This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft File: i4gBVDgSBAR31HRCKUZshTfUUXE.mft (raw, json) Hash identifier: n85gqy7kDWTnywRl3BbNJaU8Uq8m5tfnqpOHTjmCWgg= Subject key identifier: EF:82:AE:CE:01:C1:26:98:8B:83:02:29:9E:17:BD:86:7E:BE:AD:D0 Authority key identifier: 8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71 Certificate issuer: /CN=8b8801543812040477d4744229466c8537d45171 Certificate serial: 019AF3C08A28881DF6A0BBC9B9E25405D899 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft Manifest number: 0EAB Signing time: Sat 06 Dec 2025 13:01:13 +0000 Manifest this update: Sat 06 Dec 2025 13:01:13 +0000 Manifest next update: Sun 07 Dec 2025 13:01:13 +0000 Files and hashes: 1: CDrnNbtJLaCL50xwnqrzUWhQ_9k.roa (hash: xkyChTjHPfmap3pEfIzmPahUIANDsQxEAOedvER2SvU=) 2: i4gBVDgSBAR31HRCKUZshTfUUXE.crl (hash: z42zc65IZpfAysAvrEC/hjMBU/AugytdLgyO/m5qUbg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:c0:8a:28:88:1d:f6:a0:bb:c9:b9:e2:54:05:d8:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b8801543812040477d4744229466c8537d45171 Validity Not Before: Dec 6 13:01:13 2025 GMT Not After : Dec 7 13:01:13 2025 GMT Subject: CN=ef82aece01c126988b8302299e17bd867ebeadd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:93:ab:73:a4:a3:e3:10:53:d0:ad:62:05:e5: 11:f2:2c:c8:74:7e:ce:f9:20:27:d1:52:ef:93:a6: 24:29:58:a2:cb:0b:08:2c:43:5f:24:ff:0a:7e:ee: 13:34:f3:b3:a8:52:04:01:07:46:06:c7:ff:06:40: c5:fa:a8:53:c1:42:37:67:20:83:a4:ff:e5:05:4c: 54:ff:d8:20:99:4f:83:db:a6:e3:54:ee:f7:5b:3a: 83:b9:53:61:69:df:ce:b1:d7:61:9e:5c:f3:d5:c8: 32:8f:d6:43:30:c1:10:4f:89:7b:55:62:f7:25:95: ea:77:54:12:35:d9:21:20:27:0c:1a:9f:2d:06:78: ce:3e:8a:b9:2a:6a:aa:2f:13:9a:82:aa:48:b1:f9: 5c:af:f8:94:83:59:df:93:86:cb:dc:5d:fc:b4:ef: bc:bf:04:ce:6d:c2:04:3d:a9:6e:fe:c1:4c:0d:6d: 80:63:5b:b2:ac:60:89:ee:9a:6d:23:93:b5:56:6a: 1b:dd:9b:3f:35:51:0a:9f:9a:fb:09:ca:d2:48:33: cb:ec:ac:3a:58:ec:46:ae:a1:10:4b:99:ee:7c:0b: c6:c8:bf:08:ce:ca:ae:50:40:82:5a:a2:e4:b9:7d: cb:92:4c:44:ba:86:13:d1:fc:20:3a:2b:3e:4d:2d: 95:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:82:AE:CE:01:C1:26:98:8B:83:02:29:9E:17:BD:86:7E:BE:AD:D0 X509v3 Authority Key Identifier: keyid:8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:0d:8e:9c:ca:14:4b:ef:99:06:cf:c9:02:1a:18:b2:57:bf: 65:67:a6:16:fe:65:43:d1:65:a0:68:c6:4b:09:4e:b3:76:27: 