This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.mft File: I6lUuSO6IAjpheuiQdG3AHF_iEM.mft (raw, json) Hash identifier: 39nPMp//GHsFSfMgkl9fEhd6fWB9zxtG7enDA7kDBr4= Subject key identifier: F1:20:31:33:95:DC:2D:E3:4C:CB:6F:05:65:7D:F7:E6:96:C2:0E:CC Authority key identifier: 23:A9:54:B9:23:BA:20:08:E9:85:EB:A2:41:D1:B7:00:71:7F:88:43 Certificate issuer: /CN=23a954b923ba2008e985eba241d1b700717f8843 Certificate serial: 019AF12D7BF6228EDC3F8C981852DDD88814 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I6lUuSO6IAjpheuiQdG3AHF_iEM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.mft Manifest number: 15A9 Signing time: Sat 06 Dec 2025 01:01:21 +0000 Manifest this update: Sat 06 Dec 2025 01:01:21 +0000 Manifest next update: Sun 07 Dec 2025 01:01:21 +0000 Files and hashes: 1: I6lUuSO6IAjpheuiQdG3AHF_iEM.crl (hash: tVTjL2GGsmr3SBh0dJ0xuyOxO0QhJbRoEq8HkOeNeM4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.mft rsync://rpki.ripe.net/repository/DEFAULT/I6lUuSO6IAjpheuiQdG3AHF_iEM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:7b:f6:22:8e:dc:3f:8c:98:18:52:dd:d8:88:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23a954b923ba2008e985eba241d1b700717f8843 Validity Not Before: Dec 6 01:01:21 2025 GMT Not After : Dec 7 01:01:21 2025 GMT Subject: CN=f120313395dc2de34ccb6f05657df7e696c20ecc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b8:e5:60:40:43:59:7d:91:3e:b6:d6:17:3a: 32:54:bf:f1:25:16:28:f5:db:98:4f:7a:41:c4:50: 5c:1b:72:19:34:ca:15:f0:85:2b:af:a5:50:0f:1d: 25:64:80:7a:49:9c:20:69:67:03:8b:1a:a9:0b:f2: 35:00:fa:a5:b3:b5:ec:00:1d:bc:92:8d:a8:a6:67: d6:01:f5:5a:c1:5a:98:ba:53:b8:4d:ea:21:e0:65: e7:7b:f3:48:19:fb:09:3e:64:5a:7d:f4:58:af:70: 05:b0:cc:e0:08:ab:15:b8:fc:7c:5e:85:a8:4a:39: f4:e8:46:53:0b:21:6b:f1:6f:b8:1a:de:21:59:67: 37:34:5b:c0:84:6a:66:da:c9:ce:a8:b5:fe:d4:26: 64:e3:2a:f8:be:95:13:38:10:02:93:ed:4e:16:82: c0:f0:79:de:42:b7:44:ff:a3:8b:a2:f1:ef:6e:78: c9:bc:cb:3e:49:d3:ba:4d:0a:f6:20:22:e6:58:b8: 21:8c:f3:11:f7:cb:9d:ef:0d:d9:49:6e:0f:01:02: 22:88:fc:17:cd:fc:b5:25:ef:73:b5:2c:a1:f4:a5: 3e:ec:50:c5:dd:14:8a:10:ed:da:5d:20:2d:d7:02: 16:d8:8c:99:52:4e:2d:ff:e6:a0:b3:6e:37:c9:b7: 09:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:20:31:33:95:DC:2D:E3:4C:CB:6F:05:65:7D:F7:E6:96:C2:0E:CC X509v3 Authority Key Identifier: keyid:23:A9:54:B9:23:BA:20:08:E9:85:EB:A2:41:D1:B7:00:71:7F:88:43 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I6lUuSO6IAjpheuiQdG3AHF_iEM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:07:26:c6:03:74:51:8d:dc:59:29:f2:c0:52:2a:11:c6:7a: 