This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft File: IPblO2l60mO0uk6kmBQ2aog7VK0.mft (raw, json) Hash identifier: T4qmitnUwtlOef4rWL1KFGJ+/eU6DLWY0GQdS007W88= Subject key identifier: CC:DD:BA:68:71:D8:81:0E:5D:C5:03:63:B1:06:CA:D5:8D:30:BB:89 Authority key identifier: 20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD Certificate issuer: /CN=20f6e53b697ad263b4ba4ea49814366a883b54ad Certificate serial: 019AF12E8FC58E28775BBA8B8FC017ED4E39 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 01:02:31 +0000 Manifest this update: Sat 06 Dec 2025 01:02:31 +0000 Manifest next update: Sun 07 Dec 2025 01:02:31 +0000 Files and hashes: 1: APkFGhaR8YtianTelxgsgSDeVhM.roa (hash: 2Pdlo7CTCPlVPPRVRRuXnXVCI5TavhpFPnrp+xkks5o=) 2: IPblO2l60mO0uk6kmBQ2aog7VK0.crl (hash: 2wZSUNcTq/tdTXxsDZY27EMTyLinieMrO2fVwUoxphA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:8f:c5:8e:28:77:5b:ba:8b:8f:c0:17:ed:4e:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20f6e53b697ad263b4ba4ea49814366a883b54ad Validity Not Before: Dec 6 01:02:31 2025 GMT Not After : Dec 7 01:02:31 2025 GMT Subject: CN=ccddba6871d8810e5dc50363b106cad58d30bb89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c8:bf:7b:b7:d6:04:a1:02:37:d5:92:56:ac: 07:c8:ee:3f:35:7a:0a:22:6a:4d:2e:05:58:03:92: e4:f1:e7:cd:ef:b7:0b:f9:4d:74:2b:e9:2f:2e:7a: 4a:27:dc:ca:11:55:74:ff:cd:68:c6:9c:14:16:24: 9e:7c:f8:f4:e1:aa:c3:f8:94:2e:88:2b:8c:65:c7: c9:d1:1d:9f:85:40:5a:22:9f:71:e7:70:d2:7f:08: c7:46:93:92:64:a6:0f:58:7b:56:d2:b4:bc:ae:3c: 73:fc:2f:23:26:b7:f8:3d:39:4d:3c:ad:67:c0:67: 1e:93:60:2b:c5:7f:ee:1f:3a:3d:a3:0e:67:d9:cc: 52:9e:55:2d:06:b0:35:d1:0f:c0:b7:e6:7c:74:ff: c2:14:78:4b:24:3d:ba:1f:ba:fd:e9:35:aa:70:5b: 74:4b:86:eb:1d:01:59:db:76:56:d4:1c:19:43:3a: 03:c9:a9:ae:ae:60:09:17:4a:c6:dd:ea:6f:93:b8: af:00:37:f3:00:ae:ad:cc:12:2d:d1:d4:7c:a0:49: 33:4d:03:f0:b0:7c:fc:ce:a6:47:23:3d:9d:68:9c: 1b:61:e8:9e:b5:95:35:a6:76:72:68:6f:68:75:89: 41:64:35:33:85:5b:0d:59:6f:cd:64:61:60:53:ab: af:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:DD:BA:68:71:D8:81:0E:5D:C5:03:63:B1:06:CA:D5:8D:30:BB:89 X509v3 Authority Key Identifier: keyid:20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:3d:4d:77:90:55:03:ff:2f:61:05:22:6a:df:f3:d1:bf:15: c5:d5:a4:0f:11:43:15:a2:86:38:60:ed:79:1d:6e:ec:e8:31: 