02:c5:b3:70:a7:5b:1e:1a:a9:db:f7:2d:4b:d1:64:8b:36:b3: 2e:70:e2:37:50:2a:44:a2:e9:c1:28:17:55:c8:11:02:58:82: 10:ea:f8:51:b1:07:20:26:38:8d:9e:5b:97:38:f3:e3:37:85: b4:5c:31:ca:a8:29:03:03:94:33:fa:4a:69:18:e0:d4:83:71: a5:9d:ac:b0:59:5b:44:87:c1:4f:c3:f9:5a:ae:27:79:9b:4e: b1:de:5f:dc:e8:a6:7f:05:00:1e:43:f6:5a:bd:07:d0:9b:a3: 97:85:72:29:51:db:53:5c:a4:42:df:0c:8a:3a:eb:29:b0:d8: 5a:0c:6e:83:01:e8:92:83:32:4a:04:f1:b4:c7:46:50:64:58: ae:83:86:18:dc:4c:3b:c6:65:d7:1c:6f:90:63:00:cb:43:78: 20:ad:0d:bd:09:1d:79:c9:a7:10:94:32:db:c6:98:b2:64:ba: c8:1a:ff:c5:ca:a4:24:b1:90:b8:0b:68:de:e6:ac:b1:85:b6: a2:ae:8a:18:d4:cc:ac:db:b4:0c:f7:c2:e0:61:34:a2:86:53: d7:ce:bd:eb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzwIooiB32oLvJueJUBdiZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiODgwMTU0MzgxMjA0MDQ3N2Q0NzQ0MjI5NDY2Yzg1Mzdk NDUxNzEwHhcNMjUxMjA2MTMwMTEzWhcNMjUxMjA3MTMwMTEzWjAzMTEwLwYDVQQD EyhlZjgyYWVjZTAxYzEyNjk4OGI4MzAyMjk5ZTE3YmQ4NjdlYmVhZGQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoZOrc6Sj4xBT0K1iBeUR8izIdH7O +SAn0VLvk6YkKViiywsILENfJP8Kfu4TNPOzqFIEAQdGBsf/BkDF+qhTwUI3ZyCD pP/lBUxU/9ggmU+D26bjVO73WzqDuVNhad/Osddhnlzz1cgyj9ZDMMEQT4l7VWL3 JZXqd1QSNdkhICcMGp8tBnjOPoq5KmqqLxOagqpIsflcr/iUg1nfk4bL3F38tO+8 vwTObcIEPalu/sFMDW2AY1uyrGCJ7pptI5O1Vmob3Zs/NVEKn5r7CcrSSDPL7Kw6 WOxGrqEQS5nufAvGyL8IzsquUECCWqLkuX3LkkxEuoYT0fwgOis+TS2VKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO+Crs4BwSaYi4MCKZ4XvYZ+vq3QMB8GA1UdIwQY MBaAFIuIAVQ4EgQEd9R0QilGbIU31FFxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTRnQlZEZ1NCQVIzMUhSQ0tVWnNoVGZVVVhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS84OWJiNzEtM2ZlOS00MmQyLWE3M2It MTNhZTk4YWE3ZDMzLzEvaTRnQlZEZ1NCQVIzMUhSQ0tVWnNoVGZVVVhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS84OWJiNzEtM2ZlOS00MmQyLWE3M2ItMTNhZTk4YWE3ZDMz LzEvaTRnQlZEZ1NCQVIzMUhSQ0tVWnNoVGZVVVhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiQ2OnMoU S++ZBs/JAhoYsle/ZWemFv5lQ9FloGjGSwlOs3YnAsWzcKdbHhqp2/ctS9Fkizaz LnDiN1AqRKLpwSgXVcgRAliCEOr4UbEHICY4jZ5blzjz4zeFtFwxyqgpAwOUM/pK aRjg1INxpZ2ssFlbRIfBT8P5Wq4neZtOsd5f3OimfwUAHkP2Wr0H0Jujl4VyKVHb U1ykQt8MijrrKbDYWgxugwHokoMySgTxtMdGUGRYroOGGNxMO8Zl1xxvkGMAy0N4 IK0NvQkdecmnEJQy28aYsmS6yBr/xcqkJLGQuAto3uassYW2oq6KGNTMrNu0DPfC 4GE0ooZT18696w== -----END CERTIFICATE-----Generated at Sat Dec 6 22:43:04 2025 by rpki-client