This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft File: IZUnwiTwCiiy9MtOExLXSNXKUWk.mft (raw, json) Hash identifier: IwByNKjbJsfSksYHcSRAw4mdQCzuDcNNPPjvxhmx+Nw= Subject key identifier: 16:77:F2:E3:6A:B3:19:F6:1D:39:B4:34:6D:35:A1:A4:94:3A:44:C0 Authority key identifier: 21:95:27:C2:24:F0:0A:28:B2:F4:CB:4E:13:12:D7:48:D5:CA:51:69 Certificate issuer: /CN=219527c224f00a28b2f4cb4e1312d748d5ca5169 Certificate serial: 019AF19AB573C455B39C2624D21B17E980D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 03:00:39 +0000 Manifest this update: Sat 06 Dec 2025 03:00:39 +0000 Manifest next update: Sun 07 Dec 2025 03:00:39 +0000 Files and hashes: 1: IZUnwiTwCiiy9MtOExLXSNXKUWk.crl (hash: WpDmwL3uYsWNk7W6ceOq3RFZOM92+ZxgdhR/dB8T9ms=) 2: l8INnv3QTRexkISN97lg6HuKeCY.roa (hash: pDEsYARUuEJK1pYQPfyythtLkxkCfRaxj9c1qzwCEIU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:b5:73:c4:55:b3:9c:26:24:d2:1b:17:e9:80:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=219527c224f00a28b2f4cb4e1312d748d5ca5169 Validity Not Before: Dec 6 03:00:39 2025 GMT Not After : Dec 7 03:00:39 2025 GMT Subject: CN=1677f2e36ab319f61d39b4346d35a1a4943a44c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:54:19:4c:6b:dc:79:a2:6a:97:95:b0:1d:83: 62:52:0b:e6:c4:b4:bc:74:ed:ac:ab:4a:8e:52:58: 8d:41:5c:a1:93:e8:ed:18:61:9f:a3:3d:d7:8b:c0: a8:5e:f8:f1:74:40:4e:52:1f:1c:48:3e:13:59:fd: b0:c9:25:d4:c9:da:2f:0c:60:7c:6c:4e:3d:a3:4f: 99:c5:81:a5:89:75:88:b6:f2:b2:52:55:f3:bf:a0: 94:62:db:7f:b9:25:d2:12:a1:cd:d2:2e:06:b2:49: f6:92:7a:2e:37:9f:da:64:e5:d6:d2:88:26:28:4d: 1d:95:60:84:89:d0:cd:4f:65:20:72:22:dc:47:d0: 7c:46:da:56:85:c2:70:19:34:45:98:79:b7:01:5d: f9:fc:02:e1:4d:6a:be:11:6a:2e:ba:ee:c1:b8:75: 1e:69:95:e6:e6:a7:dd:31:fd:38:7d:90:f6:61:43: 6c:11:ac:3d:e5:72:82:13:da:48:a8:7d:db:71:88: f5:e0:3c:9f:49:28:14:3e:6a:e3:c6:17:f8:60:cd: 89:5a:ee:cd:98:f5:d5:50:4a:4c:94:fb:b4:24:e6: b8:ee:18:b4:97:50:57:8d:e7:be:42:fd:9a:42:8c: c4:3e:05:fe:39:75:1b:bb:a8:4e:c3:9a:13:1a:64: 9c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:77:F2:E3:6A:B3:19:F6:1D:39:B4:34:6D:35:A1:A4:94:3A:44:C0 X509v3 Authority Key Identifier: keyid:21:95:27:C2:24:F0:0A:28:B2:F4:CB:4E:13:12:D7:48:D5:CA:51:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:10:c6:0a:f0:40:cf:1d:7a:c7:b7:a9:5c:05:23:11:fd:5c: 2c:eb:19:e3:23:96:38:c5:0e:e1:30:8c:5b:06:3a:4a:83:b4: 