This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft File: iveEdzfnSUKyvnS5P9AtkA0wmyA.mft (raw, json) Hash identifier: v/IJhvzD0YAI9IPK5lYHjOsY6hU7O8Ybd17ObRfgNeQ= Subject key identifier: D3:80:BE:F0:5A:EE:98:E6:FE:34:D3:74:49:9A:40:C5:93:2F:84:4D Authority key identifier: 8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20 Certificate issuer: /CN=8af7847737e74942b2be74b93fd02d900d309b20 Certificate serial: 019AF12DA49BC12A175351B90B7028773AE4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 01:01:31 +0000 Manifest this update: Sat 06 Dec 2025 01:01:31 +0000 Manifest next update: Sun 07 Dec 2025 01:01:31 +0000 Files and hashes: 1: gl5jVkYAoBFN7cdrLnkDFxT9xzs.roa (hash: DKhlihYjJGtiikGfA1O1zHxswQCNAc4gtqIYH1Qddqc=) 2: iveEdzfnSUKyvnS5P9AtkA0wmyA.crl (hash: n3qm69ERwkFlgUSfD4081PUGiq/RIV6HcJgDKSozjWQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:a4:9b:c1:2a:17:53:51:b9:0b:70:28:77:3a:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8af7847737e74942b2be74b93fd02d900d309b20 Validity Not Before: Dec 6 01:01:31 2025 GMT Not After : Dec 7 01:01:31 2025 GMT Subject: CN=d380bef05aee98e6fe34d374499a40c5932f844d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:8a:bd:73:66:42:b5:8e:53:f4:14:ac:76:7c: 93:01:0c:ab:69:54:09:21:16:67:d2:55:cd:7a:99: 02:e5:b8:25:da:e0:1f:a3:e0:3a:01:bf:33:5a:35: 7c:23:71:3c:f3:71:90:6e:9b:08:30:df:c9:f4:ff: 75:98:79:72:43:61:5b:e3:85:47:a4:44:89:bd:20: d3:87:4c:cb:07:84:f4:eb:45:fe:35:dc:43:82:fa: 8b:75:29:ed:14:eb:1e:d9:cb:ba:30:54:6d:a1:f5: 50:64:48:04:d7:40:5c:39:73:8f:9b:6b:6c:cc:b3: e6:a8:7e:29:41:6b:d5:b4:f5:2a:4b:d1:f3:8a:b7: e4:dc:4e:b0:5d:77:02:5a:f3:2f:01:ac:a1:71:91: 2a:b0:39:77:1c:98:30:2f:99:e0:26:1a:d2:e2:17: 13:5f:ec:90:18:c4:57:fe:e9:08:e2:c5:8e:28:af: 33:6a:00:ea:dc:c9:a3:e9:86:41:07:c4:38:0a:c8: 19:d6:3d:df:1b:ee:7d:29:5e:6f:5d:39:20:8f:db: 17:a9:f0:ab:bd:ff:da:c9:69:f8:88:8d:c6:79:b7: 15:cb:43:d1:53:15:89:3d:42:15:1c:ee:96:b5:f5: 5f:02:d2:80:03:64:b5:5d:a4:db:66:53:a1:c4:62: 44:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:80:BE:F0:5A:EE:98:E6:FE:34:D3:74:49:9A:40:C5:93:2F:84:4D X509v3 Authority Key Identifier: keyid:8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:4f:35:6f:e3:ef:06:8d:b5:69:74:a9:3f:fb:c9:1f:bb:7d: f6:f9:bb:b6:ff:56:b6:9a:34:ac:63:e8:8d:57:41:3b:09:4c: 