This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft File: iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft (raw, json) Hash identifier: fqHcQICXUB3wVkPVjHV8HGA9ubaIqu95WUOlc+XL7lg= Subject key identifier: 09:8A:E0:8D:3E:93:4F:2C:61:02:E8:90:8C:06:09:48:60:EB:55:71 Authority key identifier: 89:88:25:D2:F0:64:98:9B:38:C7:81:F2:A8:53:51:89:A2:69:28:C3 Certificate issuer: /CN=898825d2f064989b38c781f2a8535189a26928c3 Certificate serial: 019AF12D33DCBEF41D52CC98CE206CDE8C6C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft Manifest number: 15E3 Signing time: Sat 06 Dec 2025 01:01:02 +0000 Manifest this update: Sat 06 Dec 2025 01:01:02 +0000 Manifest next update: Sun 07 Dec 2025 01:01:02 +0000 Files and hashes: 1: iYgl0vBkmJs4x4HyqFNRiaJpKMM.crl (hash: VSbChk1HjTBvM6i5Wposedeg9iVRDFzuFMGOfjjXhjo=) 2: zbnBRUeVPnEEwLI2vvj0r39FPtE.roa (hash: 4AvpkRySedv9+g3/SFfJUIRAayJwpWmaa1FdREtJu9E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.crl rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft rsync://rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:33:dc:be:f4:1d:52:cc:98:ce:20:6c:de:8c:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=898825d2f064989b38c781f2a8535189a26928c3 Validity Not Before: Dec 6 01:01:02 2025 GMT Not After : Dec 7 01:01:02 2025 GMT Subject: CN=098ae08d3e934f2c6102e8908c06094860eb5571 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:25:dd:61:f1:01:ec:75:88:4d:f3:c5:77:b0: d8:c3:f0:6f:c8:a7:ce:dd:67:3a:79:a2:7b:8c:db: bb:57:6d:e8:02:46:bd:06:aa:76:d8:13:ac:d3:39: c6:2f:d9:1f:8e:f6:43:0c:fe:bd:82:bc:5c:80:87: 80:d2:78:68:40:e5:73:e4:42:51:54:0c:4c:fc:c4: cf:61:e2:57:b0:da:4a:4f:62:98:ef:be:1d:55:9a: 75:7b:23:46:d7:4d:03:0c:f5:ae:f6:74:31:cb:c6: 35:95:f9:6b:6b:fb:e7:92:ba:39:80:36:49:de:3c: 24:12:90:4d:6b:65:a3:80:c2:88:7e:d9:08:ea:70: 23:48:46:13:1d:c0:1f:0a:cf:21:bb:25:e7:a2:fe: 27:aa:b4:f5:47:79:21:10:a5:50:f5:54:17:57:e1: bb:c1:19:cc:17:0a:86:b1:a8:7d:ba:42:7d:de:3d: 9a:af:52:e8:16:de:31:2c:24:ca:b3:3c:db:be:16: d1:6c:b5:fd:39:80:ab:83:47:c0:e6:d7:a1:b5:79: bf:74:82:7f:19:71:d2:cb:c1:59:c4:f3:02:c2:1e: 4f:af:f1:4d:dd:b8:80:02:61:90:83:81:14:d2:c0: 04:b4:b5:33:be:a3:bf:df:39:9d:ec:0e:40:37:0a: 82:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:8A:E0:8D:3E:93:4F:2C:61:02:E8:90:8C:06:09:48:60:EB:55:71 X509v3 Authority Key Identifier: keyid:89:88:25:D2:F0:64:98:9B:38:C7:81:F2:A8:53:51:89:A2:69:28:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:4b:b5:89:02:c0:e8:ab:44:ac:50:de:13:f7:cf:b3:a3:8e: 