This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft File: iuSaSeoGdwqH11pcg1b0Vk4asew.mft (raw, json) Hash identifier: NfvrtwrgDebq6KZPfWYVRY8adxeb6iE8iOCbk0/7/Qs= Subject key identifier: 80:91:5B:FB:40:BB:E1:2D:BC:86:C8:84:FA:5B:75:2F:96:31:A6:5F Authority key identifier: 8A:E4:9A:49:EA:06:77:0A:87:D7:5A:5C:83:56:F4:56:4E:1A:B1:EC Certificate issuer: /CN=8ae49a49ea06770a87d75a5c8356f4564e1ab1ec Certificate serial: 019B32316511C7A3056E851647AFBCD2690A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iuSaSeoGdwqH11pcg1b0Vk4asew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft Manifest number: 0519 Signing time: Thu 18 Dec 2025 16:00:56 +0000 Manifest this update: Thu 18 Dec 2025 16:00:56 +0000 Manifest next update: Fri 19 Dec 2025 16:00:56 +0000 Files and hashes: 1: iuSaSeoGdwqH11pcg1b0Vk4asew.crl (hash: nGmOvgx1fuYjRid527U2jjUJZn8G8i0fPlfmKyOA1WA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.crl rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft rsync://rpki.ripe.net/repository/DEFAULT/iuSaSeoGdwqH11pcg1b0Vk4asew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 16:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:31:65:11:c7:a3:05:6e:85:16:47:af:bc:d2:69:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8ae49a49ea06770a87d75a5c8356f4564e1ab1ec Validity Not Before: Dec 18 16:00:56 2025 GMT Not After : Dec 19 16:00:56 2025 GMT Subject: CN=80915bfb40bbe12dbc86c884fa5b752f9631a65f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:af:d7:bc:cb:56:a0:5e:c9:3b:60:ef:21:a4: c5:8b:6d:6e:05:36:3b:08:85:e6:95:bd:3c:86:74: 40:2f:fb:1b:cb:2e:90:3c:06:aa:dd:91:53:2a:1f: f3:19:cc:a0:23:51:bb:72:22:42:ec:7b:cc:d0:76: a6:ba:56:b1:5d:dd:bf:42:33:99:44:e2:7d:b7:d6: e4:c8:48:ea:18:5a:96:66:ae:75:7e:1d:96:7a:69: 77:ea:98:a7:d4:1e:d9:bd:6b:8a:43:0a:11:92:df: 7d:1d:19:39:65:9c:38:a0:f4:86:ca:b1:a5:ef:4a: 4c:ac:bc:b5:a2:3b:91:1c:ab:d9:2a:6f:f7:e3:86: 7a:4a:22:f9:c7:89:a6:d7:da:a3:20:6d:47:42:3a: ff:e8:dd:8d:42:d9:ad:79:b8:77:65:66:b0:56:9c: a4:9e:0b:ea:88:a3:6f:93:c9:c7:47:ce:54:59:f8: e2:41:f9:29:17:5a:48:ff:91:52:36:f9:41:da:29: 92:e6:b0:97:92:bf:35:c5:3f:00:14:23:45:e7:1c: 82:61:43:48:35:32:d0:8a:be:c0:47:72:e3:c8:72: 9c:c3:72:95:f7:b5:11:a6:92:25:8e:a1:01:9d:5b: d4:eb:15:13:5e:7c:59:27:6e:8f:26:d1:eb:b3:47: 58:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:91:5B:FB:40:BB:E1:2D:BC:86:C8:84:FA:5B:75:2F:96:31:A6:5F X509v3 Authority Key Identifier: keyid:8A:E4:9A:49:EA:06:77:0A:87:D7:5A:5C:83:56:F4:56:4E:1A:B1:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iuSaSeoGdwqH11pcg1b0Vk4asew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:a5:d2:fa:9f:15:3a:0a:a1:19:0d:12:23:57:75:e0:26:7f: 3d:3b:13:c2:5c:8b:ae:37:11:b4:d5:95:fb:23:fc:f1:55:ef: fa:f2:4f:8a:33:7a:fc:c8:fc:80:bc:99:09:a1:10:83:61:28: 3c:e8:f1:40:a2:a3:e4:8f:ae:ad:b2:3a:70:0f:9b:d2:ac:fc: 04:5d:93:6f:e9:60:14:54:3e:ff:34:1f:73:f2:c7:1a:f5:45: cb:c3:6e:1b:fc:b7:1e:1e:50:28:1a:be:fc:d2:05:19:18:27: ae:41:a9:df:6b:8e:80:80:2f:04:a4:fc:e2:30:86:28:60:c0: 8c:11:e6:4a:16:70:6e:5e:1f:45:34:c1:62:2e:a0:ad:e8:22: 61:65:fa:d3:83:b9:0e:61:34:be:33:1d:23:09:47:6b:ac:27: c4:80:a3:96:41:73:c6:6f:36:5f:47:00:29:31:74:8c:35:8a: ff:36:cf:4a:8c:d6:c8:e9:fe:a6:41:a4:e6:43:28:cd:2a:99: c6:ce:37:88:83:b6:84:d4:9c:8e:f2:9e:33:dc:2a:b0:fd:a5: 90:ff:ee:87:96:c9:6a:97:ab:cb:8b:44:aa:74:26:d7:0c:22: d1:b3:89:31:7e:ae:13:d7:36:0f:70:1d:01:63:d4:71:bd:f7: 41:6b:0f:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsyMWURx6MFboUWR6+80mkKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhZTQ5YTQ5ZWEwNjc3MGE4N2Q3NWE1YzgzNTZmNDU2NGUx YWIxZWMwHhcNMjUxMjE4MTYwMDU2WhcNMjUxMjE5MTYwMDU2WjAzMTEwLwYDVQQD Eyg4MDkxNWJmYjQwYmJlMTJkYmM4NmM4ODRmYTViNzUyZjk2MzFhNjVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxq/XvMtWoF7JO2DvIaTFi21uBTY7 CIXmlb08hnRAL/sbyy6QPAaq3ZFTKh/zGcygI1G7ciJC7HvM0HamulaxXd2/QjOZ ROJ9t9bkyEjqGFqWZq51fh2Weml36pin1B7ZvWuKQwoRkt99HRk5ZZw4oPSGyrGl 70pMrLy1ojuRHKvZKm/344Z6SiL5x4mm19qjIG1HQjr/6N2NQtmtebh3ZWawVpyk ngvqiKNvk8nHR85UWfjiQfkpF1pI/5FSNvlB2imS5rCXkr81xT8AFCNF5xyCYUNI NTLQir7AR3LjyHKcw3KV97URppIljqEBnVvU6xUTXnxZJ26PJtHrs0dY5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFICRW/tAu+EtvIbIhPpbdS+WMaZfMB8GA1UdIwQY MBaAFIrkmknqBncKh9daXINW9FZOGrHsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXVTYVNlb0dkd3FIMTFwY2cxYjBWazRhc2V3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9hMDIyMWEtNzcxZi00NmU2LWIzYzMt OTdmMDhjNmQ5OGQzLzEvaXVTYVNlb0dkd3FIMTFwY2cxYjBWazRhc2V3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny9hMDIyMWEtNzcxZi00NmU2LWIzYzMtOTdmMDhjNmQ5OGQz LzEvaXVTYVNlb0dkd3FIMTFwY2cxYjBWazRhc2V3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbaXS+p8V OgqhGQ0SI1d14CZ/PTsTwlyLrjcRtNWV+yP88VXv+vJPijN6/Mj8gLyZCaEQg2Eo POjxQKKj5I+urbI6cA+b0qz8BF2Tb+lgFFQ+/zQfc/LHGvVFy8NuG/y3Hh5QKBq+ /NIFGRgnrkGp32uOgIAvBKT84jCGKGDAjBHmShZwbl4fRTTBYi6gregiYWX604O5 DmE0vjMdIwlHa6wnxICjlkFzxm82X0cAKTF0jDWK/zbPSozWyOn+pkGk5kMozSqZ xs43iIO2hNScjvKeM9wqsP2lkP/uh5bJapery4tEqnQm1wwi0bOJMX6uE9c2D3Ad AWPUcb33QWsP6Q== -----END CERTIFICATE-----Generated at Fri Dec 19 01:23:08 2025 by rpki-client