89:4e:ed:19:02:f3:38:fb:b7:20:72:2b:0a:68:6c:00:29:c2: f8:3a:ff:41:19:e4:bd:63:bc:48:30:c4:6c:fa:30:cd:da:7d: e0:ae:b9:ac:a2:32:f0:3f:55:be:9d:ef:45:57:e4:2e:77:ef: 82:dd:63:cb:b2:74:fb:bf:3b:ba:84:44:3b:67:4e:a7:60:1d: 7f:90:74:7c:1d:2c:89:c6:5c:03:1a:b8:89:0a:95:49:79:95: 42:e1:8e:f7:13:8c:84:f5:7c:b3:24:ec:70:45:55:73:2c:54: 68:49:c7:a7:85:38:69:f2:17:7e:64:7c:11:3a:25:31:30:72: 1a:32:60:6f:24:0b:cf:1e:56:70:cf:ae:a9:c3:eb:0d:c5:bc: 1d:ac:dd:04:d7:9c:81:12:5f:f5:90:94:be:3c:0d:c4:fa:fe: 7b:55:2f:ed:ac:ac:4b:46:22:a2:86:56:c2:3c:1d:2e:7f:94: 21:ce:9c:c7:c4:4d:fd:6c:ce:00:bc:d7:09:b8:b5:b4:e1:ff: 05:71:99:d3:b1:44:cc:d4:a0:48:3c:75:17:aa:f4:5c:da:ef: d7:cd:c7:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLo/Fjih3W7qLj8AX7U45MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwZjZlNTNiNjk3YWQyNjNiNGJhNGVhNDk4MTQzNjZhODgz YjU0YWQwHhcNMjUxMjA2MDEwMjMxWhcNMjUxMjA3MDEwMjMxWjAzMTEwLwYDVQQD EyhjY2RkYmE2ODcxZDg4MTBlNWRjNTAzNjNiMTA2Y2FkNThkMzBiYjg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqsi/e7fWBKECN9WSVqwHyO4/NXoK ImpNLgVYA5Lk8efN77cL+U10K+kvLnpKJ9zKEVV0/81oxpwUFiSefPj04arD+JQu iCuMZcfJ0R2fhUBaIp9x53DSfwjHRpOSZKYPWHtW0rS8rjxz/C8jJrf4PTlNPK1n wGcek2ArxX/uHzo9ow5n2cxSnlUtBrA10Q/At+Z8dP/CFHhLJD26H7r96TWqcFt0 S4brHQFZ23ZW1BwZQzoDyamurmAJF0rG3epvk7ivADfzAK6tzBIt0dR8oEkzTQPw sHz8zqZHIz2daJwbYeietZU1pnZyaG9odYlBZDUzhVsNWW/NZGFgU6uvGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMzdumhx2IEOXcUDY7EGytWNMLuJMB8GA1UdIwQY MBaAFCD25TtpetJjtLpOpJgUNmqIO1StMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVBibE8ybDYwbU8wdWs2a21CUTJhb2c3VkswLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9lNzU3NmEtNDM2My00OTg0LWI0Yzct YjFmMjljY2NjZTU1LzEvSVBibE8ybDYwbU8wdWs2a21CUTJhb2c3VkswLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi9lNzU3NmEtNDM2My00OTg0LWI0YzctYjFmMjljY2NjZTU1 LzEvSVBibE8ybDYwbU8wdWs2a21CUTJhb2c3VkswLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeD1Nd5BV A/8vYQUiat/z0b8VxdWkDxFDFaKGOGDteR1u7OgxiU7tGQLzOPu3IHIrCmhsACnC +Dr/QRnkvWO8SDDEbPowzdp94K65rKIy8D9Vvp3vRVfkLnfvgt1jy7J0+787uoRE O2dOp2Adf5B0fB0sicZcAxq4iQqVSXmVQuGO9xOMhPV8syTscEVVcyxUaEnHp4U4 afIXfmR8ETolMTByGjJgbyQLzx5WcM+uqcPrDcW8HazdBNecgRJf9ZCUvjwNxPr+ e1Uv7aysS0YiooZWwjwdLn+UIc6cx8RN/WzOALzXCbi1tOH/BXGZ07FEzNSgSDx1 F6r0XNrv183H+w== -----END CERTIFICATE-----Generated at Sat Dec 6 09:31:14 2025 by rpki-client