This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft File: iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft (raw, json) Hash identifier: arB1+nUjUvMfp9Jd1Y7xAYdECJPobKgdUBw/inY6dOI= Subject key identifier: FD:01:A0:A7:68:46:C4:85:B4:C4:E4:44:35:E0:B0:86:18:3C:7B:63 Authority key identifier: 8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00 Certificate issuer: /CN=8aad9c0ce5ba3905b41970a04e51976076c67e00 Certificate serial: 019B2B1E0A3D63CBAC4CD8CDF318EEC7AAD3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft Manifest number: 0ADE Signing time: Wed 17 Dec 2025 07:02:27 +0000 Manifest this update: Wed 17 Dec 2025 07:02:27 +0000 Manifest next update: Thu 18 Dec 2025 07:02:27 +0000 Files and hashes: 1: 2N-Ad_PjuCdbWMhOkKca0e_4aH4.roa (hash: mX5PwA+5z3mRrepVsPYas6Uu6jFtb6sejxlwArRN7qw=) 2: 9qSGcGsaAT-Orj-BviLbbFBnobc.roa (hash: KGQdMGZUYXqZM3Cup0R+gwjVZv7t7VL1nDYpfpe2mMo=) 3: C6v3z8kGbpGtAYhEGvbIA9POeJ4.roa (hash: dVnxKmSOxpULCnBph8ARAXzts2lzvI7njmrNqMweylU=) 4: Q3cz4EEEExax1nv4wtLZZPPEgSk.roa (hash: ML1oxtfPutOEqYHFMGiG3+QvRpl8345MdKNoHGmCBSQ=) 5: iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl (hash: p58WlXRYxwiQE10CFifzQENBUfNte5utIUDXXCNwjyQ=) 6: raR6qfZ5L-9hzvpYVK9us-1wIug.roa (hash: ARfa5iwtjYV/gUtHJTALBEg3MfK/IBejlaZvsXofCl8=) 7: tBuToTypjDQ6u5RK5DBD-fEJHi4.roa (hash: iFrIeR1iIdBgXE0Q5UKDG34iIF6/jJkNwFYF+l/o72M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 07:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:1e:0a:3d:63:cb:ac:4c:d8:cd:f3:18:ee:c7:aa:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8aad9c0ce5ba3905b41970a04e51976076c67e00 Validity Not Before: Dec 17 07:02:27 2025 GMT Not After : Dec 18 07:02:27 2025 GMT Subject: CN=fd01a0a76846c485b4c4e44435e0b086183c7b63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:3d:21:65:7a:11:eb:6b:3e:65:56:16:88:e8: 2f:63:a1:83:db:68:e9:b8:9f:5e:60:bf:9d:56:ab: 35:30:07:be:c3:08:ff:83:0b:59:0e:36:f6:f4:db: 57:6f:aa:6c:d1:18:b5:03:6c:97:84:f2:83:3f:d0: e9:ae:d7:6e:6c:b1:1d:95:fa:d9:60:0c:53:b6:9f: a1:d8:e0:39:44:02:d2:b5:60:ef:70:95:00:3d:e1: 2a:d1:b8:e4:37:92:e6:ea:48:1a:a8:6c:dd:d5:ea: 70:63:44:85:ab:e4:74:d1:0a:05:a0:49:e2:6f:5d: 1b:81:b4:22:d3:a1:f7:8c:dc:f9:f4:ce:2f:e7:d5: 48:a3:25:30:1f:9e:b0:96:5a:f9:05:28:68:e1:fb: 41:af:08:88:1e:f4:49:56:21:5e:80:9f:c4:6d:4b: 2d:98:b3:0e:9c:b9:9c:f6:81:1b:43:d3:ef:e1:77: 69:4c:b6:c9:04:82:55:6b:3d:d7:da:45:9d:0e:d8: 6b:90:44:ab:e6:78:08:5c:aa:ab:f8:b8:e2:fa:9f: e1:bc:4e:7b:32:22:60:54:68:34:b7:c2:9e:49:ec: 6c:cd:8c:df:1c:f4:d0:f4:20:e2:d5:a5:66:3a:4a: 