This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.mft File: Iu8SfmGVSrmJNlydukuMBkzu2fA.mft (raw, json) Hash identifier: E9tgHVgvkjsvWavlXv3PDpWPrrZgRk14rK/ubT2HQH8= Subject key identifier: CC:85:4E:66:FA:4C:25:91:77:FC:C1:85:F8:AA:4D:C1:4F:8E:42:97 Authority key identifier: 22:EF:12:7E:61:95:4A:B9:89:36:5C:9D:BA:4B:8C:06:4C:EE:D9:F0 Certificate issuer: /CN=22ef127e61954ab989365c9dba4b8c064ceed9f0 Certificate serial: 019AF276C03F27CE3E3FC6A0A610975B374F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iu8SfmGVSrmJNlydukuMBkzu2fA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.mft Manifest number: 05B9 Signing time: Sat 06 Dec 2025 07:00:59 +0000 Manifest this update: Sat 06 Dec 2025 07:00:59 +0000 Manifest next update: Sun 07 Dec 2025 07:00:59 +0000 Files and hashes: 1: Iu8SfmGVSrmJNlydukuMBkzu2fA.crl (hash: am/fmIiJ8HeLREf7aQLmjSEgyWsU+dG3wYBpwS204XA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.crl rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.mft rsync://rpki.ripe.net/repository/DEFAULT/Iu8SfmGVSrmJNlydukuMBkzu2fA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 07:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:c0:3f:27:ce:3e:3f:c6:a0:a6:10:97:5b:37:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22ef127e61954ab989365c9dba4b8c064ceed9f0 Validity Not Before: Dec 6 07:00:59 2025 GMT Not After : Dec 7 07:00:59 2025 GMT Subject: CN=cc854e66fa4c259177fcc185f8aa4dc14f8e4297 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:61:05:82:93:bf:02:6f:45:59:ec:3e:17:f9: b9:4a:70:00:66:78:85:b3:bc:9c:9a:bf:e6:64:92: 0b:b4:a0:05:14:d0:d6:54:4d:dd:20:66:e6:b5:7f: 69:3f:ec:a7:b5:09:10:76:30:3f:7c:6e:05:11:99: 42:0a:db:f0:6d:eb:5e:22:1a:7a:0c:b1:b4:bb:a3: 7d:91:86:26:8c:b9:19:c1:4a:43:7d:c4:c6:94:6b: a6:9b:2c:28:f7:49:a8:35:02:5b:e5:d6:fc:d2:69: 3b:8a:15:56:80:c8:1a:0d:49:32:93:25:ac:e4:38: f4:0a:67:e5:ba:1c:31:e8:b0:96:bb:ba:5f:b2:f8: cd:4c:25:6f:ab:fd:54:09:76:f0:1f:c2:64:c5:73: 29:a5:2f:89:4e:ca:b9:47:66:86:15:5b:31:bd:ab: 06:8c:7f:23:c9:a1:a7:9a:0e:32:a4:d9:0d:4e:8b: b5:98:9e:8b:5d:95:d5:f7:cc:c3:03:cc:c0:01:50: 9c:ec:90:ac:a7:ef:16:80:8c:24:ec:cb:e7:1f:fd: 83:c4:06:23:59:bb:60:22:82:5a:fe:98:48:dd:49: a2:52:15:2a:9f:28:fb:24:75:c6:47:46:2d:98:66: 5a:de:f0:bc:43:bf:b0:53:6e:3c:3c:64:c8:0a:62: b7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:85:4E:66:FA:4C:25:91:77:FC:C1:85:F8:AA:4D:C1:4F:8E:42:97 X509v3 Authority Key Identifier: keyid:22:EF:12:7E:61:95:4A:B9:89:36:5C:9D:BA:4B:8C:06:4C:EE:D9:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iu8SfmGVSrmJNlydukuMBkzu2fA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:23:32:93:76:ac:23:8a:36:0a:82:f5:fe:f9:7e:4b:57:fe: 8c:af:0b:bd:2a:d9:0f:be:58:d5:3d:73:6f:aa:a2:94:21:a3: 74:71:ae:38:38:e6:ef:2c:ca:da:49:a7:ab:7a:98:5f:55:33: 88:82:91:27:07:ec:00:5e:23:0b:6c:55:2d:83:2f:99:92:d4: 8d:6d:1d:de:1c:11:b6:46:3f:6a:a1:f4:c3:94:e7:d0:76:9b: 0a:9b:34:90:2b:28:73:bb:2e:eb:8b:01:1c:cc:c4:6d:e4:91: 4b:d5:24:65:09:01:e4:bf:f0:1f:e9:a2:0c:53:94:72:b5:ff: 5c:36:69:93:09:5c:fa:32:fa:54:59:c2:54:20:19:82:03:30: 01:d2:87:1f:a3:7b:df:03:cb:8f:05:f6:af:bb:c2:65:4e:dc: 70:13:76:0e:b4:e0:0e:bf:e5:3b:fc:79:6e:f9:73:01:ba:27: 9a:0c:ed:9d:45:1c:7c:14:8e:29:e4:a7:d0:35:8d:5a:60:b9: 86:07:80:b6:ee:df:03:f6:da:f3:8b:05:77:2d:9c:0b:ac:6e: 4a:25:0b:73:3c:d2:50:80:76:12:e2:06:d8:01:21:9c:c4:91: d8:4f:d2:d2:3b:98:b8:81:ed:1a:c7:0f:1a:59:d9:2e:ab:6c: c4:6b:9f:72 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydsA/J84+P8agphCXWzdPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyZWYxMjdlNjE5NTRhYjk4OTM2NWM5ZGJhNGI4YzA2NGNl ZWQ5ZjAwHhcNMjUxMjA2MDcwMDU5WhcNMjUxMjA3MDcwMDU5WjAzMTEwLwYDVQQD EyhjYzg1NGU2NmZhNGMyNTkxNzdmY2MxODVmOGFhNGRjMTRmOGU0Mjk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu2EFgpO/Am9FWew+F/m5SnAAZniF s7ycmr/mZJILtKAFFNDWVE3dIGbmtX9pP+yntQkQdjA/fG4FEZlCCtvwbeteIhp6 DLG0u6N9kYYmjLkZwUpDfcTGlGummywo90moNQJb5db80mk7ihVWgMgaDUkykyWs 5Dj0Cmfluhwx6LCWu7pfsvjNTCVvq/1UCXbwH8JkxXMppS+JTsq5R2aGFVsxvasG jH8jyaGnmg4ypNkNTou1mJ6LXZXV98zDA8zAAVCc7JCsp+8WgIwk7MvnH/2DxAYj WbtgIoJa/phI3UmiUhUqnyj7JHXGR0YtmGZa3vC8Q7+wU248PGTICmK3DQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMyFTmb6TCWRd/zBhfiqTcFPjkKXMB8GA1UdIwQY MBaAFCLvEn5hlUq5iTZcnbpLjAZM7tnwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXU4U2ZtR1ZTcm1KTmx5ZHVrdU1Ca3p1MmZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy84Mzk4MjgtY2U1OS00ZDIyLWE2MjEt OGM2YWExMDY5NWIyLzEvSXU4U2ZtR1ZTcm1KTmx5ZHVrdU1Ca3p1MmZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy84Mzk4MjgtY2U1OS00ZDIyLWE2MjEtOGM2YWExMDY5NWIy LzEvSXU4U2ZtR1ZTcm1KTmx5ZHVrdU1Ca3p1MmZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACyMyk3as I4o2CoL1/vl+S1f+jK8LvSrZD75Y1T1zb6qilCGjdHGuODjm7yzK2kmnq3qYX1Uz iIKRJwfsAF4jC2xVLYMvmZLUjW0d3hwRtkY/aqH0w5Tn0HabCps0kCsoc7su64sB HMzEbeSRS9UkZQkB5L/wH+miDFOUcrX/XDZpkwlc+jL6VFnCVCAZggMwAdKHH6N7 3wPLjwX2r7vCZU7ccBN2DrTgDr/lO/x5bvlzAbonmgztnUUcfBSOKeSn0DWNWmC5 hgeAtu7fA/ba84sFdy2cC6xuSiULczzSUIB2EuIG2AEhnMSR2E/S0juYuIHtGscP GlnZLqtsxGufcg== -----END CERTIFICATE-----Generated at Sat Dec 6 15:58:04 2025 by rpki-client