbnFmQ19vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9hYjY1ZjYtMzFiZS00MTQ5LWE2ZTMt YWU1ZmE1M2I5M2IyLzEvSWJndnlPMkktWnlyVjlkb0F4ZHVzbnFmQ19vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS9hYjY1ZjYtMzFiZS00MTQ5LWE2ZTMtYWU1ZmE1M2I5M2Iy LzEvSWJndnlPMkktWnlyVjlkb0F4ZHVzbnFmQ19vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkMTbjM4D jE6TQJwh53AIpranz69IU7Dw17T5HDRvArlP6cjN1DytVF/xhjMPK/nSxnI2H3V+ iCXG9KpC/7i2zvqdJMHK/+j5azh8qhSupcwR0rwcOL5maXvQLR4LDqLpKfUA6a0f 2mqDDV/T5bR4oFO4ZirdPYMsDyL8vpFP0YwgwBr6D5plwjY/ld8HaXHCUOOqZAZE ZdvYpVY4JyORq79gW58on65QhsVVCE1kr55ARw6DcX0njIfFG0/8r1SSIDcmeH/Y Tj6O8aJOILNgD14x9zr97fZD5txoou6l4k9QpH+D+u3Jp4BFZb1VUQms6VZkfqe1 /ar1Obe+O02ATw== -----END CERTIFICATE-----Generated at Thu Dec 18 05:46:03 2025 by rpki-client