This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/f45c5c-b645-4be4-a74c-320e1459a40a/1/iWxjRnXxe_ak81-hi7hVYBoYpbU.mft File: iWxjRnXxe_ak81-hi7hVYBoYpbU.mft (raw, json) Hash identifier: WIZWLu3HgpsZcdd0tsjQBYCPGgfMp3fRQOkTExQ8deA= Subject key identifier: D4:86:15:99:F6:36:52:4A:25:CA:86:C0:3F:F2:60:3A:68:99:73:D5 Authority key identifier: 89:6C:63:46:75:F1:7B:F6:A4:F3:5F:A1:8B:B8:55:60:1A:18:A5:B5 Certificate issuer: /CN=896c634675f17bf6a4f35fa18bb855601a18a5b5 Certificate serial: 019AF6F8EA87003B5A4680C8868F64B53132 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWxjRnXxe_ak81-hi7hVYBoYpbU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/f45c5c-b645-4be4-a74c-320e1459a40a/1/iWxjRnXxe_ak81-hi7hVYBoYpbU.mft Manifest number: 0116 Signing time: Sun 07 Dec 2025 04:01:39 +0000 Manifest this update: Sun 07 Dec 2025 04:01:39 +0000 Manifest next update: Mon 08 Dec 2025 04:01:39 +0000 Files and hashes: 1: iWxjRnXxe_ak81-hi7hVYBoYpbU.crl (hash: OFb/+KEULmcn+uc2qCPuQ7OaymemEHWJ4JR1+iNPpqA=) 2: yulwp-3vKKFAdXVOa4nXVzHSFWU.roa (hash: q4+Kq35pmEpGGWwSszRZa770efG6x8cdf3PGbgipeks=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/f45c5c-b645-4be4-a74c-320e1459a40a/1/iWxjRnXxe_ak81-hi7hVYBoYpbU.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/f45c5c-b645-4be4-a74c-320e1459a40a/1/iWxjRnXxe_ak81-hi7hVYBoYpbU.mft rsync://rpki.ripe.net/repository/DEFAULT/iWxjRnXxe_ak81-hi7hVYBoYpbU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:f8:ea:87:00:3b:5a:46:80:c8:86:8f:64:b5:31:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=896c634675f17bf6a4f35fa18bb855601a18a5b5 Validity Not Before: Dec 7 04:01:39 2025 GMT Not After : Dec 8 04:01:39 2025 GMT Subject: CN=d4861599f636524a25ca86c03ff2603a689973d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b7:15:bb:d6:44:ef:ae:74:e3:bb:13:ad:96: 36:f3:9e:9d:3c:34:dd:53:6c:2c:83:99:c2:ba:d7: 6d:1f:f7:4d:08:5d:99:72:f7:6e:9e:74:3a:cb:3b: 46:9c:5b:2a:f1:b7:76:37:1c:34:b5:97:9b:70:27: 77:48:5a:77:2d:b2:a6:08:46:d7:b4:53:87:86:67: cf:a7:06:25:9c:0f:4d:b6:62:60:38:32:90:13:de: a3:ee:1e:37:dd:f0:41:8a:a9:02:d5:e7:c5:9b:6b: f6:8f:c0:07:78:b3:49:4c:88:cc:90:a3:83:a9:da: 02:fe:cb:ef:3f:6a:8b:98:8b:86:74:74:6b:7c:11: 12:1b:f5:54:73:44:17:30:64:11:d9:6e:6a:ed:09: bb:11:61:5a:72:b0:0e:f2:f2:35:61:93:98:a0:39: 55:da:51:50:ea:74:6d:bd:dd:de:8f:bd:3c:45:e8: 03:3f:e0:8f:29:18:03:43:c0:6f:38:08:b9:e9:34: 9b:32:6b:36:b4:9d:f2:68:78:44:76:03:bc:b6:22: a2:2d:8c:ee:3d:be:96:b2:88:ec:c8:37:e3:4f:18: d9:08:fc:d7:fc:ea:20:50:b2:34:b3:2c:4d:17:c6: 3c:d2:d9:dd:a6:06:8f:73:f6:02:ea:4e:2e:f4:e6: 3f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:86:15:99:F6:36:52:4A:25:CA:86:C0:3F:F2:60:3A:68:99:73:D5 X509v3 Authority Key Identifier: