This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft File: iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft (raw, json) Hash identifier: cRDUodeG2bkPRFPwhysgi1V73SrLqMJvx2pl6VsJmV0= Subject key identifier: 68:29:95:48:1E:88:F7:6C:C2:7F:8C:EC:40:3D:EF:7A:03:81:80:A6 Authority key identifier: 88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC Certificate issuer: /CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc Certificate serial: 019AF19BAF55438497B52A8B31753A4E54C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft Manifest number: 0609 Signing time: Sat 06 Dec 2025 03:01:43 +0000 Manifest this update: Sat 06 Dec 2025 03:01:43 +0000 Manifest next update: Sun 07 Dec 2025 03:01:43 +0000 Files and hashes: 1: XBo1pVVrARNWOJzVGLIS7aXEyvs.roa (hash: LHmi+bbPW6X6RSAyxvQlIttnolx/pGqPJGLDRqAXVIU=) 2: iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl (hash: GCLbUv5BlqxGaGD0QayiIoMiIIi26Q+e8Yr9I8MwgQ0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:af:55:43:84:97:b5:2a:8b:31:75:3a:4e:54:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc Validity Not Before: Dec 6 03:01:43 2025 GMT Not After : Dec 7 03:01:43 2025 GMT Subject: CN=682995481e88f76cc27f8cec403def7a038180a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9f:ad:1a:7c:c5:0f:b9:6c:9d:64:3e:43:e2: eb:4a:2c:4e:79:8f:e0:38:63:3a:90:09:30:f3:64: 09:af:94:7d:89:3b:ea:f8:cd:ec:44:54:80:96:87: d2:75:66:c8:ad:51:68:35:d7:7b:13:9f:c6:17:e0: d4:6c:25:eb:d2:f2:69:94:d6:af:38:b2:61:fb:90: 22:58:81:5c:50:30:96:81:00:72:53:a0:af:5e:c4: eb:0f:d8:8b:01:bd:d2:43:11:b6:6c:33:fd:b7:c1: 70:42:00:39:cb:51:ad:41:45:61:68:b7:4f:e7:ce: b9:c1:79:7d:c5:33:45:15:39:85:b2:d0:55:29:eb: ab:9b:9b:78:80:bd:f6:67:06:fa:87:00:23:f6:bb: 8e:03:fe:d0:f9:3e:e7:8b:76:62:01:1a:93:7e:b9: f6:bc:7d:60:fd:44:9a:8c:90:a9:2b:c7:d3:4d:b9: 8f:28:11:08:a7:86:a2:99:91:df:94:38:2e:4f:28: 5d:48:d3:8d:b0:e4:a3:51:b5:0a:88:8c:4a:32:08: 98:7c:a2:b8:fc:88:fa:5b:58:30:1d:bc:10:71:2f: 98:bc:f6:68:bb:bd:ce:33:fe:d8:0d:18:62:5f:ef: a6:91:52:16:4e:c3:8e:fd:e2:03:3c:89:b5:a7:cc: 22:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:29:95:48:1E:88:F7:6C:C2:7F:8C:EC:40:3D:EF:7A:03:81:80:A6 X509v3 Authority Key Identifier: keyid:88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:96:c7:3a:51:77:a7:aa:67:25:45:09:0e:83:63:47:4d:3e: 71:e6:29:f6:1e:98:74:a5:7a:bc:0e:cb:d2:44:1c:24:42:72: 