This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.mft File: IIP4tbYgnefJQAjzM3vjQ2866-Y.mft (raw, json) Hash identifier: NWAQdJPUdsxzNHn3SgqMRfaG8a46CyQYpRySg/sak/4= Subject key identifier: 1F:21:7A:AD:F6:D2:1A:DC:12:59:E5:68:2C:1E:EC:04:70:D4:99:4E Authority key identifier: 20:83:F8:B5:B6:20:9D:E7:C9:40:08:F3:33:7B:E3:43:6F:3A:EB:E6 Certificate issuer: /CN=2083f8b5b6209de7c94008f3337be3436f3aebe6 Certificate serial: 019AF23F9CF7B6AF25751DA722BB726AC6FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IIP4tbYgnefJQAjzM3vjQ2866-Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.mft Manifest number: 07B6 Signing time: Sat 06 Dec 2025 06:00:46 +0000 Manifest this update: Sat 06 Dec 2025 06:00:46 +0000 Manifest next update: Sun 07 Dec 2025 06:00:46 +0000 Files and hashes: 1: IIP4tbYgnefJQAjzM3vjQ2866-Y.crl (hash: RxbCV8arccK7X3z5HnXev6L7YBzsGlCkMJgoHAO3zBg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.mft rsync://rpki.ripe.net/repository/DEFAULT/IIP4tbYgnefJQAjzM3vjQ2866-Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:9c:f7:b6:af:25:75:1d:a7:22:bb:72:6a:c6:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2083f8b5b6209de7c94008f3337be3436f3aebe6 Validity Not Before: Dec 6 06:00:46 2025 GMT Not After : Dec 7 06:00:46 2025 GMT Subject: CN=1f217aadf6d21adc1259e5682c1eec0470d4994e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:dc:31:1c:de:6d:a8:43:14:66:b4:30:2f:2f: 7f:2d:ea:50:d4:35:62:27:4a:39:00:9c:2e:b8:5f: 1f:c2:ad:61:ae:05:4d:11:96:2f:e1:b8:a2:9c:26: 71:62:3f:d5:ba:f7:ce:5f:69:bb:01:86:d8:66:2f: bc:2e:fa:7e:42:d9:8f:bd:b3:42:bc:24:b8:15:24: 84:7a:96:28:a2:06:8b:6a:2d:59:f8:e2:36:b1:99: b1:3f:f9:e6:96:37:c9:6a:98:27:99:e3:5e:46:2b: c1:b4:0b:48:9c:4f:ed:8d:72:1f:b0:92:4c:19:5f: c4:27:d0:47:eb:5a:a2:15:da:d7:b8:2e:0e:4b:58: 6b:3c:6a:cd:52:bc:83:1c:45:9e:37:85:3e:ce:3d: 93:18:64:fc:67:dd:5f:d1:ae:e3:86:10:6b:b4:2f: 2c:90:55:7f:c8:06:b2:c0:27:b3:c3:b5:66:af:4a: ab:10:04:9a:25:f5:d4:54:20:4b:da:81:08:52:fc: 87:2b:b4:3f:90:74:2f:47:71:ed:fe:cd:45:49:47: 7b:08:58:1d:b9:ce:74:2b:a7:82:bb:1d:21:c1:ec: 37:83:de:07:c8:5d:d8:17:7f:d0:cf:b9:85:db:e2: 05:95:eb:03:c6:66:df:5e:99:7f:43:66:6c:54:bf: ec:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:21:7A:AD:F6:D2:1A:DC:12:59:E5:68:2C:1E:EC:04:70:D4:99:4E X509v3 Authority Key Identifier: keyid:20:83:F8:B5:B6:20:9D:E7:C9:40:08:F3:33:7B:E3:43:6F:3A:EB:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IIP4tbYgnefJQAjzM3vjQ2866-Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:dc:a1:e6:66:0a:dc:00:be:ea:ab:6f:e8:5e:21:5c:83:85: c5:f0:f5:57:77:db:8e:84:50:18:0d:a4:5f:de:2c:bc:da:35: 44:9f:54:2b:b6:e0:3c:62:9a:c5:d3:e5:2a:01:00:c7:94:2f: 00:58:82:d4:1c:c2:52:4c:52:7b:d1:94:47:f2:4c:00:be:d9: e9:16:13:ad:0e:3e:c4:60:ad:8c:0c:8a:19:dc:2d:3f:3c:0e: 0d:c9:74:cd:39:3e:fc:e9:67:33:dc:b1:b7:c4:8b:d9:c6:36: dd:be:70:66:a8:6a:ec:f8:d1:bc:71:32:da:f0:5b:ca:63:7d: bd:b7:6a:2a:13:e7:f9:79:de:91:bc:12:9c:13:3a:1f:e5:df: 8a:5c:42:26:dd:43:9e:79:2a:2b:f2:eb:01:02:35:de:99:bd: e0:35:eb:71:5e:e7:30:11:7b:4b:6e:a4:c9:46:2e:d6:13:3c: 1e:38:62:5c:79:3e:44:e9:98:35:da:7f:fc:66:17:2d:57:80: cd:0b:61:da:f3:89:2c:90:0d:33:1f:f1:da:12:68:26:f7:74: ae:f2:a8:10:20:68:de:35:a4:7f:6a:fe:d2:47:15:bf:31:cf: 19:39:d2:29:c6:34:fa:80:dc:db:bf:b6:e1:3f:11:c7:96:35: 07:55:d5:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP5z3tq8ldR2nIrtyasb7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwODNmOGI1YjYyMDlkZTdjOTQwMDhmMzMzN2JlMzQzNmYz YWViZTYwHhcNMjUxMjA2MDYwMDQ2WhcNMjUxMjA3MDYwMDQ2WjAzMTEwLwYDVQQD EygxZjIxN2FhZGY2ZDIxYWRjMTI1OWU1NjgyYzFlZWMwNDcwZDQ5OTRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAudwxHN5tqEMUZrQwLy9/LepQ1DVi J0o5AJwuuF8fwq1hrgVNEZYv4biinCZxYj/VuvfOX2m7AYbYZi+8Lvp+QtmPvbNC vCS4FSSEepYoogaLai1Z+OI2sZmxP/nmljfJapgnmeNeRivBtAtInE/tjXIfsJJM GV/EJ9BH61qiFdrXuC4OS1hrPGrNUryDHEWeN4U+zj2TGGT8Z91f0a7jhhBrtC8s kFV/yAaywCezw7Vmr0qrEASaJfXUVCBL2oEIUvyHK7Q/kHQvR3Ht/s1FSUd7CFgd uc50K6eCux0hwew3g94HyF3YF3/Qz7mF2+IFlesDxmbfXpl/Q2ZsVL/sMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB8heq320hrcElnlaCwe7ARw1JlOMB8GA1UdIwQY MBaAFCCD+LW2IJ3nyUAI8zN740NvOuvmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUlQNHRiWWduZWZKUUFqek0zdmpRMjg2Ni1ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9jMDI1ZTUtMzk5YS00Y2U4LWI1ZjAt YWNiZWYwMThkMDNhLzEvSUlQNHRiWWduZWZKUUFqek0zdmpRMjg2Ni1ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9jMDI1ZTUtMzk5YS00Y2U4LWI1ZjAtYWNiZWYwMThkMDNh LzEvSUlQNHRiWWduZWZKUUFqek0zdmpRMjg2Ni1ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASNyh5mYK 3AC+6qtv6F4hXIOFxfD1V3fbjoRQGA2kX94svNo1RJ9UK7bgPGKaxdPlKgEAx5Qv AFiC1BzCUkxSe9GUR/JMAL7Z6RYTrQ4+xGCtjAyKGdwtPzwODcl0zTk+/OlnM9yx t8SL2cY23b5wZqhq7PjRvHEy2vBbymN9vbdqKhPn+XnekbwSnBM6H+XfilxCJt1D nnkqK/LrAQI13pm94DXrcV7nMBF7S26kyUYu1hM8HjhiXHk+ROmYNdp//GYXLVeA zQth2vOJLJANMx/x2hJoJvd0rvKoECBo3jWkf2r+0kcVvzHPGTnSKcY0+oDc27+2 4T8Rx5Y1B1XVNQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:03:59 2025 by rpki-client