14:ad:32:f2:c8:39:56:92:ca:9f:e6:22:d7:a0:39:7d:f3:d7: c3:ab:b6:22:4f:f3:15:01:cd:b5:96:23:ae:6f:20:1d:a1:b4: 91:d0:1e:fb:29:eb:7d:fe:99:f0:8b:c2:32:c1:19:d1:65:8a: 62:6d:55:00:a1:81:8d:9b:38:cb:30:45:e1:5f:52:92:ad:e3: f4:77:a3:1a:03:9c:26:87:92:7f:84:4b:4c:ff:d8:2d:19:cb: 0a:5d:4a:e8:55:8f:17:26:05:16:ba:b3:cd:db:5e:2e:a2:61: 7f:82:d4:c8:df:35:ec:47:eb:ea:64:81:72:2e:b3:73:c0:88: 42:de:37:04:bd:84:01:62:fa:d3:2e:0a:d0:fc:e8:ce:a5:62: 0d:59:f7:08:61:a8:b4:fb:51:12:77:98:e5:70:cd:96:f5:66: c8:fa:32:ea:b8:23:08:b0:31:44:3b:73:5e:49:3e:3d:2f:8e: d7:15:3c:fa:2a:02:2d:eb:25:7b:f7:1b:41:13:e4:22:1c:51: 0f:d3:cd:0e:c6:55:cd:67:a0:57:b4:bf:35:41:89:e7:e1:3a: e1:d1:85:77 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmrVzxFWznCYk0hsX6YDQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxOTUyN2MyMjRmMDBhMjhiMmY0Y2I0ZTEzMTJkNzQ4ZDVj YTUxNjkwHhcNMjUxMjA2MDMwMDM5WhcNMjUxMjA3MDMwMDM5WjAzMTEwLwYDVQQD EygxNjc3ZjJlMzZhYjMxOWY2MWQzOWI0MzQ2ZDM1YTFhNDk0M2E0NGMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuFQZTGvceaJql5WwHYNiUgvmxLS8 dO2sq0qOUliNQVyhk+jtGGGfoz3Xi8CoXvjxdEBOUh8cSD4TWf2wySXUydovDGB8 bE49o0+ZxYGliXWItvKyUlXzv6CUYtt/uSXSEqHN0i4Gskn2knouN5/aZOXW0ogm KE0dlWCEidDNT2UgciLcR9B8RtpWhcJwGTRFmHm3AV35/ALhTWq+EWouuu7BuHUe aZXm5qfdMf04fZD2YUNsEaw95XKCE9pIqH3bcYj14DyfSSgUPmrjxhf4YM2JWu7N mPXVUEpMlPu0JOa47hi0l1BXjee+Qv2aQozEPgX+OXUbu6hOw5oTGmScBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBZ38uNqsxn2HTm0NG01oaSUOkTAMB8GA1UdIwQY MBaAFCGVJ8Ik8AoosvTLThMS10jVylFpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVpVbndpVHdDaWl5OU10T0V4TFhTTlhLVVdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi84NTQwZGItZjkwMS00MzNiLTgxYmIt OTdkNTVmMzkxNTYxLzEvSVpVbndpVHdDaWl5OU10T0V4TFhTTlhLVVdrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi84NTQwZGItZjkwMS00MzNiLTgxYmItOTdkNTVmMzkxNTYx LzEvSVpVbndpVHdDaWl5OU10T0V4TFhTTlhLVVdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXRDGCvBA zx16x7epXAUjEf1cLOsZ4yOWOMUO4TCMWwY6SoO0FK0y8sg5VpLKn+Yi16A5ffPX w6u2Ik/zFQHNtZYjrm8gHaG0kdAe+ynrff6Z8IvCMsEZ0WWKYm1VAKGBjZs4yzBF 4V9Skq3j9HejGgOcJoeSf4RLTP/YLRnLCl1K6FWPFyYFFrqzzdteLqJhf4LUyN81 7Efr6mSBci6zc8CIQt43BL2EAWL60y4K0PzozqViDVn3CGGotPtREneY5XDNlvVm yPoy6rgjCLAxRDtzXkk+PS+O1xU8+ioCLesle/cbQRPkIhxRD9PNDsZVzWegV7S/ NUGJ5+E64dGFdw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:22:29 2025 by rpki-client