This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft File: icKIUyrvyGlxuY1bTR2YGW2ey4U.mft (raw, json) Hash identifier: zj48q+HBZX0aagUt44RJ5urfwErnRsh3TegFeu3ghpU= Subject key identifier: D0:C6:19:3F:39:FD:6D:5C:04:46:79:B3:40:41:B9:8E:24:5E:9E:24 Authority key identifier: 89:C2:88:53:2A:EF:C8:69:71:B9:8D:5B:4D:1D:98:19:6D:9E:CB:85 Certificate issuer: /CN=89c288532aefc86971b98d5b4d1d98196d9ecb85 Certificate serial: 019AF12D059F5815FE20602C82CBA0898A47 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/icKIUyrvyGlxuY1bTR2YGW2ey4U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft Manifest number: 08D1 Signing time: Sat 06 Dec 2025 01:00:50 +0000 Manifest this update: Sat 06 Dec 2025 01:00:50 +0000 Manifest next update: Sun 07 Dec 2025 01:00:50 +0000 Files and hashes: 1: icKIUyrvyGlxuY1bTR2YGW2ey4U.crl (hash: tJRV9Bte1rQk317bWeOk0Mt710emfPSj+3vBmt4vZeo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.crl rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft rsync://rpki.ripe.net/repository/DEFAULT/icKIUyrvyGlxuY1bTR2YGW2ey4U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:05:9f:58:15:fe:20:60:2c:82:cb:a0:89:8a:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89c288532aefc86971b98d5b4d1d98196d9ecb85 Validity Not Before: Dec 6 01:00:50 2025 GMT Not After : Dec 7 01:00:50 2025 GMT Subject: CN=d0c6193f39fd6d5c044679b34041b98e245e9e24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4b:8e:db:ab:16:e4:d4:a2:d7:3f:f1:26:4a: 5a:93:73:14:10:09:fd:bb:80:b0:9b:6f:8a:b1:9d: 59:27:b9:ce:58:03:32:b1:36:ed:66:58:0d:90:2c: c1:77:ea:99:8f:6e:62:47:7b:c2:56:de:52:58:db: fa:69:dd:23:7b:c7:5a:2b:ba:66:bd:a7:4b:87:85: e8:a1:43:86:cb:04:23:1a:12:d3:ad:a2:2f:f7:55: 0c:ec:a7:92:43:f7:66:93:65:62:d1:ba:e7:42:61: 48:bd:6b:bb:03:42:10:38:46:e3:de:aa:0a:fc:74: 6e:50:aa:50:fd:fe:5d:d9:08:46:47:b4:9d:f4:fe: 6e:83:f0:ff:5c:c7:64:f7:fe:f3:5e:cb:b4:f6:c2: 36:17:d8:46:d2:88:d2:e2:86:66:7e:d7:8a:c7:09: 8e:c8:bf:c5:04:b3:3c:b3:b7:0f:1f:89:e6:48:e6: a9:12:59:e5:bb:ab:02:af:d5:a2:8c:88:2d:15:90: b4:df:83:b5:04:a8:64:10:9d:c6:80:d4:54:65:be: 80:06:f6:ad:d3:81:cb:80:68:fd:4d:52:68:cd:a5: 69:6b:e3:79:33:aa:74:94:18:94:ad:5c:af:c9:fd: 2e:bb:19:4e:19:d4:1e:0f:98:d1:9d:b4:71:84:a3: 56:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:C6:19:3F:39:FD:6D:5C:04:46:79:B3:40:41:B9:8E:24:5E:9E:24 X509v3 Authority Key Identifier: keyid:89:C2:88:53:2A:EF:C8:69:71:B9:8D:5B:4D:1D:98:19:6D:9E:CB:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/icKIUyrvyGlxuY1bTR2YGW2ey4U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:db:5e:50:7f:84:e4:70:d9:ed:5f:b5:64:23:4e:ae:1c:50: 