This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft File: iu8WONCRG6mIZOl5yEJrpPQaJy4.mft (raw, json) Hash identifier: qKNmxe1iL/JzaUEl1o83Z73oKhhQtL6gKxKFNxYAs0g= Subject key identifier: 38:0D:92:2A:3D:E2:FD:3C:02:5E:75:1C:1E:56:A3:DA:3F:E3:08:7C Authority key identifier: 8A:EF:16:38:D0:91:1B:A9:88:64:E9:79:C8:42:6B:A4:F4:1A:27:2E Certificate issuer: /CN=8aef1638d0911ba98864e979c8426ba4f41a272e Certificate serial: 019AF31BFAE56C150A3F32DA4884AF3B16AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iu8WONCRG6mIZOl5yEJrpPQaJy4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 10:01:28 +0000 Manifest this update: Sat 06 Dec 2025 10:01:28 +0000 Manifest next update: Sun 07 Dec 2025 10:01:28 +0000 Files and hashes: 1: if3KaihHpbg1Z08V6cXxVYQmFhk.roa (hash: 4GJMU1mopT3EhZuM0ayjHedY3bbBO8iZn11kZBRbuts=) 2: iu8WONCRG6mIZOl5yEJrpPQaJy4.crl (hash: OhnlWWMsRtOMT9aTmBTnJH74/y2Ek4UYZGidbnNpAGE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.crl rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft rsync://rpki.ripe.net/repository/DEFAULT/iu8WONCRG6mIZOl5yEJrpPQaJy4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:fa:e5:6c:15:0a:3f:32:da:48:84:af:3b:16:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8aef1638d0911ba98864e979c8426ba4f41a272e Validity Not Before: Dec 6 10:01:28 2025 GMT Not After : Dec 7 10:01:28 2025 GMT Subject: CN=380d922a3de2fd3c025e751c1e56a3da3fe3087c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:65:31:c7:d2:3b:55:dd:8f:f2:96:1a:85:c9: fb:0d:d5:cf:34:ff:87:17:4b:ee:1a:05:ea:53:28: 6c:29:64:3c:15:85:35:a1:65:d6:87:0a:8e:b3:ee: 9a:ef:b7:43:4f:ce:43:4f:87:a6:2d:e1:fc:95:21: e2:aa:7f:0a:45:4d:2d:84:ba:88:bf:a6:b0:2a:f4: 1a:14:34:ca:7c:8f:22:8c:1c:0d:bc:36:9b:2d:29: c0:aa:cf:ab:6e:a9:ec:f1:8a:79:45:8f:d4:0c:28: a1:33:84:d5:9a:65:6e:41:f4:2c:29:1c:8d:cf:2e: e2:30:2a:15:fb:aa:84:c9:1e:d9:3c:e0:b3:51:be: fd:a4:64:08:2e:a7:2a:bc:dd:80:02:01:bf:0a:e8: 35:c0:86:87:ac:6f:f2:2a:cd:29:1f:3c:d9:c7:c4: 9d:8e:13:16:b7:92:c8:6a:6d:1d:84:0a:d6:bb:42: 85:4c:f7:2f:69:8b:3c:73:fe:da:8d:1e:a7:91:83: 36:86:02:f6:cf:bc:5c:bf:94:a4:e5:10:f7:b6:6f: 70:90:fe:ae:6c:b5:1f:a4:04:0c:f7:61:12:6e:09: 0b:13:03:06:ac:41:76:22:bb:56:e9:1d:fb:77:84: 0c:5a:e6:a6:7a:5d:91:20:90:f9:fd:5e:96:e0:24: a0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:0D:92:2A:3D:E2:FD:3C:02:5E:75:1C:1E:56:A3:DA:3F:E3:08:7C X509v3 Authority Key Identifier: keyid:8A:EF:16:38:D0:91:1B:A9:88:64:E9:79:C8:42:6B:A4:F4:1A:27:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iu8WONCRG6mIZOl5yEJrpPQaJy4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e1:ff:81:38:47:41:68:17:1b:45:61:49:33:34:d0:0b:c2:e9: 