This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft File: I7GUMIfOaWI-drIUWzR5rCBLock.mft (raw, json) Hash identifier: QKIufTo90+gLKz9YssJV6bItQp+sFuEvssXsFw51LAk= Subject key identifier: BC:4E:C6:4E:18:6A:92:50:CE:51:D5:7C:5A:8D:86:85:A6:7C:CD:74 Authority key identifier: 23:B1:94:30:87:CE:69:62:3E:76:B2:14:5B:34:79:AC:20:4B:A1:C9 Certificate issuer: /CN=23b1943087ce69623e76b2145b3479ac204ba1c9 Certificate serial: 019AF2771211F1A5D8CF25D6A8DB6466F294 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I7GUMIfOaWI-drIUWzR5rCBLock.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft Manifest number: 16A0 Signing time: Sat 06 Dec 2025 07:01:20 +0000 Manifest this update: Sat 06 Dec 2025 07:01:20 +0000 Manifest next update: Sun 07 Dec 2025 07:01:20 +0000 Files and hashes: 1: I7GUMIfOaWI-drIUWzR5rCBLock.crl (hash: qpXaClpqtuqJPAZ9bHFS0X9uUHmNrKbm/oVHDyGdbc8=) 2: IGzDnKyfU3XrsCi1kVIq3v9WjnM.roa (hash: BCjdpahib4P29wEhEZ+5HfDxKnWj0l2OSsP7lZ3IOHg=) 3: fngY7vAjtnIa6khyzBr6ohfARXc.roa (hash: 8j7K0AdGmWd/+RMVsdDrX0khITQq1MTMhTuPXkbPnqc=) 4: xgdlAL2WKr_Js4V_ZLjPaz6bev8.roa (hash: CfOyHBtQR8zjYYv9qA3Dd8n5he3YeIT+MsIzoT30dKc=) 5: z5Ucz1kkGg56QZyAblN2WefSoGM.roa (hash: 5hK/qHn0csimMvRktmqCqsq2To8mi7zen0Vo1KFJGyM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft rsync://rpki.ripe.net/repository/DEFAULT/I7GUMIfOaWI-drIUWzR5rCBLock.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:77:12:11:f1:a5:d8:cf:25:d6:a8:db:64:66:f2:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23b1943087ce69623e76b2145b3479ac204ba1c9 Validity Not Before: Dec 6 07:01:20 2025 GMT Not After : Dec 7 07:01:20 2025 GMT Subject: CN=bc4ec64e186a9250ce51d57c5a8d8685a67ccd74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ec:54:40:ac:20:5a:5d:8a:9f:97:67:fe:bb: 49:84:0a:2e:9d:38:03:dd:7e:31:2e:c3:c4:d6:51: 8e:eb:0a:ed:20:89:77:8d:1e:de:45:ef:d5:1e:88: 03:c5:20:32:bb:27:f6:fd:78:7a:f9:c4:e2:35:5a: 18:f9:3d:64:5e:d2:61:63:dc:40:70:89:e4:94:49: 5f:2d:48:95:fb:e7:6e:23:38:2d:b1:79:63:de:b0: fc:4e:a6:09:9f:af:36:14:1c:08:1e:c5:93:0e:b3: 18:d3:0d:be:d2:2b:da:9c:06:f6:42:db:1c:2e:9f: ad:ec:c5:fd:4e:b4:27:54:83:f8:bb:b9:00:1d:50: d0:bd:d5:3b:86:43:ee:2f:a3:25:6c:c3:32:3e:58: 33:fb:0a:13:9f:a9:6d:6f:7e:1d:64:b1:e8:19:87: 1a:69:af:b1:f4:d2:b3:1c:4b:0a:50:d4:68:69:f4: bd:2e:2c:f4:db:7b:f3:3b:17:fb:1b:a5:66:54:58: eb:5f:7b:e9:2d:fa:ae:9d:9f:71:b0:77:9f:4a:6b: 3b:03:4a:5c:26:23:05:b4:33:b5:71:9c:cd:36:89: b6:30:e7:8b:a3:57:85:a9:ee:44:a8:8a:f8:f7:1a: d9:4c:3b:cc:d3:f6:6e:d3:c3:15:f9:c4:1b:a2:97: 8d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:4E:C6:4E:18:6A:92:50:CE:51:D5:7C:5A:8D:86:85:A6:7C:CD:74 X509v3 Authority Key Identifier: keyid:23:B1:94:30:87:CE:69:62:3E:76:B2:14:5B:34:79:AC:20:4B:A1:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7GUMIfOaWI-drIUWzR5rCBLock.