22:8b:ae:83:d1:57:bd:3c:c8:57:16:7f:87:51:62:4a:96:56: 14:33:6e:2f:6d:b4:75:79:75:6e:e7:ed:a3:44:8d:35:65:61: 90:e5:1d:a8:9e:26:5e:f7:e3:01:ce:ae:a1:a5:72:5c:5e:00: c3:fe:11:21:1e:67:ba:5a:65:10:03:ea:21:c4:ee:2c:ac:e4: 66:72:fc:8c:01:36:f3:aa:62:c0:53:4f:93:b1:fd:bd:56:7a: 64:fa:29:72:58:2e:ca:27:47:a3:ef:f4:72:c8:a9:87:c2:3a: 1d:3c:90:29:03:1a:5e:fa:68:f2:f2:4c:67:36:bc:0a:7f:68: 35:50:70:18:f3:59:d7:5a:b6:dd:d9:11:59:4a:aa:20:dd:e0: 1c:f7:6b:3a:e2:08:84:86:d8:13:52:6e:79:c9:b9:e4:8f:60: 46:10:76:19:a2:20:97:78:9b:f2:ea:94:df:97:0e:cb:f7:d3: ab:ad:11:e3:26:3f:93:54:db:6d:12:c6:08:39:a8:cf:f2:0e: 70:39:47:e8:a9:a7:98:f1:e6:72:1e:c3:a1:26:f0:fd:21:2b: b4:f2:ac:03:58:19:02:7a:e2:5b:33:43:e6:47:45:99:64:96: 85:ba:c2:5f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLQWfWBX+IGAsgsugiYpHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5YzI4ODUzMmFlZmM4Njk3MWI5OGQ1YjRkMWQ5ODE5NmQ5 ZWNiODUwHhcNMjUxMjA2MDEwMDUwWhcNMjUxMjA3MDEwMDUwWjAzMTEwLwYDVQQD EyhkMGM2MTkzZjM5ZmQ2ZDVjMDQ0Njc5YjM0MDQxYjk4ZTI0NWU5ZTI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu0uO26sW5NSi1z/xJkpak3MUEAn9 u4Cwm2+KsZ1ZJ7nOWAMysTbtZlgNkCzBd+qZj25iR3vCVt5SWNv6ad0je8daK7pm vadLh4XooUOGywQjGhLTraIv91UM7KeSQ/dmk2Vi0brnQmFIvWu7A0IQOEbj3qoK /HRuUKpQ/f5d2QhGR7Sd9P5ug/D/XMdk9/7zXsu09sI2F9hG0ojS4oZmfteKxwmO yL/FBLM8s7cPH4nmSOapElnlu6sCr9WijIgtFZC034O1BKhkEJ3GgNRUZb6ABvat 04HLgGj9TVJozaVpa+N5M6p0lBiUrVyvyf0uuxlOGdQeD5jRnbRxhKNWBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNDGGT85/W1cBEZ5s0BBuY4kXp4kMB8GA1UdIwQY MBaAFInCiFMq78hpcbmNW00dmBltnsuFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWNLSVV5cnZ5R2x4dVkxYlRSMllHVzJleTRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS8xOGRkOGItYTAxMC00MmNhLWJjOTkt MGY4NjdkOWZmNThlLzEvaWNLSVV5cnZ5R2x4dVkxYlRSMllHVzJleTRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS8xOGRkOGItYTAxMC00MmNhLWJjOTktMGY4NjdkOWZmNThl LzEvaWNLSVV5cnZ5R2x4dVkxYlRSMllHVzJleTRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAadteUH+E 5HDZ7V+1ZCNOrhxQIouug9FXvTzIVxZ/h1FiSpZWFDNuL220dXl1bufto0SNNWVh kOUdqJ4mXvfjAc6uoaVyXF4Aw/4RIR5nulplEAPqIcTuLKzkZnL8jAE286piwFNP k7H9vVZ6ZPopclguyidHo+/0csiph8I6HTyQKQMaXvpo8vJMZza8Cn9oNVBwGPNZ 11q23dkRWUqqIN3gHPdrOuIIhIbYE1Juecm55I9gRhB2GaIgl3ib8uqU35cOy/fT q60R4yY/k1TbbRLGCDmoz/IOcDlH6KmnmPHmch7DoSbw/SErtPKsA1gZAnriWzND 5kdFmWSWhbrCXw== -----END CERTIFICATE-----Generated at Sat Dec 6 11:13:55 2025 by rpki-client