This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft File: IY2yiCPzcIslWqEkum73QdET6vM.mft (raw, json) Hash identifier: GeKgLiqXOyjxlh5uEFQw8G9O9RxrKR6KcuJCs7koaCQ= Subject key identifier: 0B:54:3A:3A:56:7D:56:15:AF:AD:37:E5:E2:6C:31:01:8F:E7:B2:CD Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3 Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3 Certificate serial: 019AF208D85520D935F0D9F6180950875536 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft Manifest number: 0F5C Signing time: Sat 06 Dec 2025 05:00:57 +0000 Manifest this update: Sat 06 Dec 2025 05:00:57 +0000 Manifest next update: Sun 07 Dec 2025 05:00:57 +0000 Files and hashes: 1: HaSDza_YVtRITzJIrQ3cs39clVI.roa (hash: MJ8iuClDZO6N2HHVvtqNHlRWHvmySc+prn9LGP/6I2Y=) 2: IY2yiCPzcIslWqEkum73QdET6vM.crl (hash: 4lkrlfHoScmJ9/6NZ1kmCCF9QAhDqorefr6h3Ky1ojw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:d8:55:20:d9:35:f0:d9:f6:18:09:50:87:55:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3 Validity Not Before: Dec 6 05:00:57 2025 GMT Not After : Dec 7 05:00:57 2025 GMT Subject: CN=0b543a3a567d5615afad37e5e26c31018fe7b2cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:11:d9:45:5d:b6:45:54:ab:16:d2:33:22:0d: 59:92:91:4d:e2:57:e4:50:ab:46:82:b7:3b:53:7b: 08:1a:a9:1e:06:e0:43:ba:da:e0:6a:2f:95:47:99: 2f:5a:2b:aa:1d:fe:5f:8a:a6:7d:7e:58:19:8a:41: e2:88:af:0f:b2:50:e1:86:75:0f:cb:ad:39:5e:93: 36:9b:2e:0e:3f:14:b9:b7:5f:de:1b:41:9d:64:74: 62:10:39:47:63:19:60:0d:c5:79:ed:af:3c:b1:43: 47:6a:a1:74:41:51:1a:ca:f3:79:09:80:8a:0c:98: f7:d1:9b:24:94:1e:d5:1a:9a:ed:ee:92:e8:e4:d3: 9a:ff:b1:c5:37:92:7f:3f:28:06:4a:d4:5c:3e:93: 7b:a0:ca:a5:5e:b4:56:7d:d1:ae:f7:85:23:8c:a5: 99:07:77:4f:d4:eb:93:dd:59:52:f6:b1:fd:48:d4: f3:7a:4f:f2:d9:22:1a:c3:f0:6b:cd:6d:b4:a9:d5: 19:e0:8d:e4:e6:a7:98:16:82:e3:a0:ac:d9:d8:7e: 69:54:e9:cc:ad:f0:ad:27:be:b9:09:18:14:7d:a6: e9:13:ef:0e:f1:a5:de:5e:ef:09:68:5e:fc:b0:b8: 41:0e:dd:c4:19:af:dd:c1:09:40:00:41:f8:e8:f8: 19:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:54:3A:3A:56:7D:56:15:AF:AD:37:E5:E2:6C:31:01:8F:E7:B2:CD X509v3 Authority Key Identifier: keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c0:67:e8:73:98:27:bc:ec:e2:08:e8:79:a7:d7:a8:ba:d2:a2: c2:7f:71:9d:c2:28:c4:6a:40:38:64:2a:56:81:56:61:e2:08: 42:46:e3:07:a7:a4:e4:dd:b5:2b:1c:ab:52:4c:b8:e8:c1:b6: 23:de:c4:3e:d3:f8:08:e6:4a:c4:52:a6:60:7f:92:4a:6b:b1: 2a:94:77:20:96:e6:eb:b2:9f:ee:06:db:c6:18:9d:34:f0:e8: 58:05:6a:2f:c4:cc:ae:50:8f:6d:9f:c3:31:2e:d1:16:38:e2: 46:53:8a:16:23:f1:7b:9f:93:b4:90:51:47:5e:14:a0:1e:c4: 5c:f0:d7:7e:20:0a:ee:4d:bf:6a:ce:5c:9c:e6:4c:77:6e:28: d4:15:06:c9:53:34:a8:e3:13:9c:f7:e9:75:5d:ae:b8:18:fa: 0b:d9:0b:ea:2c:8d:03:11:ca:2c:02:fb:64:05:9d:1e:cf:c3: b1:06:92:50:b2:cf:e3:bf:29:b3:a4:0b:7c:27:db:ce:d9:c7: 29:3b:0b:3e:20:b1:1e:f4:a5:f7:e7:16:6a:9f:b5:5a:af:be: 4f:7e:3e:7a:d9:1f:16:3b:bb:c6:d3:14:e7:0f:44:c7:f7:90: 99:a7:3d:1b:e5:94:50:e3:ec:02:c8:f6:ac:57:17:b8:ac:7d: 7e:53:d9:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCNhVINk18Nn2GAlQh1U2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxOGRiMjg4MjNmMzcwOGIyNTVhYTEyNGJhNmVmNzQxZDEx M2VhZjMwHhcNMjUxMjA2MDUwMDU3WhcNMjUxMjA3MDUwMDU3WjAzMTEwLwYDVQQD EygwYjU0M2EzYTU2N2Q1NjE1YWZhZDM3ZTVlMjZjMzEwMThmZTdiMmNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjxHZRV22RVSrFtIzIg1ZkpFN4lfk UKtGgrc7U3sIGqkeBuBDutrgai+VR5kvWiuqHf5fiqZ9flgZikHiiK8PslDhhnUP y605XpM2my4OPxS5t1/eG0GdZHRiEDlHYxlgDcV57a88sUNHaqF0QVEayvN5CYCK DJj30ZsklB7VGprt7pLo5NOa/7HFN5J/PygGStRcPpN7oMqlXrRWfdGu94UjjKWZ B3dP1OuT3VlS9rH9SNTzek/y2SIaw/BrzW20qdUZ4I3k5qeYFoLjoKzZ2H5pVOnM rfCtJ765CRgUfabpE+8O8aXeXu8JaF78sLhBDt3EGa/dwQlAAEH46PgZ3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAtUOjpWfVYVr6035eJsMQGP57LNMB8GA1UdIwQY MBaAFCGNsogj83CLJVqhJLpu90HRE+rzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQt NzlkYzNkMGJiZWQ4LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQtNzlkYzNkMGJiZWQ4 LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwGfoc5gn vOziCOh5p9eoutKiwn9xncIoxGpAOGQqVoFWYeIIQkbjB6ek5N21KxyrUky46MG2 I97EPtP4COZKxFKmYH+SSmuxKpR3IJbm67Kf7gbbxhidNPDoWAVqL8TMrlCPbZ/D MS7RFjjiRlOKFiPxe5+TtJBRR14UoB7EXPDXfiAK7k2/as5cnOZMd24o1BUGyVM0 qOMTnPfpdV2uuBj6C9kL6iyNAxHKLAL7ZAWdHs/DsQaSULLP478ps6QLfCfbztnH KTsLPiCxHvSl9+cWap+1Wq++T34+etkfFju7xtMU5w9Ex/eQmac9G+WUUOPsAsj2 rFcXuKx9flPZig== -----END CERTIFICATE-----Generated at Sat Dec 6 13:45:34 2025 by rpki-client