04:23:09:78:0a:df:69:cc:6e:47:70:35:4a:e4:13:9d:ad:b6: 59:77:7b:dc:4c:0a:f0:a8:69:ea:d2:c6:19:67:31:4c:1e:ae: e8:0f:c5:e0:cc:17:4b:6d:e5:a2:e4:91:97:20:3b:d0:ab:99: 39:77:b4:14:ba:20:be:1c:ff:f4:e3:42:52:05:13:db:65:39: 0c:97:c4:9c:ef:d9:36:89:1f:34:cf:93:40:1e:0f:52:b4:64: 13:e4:50:06:0a:47:0a:8f:02:50:ee:6b:14:ed:93:55:2f:85: 30:ae:9a:e9:4d:6c:e4:15:a7:cd:b6:01:05:c1:a7:01:5a:c9: 25:d3:7f:4e:9f:c4:0f:13:af:0a:4a:9a:09:7b:99:e9:ca:a8: 67:f0:16:ba:32:4a:da:a9:23:9f:7e:8d:30:fd:e3:e5:da:e8: 5e:7f:e5:89:6c:2e:06:d0:03:d7:8c:11:e5:a6:0f:b8:04:4a: 52:91:4e:92:81:cd:b6:2f:f2:6f:cb:38:2b:4b:23:5a:9d:c3: bb:c3:72:f4:36:1a:41:a2:17:cf:2f:f2:c9:b8:f2:de:4e:03: 86:b6:56:1b:80:bd:c6:36:d1:19:7f:f2:ce:70:2f:82:ff:be: 2d:33:49:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLXv2Io7cP4yYGFLd2IgUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzYTk1NGI5MjNiYTIwMDhlOTg1ZWJhMjQxZDFiNzAwNzE3 Zjg4NDMwHhcNMjUxMjA2MDEwMTIxWhcNMjUxMjA3MDEwMTIxWjAzMTEwLwYDVQQD EyhmMTIwMzEzMzk1ZGMyZGUzNGNjYjZmMDU2NTdkZjdlNjk2YzIwZWNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAurjlYEBDWX2RPrbWFzoyVL/xJRYo 9duYT3pBxFBcG3IZNMoV8IUrr6VQDx0lZIB6SZwgaWcDixqpC/I1APqls7XsAB28 ko2opmfWAfVawVqYulO4Teoh4GXne/NIGfsJPmRaffRYr3AFsMzgCKsVuPx8XoWo Sjn06EZTCyFr8W+4Gt4hWWc3NFvAhGpm2snOqLX+1CZk4yr4vpUTOBACk+1OFoLA 8HneQrdE/6OLovHvbnjJvMs+SdO6TQr2ICLmWLghjPMR98ud7w3ZSW4PAQIiiPwX zfy1Je9ztSyh9KU+7FDF3RSKEO3aXSAt1wIW2IyZUk4t/+ags243ybcJeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPEgMTOV3C3jTMtvBWV99+aWwg7MMB8GA1UdIwQY MBaAFCOpVLkjuiAI6YXrokHRtwBxf4hDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTZsVXVTTzZJQWpwaGV1aVFkRzNBSEZfaUVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi81ZDk3NjAtZTM2ZS00N2MyLTk2ZTMt NmRjNTEwZTk4YjczLzEvSTZsVXVTTzZJQWpwaGV1aVFkRzNBSEZfaUVNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi81ZDk3NjAtZTM2ZS00N2MyLTk2ZTMtNmRjNTEwZTk4Yjcz LzEvSTZsVXVTTzZJQWpwaGV1aVFkRzNBSEZfaUVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdAcmxgN0 UY3cWSnywFIqEcZ6BCMJeArfacxuR3A1SuQTna22WXd73EwK8Khp6tLGGWcxTB6u 6A/F4MwXS23louSRlyA70KuZOXe0FLogvhz/9ONCUgUT22U5DJfEnO/ZNokfNM+T QB4PUrRkE+RQBgpHCo8CUO5rFO2TVS+FMK6a6U1s5BWnzbYBBcGnAVrJJdN/Tp/E DxOvCkqaCXuZ6cqoZ/AWujJK2qkjn36NMP3j5droXn/liWwuBtAD14wR5aYPuARK UpFOkoHNti/yb8s4K0sjWp3Du8Ny9DYaQaIXzy/yybjy3k4DhrZWG4C9xjbRGX/y znAvgv++LTNJvw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:56:07 2025 by rpki-client