This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.mft File: IlS8wDKT460OGaej_Rsc-9NMCZA.mft (raw, json) Hash identifier: LfSwfLdggK/wnC313JX2ww3D+sEYGR9ooS2Ef4BYNHQ= Subject key identifier: 4E:BD:A3:28:FC:F9:6A:B2:79:0B:48:E6:5C:38:38:94:77:74:57:C5 Authority key identifier: 22:54:BC:C0:32:93:E3:AD:0E:19:A7:A3:FD:1B:1C:FB:D3:4C:09:90 Certificate issuer: /CN=2254bcc03293e3ad0e19a7a3fd1b1cfbd34c0990 Certificate serial: 019B416DEB0882CECCBAAE87C7670EBAD7C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IlS8wDKT460OGaej_Rsc-9NMCZA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.mft Manifest number: 152C Signing time: Sun 21 Dec 2025 15:01:21 +0000 Manifest this update: Sun 21 Dec 2025 15:01:21 +0000 Manifest next update: Mon 22 Dec 2025 15:01:21 +0000 Files and hashes: 1: IlS8wDKT460OGaej_Rsc-9NMCZA.crl (hash: 40yvwkTOXHRJN3NpqFWo8nqmprKiPSGcIMj1Gv8ZAbY=) 2: iYAJK9Z1vSabwblAeb2bbovBgWQ.roa (hash: UwR7QsThfF3C52K+v8ctdTEGP4PnZH+tKi6tWCBxuy4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.crl rsync://rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.mft rsync://rpki.ripe.net/repository/DEFAULT/IlS8wDKT460OGaej_Rsc-9NMCZA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:6d:eb:08:82:ce:cc:ba:ae:87:c7:67:0e:ba:d7:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2254bcc03293e3ad0e19a7a3fd1b1cfbd34c0990 Validity Not Before: Dec 21 15:01:21 2025 GMT Not After : Dec 22 15:01:21 2025 GMT Subject: CN=4ebda328fcf96ab2790b48e65c383894777457c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a8:3b:62:04:f6:ce:a5:9c:07:75:32:54:06: 46:fa:2c:0c:93:f0:cf:6a:ef:e4:0e:1d:5d:92:2f: 74:ed:51:05:3d:9f:f8:d1:87:a4:fb:6f:21:b6:c8: c7:c1:2f:c1:1e:c5:be:cb:83:c8:64:eb:d4:f6:39: 22:b3:aa:ee:70:2c:ef:e5:4c:f1:a0:0d:c2:b0:80: 2f:fd:fa:05:c2:39:83:72:d0:de:86:59:9d:f3:3e: 97:15:67:9d:58:6d:35:48:e9:c7:36:45:bb:03:56: 9c:16:c2:2e:b1:dc:2c:a9:43:82:61:5b:8c:07:02: 6d:26:fe:f7:8f:20:c2:20:c3:da:b9:e1:29:dd:a0: 9c:f1:d0:ce:cb:77:94:4c:27:6c:9b:7d:ca:40:d8: 95:d0:8e:97:96:36:c6:c3:9c:93:83:64:9f:05:bf: e1:07:81:69:f4:74:34:c4:0f:48:5c:5c:24:3f:f9: 7d:73:ad:44:d9:8b:1d:c3:f4:17:3a:00:f0:80:96: 6a:5a:4c:4b:59:86:bb:87:6a:a0:72:95:60:32:df: 4c:ed:92:00:35:8f:c5:8b:ce:cf:1f:47:17:ff:9e: 12:24:65:7e:d5:88:2f:7a:35:d9:63:9d:cb:32:e4: 5c:cf:ac:0f:ef:79:78:e8:08:00:70:ab:9a:d4:97: 1a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:BD:A3:28:FC:F9:6A:B2:79:0B:48:E6:5C:38:38:94:77:74:57:C5 X509v3 Authority Key Identifier: keyid:22:54:BC:C0:32:93:E3:AD:0E:19:A7:A3:FD:1B:1C:FB:D3:4C:09:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IlS8wDKT460OGaej_Rsc-9NMCZA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:48:8c:30:d9:bc:09:9e:1a:e2:c7:c5:00:84:38:da:b7:ec: 6f:dd:e2:7c:17:10:78:f3:3e:ee:c9:fb:8d:e1:53:b6:bd:83: 56:24:b2:6e:25:b1:e8:b5:9c:28:64:f5:26:1e:e1:dc:01:81: 50:57:10:f0:ae:58:9e:98:af:09:71:dd:ec:f1:90:34:e3:14: a7:f6:ca:98:1d:22:55:d4:53:0b:54:fe:ab:55:9b:bf:2e:f9: df:a7:da:7f:05:51:7c:c9:03:54:87:c3:56:82:40:71:9b:b7: 8b:b7:b4:fe:ce:0a:e6:25:8a:ab:f1:ba:5c:50:3f:5d:f1:57: 6e:6d:53:67:18:d6:80:2e:e1:88:b5:95:5f:62:57:81:e7:0d: e0:9f:c3:61:14:43:36:4d:e8:50:2a:dc:c1:bb:4a:a5:37:64: 28:e0:00:3a:d6:ff:55:7c:17:28:81:82:e9:67:85:d5:cb:11: 3a:99:bb:d6:ff:59:7d:cd:35:a5:be:ac:f1:cd:00:4e:fe:4d: 24:e7:66:85:02:6c:09:ee:08:2d:36:75:ee:e0:6a:16:a7:04: 9e:b7:67:2a:3b:bb:ee:7a:08:b9:8f:d3:36:d6:76:8c:e5:62: a3:d4:46:fa:0f:b8:c2:95:65:3d:50:31:37:d8:d4:1c:01:e6: a3:d8:bd:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBbesIgs7Muq6Hx2cOutfJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyNTRiY2MwMzI5M2UzYWQwZTE5YTdhM2ZkMWIxY2ZiZDM0 YzA5OTAwHhcNMjUxMjIxMTUwMTIxWhcNMjUxMjIyMTUwMTIxWjAzMTEwLwYDVQQD Eyg0ZWJkYTMyOGZjZjk2YWIyNzkwYjQ4ZTY1YzM4Mzg5NDc3NzQ1N2M1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzag7YgT2zqWcB3UyVAZG+iwMk/DP au/kDh1dki907VEFPZ/40Yek+28htsjHwS/BHsW+y4PIZOvU9jkis6rucCzv5Uzx oA3CsIAv/foFwjmDctDehlmd8z6XFWedWG01SOnHNkW7A1acFsIusdwsqUOCYVuM BwJtJv73jyDCIMPaueEp3aCc8dDOy3eUTCdsm33KQNiV0I6XljbGw5yTg2SfBb/h B4Fp9HQ0xA9IXFwkP/l9c61E2Ysdw/QXOgDwgJZqWkxLWYa7h2qgcpVgMt9M7ZIA NY/Fi87PH0cX/54SJGV+1YgvejXZY53LMuRcz6wP73l46AgAcKua1Jca0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE69oyj8+WqyeQtI5lw4OJR3dFfFMB8GA1UdIwQY MBaAFCJUvMAyk+OtDhmno/0bHPvTTAmQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWxTOHdES1Q0NjBPR2Flal9Sc2MtOU5NQ1pBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni9hM2E1MzAtMjVhYS00MDIzLTlhODAt NGUzNDdkNTUxYzNmLzEvSWxTOHdES1Q0NjBPR2Flal9Sc2MtOU5NQ1pBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni9hM2E1MzAtMjVhYS00MDIzLTlhODAtNGUzNDdkNTUxYzNm LzEvSWxTOHdES1Q0NjBPR2Flal9Sc2MtOU5NQ1pBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlEiMMNm8 CZ4a4sfFAIQ42rfsb93ifBcQePM+7sn7jeFTtr2DViSybiWx6LWcKGT1Jh7h3AGB UFcQ8K5YnpivCXHd7PGQNOMUp/bKmB0iVdRTC1T+q1Wbvy7536fafwVRfMkDVIfD VoJAcZu3i7e0/s4K5iWKq/G6XFA/XfFXbm1TZxjWgC7hiLWVX2JXgecN4J/DYRRD Nk3oUCrcwbtKpTdkKOAAOtb/VXwXKIGC6WeF1csROpm71v9Zfc01pb6s8c0ATv5N JOdmhQJsCe4ILTZ17uBqFqcEnrdnKju77noIuY/TNtZ2jOVio9RG+g+4wpVlPVAx N9jUHAHmo9i94w== -----END CERTIFICATE-----Generated at Sun Dec 21 21:46:57 2025 by rpki-client