This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft File: iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft (raw, json) Hash identifier: KZfixWyDvToo/WJze/WyohZ1KYKCvyx2p260i2yDHKw= Subject key identifier: 60:4C:47:C2:D1:20:83:94:1E:A1:B2:2A:DF:BB:34:73:1E:89:AD:58 Authority key identifier: 8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00 Certificate issuer: /CN=8aad9c0ce5ba3905b41970a04e51976076c67e00 Certificate serial: 019AF31C89D788E1D541C719709D48C49570 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft Manifest number: 0AC1 Signing time: Sat 06 Dec 2025 10:02:05 +0000 Manifest this update: Sat 06 Dec 2025 10:02:05 +0000 Manifest next update: Sun 07 Dec 2025 10:02:05 +0000 Files and hashes: 1: 2N-Ad_PjuCdbWMhOkKca0e_4aH4.roa (hash: mX5PwA+5z3mRrepVsPYas6Uu6jFtb6sejxlwArRN7qw=) 2: 9qSGcGsaAT-Orj-BviLbbFBnobc.roa (hash: KGQdMGZUYXqZM3Cup0R+gwjVZv7t7VL1nDYpfpe2mMo=) 3: C6v3z8kGbpGtAYhEGvbIA9POeJ4.roa (hash: dVnxKmSOxpULCnBph8ARAXzts2lzvI7njmrNqMweylU=) 4: Q3cz4EEEExax1nv4wtLZZPPEgSk.roa (hash: ML1oxtfPutOEqYHFMGiG3+QvRpl8345MdKNoHGmCBSQ=) 5: iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl (hash: 4sjjmoElbEh0Tn18umnb4Ofvb7j7mVrO6ecLWZxQ9vU=) 6: raR6qfZ5L-9hzvpYVK9us-1wIug.roa (hash: ARfa5iwtjYV/gUtHJTALBEg3MfK/IBejlaZvsXofCl8=) 7: tBuToTypjDQ6u5RK5DBD-fEJHi4.roa (hash: iFrIeR1iIdBgXE0Q5UKDG34iIF6/jJkNwFYF+l/o72M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:89:d7:88:e1:d5:41:c7:19:70:9d:48:c4:95:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8aad9c0ce5ba3905b41970a04e51976076c67e00 Validity Not Before: Dec 6 10:02:05 2025 GMT Not After : Dec 7 10:02:05 2025 GMT Subject: CN=604c47c2d12083941ea1b22adfbb34731e89ad58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:6d:52:48:74:df:b4:48:b0:22:28:fb:52:08: bd:cb:24:b5:ef:87:c3:95:66:f4:4a:0d:c1:2b:68: 48:60:fa:cc:e4:12:0a:0e:c0:35:9a:2f:c5:bf:09: 84:46:b4:c4:50:a8:7e:da:dc:de:8e:2a:4b:37:5d: a9:18:de:f2:5b:e9:85:ea:f6:41:ce:49:e4:c4:1e: 6a:1d:e5:da:e7:34:21:65:3c:90:21:19:ae:27:7e: 73:35:3f:14:03:fc:f3:f1:d5:fe:9d:ab:25:19:2d: 90:c4:21:a5:72:13:82:09:19:17:27:05:4b:dd:36: 33:22:60:82:e7:e6:2e:98:03:b8:fb:70:36:68:6a: a8:33:f5:d6:a4:0e:39:65:6f:45:55:77:a6:08:50: 6c:9a:99:09:51:85:cc:80:de:cd:26:b4:d6:3f:3a: 48:ec:48:81:dd:22:f5:36:1b:9d:a4:b9:91:61:bf: 9d:69:71:81:62:48:73:18:96:47:d6:cb:27:39:3a: d7:5a:ae:07:97:d1:31:9c:68:df:22:28:43:5d:16: 36:cf:ce:6d:5b:77:a2:27:1f:bc:d8:d0:90:b2:d4: 3d:d0:54:a9:e0:8c:99:f6:53:82:00:cf:54:70:26: 8d:cb:d3:b1:77:bf:0b:a7:79:5a:7f:04:bb:84:56: 70:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:4C:47:C2:D1:20:83:94:1E:A1:B2:2A:DF:BB:34:73:1E:89:AD:58 X509v3 Authority Key Identifier: keyid:8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:4a:73:59:64:7c:79:5f:5f:09:3f:62:71:14:3d:03:ad:93: 67:8d:e8:80:9a:09:20:cb:5d:c6:d8:b5:40:6c:9e:6c:ba:22: ed:cc:e2:3a:cd:bb:b4:4e:55:6f:58:91:44:45:2a:bc:6f:7f: 18:09:ed:a5:1f:5d:7b:3f:09:94:24:7f:8f:80:c6:1a:4f:d6: c1:86:c5:fb:1f:88:a4:a2:ff:f9:41:88:68:33:ad:83:d7:d6: 4c:0c:dc:d4:ef:ac:8b:be:39:86:34:15:64:40:00:64:c4:09: d6:f3:91:e1:5f:37:4e:e5:45:71:88:6b:11:f8:2f:21:ea:ac: 47:58:0a:0e:a1:ee:63:0c:fd:4d:72:79:9f:04:c3:23:88:dc: 98:05:da:61:4d:c7:4c:ce:5f:9f:a5:7d:c2:e8:24:11:9e:d1: 88:1f:2b:e6:e4:d7:68:c3:91:2f:f3:af:9b:09:b8:39:54:05: cc:f5:5b:a2:12:27:96:8f:ca:a6:83:df:f9:c9:b9:b3:89:39: bb:6b:71:42:f0:2a:84:50:5c:f4:4c:92:2f:f3:48:ed:66:4f: 4d:01:ee:48:7b:d7:dc:ff:05:0e:0a:6d:52:f2:46:7e:49:e9: f9:aa:d7:fa:a9:36:78:d6:cb:36:bc:54:9f:63:9b:18:62:6b: c4:b7:6b:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHInXiOHVQccZcJ1IxJVwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhYWQ5YzBjZTViYTM5MDViNDE5NzBhMDRlNTE5NzYwNzZj NjdlMDAwHhcNMjUxMjA2MTAwMjA1WhcNMjUxMjA3MTAwMjA1WjAzMTEwLwYDVQQD Eyg2MDRjNDdjMmQxMjA4Mzk0MWVhMWIyMmFkZmJiMzQ3MzFlODlhZDU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoW1SSHTftEiwIij7Ugi9yyS174fD lWb0Sg3BK2hIYPrM5BIKDsA1mi/FvwmERrTEUKh+2tzejipLN12pGN7yW+mF6vZB zknkxB5qHeXa5zQhZTyQIRmuJ35zNT8UA/zz8dX+naslGS2QxCGlchOCCRkXJwVL 3TYzImCC5+YumAO4+3A2aGqoM/XWpA45ZW9FVXemCFBsmpkJUYXMgN7NJrTWPzpI 7EiB3SL1NhudpLmRYb+daXGBYkhzGJZH1ssnOTrXWq4Hl9ExnGjfIihDXRY2z85t W3eiJx+82NCQstQ90FSp4IyZ9lOCAM9UcCaNy9Oxd78Lp3lafwS7hFZwwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGBMR8LRIIOUHqGyKt+7NHMeia1YMB8GA1UdIwQY MBaAFIqtnAzlujkFtBlwoE5Rl2B2xn4AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9lNDQ1ZTQtMjZiZC00OGM5LTgzZGIt N2EwZWNlOWMwYWY4LzEvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9lNDQ1ZTQtMjZiZC00OGM5LTgzZGItN2EwZWNlOWMwYWY4 LzEvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApUpzWWR8 eV9fCT9icRQ9A62TZ43ogJoJIMtdxti1QGyebLoi7cziOs27tE5Vb1iRREUqvG9/ GAntpR9dez8JlCR/j4DGGk/WwYbF+x+IpKL/+UGIaDOtg9fWTAzc1O+si745hjQV ZEAAZMQJ1vOR4V83TuVFcYhrEfgvIeqsR1gKDqHuYwz9TXJ5nwTDI4jcmAXaYU3H TM5fn6V9wugkEZ7RiB8r5uTXaMORL/Ovmwm4OVQFzPVbohInlo/KpoPf+cm5s4k5 u2txQvAqhFBc9EySL/NI7WZPTQHuSHvX3P8FDgptUvJGfknp+arX+qk2eNbLNrxU n2ObGGJrxLdrkg== -----END CERTIFICATE-----Generated at Sat Dec 6 15:00:36 2025 by rpki-client