This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.mft File: IlS8wDKT460OGaej_Rsc-9NMCZA.mft (raw, json) Hash identifier: piZVdOUgJIBvCk9D+p6avEW59JNYJO/mobyp5p9++es= Subject key identifier: D0:51:E9:86:AA:B5:7E:97:37:1B:13:86:13:E5:28:E0:12:D7:20:41 Authority key identifier: 22:54:BC:C0:32:93:E3:AD:0E:19:A7:A3:FD:1B:1C:FB:D3:4C:09:90 Certificate issuer: /CN=2254bcc03293e3ad0e19a7a3fd1b1cfbd34c0990 Certificate serial: 019AF42E89401C0D704827DC8055CF834133 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IlS8wDKT460OGaej_Rsc-9NMCZA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.mft Manifest number: 1504 Signing time: Sat 06 Dec 2025 15:01:21 +0000 Manifest this update: Sat 06 Dec 2025 15:01:21 +0000 Manifest next update: Sun 07 Dec 2025 15:01:21 +0000 Files and hashes: 1: IlS8wDKT460OGaej_Rsc-9NMCZA.crl (hash: Qw0KjdiPjpkhveNksPbsVp7Jj+VUUMKK+AxQU4YKO5g=) 2: iYAJK9Z1vSabwblAeb2bbovBgWQ.roa (hash: UwR7QsThfF3C52K+v8ctdTEGP4PnZH+tKi6tWCBxuy4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.crl rsync://rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.mft rsync://rpki.ripe.net/repository/DEFAULT/IlS8wDKT460OGaej_Rsc-9NMCZA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:2e:89:40:1c:0d:70:48:27:dc:80:55:cf:83:41:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2254bcc03293e3ad0e19a7a3fd1b1cfbd34c0990 Validity Not Before: Dec 6 15:01:21 2025 GMT Not After : Dec 7 15:01:21 2025 GMT Subject: CN=d051e986aab57e97371b138613e528e012d72041 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:00:eb:98:00:76:60:c1:f4:18:b6:fe:93:6d: 54:3b:b9:1e:d7:ad:75:17:76:c0:dd:23:ef:a6:58: 63:2b:4f:bf:71:90:47:4d:d2:b7:83:38:bf:27:92: c4:fd:8f:0d:9c:83:1a:15:36:91:4a:da:a8:ef:3c: 54:84:72:4e:60:22:3c:a0:b9:43:b8:83:05:7d:18: d2:68:84:fc:d0:83:9e:1e:7b:6d:f2:cd:30:a3:7f: 47:ab:72:43:31:1f:5d:62:a2:a3:fa:c6:13:1f:e5: 06:0f:ac:8b:70:64:3a:02:dd:ee:e5:31:05:05:21: 92:8d:6b:09:76:06:e7:17:7d:3d:fe:87:06:9a:bf: d9:db:d3:56:07:44:75:36:02:9d:18:98:3d:ac:cc: 6c:de:ab:f2:b3:42:ee:e9:43:b2:8d:02:1f:a3:b8: 96:e3:7a:6a:9f:88:f0:6b:cb:6e:98:9b:cd:8d:72: 3e:14:41:e1:f7:7a:3e:2e:a7:20:97:52:8e:fe:11: b5:fb:f7:e3:b2:4e:cb:e5:69:df:79:c6:5e:ee:da: ef:b5:50:12:40:84:4c:48:74:fb:33:7e:73:7e:9b: 3b:96:6d:41:9a:09:23:65:d3:61:fa:10:17:97:a3: 0a:db:10:f8:b9:57:af:83:b4:e8:7e:7a:7d:c8:87: b9:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:51:E9:86:AA:B5:7E:97:37:1B:13:86:13:E5:28:E0:12:D7:20:41 X509v3 Authority Key Identifier: keyid:22:54:BC:C0:32:93:E3:AD:0E:19:A7:A3:FD:1B:1C:FB:D3:4C:09:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IlS8wDKT460OGaej_Rsc-9NMCZA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bc:3a:fb:8d:24:65:30:c7:89:2c:83:3d:8e:85:11:45:d8:97: e8:cb:38:3c:af:b9:b8:68:0e:b1:10:94:b5:ae:b7:da:8b:db: 9d:17:cf:2a:b5:cd:fc:00:e8:88:62:18:03:ae:84:2f:a7:7c: 6b:aa:9a:1a:b5:2f:bd:6a:26:a8:ec:94:7a:e4:5d:8f:dc:c7: 93:96:c3:b2:35:61:0e:87:cc:a6:17:ed:43:0b:c3:26:b8:0b: d6:48:c3:17:66:46:eb:b4:1f:e5:e8:ed:b4:dc:7c:88:43:88: 9a:60:6d:de:99:e0:c3:5c:28:23:00:83:7b:ec:ee:b6:0d:63: 84:79:04:a8:f2:53:7d:41:a6:4c:b0:3c:3d:7b:03:a8:f4:db: c1:a0:65:6b:90:68:12:67:d4:c7:1f:10:75:12:8d:5a:24:7b: 88:e3:53:b5:12:b7:e2:6c:38:2a:9e:9e:81:b7:c3:8a:71:61: 8e:78:fd:be:b0:f7:d8:45:ab:30:72:22:16:f8:cf:51:3b:7a: 11:b3:93:05:e4:5f:5e:1b:d2:e0:3d:0f:78:60:ab:25:2b:46: d9:89:e8:39:7f:97:fa:71:fa:66:09:34:23:29:bd:1d:51:a4: 8e:da:c6:5c:b3:b9:4c:f6:09:98:81:4c:1d:b7:12:b6:62:ad: 2e:2b:77:38 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0LolAHA1wSCfcgFXPg0EzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyNTRiY2MwMzI5M2UzYWQwZTE5YTdhM2ZkMWIxY2ZiZDM0 YzA5OTAwHhcNMjUxMjA2MTUwMTIxWhcNMjUxMjA3MTUwMTIxWjAzMTEwLwYDVQQD EyhkMDUxZTk4NmFhYjU3ZTk3MzcxYjEzODYxM2U1MjhlMDEyZDcyMDQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjQDrmAB2YMH0GLb+k21UO7ke1611 F3bA3SPvplhjK0+/cZBHTdK3gzi/J5LE/Y8NnIMaFTaRStqo7zxUhHJOYCI8oLlD uIMFfRjSaIT80IOeHntt8s0wo39Hq3JDMR9dYqKj+sYTH+UGD6yLcGQ6At3u5TEF BSGSjWsJdgbnF309/ocGmr/Z29NWB0R1NgKdGJg9rMxs3qvys0Lu6UOyjQIfo7iW 43pqn4jwa8tumJvNjXI+FEHh93o+Lqcgl1KO/hG1+/fjsk7L5WnfecZe7trvtVAS QIRMSHT7M35zfps7lm1BmgkjZdNh+hAXl6MK2xD4uVevg7Tofnp9yIe5uQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNBR6YaqtX6XNxsThhPlKOAS1yBBMB8GA1UdIwQY MBaAFCJUvMAyk+OtDhmno/0bHPvTTAmQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWxTOHdES1Q0NjBPR2Flal9Sc2MtOU5NQ1pBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni9hM2E1MzAtMjVhYS00MDIzLTlhODAt NGUzNDdkNTUxYzNmLzEvSWxTOHdES1Q0NjBPR2Flal9Sc2MtOU5NQ1pBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni9hM2E1MzAtMjVhYS00MDIzLTlhODAtNGUzNDdkNTUxYzNm LzEvSWxTOHdES1Q0NjBPR2Flal9Sc2MtOU5NQ1pBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvDr7jSRl MMeJLIM9joURRdiX6Ms4PK+5uGgOsRCUta632ovbnRfPKrXN/ADoiGIYA66EL6d8 a6qaGrUvvWomqOyUeuRdj9zHk5bDsjVhDofMphftQwvDJrgL1kjDF2ZG67Qf5ejt tNx8iEOImmBt3pngw1woIwCDe+zutg1jhHkEqPJTfUGmTLA8PXsDqPTbwaBla5Bo EmfUxx8QdRKNWiR7iONTtRK34mw4Kp6egbfDinFhjnj9vrD32EWrMHIiFvjPUTt6 EbOTBeRfXhvS4D0PeGCrJStG2YnoOX+X+nH6Zgk0Iym9HVGkjtrGXLO5TPYJmIFM HbcStmKtLit3OA== -----END CERTIFICATE-----Generated at Sat Dec 6 20:41:49 2025 by rpki-client