62:ec:3a:e7:ef:c5:72:7e:51:58:14:1a:de:17:d1:e6:41:05: 49:bf:39:b4:77:79:00:9c:e1:aa:de:e2:c4:02:1b:a9:9e:cb: 7e:68:3a:89:26:91:00:1d:41:88:88:8a:19:1a:8d:ed:26:2b: cb:7e:2f:ce:84:70:93:9d:75:51:23:42:f0:ee:dd:5d:5d:a8: 38:be:6d:ec:08:7f:af:60:96:b9:95:33:57:ff:1f:52:02:ba: 0b:04:4b:b7:8b:d0:77:82:08:45:83:d5:1d:e5:75:ca:72:92: bf:32:97:88:8a:31:f8:01:d7:ed:be:fb:d4:e8:e3:40:38:e9: 10:a3:bf:2a:78:5d:54:e3:64:48:e8:fd:89:96:53:de:70:53: e5:fa:bf:3a:97:88:cc:be:35:0b:d9:ff:29:14:42:a6:ca:f3: ff:a0:50:dd:b0:5c:5b:cf:e3:7f:42:36:90:95:b1:9d:b2:b9: e8:aa:20:3a:8d:5d:e8:fe:a0:b7:30:2d:79:c5:73:13:92:03: 0e:89:72:8a:7f:6d:ad:51:6d:73:00:7f:b5:cd:23:75:a6:e8: 54:48:97:00 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLaSbwSoXU1G5C3AodzrkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhZjc4NDc3MzdlNzQ5NDJiMmJlNzRiOTNmZDAyZDkwMGQz MDliMjAwHhcNMjUxMjA2MDEwMTMxWhcNMjUxMjA3MDEwMTMxWjAzMTEwLwYDVQQD EyhkMzgwYmVmMDVhZWU5OGU2ZmUzNGQzNzQ0OTlhNDBjNTkzMmY4NDRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA34q9c2ZCtY5T9BSsdnyTAQyraVQJ IRZn0lXNepkC5bgl2uAfo+A6Ab8zWjV8I3E883GQbpsIMN/J9P91mHlyQ2Fb44VH pESJvSDTh0zLB4T060X+NdxDgvqLdSntFOse2cu6MFRtofVQZEgE10BcOXOPm2ts zLPmqH4pQWvVtPUqS9Hzirfk3E6wXXcCWvMvAayhcZEqsDl3HJgwL5ngJhrS4hcT X+yQGMRX/ukI4sWOKK8zagDq3Mmj6YZBB8Q4CsgZ1j3fG+59KV5vXTkgj9sXqfCr vf/ayWn4iI3GebcVy0PRUxWJPUIVHO6WtfVfAtKAA2S1XaTbZlOhxGJEwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNOAvvBa7pjm/jTTdEmaQMWTL4RNMB8GA1UdIwQY MBaAFIr3hHc350lCsr50uT/QLZANMJsgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXZlRWR6Zm5TVUt5dm5TNVA5QXRrQTB3bXlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni81MjM4NGItZTdhNC00MjY5LWEwY2Mt N2VmYzI4MDhkMTI1LzEvaXZlRWR6Zm5TVUt5dm5TNVA5QXRrQTB3bXlBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni81MjM4NGItZTdhNC00MjY5LWEwY2MtN2VmYzI4MDhkMTI1 LzEvaXZlRWR6Zm5TVUt5dm5TNVA5QXRrQTB3bXlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFU81b+Pv Bo21aXSpP/vJH7t99vm7tv9Wtpo0rGPojVdBOwlMYuw65+/Fcn5RWBQa3hfR5kEF Sb85tHd5AJzhqt7ixAIbqZ7Lfmg6iSaRAB1BiIiKGRqN7SYry34vzoRwk511USNC 8O7dXV2oOL5t7Ah/r2CWuZUzV/8fUgK6CwRLt4vQd4IIRYPVHeV1ynKSvzKXiIox +AHX7b771OjjQDjpEKO/KnhdVONkSOj9iZZT3nBT5fq/OpeIzL41C9n/KRRCpsrz /6BQ3bBcW8/jf0I2kJWxnbK56KogOo1d6P6gtzAtecVzE5IDDolyin9trVFtcwB/ tc0jdaboVEiXAA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:08:53 2025 by rpki-client