This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft File: i5HgoQS1s93x9dCOessreeDVZvk.mft (raw, json) Hash identifier: yabl8ak2/SS+YSjsDugrclE7BeUTAUB8p9wNt3pjR6U= Subject key identifier: DE:E9:16:6F:D5:DE:A7:53:D7:73:30:7F:20:AB:EE:85:BA:F1:04:CB Authority key identifier: 8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9 Certificate issuer: /CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9 Certificate serial: 019AF50AB89A34E34B7B59C71EAE633B8D11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft Manifest number: 116E Signing time: Sat 06 Dec 2025 19:01:51 +0000 Manifest this update: Sat 06 Dec 2025 19:01:51 +0000 Manifest next update: Sun 07 Dec 2025 19:01:51 +0000 Files and hashes: 1: KwomHtAHnCM0D-yGdW_0Sf3mopc.roa (hash: nJuUP0j6H239g1R7GMJyKq0zviXnK+AhK7Q4U43dyg4=) 2: ZYlcf7X6lFUqPdlZgjx7h6pY7f0.roa (hash: Z91lhusvfId6xXTKVa6gm5qmkQJNcO8M7YoIqY37LFU=) 3: i5HgoQS1s93x9dCOessreeDVZvk.crl (hash: FkzLm0Bz761ZsbqJSy/OflRaw0+Q52mN/Uvnx/eeo0c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.crl rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0a:b8:9a:34:e3:4b:7b:59:c7:1e:ae:63:3b:8d:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9 Validity Not Before: Dec 6 19:01:51 2025 GMT Not After : Dec 7 19:01:51 2025 GMT Subject: CN=dee9166fd5dea753d773307f20abee85baf104cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:02:f3:21:bd:a6:ab:da:43:ae:6c:13:9a:1b: d2:11:1a:0f:eb:f7:8e:e2:21:ab:3c:d4:ca:ca:6d: f9:54:0d:13:a0:32:97:18:e1:48:4a:3e:0c:6d:58: 24:93:27:43:99:92:31:c9:4d:8a:fc:a0:62:a6:91: 1a:5a:ae:e4:71:01:de:b3:f5:ab:ca:10:f8:4e:59: 6e:53:07:68:be:34:04:05:82:6e:e1:89:6e:ad:1c: 04:2a:ae:a7:c5:8f:13:46:cb:74:a2:30:02:17:64: 5d:95:ec:56:b9:71:ff:f7:89:c9:27:c5:b2:9e:35: c7:4f:f4:c7:b8:1e:ec:6b:4d:3a:68:9b:11:a0:7a: 25:23:ae:4a:28:43:7b:fa:3c:35:aa:ee:51:ee:96: 3a:b7:25:24:bc:53:cc:3e:64:2e:4d:d6:f0:ec:d1: 74:ef:63:64:a9:8c:a0:87:5d:b3:2a:26:9f:50:b7: 42:1e:b9:01:ff:2a:7b:d2:6d:5d:17:45:30:81:0e: d2:a0:d3:89:99:74:12:97:30:28:8f:4f:c6:0a:54: f0:cf:81:16:34:9f:f1:d3:39:38:a7:4b:21:9a:c2: 2f:89:de:86:0d:c9:ce:b0:3e:79:ae:e7:fc:b4:ff: f6:3c:fb:fb:80:ec:6f:17:76:b8:87:b4:9c:b5:da: de:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E9:16:6F:D5:DE:A7:53:D7:73:30:7F:20:AB:EE:85:BA:F1:04:CB X509v3 Authority Key Identifier: keyid:8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:f3:01:45:a1:aa:d7:e0:7e:24:48:34:5d:d1:27:08:53:28: c9:70:d3:a4:85:49:5a:da:5e:9e:4c:7d:7d:20:7b:54:66:64: cd:46:30:31:90:eb:23:3b:a7:16:8b:a9:37:9e:83:77:fd:1d: bc:96:c4:c3:74:46:85:f2:90:9f:8e:c8:20:4a:a8:df:b3:a6: 78:30:fa:86:e3:f3:bc:8d:d2:1a:e8:3f:26:e8:3d:cc:ae:63: d7:8f:33:cd:39:f0:7d:5d:00:38:98:b4:05:7c:af:e6:df:ca: 44:a3:53:51:bf:a5:0f:67:50:b6:38:62:5c:a9:3e:4a:c7:07: 39:9d:cc:61:26:4f:fb:2c:b0:c9:6a:ec:e7:e9:81:63:74:13: 6d:3f:12:47:3e:0c:90:31:2d:a3:7d:b3:8d:68:8c:61:83:ab: 12:22:01:8d:2d:3c:3e:70:79:77:2b:03:a8:78:82:72:8e:4d: a5:dd:98:83:83:d5:44:59:ed:18:e2:23:f8:1d:1e:c2:35:c8: 1d:54:4d:7b:d8:fb:dd:13:3c:1b:ea:54:7a:83:b9:fa:56:d2: 56:87:74:9c:d7:06:12:35:3f:9f:35:e2:f7:35:e2:84:9b:c3: 04:eb:88:d2:38:df:61:41:07:03:0c:11:1e:b4:4c:0e:90:40: 1a:8b:1b:22 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CriaNONLe1nHHq5jO40RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiOTFlMGExMDRiNWIzZGRmMWY1ZDA4ZTdhY2IyYjc5ZTBk NTY2ZjkwHhcNMjUxMjA2MTkwMTUxWhcNMjUxMjA3MTkwMTUxWjAzMTEwLwYDVQQD EyhkZWU5MTY2ZmQ1ZGVhNzUzZDc3MzMwN2YyMGFiZWU4NWJhZjEwNGNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsQLzIb2mq9pDrmwTmhvSERoP6/eO 4iGrPNTKym35VA0ToDKXGOFISj4MbVgkkydDmZIxyU2K/KBippEaWq7kcQHes/Wr yhD4TlluUwdovjQEBYJu4YlurRwEKq6nxY8TRst0ojACF2RdlexWuXH/94nJJ8Wy njXHT/THuB7sa006aJsRoHolI65KKEN7+jw1qu5R7pY6tyUkvFPMPmQuTdbw7NF0 72NkqYygh12zKiafULdCHrkB/yp70m1dF0UwgQ7SoNOJmXQSlzAoj0/GClTwz4EW NJ/x0zk4p0shmsIvid6GDcnOsD55ruf8tP/2PPv7gOxvF3a4h7SctdreTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN7pFm/V3qdT13MwfyCr7oW68QTLMB8GA1UdIwQY MBaAFIuR4KEEtbPd8fXQjnrLK3ng1Wb5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTVIZ29RUzFzOTN4OWRDT2Vzc3JlZURWWnZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9kZmJmYzQtY2MzZi00NzdjLThkNzYt YThjNTc2MjI0YmEyLzEvaTVIZ29RUzFzOTN4OWRDT2Vzc3JlZURWWnZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My9kZmJmYzQtY2MzZi00NzdjLThkNzYtYThjNTc2MjI0YmEy LzEvaTVIZ29RUzFzOTN4OWRDT2Vzc3JlZURWWnZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARfMBRaGq 1+B+JEg0XdEnCFMoyXDTpIVJWtpenkx9fSB7VGZkzUYwMZDrIzunFoupN56Dd/0d vJbEw3RGhfKQn47IIEqo37OmeDD6huPzvI3SGug/Jug9zK5j148zzTnwfV0AOJi0 BXyv5t/KRKNTUb+lD2dQtjhiXKk+SscHOZ3MYSZP+yywyWrs5+mBY3QTbT8SRz4M kDEto32zjWiMYYOrEiIBjS08PnB5dysDqHiCco5Npd2Yg4PVRFntGOIj+B0ewjXI HVRNe9j73RM8G+pUeoO5+lbSVod0nNcGEjU/nzXi9zXihJvDBOuI0jjfYUEHAwwR HrRMDpBAGosbIg== -----END CERTIFICATE-----Generated at Sat Dec 6 23:51:12 2025 by rpki-client