This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft File: IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft (raw, json) Hash identifier: An8w5b9BTK7BZZ/KOjEGU6IqWlsynh7w7TreWOQ6yLI= Subject key identifier: 80:44:03:05:76:14:D4:61:02:03:04:4D:0C:2D:F1:79:1E:3E:06:B9 Authority key identifier: 22:A7:2F:3E:D2:3E:22:94:F9:BB:6B:A6:60:24:61:66:C1:3F:83:24 Certificate issuer: /CN=22a72f3ed23e2294f9bb6ba660246166c13f8324 Certificate serial: 019AF23FEB372C3B7062A8AA87A9BA08DACF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqcvPtI-IpT5u2umYCRhZsE_gyQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft Manifest number: 1548 Signing time: Sat 06 Dec 2025 06:01:06 +0000 Manifest this update: Sat 06 Dec 2025 06:01:06 +0000 Manifest next update: Sun 07 Dec 2025 06:01:06 +0000 Files and hashes: 1: 6LkNfXDGOHhf8gBsIaO1gA2Q-VM.roa (hash: NThSJkZPm+DD4/mAcNhw9miEjuzZudxLC0TeMXxTy6I=) 2: IqcvPtI-IpT5u2umYCRhZsE_gyQ.crl (hash: KR9DmtuJ+b3K37eVkyJ6GPfRtOQqw61HDqHF5/1U4tU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft rsync://rpki.ripe.net/repository/DEFAULT/IqcvPtI-IpT5u2umYCRhZsE_gyQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:eb:37:2c:3b:70:62:a8:aa:87:a9:ba:08:da:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22a72f3ed23e2294f9bb6ba660246166c13f8324 Validity Not Before: Dec 6 06:01:06 2025 GMT Not After : Dec 7 06:01:06 2025 GMT Subject: CN=804403057614d4610203044d0c2df1791e3e06b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:70:e6:01:70:64:00:62:52:23:72:1f:bc:5d: 37:b7:d9:3b:e4:24:1b:f8:65:e0:d0:73:25:46:0a: 0c:ef:20:cc:03:ef:b9:3c:75:89:0b:cc:69:ce:42: c1:16:20:6f:48:06:97:a4:e1:20:c5:88:e0:15:5a: a4:a2:60:bd:73:8d:57:a4:93:36:18:ed:2a:80:84: 31:1a:67:76:49:f7:27:5e:8f:b9:9e:c1:97:de:68: 32:8e:30:29:dd:f2:38:29:b3:0a:84:4d:2a:b8:1f: 7e:20:5f:b0:1e:52:69:b3:55:26:a1:c4:e4:4b:ae: 33:d2:f4:20:c2:68:81:33:58:3a:21:34:ef:ee:f5: e7:39:1c:9c:44:1e:93:19:5c:ce:6a:aa:ba:6d:bc: d6:b4:1c:ff:6b:99:a3:18:c6:92:c3:3e:97:0b:51: 01:c7:d0:05:65:90:8a:6c:d8:c7:c6:65:d5:af:1f: 29:f5:6b:6a:12:db:e0:22:80:09:ec:4f:95:63:2c: b2:af:dc:9c:18:84:7f:c5:40:54:2f:4e:f8:06:fb: d0:81:8d:22:96:18:69:a2:02:c2:60:84:d6:d2:af: 28:ab:7b:b3:d5:e5:39:89:e2:4f:91:35:cb:e0:98: 28:92:b9:30:c3:e1:e4:3a:30:45:b2:ba:9a:54:86: 6d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:44:03:05:76:14:D4:61:02:03:04:4D:0C:2D:F1:79:1E:3E:06:B9 X509v3 Authority Key Identifier: