This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.mft File: itkoGq_vyDda2LS35gSJlVWVIjc.mft (raw, json) Hash identifier: l3+DRdZ7aU3/YI+80aJx7lNWS/l6iIXNDMeWaGt8Nms= Subject key identifier: F6:6C:FA:DB:9F:96:0D:AF:79:B2:F4:80:AC:FB:31:AA:66:66:97:71 Authority key identifier: 8A:D9:28:1A:AF:EF:C8:37:5A:D8:B4:B7:E6:04:89:95:55:95:22:37 Certificate issuer: /CN=8ad9281aafefc8375ad8b4b7e604899555952237 Certificate serial: 019AF31BA6409F15594CC3ECF50C77F1E420 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itkoGq_vyDda2LS35gSJlVWVIjc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 10:01:06 +0000 Manifest this update: Sat 06 Dec 2025 10:01:06 +0000 Manifest next update: Sun 07 Dec 2025 10:01:06 +0000 Files and hashes: 1: S5poUcmm58bh9LYHwgnRXNYgnoA.roa (hash: lYdAfaTYBlu17YVjsaWJtgDfvkSUWB0Kx0isvQs/8cw=) 2: UH7ERX2uEAwiuiu2EIP73IUUkwI.roa (hash: 71rfZI37bB6WKWLPGXn68iFKAbS6rOx+kOHCTWBrP9Q=) 3: cFWMX2o_ui2JzGo_3BwtmNDE6Xg.roa (hash: XCpyD2PZhsa33O69EMpxJ6xZIifq0UTk39opm80d+zI=) 4: itkoGq_vyDda2LS35gSJlVWVIjc.crl (hash: +FedCJStB9XM1qb0zah5DI/X8H3nlJrDZNVd1HiKFjs=) 5: sShD_q4ceLwxQ66Q2G4C6NLHOns.roa (hash: BiX0Ojf2DbZMT20uSZBtFAbZP4As97iO/AHVcU+bzqI=) 6: tk3p5E2XBBz_gCKcQbPuR2gwU6g.roa (hash: /uRgiUmwXV30g9CXl0HkFIaUTifbBZ9DvHMj/iIVKLM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.crl rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.mft rsync://rpki.ripe.net/repository/DEFAULT/itkoGq_vyDda2LS35gSJlVWVIjc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:a6:40:9f:15:59:4c:c3:ec:f5:0c:77:f1:e4:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8ad9281aafefc8375ad8b4b7e604899555952237 Validity Not Before: Dec 6 10:01:06 2025 GMT Not After : Dec 7 10:01:06 2025 GMT Subject: CN=f66cfadb9f960daf79b2f480acfb31aa66669771 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:98:c0:4c:0c:c7:47:9c:21:d3:06:63:1d:1f: 01:0a:b5:2c:fc:51:4f:b5:94:aa:b6:00:66:35:35: 29:1f:b6:e4:91:37:0a:c7:16:3e:06:86:b8:9e:d8: c4:76:df:29:3e:45:f4:fc:bf:16:9e:a5:97:32:c9: 5f:d0:ae:6e:d4:d2:dd:23:23:78:5c:13:e6:93:fb: df:69:5a:52:85:7a:e9:9b:ac:56:bd:29:46:6f:0b: 7c:30:52:19:69:e7:f3:9d:0d:58:01:7e:a3:e7:2d: 70:fd:b5:f0:cc:fa:0c:ff:5d:72:e3:34:d4:fd:92: 3b:2f:ac:87:36:96:b8:68:47:df:a4:29:1c:f2:fa: 22:67:83:8c:87:e4:22:1f:59:7b:d5:30:97:80:fc: 39:8a:d7:3c:b3:38:d9:91:6d:08:6c:2c:59:d3:8e: 85:e7:e4:da:6f:c3:74:3a:13:ad:c9:fc:c4:80:91: 27:de:8d:4a:95:cf:a3:38:b7:e3:5a:c2:28:a0:d6: ef:9b:3a:d5:6b:8a:22:0d:0c:61:c7:ed:c4:49:8a: a5:ff:f1:28:6d:05:c4:8e:5f:ef:b4:1f:2a:be:bb: cf:ad:05:82:58:d5:a2:0c:1a:dd:9f:d0:3e:56:12: af:73:a3:a6:b8:8e:30:b8:3b:03:27:76:e0:68:aa: 60:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:6C:FA:DB:9F:96:0D:AF:79:B2:F4:80:AC:FB:31:AA:66:66:97:71 