15:fa:e1:10:96:dc:48:aa:8a:cd:8d:90:e5:6f:16: 37:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:01:A0:A7:68:46:C4:85:B4:C4:E4:44:35:E0:B0:86:18:3C:7B:63 X509v3 Authority Key Identifier: keyid:8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:a4:47:3b:2c:74:e5:b1:ad:38:b2:2e:af:f2:2c:7c:97:ff: dd:80:05:64:b9:13:e3:99:94:f6:c7:af:67:c1:62:dd:f6:20: 08:83:77:77:19:80:f6:b3:c6:1f:fb:03:0c:2a:3a:a6:06:d6: 45:f3:f2:82:90:11:e3:32:c0:f9:43:0b:c7:f1:60:6e:f7:d0: 54:8e:22:41:c9:c4:33:c8:eb:67:21:ef:3c:7f:14:cb:80:dc: 4d:4c:88:7b:fe:80:e1:99:c4:37:39:ba:39:21:c6:4d:a4:b3: b9:30:7d:8d:d6:f7:ef:85:51:c2:60:c3:58:a5:37:04:5e:46: 26:f3:fa:21:bf:49:19:19:37:8d:87:c4:5e:54:7c:31:34:84: 2d:48:a0:75:ef:55:a0:bb:65:ff:1c:fd:8c:63:3b:44:e7:ad: 7c:cb:97:c3:85:03:e8:53:59:9d:45:d6:cb:f6:cc:40:02:96: c6:b0:69:56:b4:00:e6:8f:e5:5d:f0:9a:1e:2c:b6:94:76:f1: 46:cf:5e:63:ca:4b:e4:3a:44:90:75:42:c1:3c:5a:bd:4e:55: db:88:84:85:8f:ae:b0:c8:7f:77:88:97:75:93:3e:61:50:b7: bd:2d:95:5f:c5:eb:2b:96:64:83:e3:7b:ca:f9:46:7c:0c:9c: 7f:52:17:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsrHgo9Y8usTNjN8xjux6rTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhYWQ5YzBjZTViYTM5MDViNDE5NzBhMDRlNTE5NzYwNzZj NjdlMDAwHhcNMjUxMjE3MDcwMjI3WhcNMjUxMjE4MDcwMjI3WjAzMTEwLwYDVQQD EyhmZDAxYTBhNzY4NDZjNDg1YjRjNGU0NDQzNWUwYjA4NjE4M2M3YjYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmz0hZXoR62s+ZVYWiOgvY6GD22jp uJ9eYL+dVqs1MAe+wwj/gwtZDjb29NtXb6ps0Ri1A2yXhPKDP9DprtdubLEdlfrZ YAxTtp+h2OA5RALStWDvcJUAPeEq0bjkN5Lm6kgaqGzd1epwY0SFq+R00QoFoEni b10bgbQi06H3jNz59M4v59VIoyUwH56wllr5BSho4ftBrwiIHvRJViFegJ/EbUst mLMOnLmc9oEbQ9Pv4XdpTLbJBIJVaz3X2kWdDthrkESr5ngIXKqr+Lji+p/hvE57 MiJgVGg0t8KeSexszYzfHPTQ9CDi1aVmOkoV+uEQltxIqorNjZDlbxY3oQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP0BoKdoRsSFtMTkRDXgsIYYPHtjMB8GA1UdIwQY MBaAFIqtnAzlujkFtBlwoE5Rl2B2xn4AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9lNDQ1ZTQtMjZiZC00OGM5LTgzZGIt N2EwZWNlOWMwYWY4LzEvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9lNDQ1ZTQtMjZiZC00OGM5LTgzZGItN2EwZWNlOWMwYWY4 LzEvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARqRHOyx0 5bGtOLIur/IsfJf/3YAFZLkT45mU9sevZ8Fi3fYgCIN3dxmA9rPGH/sDDCo6pgbW RfPygpAR4zLA+UMLx/FgbvfQVI4iQcnEM8jrZyHvPH8Uy4DcTUyIe/6A4ZnENzm6 OSHGTaSzuTB9jdb374VRwmDDWKU3BF5GJvP6Ib9JGRk3jYfEXlR8MTSELUigde9V oLtl/xz9jGM7ROetfMuXw4UD6FNZnUXWy/bMQAKWxrBpVrQA5o/lXfCaHiy2lHbx Rs9eY8pL5DpEkHVCwTxavU5V24iEhY+usMh/d4iXdZM+YVC3vS2VX8XrK5Zkg+N7 yvlGfAycf1IXwA== -----END CERTIFICATE-----Generated at Wed Dec 17 16:40:37 2025 by rpki-client