43:35:fe:dc:10:b9:29:ff:4b:f9:53:70:1b:33:3c:23:ec:8e: e3:42:2a:c8:e7:4b:88:db:fc:05:2a:7f:6a:34:06:bd:71:24: 78:89:07:f6:9f:44:aa:0c:84:08:11:b4:28:54:87:ff:69:0b: 03:ad:5d:c0:e0:ca:22:e1:c9:95:02:77:bf:98:57:c1:fa:54: 46:06:1c:40:0f:67:73:91:a4:7f:97:6a:16:11:4a:67:66:c3: 51:87:aa:04:a5:8f:5f:c0:43:62:82:eb:2f:13:37:d2:d7:cb: 62:72:51:11:1d:db:7e:c9:85:9b:48:15:b0:74:b7:ac:06:03: 79:95:06:ed:cb:c9:82:a5:fa:ca:e8:a6:21:c0:99:60:bb:21: cc:97:17:af:1f:12:cf:67:9a:ef:fd:c2:9d:dd:1b:7f:e8:f1: f3:5d:fb:d0:33:ec:84:4f:81:ee:9d:97:d7:6a:61:3d:77:4d: 8a:e5:80:b7:0b:1a:49:da:0e:6b:c4:f7:02:73:33:87:ec:e3: 7a:60:a7:93:7d:85:8e:72:c3:06:4e:97:40:e0:e5:9f:4b:06: c5:08:d0:92:64:51:45:a1:70:34:e3:ba:83:a4:7c:34:86:15: 27:52:77:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLTPcvvQdUsyYziBs3oxsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5ODgyNWQyZjA2NDk4OWIzOGM3ODFmMmE4NTM1MTg5YTI2 OTI4YzMwHhcNMjUxMjA2MDEwMTAyWhcNMjUxMjA3MDEwMTAyWjAzMTEwLwYDVQQD EygwOThhZTA4ZDNlOTM0ZjJjNjEwMmU4OTA4YzA2MDk0ODYwZWI1NTcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4CXdYfEB7HWITfPFd7DYw/BvyKfO 3Wc6eaJ7jNu7V23oAka9Bqp22BOs0znGL9kfjvZDDP69grxcgIeA0nhoQOVz5EJR VAxM/MTPYeJXsNpKT2KY774dVZp1eyNG100DDPWu9nQxy8Y1lflra/vnkro5gDZJ 3jwkEpBNa2WjgMKIftkI6nAjSEYTHcAfCs8huyXnov4nqrT1R3khEKVQ9VQXV+G7 wRnMFwqGsah9ukJ93j2ar1LoFt4xLCTKszzbvhbRbLX9OYCrg0fA5tehtXm/dIJ/ GXHSy8FZxPMCwh5Pr/FN3biAAmGQg4EU0sAEtLUzvqO/3zmd7A5ANwqCTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAmK4I0+k08sYQLokIwGCUhg61VxMB8GA1UdIwQY MBaAFImIJdLwZJibOMeB8qhTUYmiaSjDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVlnbDB2QmttSnM0eDRIeXFGTlJpYUpwS01NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8wYWE0ZDAtMDVlNC00ODAyLTk5ZDgt ZWNhZTQxNDQ2Yjc3LzEvaVlnbDB2QmttSnM0eDRIeXFGTlJpYUpwS01NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi8wYWE0ZDAtMDVlNC00ODAyLTk5ZDgtZWNhZTQxNDQ2Yjc3 LzEvaVlnbDB2QmttSnM0eDRIeXFGTlJpYUpwS01NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi0u1iQLA 6KtErFDeE/fPs6OOQzX+3BC5Kf9L+VNwGzM8I+yO40IqyOdLiNv8BSp/ajQGvXEk eIkH9p9EqgyECBG0KFSH/2kLA61dwODKIuHJlQJ3v5hXwfpURgYcQA9nc5Gkf5dq FhFKZ2bDUYeqBKWPX8BDYoLrLxM30tfLYnJRER3bfsmFm0gVsHS3rAYDeZUG7cvJ gqX6yuimIcCZYLshzJcXrx8Sz2ea7/3Cnd0bf+jx81370DPshE+B7p2X12phPXdN iuWAtwsaSdoOa8T3AnMzh+zjemCnk32FjnLDBk6XQODln0sGxQjQkmRRRaFwNOO6 g6R8NIYVJ1J3tw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:26:08 2025 by rpki-client