keyid:22:A7:2F:3E:D2:3E:22:94:F9:BB:6B:A6:60:24:61:66:C1:3F:83:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqcvPtI-IpT5u2umYCRhZsE_gyQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:2d:79:53:38:46:61:17:6f:15:4f:7d:f9:21:d1:ec:0a:c4: 8f:97:33:6b:93:ae:33:60:0e:a8:0b:8c:51:9e:30:71:47:03: 12:b2:f1:2a:ee:1e:e8:1c:96:5f:19:b8:58:9b:6c:f7:8e:9c: e5:24:a1:1b:6a:59:f6:5c:b5:1c:1e:fc:dd:48:cb:e7:74:f5: 3e:6c:dc:f8:46:45:4e:87:a1:e2:6d:e5:e4:09:d2:1b:b3:2f: da:0f:b9:af:81:c6:75:c0:2a:a7:00:46:5f:d5:f5:93:e8:00: f0:28:b4:bc:ab:94:6d:a8:20:b3:cf:61:14:ca:f2:f7:90:46: 65:42:e3:b0:b5:3b:00:51:8f:76:21:1e:bc:c9:5c:d2:23:69: a8:69:53:02:de:11:bf:c0:02:21:22:aa:90:70:cf:b2:8b:43: cf:cc:77:6b:f2:c8:13:3a:95:d6:fb:62:1b:fd:04:ed:ef:24: 85:a0:8d:0a:c4:e5:dc:b3:46:ad:7a:22:50:d9:cb:45:8e:3b: 25:4f:76:92:2d:ec:d9:f0:b5:32:e4:01:ad:f1:26:ca:e6:82: c0:99:20:58:bc:22:46:a4:28:1e:27:32:44:ce:71:ad:3b:81: 8f:ca:b1:5d:a6:77:7f:78:3f:d7:fc:81:ae:6c:2b:68:b8:da: c1:63:1b:54 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP+s3LDtwYqiqh6m6CNrPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYTcyZjNlZDIzZTIyOTRmOWJiNmJhNjYwMjQ2MTY2YzEz ZjgzMjQwHhcNMjUxMjA2MDYwMTA2WhcNMjUxMjA3MDYwMTA2WjAzMTEwLwYDVQQD Eyg4MDQ0MDMwNTc2MTRkNDYxMDIwMzA0NGQwYzJkZjE3OTFlM2UwNmI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt3DmAXBkAGJSI3IfvF03t9k75CQb +GXg0HMlRgoM7yDMA++5PHWJC8xpzkLBFiBvSAaXpOEgxYjgFVqkomC9c41XpJM2 GO0qgIQxGmd2SfcnXo+5nsGX3mgyjjAp3fI4KbMKhE0quB9+IF+wHlJps1UmocTk S64z0vQgwmiBM1g6ITTv7vXnORycRB6TGVzOaqq6bbzWtBz/a5mjGMaSwz6XC1EB x9AFZZCKbNjHxmXVrx8p9WtqEtvgIoAJ7E+VYyyyr9ycGIR/xUBUL074BvvQgY0i lhhpogLCYITW0q8oq3uz1eU5ieJPkTXL4Jgokrkww+HkOjBFsrqaVIZt9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIBEAwV2FNRhAgMETQwt8XkePga5MB8GA1UdIwQY MBaAFCKnLz7SPiKU+btrpmAkYWbBP4MkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXFjdlB0SS1JcFQ1dTJ1bVlDUmhac0VfZ3lRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC80Nzk2NzMtOTY2Ny00ZWRhLWJiYmQt YjBiMmVhYWVlZDYxLzEvSXFjdlB0SS1JcFQ1dTJ1bVlDUmhac0VfZ3lRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC80Nzk2NzMtOTY2Ny00ZWRhLWJiYmQtYjBiMmVhYWVlZDYx LzEvSXFjdlB0SS1JcFQ1dTJ1bVlDUmhac0VfZ3lRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVC15UzhG YRdvFU99+SHR7ArEj5cza5OuM2AOqAuMUZ4wcUcDErLxKu4e6ByWXxm4WJts946c 5SShG2pZ9ly1HB783UjL53T1Pmzc+EZFToeh4m3l5AnSG7Mv2g+5r4HGdcAqpwBG X9X1k+gA8Ci0vKuUbaggs89hFMry95BGZULjsLU7AFGPdiEevMlc0iNpqGlTAt4R v8ACISKqkHDPsotDz8x3a/LIEzqV1vtiG/0E7e8khaCNCsTl3LNGrXoiUNnLRY47 JU92ki3s2fC1MuQBrfEmyuaCwJkgWLwiRqQoHicyRM5xrTuBj8qxXaZ3f3g/1/yB rmwraLjawWMbVA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:14:50 2025 by rpki-client