7b:22:f6:69:96:80:36:85:24:2d:ba:61:fe:1f:7e:f2:0f:e2: 57:b6:e0:da:9b:d4:24:78:1e:8b:d3:9c:08:be:88:ab:dc:09: d4:99:cb:56:4e:c2:40:5a:18:09:b4:c0:7e:ab:d2:d9:00:79: d3:0c:b8:a6:fc:87:df:a1:d0:48:8d:55:f4:b2:47:c8:60:b9: cb:a9:84:fa:8b:60:8f:8a:1b:81:89:44:47:3b:3b:a7:a5:c9: d9:7f:a9:1d:75:a3:89:6a:5b:92:4e:63:00:48:6e:08:23:48: 9b:be:da:a3:91:a8:bf:2f:c0:7f:f0:c8:98:27:65:8d:d0:e5: 3f:15:d0:19:bd:c1:d2:2b:7c:e0:9f:1d:c5:72:1b:2f:9f:d8: fc:a3:f9:b0:3f:33:ae:a0:57:54:73:43:ed:c8:fb:96:77:3d: d2:b6:50:2f:15:55:38:a0:93:50:0f:37:b7:71:fa:3d:e7:a8: fb:e5:96:7b:50:ea:fd:76:24:dc:72:f7:ab:b7:bd:a2:d4:eb: 3d:03:67:3e:4d:80:ad:65:49:0c:b0:e6:3c:47:59:9e:06:c1: 84:ff:4e:0f:a2:e7:b4:9d:89:f4:43:e3:dc:e5:b6:73:a8:e2: a4:33:c7:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG/rlbBUKPzLaSISvOxaqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhZWYxNjM4ZDA5MTFiYTk4ODY0ZTk3OWM4NDI2YmE0ZjQx YTI3MmUwHhcNMjUxMjA2MTAwMTI4WhcNMjUxMjA3MTAwMTI4WjAzMTEwLwYDVQQD EygzODBkOTIyYTNkZTJmZDNjMDI1ZTc1MWMxZTU2YTNkYTNmZTMwODdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApmUxx9I7Vd2P8pYahcn7DdXPNP+H F0vuGgXqUyhsKWQ8FYU1oWXWhwqOs+6a77dDT85DT4emLeH8lSHiqn8KRU0thLqI v6awKvQaFDTKfI8ijBwNvDabLSnAqs+rbqns8Yp5RY/UDCihM4TVmmVuQfQsKRyN zy7iMCoV+6qEyR7ZPOCzUb79pGQILqcqvN2AAgG/Cug1wIaHrG/yKs0pHzzZx8Sd jhMWt5LIam0dhArWu0KFTPcvaYs8c/7ajR6nkYM2hgL2z7xcv5Sk5RD3tm9wkP6u bLUfpAQM92ESbgkLEwMGrEF2IrtW6R37d4QMWuamel2RIJD5/V6W4CSgjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDgNkio94v08Al51HB5Wo9o/4wh8MB8GA1UdIwQY MBaAFIrvFjjQkRupiGTpechCa6T0GicuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXU4V09OQ1JHNm1JWk9sNXlFSnJwUFFhSnk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My8yNjU3NjktMzU0ZS00YThiLTk1NDIt OTRmOTdiM2EyY2UyLzEvaXU4V09OQ1JHNm1JWk9sNXlFSnJwUFFhSnk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My8yNjU3NjktMzU0ZS00YThiLTk1NDItOTRmOTdiM2EyY2Uy LzEvaXU4V09OQ1JHNm1JWk9sNXlFSnJwUFFhSnk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA4f+BOEdB aBcbRWFJMzTQC8LpeyL2aZaANoUkLbph/h9+8g/iV7bg2pvUJHgei9OcCL6Iq9wJ 1JnLVk7CQFoYCbTAfqvS2QB50wy4pvyH36HQSI1V9LJHyGC5y6mE+otgj4obgYlE Rzs7p6XJ2X+pHXWjiWpbkk5jAEhuCCNIm77ao5Govy/Af/DImCdljdDlPxXQGb3B 0it84J8dxXIbL5/Y/KP5sD8zrqBXVHND7cj7lnc90rZQLxVVOKCTUA83t3H6Peeo ++WWe1Dq/XYk3HL3q7e9otTrPQNnPk2ArWVJDLDmPEdZngbBhP9OD6LntJ2J9EPj 3OW2c6jipDPHxw== -----END CERTIFICATE-----Generated at Sat Dec 6 15:40:39 2025 by rpki-client