keyid:89:6C:63:46:75:F1:7B:F6:A4:F3:5F:A1:8B:B8:55:60:1A:18:A5:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWxjRnXxe_ak81-hi7hVYBoYpbU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f45c5c-b645-4be4-a74c-320e1459a40a/1/iWxjRnXxe_ak81-hi7hVYBoYpbU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f45c5c-b645-4be4-a74c-320e1459a40a/1/iWxjRnXxe_ak81-hi7hVYBoYpbU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:69:14:60:43:5a:85:d5:f3:7d:a9:f2:d8:0c:c8:56:fa:51: 53:50:08:dd:89:0e:57:67:5a:9c:ab:58:38:e7:11:cf:5f:7d: fa:45:d7:17:a2:ad:0b:df:62:f6:ce:67:57:ca:62:2a:03:32: 2f:75:2f:50:6c:88:e4:46:3f:c9:a0:0d:bc:48:41:df:71:cd: 96:01:61:ed:ac:12:a7:bf:f4:39:2c:bc:1b:b9:f1:22:80:d3: e5:c2:1b:72:9a:31:3e:c2:d4:62:3d:67:29:be:79:38:3c:d2: 83:8a:a7:91:aa:48:9c:09:91:4d:28:30:f7:4d:60:39:37:89: 87:fa:24:8a:0b:af:f7:87:a8:cc:82:6d:94:e5:05:d3:f6:d3: ef:18:b1:47:5e:b6:40:fe:3f:6c:0e:a1:51:65:25:ea:7d:f4: c1:98:61:a5:f0:f2:96:b6:fc:d7:22:5e:56:ff:a4:f2:df:48: 3a:5b:60:40:8f:e8:4f:ee:0e:5a:c9:4b:01:b9:29:85:8d:c2: 6e:26:f9:8e:cd:0c:43:7c:0f:63:25:19:a1:50:e7:e0:c9:b1: aa:75:7c:91:e4:cf:e3:f1:da:6a:2c:c7:04:be:bb:53:2d:e7: c5:70:02:4b:d2:ed:45:6a:1a:aa:1e:b7:63:30:26:71:c1:3f: 08:7b:93:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2+OqHADtaRoDIho9ktTEyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5NmM2MzQ2NzVmMTdiZjZhNGYzNWZhMThiYjg1NTYwMWEx OGE1YjUwHhcNMjUxMjA3MDQwMTM5WhcNMjUxMjA4MDQwMTM5WjAzMTEwLwYDVQQD EyhkNDg2MTU5OWY2MzY1MjRhMjVjYTg2YzAzZmYyNjAzYTY4OTk3M2Q1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2bcVu9ZE765047sTrZY2856dPDTd U2wsg5nCutdtH/dNCF2ZcvdunnQ6yztGnFsq8bd2Nxw0tZebcCd3SFp3LbKmCEbX tFOHhmfPpwYlnA9NtmJgODKQE96j7h433fBBiqkC1efFm2v2j8AHeLNJTIjMkKOD qdoC/svvP2qLmIuGdHRrfBESG/VUc0QXMGQR2W5q7Qm7EWFacrAO8vI1YZOYoDlV 2lFQ6nRtvd3ej708RegDP+CPKRgDQ8BvOAi56TSbMms2tJ3yaHhEdgO8tiKiLYzu Pb6WsojsyDfjTxjZCPzX/OogULI0syxNF8Y80tndpgaPc/YC6k4u9OY/VQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNSGFZn2NlJKJcqGwD/yYDpomXPVMB8GA1UdIwQY MBaAFIlsY0Z18Xv2pPNfoYu4VWAaGKW1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVd4alJuWHhlX2FrODEtaGk3aFZZQm9ZcGJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9mNDVjNWMtYjY0NS00YmU0LWE3NGMt MzIwZTE0NTlhNDBhLzEvaVd4alJuWHhlX2FrODEtaGk3aFZZQm9ZcGJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS9mNDVjNWMtYjY0NS00YmU0LWE3NGMtMzIwZTE0NTlhNDBh LzEvaVd4alJuWHhlX2FrODEtaGk3aFZZQm9ZcGJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUmkUYENa hdXzfany2AzIVvpRU1AI3YkOV2danKtYOOcRz199+kXXF6KtC99i9s5nV8piKgMy L3UvUGyI5EY/yaANvEhB33HNlgFh7awSp7/0OSy8G7nxIoDT5cIbcpoxPsLUYj1n Kb55ODzSg4qnkapInAmRTSgw901gOTeJh/okiguv94eozIJtlOUF0/bT7xixR162 QP4/bA6hUWUl6n30wZhhpfDylrb81yJeVv+k8t9IOltgQI/oT+4OWslLAbkphY3C bib5js0MQ3wPYyUZoVDn4MmxqnV8keTP4/HaaizHBL67Uy3nxXACS9LtRWoaqh63 YzAmccE/CHuTFA== -----END CERTIFICATE-----Generated at Sun Dec 7 06:20:44 2025 by rpki-client