This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft File: iBmVbdzq4CLP4SPaNzxrERZANo0.mft (raw, json) Hash identifier: eXZEjhj2qBy5ItP7ipbXq6IAAc38G2nnbyEUTw3KbUY= Subject key identifier: 15:2F:4D:E3:C8:D5:72:DD:F9:D5:51:A3:EE:F0:7A:1B:82:4C:DE:57 Authority key identifier: 88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D Certificate issuer: /CN=8819956ddceae022cfe123da373c6b111640368d Certificate serial: 019AF23FE7804E0B9F735F525A68A2FC21F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft Manifest number: 1373 Signing time: Sat 06 Dec 2025 06:01:05 +0000 Manifest this update: Sat 06 Dec 2025 06:01:05 +0000 Manifest next update: Sun 07 Dec 2025 06:01:05 +0000 Files and hashes: 1: JZQSwG4wbJPMZQTbI1xSGViuvto.roa (hash: 7nxSYve4K7+DiIBeaX8vSWVp7u4kFJYyJFHRolTK/UI=) 2: iBmVbdzq4CLP4SPaNzxrERZANo0.crl (hash: NOQyphoKkRfignTU0nXVPzW842wXTuMussPuhmbkAt4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:e7:80:4e:0b:9f:73:5f:52:5a:68:a2:fc:21:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8819956ddceae022cfe123da373c6b111640368d Validity Not Before: Dec 6 06:01:05 2025 GMT Not After : Dec 7 06:01:05 2025 GMT Subject: CN=152f4de3c8d572ddf9d551a3eef07a1b824cde57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e1:e6:83:a2:e6:f2:ea:8d:37:a3:68:a0:5e: 05:80:cf:c2:41:29:95:36:2b:db:7e:21:de:da:02: fa:10:20:ca:9c:ba:8e:71:5c:d2:9f:26:11:80:1f: 85:18:08:9a:79:53:0c:13:89:24:18:cf:3a:6f:b6: 8d:8c:a0:cb:84:05:8b:7d:45:5c:07:ad:ff:0c:e0: 0c:f6:04:5b:92:ff:51:7b:44:21:aa:39:8a:cd:ed: 20:2d:8d:ac:eb:38:69:96:c7:3b:45:13:57:31:25: 96:b7:e8:79:ee:a2:73:6c:8f:63:cd:39:ce:f6:3b: 25:cb:c5:c2:7c:42:50:5e:bb:4f:eb:cb:7a:63:5f: 10:f5:9f:5c:a5:58:c3:04:50:8d:15:11:30:80:e2: 41:47:14:87:96:4a:8d:71:f4:24:69:04:f8:4b:c5: 66:2b:70:94:e1:79:4f:5b:b4:3d:80:4c:2f:d5:19: 5c:41:e4:8b:69:db:2f:ed:4f:53:d8:2a:b6:68:9a: ec:df:24:30:6e:17:06:33:51:cf:e8:da:de:48:ac: 27:67:87:e2:77:82:e9:43:55:e9:64:ec:f1:74:83: a2:9a:b5:78:cc:f8:87:c6:26:e6:9f:9f:4c:c2:1e: ba:12:cf:be:de:84:0c:17:af:bc:b4:f4:8e:c0:d2: 63:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:2F:4D:E3:C8:D5:72:DD:F9:D5:51:A3:EE:F0:7A:1B:82:4C:DE:57 X509v3 Authority Key Identifier: keyid:88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:f8:74:c6:c4:42:72:fc:b4:b0:67:3a:c1:04:b9:5f:98:1d: e2:70:16:7e:6b:ed:b1:87:4c:38:5e:e5:32:28:72:6a:3d:d7: e5:41:06:c3:80:5f:36:ff:67:7e:d1:68:f4:72:b4:12:1a:eb: 9b:70:17:c8:f0:9a:58:5e:f7:0d:65:dc:ff:66:68:ae:43:34: 08:19:d6:c4:08:74:7b:32:cf:1d:06:23:a4:3e:bb:54:96:b0: 90:f2:67:51:b9:14:84:7c:f3:9d:9f:bb:6d:47:e4:29:0d:85: 23:b0:3c:0d:be:d2:72:c1:38:98:65:91:34:70:78:8d:a7:b6: a1:0d:63:fe:5d:4b:b4:db:a2:33:9a:00:66:d9:98:fe:b5:7d: a4:51:be:71:52:fc:36:2b:dc:4c:5e:bc:a4:cf:48:52:6d:f4: b7:4e:03:4c:60:19:0c:6d:60:4c:0d:b7:54:5a:62:7f:99:a9: 2a:ce:ae:58:9a:b3:d8:ac:f5:88:88:53:90:2e:bf:1c:04:38: 3b:27:4d:7f:f4:73:fd:a0:a5:74:ba:22:00:93:23:2f:e4:88: a4:30:fd:72:4b:c1:29:a3:0b:54:db:fd:fb:b9:3b:c8:99:f4: ba:27:24:25:83:b7:6a:a8:f6:72:55:b3:6a:d7:ef:82:10:f7: 4f:07:e7:6b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP+eATgufc19SWmii/CHzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4MTk5NTZkZGNlYWUwMjJjZmUxMjNkYTM3M2M2YjExMTY0 MDM2OGQwHhcNMjUxMjA2MDYwMTA1WhcNMjUxMjA3MDYwMTA1WjAzMTEwLwYDVQQD EygxNTJmNGRlM2M4ZDU3MmRkZjlkNTUxYTNlZWYwN2ExYjgyNGNkZTU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy+Hmg6Lm8uqNN6NooF4FgM/CQSmV NivbfiHe2gL6ECDKnLqOcVzSnyYRgB+FGAiaeVMME4kkGM86b7aNjKDLhAWLfUVc B63/DOAM9gRbkv9Re0QhqjmKze0gLY2s6zhplsc7RRNXMSWWt+h57qJzbI9jzTnO 9jsly8XCfEJQXrtP68t6Y18Q9Z9cpVjDBFCNFREwgOJBRxSHlkqNcfQkaQT4S8Vm K3CU4XlPW7Q9gEwv1RlcQeSLadsv7U9T2Cq2aJrs3yQwbhcGM1HP6NreSKwnZ4fi d4LpQ1XpZOzxdIOimrV4zPiHxibmn59Mwh66Es++3oQMF6+8tPSOwNJjpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBUvTePI1XLd+dVRo+7wehuCTN5XMB8GA1UdIwQY MBaAFIgZlW3c6uAiz+Ej2jc8axEWQDaNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUJtVmJkenE0Q0xQNFNQYU56eHJFUlpBTm8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy85ODg3NjgtZjE3Yi00ZjU5LWJlMDkt MmRlYjE0YzI5MGVkLzEvaUJtVmJkenE0Q0xQNFNQYU56eHJFUlpBTm8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy85ODg3NjgtZjE3Yi00ZjU5LWJlMDktMmRlYjE0YzI5MGVk LzEvaUJtVmJkenE0Q0xQNFNQYU56eHJFUlpBTm8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaPh0xsRC cvy0sGc6wQS5X5gd4nAWfmvtsYdMOF7lMihyaj3X5UEGw4BfNv9nftFo9HK0Ehrr m3AXyPCaWF73DWXc/2ZorkM0CBnWxAh0ezLPHQYjpD67VJawkPJnUbkUhHzznZ+7 bUfkKQ2FI7A8Db7ScsE4mGWRNHB4jae2oQ1j/l1LtNuiM5oAZtmY/rV9pFG+cVL8 NivcTF68pM9IUm30t04DTGAZDG1gTA23VFpif5mpKs6uWJqz2Kz1iIhTkC6/HAQ4 OydNf/Rz/aCldLoiAJMjL+SIpDD9ckvBKaMLVNv9+7k7yJn0uickJYO3aqj2clWz atfvghD3Twfnaw== -----END CERTIFICATE-----Generated at Sat Dec 6 13:33:24 2025 by rpki-client