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:0f:a9:30:bf:27:45:c6:60:58:eb:89:ab:59:ca:5e:dd:d4: a0:9c:f6:85:77:69:76:89:8b:08:1f:70:94:d5:9e:5b:bd:21: 39:b4:60:97:c3:08:2b:db:36:03:da:ca:75:87:d4:47:03:c6: f8:c6:f1:af:1c:81:28:ed:7f:39:9a:5a:bf:00:f3:6e:e9:96: e0:22:fb:76:62:66:88:06:76:1f:09:8c:d1:c4:19:4c:2c:a7: 69:35:e3:64:bb:2e:e0:80:e2:98:67:8b:49:74:07:5f:ea:ff: 13:53:2a:21:75:2b:36:6a:77:23:cc:6e:55:cd:d1:7b:b2:3e: e6:11:18:36:cf:3a:e1:02:44:2d:c4:e2:1e:30:e9:89:80:99: eb:d0:12:0c:17:50:66:3a:0e:47:57:58:f9:f2:2c:b2:4c:39: 6b:92:82:33:7b:40:71:7a:b8:4a:fb:ac:a1:df:e9:59:01:dd: 9a:b6:73:4f:d1:63:8f:d6:e9:0d:fa:f8:46:a5:d2:d6:47:5a: 0f:fe:c9:3b:5d:17:00:94:03:d4:4c:a3:ba:35:c7:75:9f:23: 27:dc:6c:7e:b6:86:d0:76:3f:46:50:f1:e4:34:f7:52:24:68: 99:9d:75:bb:fd:6b:20:bf:ef:c1:c7:8b:32:bc:2e:09:23:d3: 91:53:41:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydxIR8aXYzyXWqNtkZvKUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzYjE5NDMwODdjZTY5NjIzZTc2YjIxNDViMzQ3OWFjMjA0 YmExYzkwHhcNMjUxMjA2MDcwMTIwWhcNMjUxMjA3MDcwMTIwWjAzMTEwLwYDVQQD EyhiYzRlYzY0ZTE4NmE5MjUwY2U1MWQ1N2M1YThkODY4NWE2N2NjZDc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAruxUQKwgWl2Kn5dn/rtJhAounTgD 3X4xLsPE1lGO6wrtIIl3jR7eRe/VHogDxSAyuyf2/Xh6+cTiNVoY+T1kXtJhY9xA cInklElfLUiV++duIzgtsXlj3rD8TqYJn682FBwIHsWTDrMY0w2+0ivanAb2Qtsc Lp+t7MX9TrQnVIP4u7kAHVDQvdU7hkPuL6MlbMMyPlgz+woTn6ltb34dZLHoGYca aa+x9NKzHEsKUNRoafS9Liz023vzOxf7G6VmVFjrX3vpLfqunZ9xsHefSms7A0pc JiMFtDO1cZzNNom2MOeLo1eFqe5EqIr49xrZTDvM0/Zu08MV+cQbopeNvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLxOxk4YapJQzlHVfFqNhoWmfM10MB8GA1UdIwQY MBaAFCOxlDCHzmliPnayFFs0eawgS6HJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTdHVU1JZk9hV0ktZHJJVVd6UjVyQ0JMb2NrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC83M2YxYzktODJiMC00ZWRlLWI4OTkt Zjc0MmYzOTVhYWY5LzEvSTdHVU1JZk9hV0ktZHJJVVd6UjVyQ0JMb2NrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC83M2YxYzktODJiMC00ZWRlLWI4OTktZjc0MmYzOTVhYWY5 LzEvSTdHVU1JZk9hV0ktZHJJVVd6UjVyQ0JMb2NrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEA+pML8n RcZgWOuJq1nKXt3UoJz2hXdpdomLCB9wlNWeW70hObRgl8MIK9s2A9rKdYfURwPG +MbxrxyBKO1/OZpavwDzbumW4CL7dmJmiAZ2HwmM0cQZTCynaTXjZLsu4IDimGeL SXQHX+r/E1MqIXUrNmp3I8xuVc3Re7I+5hEYNs864QJELcTiHjDpiYCZ69ASDBdQ ZjoOR1dY+fIsskw5a5KCM3tAcXq4Svusod/pWQHdmrZzT9Fjj9bpDfr4RqXS1kda D/7JO10XAJQD1EyjujXHdZ8jJ9xsfraG0HY/RlDx5DT3UiRomZ11u/1rIL/vwceL MrwuCSPTkVNBuw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:37:11 2025 by rpki-client