This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/917d50-fc64-4b3e-91e9-a31893b0eafc/1/cAiszpDUdaD6oR0oVIakU1ILgfA.mft File: cAiszpDUdaD6oR0oVIakU1ILgfA.mft (raw, json) Hash identifier: 6TrHkWrPIrdIcwCSzM7OFMWsUZO6E1hmRLlb1bIa26w= Subject key identifier: B1:DE:AD:0B:2E:E0:12:6B:FE:33:9A:DC:33:03:14:6F:E7:C2:41:6F Authority key identifier: 70:08:AC:CE:90:D4:75:A0:FA:A1:1D:28:54:86:A4:53:52:0B:81:F0 Certificate issuer: /CN=7008acce90d475a0faa11d285486a453520b81f0 Certificate serial: 019AF19B547B8F2E9A54486303D979446D9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAiszpDUdaD6oR0oVIakU1ILgfA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/917d50-fc64-4b3e-91e9-a31893b0eafc/1/cAiszpDUdaD6oR0oVIakU1ILgfA.mft Manifest number: 019F Signing time: Sat 06 Dec 2025 03:01:19 +0000 Manifest this update: Sat 06 Dec 2025 03:01:19 +0000 Manifest next update: Sun 07 Dec 2025 03:01:19 +0000 Files and hashes: 1: SGExsZYw7zZNQMmCejqPLZCEzR4.roa (hash: lywDbb/BT202qwVyQW4Rrl3AkbHkGjJUpz5yvpYCOaU=) 2: cAiszpDUdaD6oR0oVIakU1ILgfA.crl (hash: eF8dtyKnSdIAtXQVeFxk0Jt6JikZt0qe4NIOBvRo04w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/917d50-fc64-4b3e-91e9-a31893b0eafc/1/cAiszpDUdaD6oR0oVIakU1ILgfA.crl rsync://rpki.ripe.net/repository/DEFAULT/33/917d50-fc64-4b3e-91e9-a31893b0eafc/1/cAiszpDUdaD6oR0oVIakU1ILgfA.mft rsync://rpki.ripe.net/repository/DEFAULT/cAiszpDUdaD6oR0oVIakU1ILgfA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:54:7b:8f:2e:9a:54:48:63:03:d9:79:44:6d:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7008acce90d475a0faa11d285486a453520b81f0 Validity Not Before: Dec 6 03:01:19 2025 GMT Not After : Dec 7 03:01:19 2025 GMT Subject: CN=b1dead0b2ee0126bfe339adc3303146fe7c2416f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:81:64:a3:a0:a4:da:3b:4c:82:8d:6c:ce:38: e7:4b:54:1e:4e:8d:43:1b:76:16:6d:9c:f0:e8:c7: 87:b2:a3:6b:91:99:97:3b:3a:18:54:63:03:e3:d8: 8a:cd:11:19:da:55:c8:e2:c1:3d:45:55:91:cb:e4: 7d:86:9d:3a:94:37:6e:73:ad:62:e7:c5:37:3c:d6: fa:9f:00:a6:39:2c:1e:27:51:3c:cd:ef:88:df:ed: 9f:0e:18:d2:9b:4e:01:e8:9d:19:89:7c:31:4d:4b: bb:b3:51:a8:59:4e:46:69:d7:28:71:52:bb:e0:a9: f1:2f:10:9a:cb:c3:02:94:ab:d3:6e:86:a8:82:bf: 35:94:81:fb:72:cf:f9:76:82:81:42:8e:ea:81:0f: 7b:ab:8f:81:6c:ca:22:1a:1c:0e:a4:f8:fa:86:49: 56:0c:37:df:57:43:e4:8e:a8:fb:93:73:8a:1f:8b: 60:e4:3b:74:71:cc:cc:e5:78:4f:89:c1:48:0d:ae: f2:b0:07:73:0d:c2:54:80:a1:53:45:09:32:41:87: 9d:91:5d:ad:a7:ba:ac:13:c0:68:ae:ba:48:2a:1a: f6:4c:de:a5:32:12:a6:e8:6e:43:78:f2:fc:af:94: d5:75:a1:bf:6f:80:b6:b9:5f:72:07:34:3c:0a:17: 97:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:DE:AD:0B:2E:E0:12:6B:FE:33:9A:DC:33:03:14:6F:E7:C2:41:6F X509v3 Authority Key Identifier: keyid:70:08:AC:CE:90:D4:75:A0:FA:A1:1D:28:54:86:A4:53:52:0B:81:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAiszpDUdaD6oR0oVIakU1ILgfA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/917d50-fc64-4b3e-91e9-a31893b0eafc/1/cAiszpDUdaD6oR0oVIakU1ILgfA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/917d50-fc64-4b3e-91e9-a31893b0eafc/1/cAiszpDUdaD6oR0oVIakU1ILgfA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:ec:dd:d3:8d:be:d1:1e:c3:9d:83:59:82:d0:5e:b5:8b:6b: 81:ee:cd:68:13:bc:50:8c:83:b8:a2:cf:d3:c9:8d:5a:56:41: 39:b0:b0:76:88:7f:c5:16:a5:5e:4d:09:e0:3b:9b:7e:25:2b: 43:9e:c5:01:70:9e:91:54:97:31:28:c5:2b:6e:da:eb:fb:02: fe:c5:69:02:d7:17:4b:22:58:80:90:bc:9f:9b:d6:69:0a:4b: 87:62:eb:b3:66:da:7a:e9:4e:08:ed:a1:50:b5:63:df:44:b7: 1a:27:98:00:bc:97:b7:db:f6:fb:eb:37:9b:cf:41:28:92:3e: 68:dc:56:ee:11:61:8f:5c:97:e1:f0:d4:cb:d4:35:50:ad:12: 6d:a0:e4:7a:6e:07:e8:c9:d4:3f:ee:c8:70:c3:01:04:55:79: 13:44:4e:89:cb:d7:4b:af:89:99:4d:98:0d:c5:a7:76:9c:d5: 17:ea:a5:96:fc:51:ef:71:03:e3:73:c8:8e:33:5a:c8:e1:1d: 24:0c:ba:8d:9d:eb:d9:5f:86:80:f0:a2:bf:50:0d:fa:1e:c3: d8:c7:56:56:91:52:f9:6e:2f:38:78:ad:53:eb:36:1a:17:80: 27:3d:b8:3a:30:a3:7a:ad:44:89:7f:57:61:00:f9:18:68:37: 39:80:04:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm1R7jy6aVEhjA9l5RG2aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwMDhhY2NlOTBkNDc1YTBmYWExMWQyODU0ODZhNDUzNTIw YjgxZjAwHhcNMjUxMjA2MDMwMTE5WhcNMjUxMjA3MDMwMTE5WjAzMTEwLwYDVQQD EyhiMWRlYWQwYjJlZTAxMjZiZmUzMzlhZGMzMzAzMTQ2ZmU3YzI0MTZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn4Fko6Ck2jtMgo1szjjnS1QeTo1D G3YWbZzw6MeHsqNrkZmXOzoYVGMD49iKzREZ2lXI4sE9RVWRy+R9hp06lDduc61i 58U3PNb6nwCmOSweJ1E8ze+I3+2fDhjSm04B6J0ZiXwxTUu7s1GoWU5GadcocVK7 4KnxLxCay8MClKvTboaogr81lIH7cs/5doKBQo7qgQ97q4+BbMoiGhwOpPj6hklW DDffV0Pkjqj7k3OKH4tg5Dt0cczM5XhPicFIDa7ysAdzDcJUgKFTRQkyQYedkV2t p7qsE8BorrpIKhr2TN6lMhKm6G5DePL8r5TVdaG/b4C2uV9yBzQ8CheXywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLHerQsu4BJr/jOa3DMDFG/nwkFvMB8GA1UdIwQY MBaAFHAIrM6Q1HWg+qEdKFSGpFNSC4HwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0Fpc3pwRFVkYUQ2b1Iwb1ZJYWtVMUlMZ2ZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy85MTdkNTAtZmM2NC00YjNlLTkxZTkt YTMxODkzYjBlYWZjLzEvY0Fpc3pwRFVkYUQ2b1Iwb1ZJYWtVMUlMZ2ZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy85MTdkNTAtZmM2NC00YjNlLTkxZTktYTMxODkzYjBlYWZj LzEvY0Fpc3pwRFVkYUQ2b1Iwb1ZJYWtVMUlMZ2ZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK+zd042+ 0R7DnYNZgtBetYtrge7NaBO8UIyDuKLP08mNWlZBObCwdoh/xRalXk0J4DubfiUr Q57FAXCekVSXMSjFK27a6/sC/sVpAtcXSyJYgJC8n5vWaQpLh2Lrs2baeulOCO2h ULVj30S3GieYALyXt9v2++s3m89BKJI+aNxW7hFhj1yX4fDUy9Q1UK0SbaDkem4H 6MnUP+7IcMMBBFV5E0ROicvXS6+JmU2YDcWndpzVF+qllvxR73ED43PIjjNayOEd JAy6jZ3r2V+GgPCiv1AN+h7D2MdWVpFS+W4vOHitU+s2GheAJz24OjCjeq1EiX9X YQD5GGg3OYAEWQ== -----END CERTIFICATE-----Generated at Sat Dec 6 13:22:04 2025 by rpki-client