X509v3 Authority Key Identifier: keyid:8A:D9:28:1A:AF:EF:C8:37:5A:D8:B4:B7:E6:04:89:95:55:95:22:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itkoGq_vyDda2LS35gSJlVWVIjc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:1c:f9:28:e7:da:fa:c4:36:3a:63:e7:d2:c3:2b:42:a7:4c: 7e:d0:f4:a2:47:2f:bc:24:77:4c:9e:41:a7:e7:98:af:d2:60: ae:86:66:a4:b5:1d:a7:09:d8:5f:61:8f:9f:7f:28:07:f2:e6: 11:45:75:83:bd:09:2d:69:aa:73:0c:b3:87:48:53:81:b3:67: f9:22:22:18:dd:82:22:bf:cc:c9:07:90:c6:68:b5:68:99:f4: 12:23:6e:66:a6:40:bc:89:a0:06:83:6c:22:bd:59:a9:71:72: 86:15:ef:ff:20:9b:6a:f6:9a:4d:ce:94:14:9e:5a:d5:32:69: f1:5e:89:79:cd:80:db:e2:52:6c:a5:f6:b8:ef:b5:2e:65:f2: f3:0c:da:60:a7:06:f0:ca:1d:17:b5:10:af:1d:5f:8a:83:73: c2:2d:25:2f:68:7c:60:a8:2c:ec:ce:72:3c:6f:c4:b9:8b:d9: 4b:a4:7c:a5:0a:e9:4a:89:3f:d6:c8:5f:a7:c0:d2:fe:c6:94: 1a:ce:c8:5f:68:cf:25:3b:1f:d9:37:f8:22:4d:83:0d:8f:84: c4:85:f4:f9:ce:54:3c:d2:94:86:fa:86:8d:7c:44:59:17:ac: 10:51:8c:31:33:14:97:80:04:1f:d7:b1:f5:a6:24:2c:bc:04: 42:76:2b:09 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG6ZAnxVZTMPs9Qx38eQgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhZDkyODFhYWZlZmM4Mzc1YWQ4YjRiN2U2MDQ4OTk1NTU5 NTIyMzcwHhcNMjUxMjA2MTAwMTA2WhcNMjUxMjA3MTAwMTA2WjAzMTEwLwYDVQQD EyhmNjZjZmFkYjlmOTYwZGFmNzliMmY0ODBhY2ZiMzFhYTY2NjY5NzcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpjATAzHR5wh0wZjHR8BCrUs/FFP tZSqtgBmNTUpH7bkkTcKxxY+Boa4ntjEdt8pPkX0/L8WnqWXMslf0K5u1NLdIyN4 XBPmk/vfaVpShXrpm6xWvSlGbwt8MFIZaefznQ1YAX6j5y1w/bXwzPoM/11y4zTU /ZI7L6yHNpa4aEffpCkc8voiZ4OMh+QiH1l71TCXgPw5itc8szjZkW0IbCxZ046F 5+Tab8N0OhOtyfzEgJEn3o1Klc+jOLfjWsIooNbvmzrVa4oiDQxhx+3ESYql//Eo bQXEjl/vtB8qvrvPrQWCWNWiDBrdn9A+VhKvc6OmuI4wuDsDJ3bgaKpgTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPZs+tuflg2vebL0gKz7MapmZpdxMB8GA1UdIwQY MBaAFIrZKBqv78g3Wti0t+YEiZVVlSI3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXRrb0dxX3Z5RGRhMkxTMzVnU0psVldWSWpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8wNTg1MDktMmZlNy00ODZiLWI0YWQt OGM3NGY5ZGQ2N2ZjLzEvaXRrb0dxX3Z5RGRhMkxTMzVnU0psVldWSWpjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC8wNTg1MDktMmZlNy00ODZiLWI0YWQtOGM3NGY5ZGQ2N2Zj LzEvaXRrb0dxX3Z5RGRhMkxTMzVnU0psVldWSWpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVxz5KOfa +sQ2OmPn0sMrQqdMftD0okcvvCR3TJ5Bp+eYr9JgroZmpLUdpwnYX2GPn38oB/Lm EUV1g70JLWmqcwyzh0hTgbNn+SIiGN2CIr/MyQeQxmi1aJn0EiNuZqZAvImgBoNs Ir1ZqXFyhhXv/yCbavaaTc6UFJ5a1TJp8V6Jec2A2+JSbKX2uO+1LmXy8wzaYKcG 8ModF7UQrx1fioNzwi0lL2h8YKgs7M5yPG/EuYvZS6R8pQrpSok/1shfp8DS/saU Gs7IX2jPJTsf2Tf4Ik2DDY+ExIX0+c5UPNKUhvqGjXxEWResEFGMMTMUl4AEH9ex 9aYkLLwEQnYrCQ== -----END CERTIFICATE-----Generated at Sat Dec 6 12:46:45 2025 by rpki-client