17:86:e8:d2:31:4a:c2:54:33:a0:e8:70:07:cc:48:0a:b9:d8: 64:fe:eb:54:66:4e:e8:d4:3a:48:ed:b7:db:ea:75:d5:27:32: 9f:bc:ab:90:b2:09:12:22:d2:63:eb:cf:f7:52:09:6c:fa:fa: 89:59:6e:db:75:f9:3a:0b:bf:ff:d8:86:95:07:12:55:c8:43: 1b:f8:60:da:69:08:46:b3:02:c5:07:1c:18:98:fd:b7:69:b8: d8:6c:22:64:d7:e6:d7:a4:c2:fa:5d:14:68:d5:f2:70:44:2b: 25:6e:a6:c3:54:41:48:6b:1e:32:e8:6d:83:54:88:e9:f0:d6: 84:5c:19:10:43:94:95:37:5d:0b:17:26:6b:0b:a2:e7:99:46: 37:7c:b8:a2:29:aa:44:48:47:b2:3b:d8:3c:13:f2:7f:2b:4c: aa:d6:98:d8:91:31:dc:72:df:d3:a1:81:35:38:47:f6:34:49: d5:64:98:5d:72:84:e5:97:2d:30:07:8e:7f:5f:a5:83:5b:a6: 01:b5:80:50:9d:27:f2:97:d7:9e:20:f8:9f:c4:03:cb:96:f5: 3b:d7:a2:a2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm69VQ4SXtSqLMXU6TlTGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4ZjdiMGRkOWZmY2EyZjg1NzM0YzUzN2NiZWY1Y2NkMTE5 OWU1YmMwHhcNMjUxMjA2MDMwMTQzWhcNMjUxMjA3MDMwMTQzWjAzMTEwLwYDVQQD Eyg2ODI5OTU0ODFlODhmNzZjYzI3ZjhjZWM0MDNkZWY3YTAzODE4MGE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJ+tGnzFD7lsnWQ+Q+LrSixOeY/g OGM6kAkw82QJr5R9iTvq+M3sRFSAlofSdWbIrVFoNdd7E5/GF+DUbCXr0vJplNav OLJh+5AiWIFcUDCWgQByU6CvXsTrD9iLAb3SQxG2bDP9t8FwQgA5y1GtQUVhaLdP 5865wXl9xTNFFTmFstBVKeurm5t4gL32Zwb6hwAj9ruOA/7Q+T7ni3ZiARqTfrn2 vH1g/USajJCpK8fTTbmPKBEIp4aimZHflDguTyhdSNONsOSjUbUKiIxKMgiYfKK4 /Ij6W1gwHbwQcS+YvPZou73OM/7YDRhiX++mkVIWTsOO/eIDPIm1p8wiDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGgplUgeiPdswn+M7EA973oDgYCmMB8GA1UdIwQY MBaAFIj3sN2f/KL4VzTFN8vvXM0RmeW8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVBldzNaXzhvdmhYTk1VM3ktOWN6UkdaNWJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9kYzhjMDItNGY2ZC00OWY2LTg4MmMt MTM2OTA1ZTJjN2M1LzEvaVBldzNaXzhvdmhYTk1VM3ktOWN6UkdaNWJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC9kYzhjMDItNGY2ZC00OWY2LTg4MmMtMTM2OTA1ZTJjN2M1 LzEvaVBldzNaXzhvdmhYTk1VM3ktOWN6UkdaNWJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmZbHOlF3 p6pnJUUJDoNjR00+ceYp9h6YdKV6vA7L0kQcJEJyF4bo0jFKwlQzoOhwB8xICrnY ZP7rVGZO6NQ6SO232+p11Scyn7yrkLIJEiLSY+vP91IJbPr6iVlu23X5Ogu//9iG lQcSVchDG/hg2mkIRrMCxQccGJj9t2m42GwiZNfm16TC+l0UaNXycEQrJW6mw1RB SGseMuhtg1SI6fDWhFwZEEOUlTddCxcmawui55lGN3y4oimqREhHsjvYPBPyfytM qtaY2JEx3HLf06GBNThH9jRJ1WSYXXKE5ZctMAeOf1+lg1umAbWAUJ0n8pfXniD4 n8QDy5b1O9eiog== -----END CERTIFICATE-----Generated at Sat Dec 6 12:06:26 2025 by rpki-client