This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft File: I3ikqcUjJahZIICboaTYniHALxc.mft (raw, json) Hash identifier: ++AKs/DhMTvNd5QY3NQSnhZ9vshuDK5740NZgCJIWWQ= Subject key identifier: 7F:2C:5A:E6:B6:DD:C6:50:87:AD:EE:9A:B8:62:3B:DC:E8:7C:4F:D6 Authority key identifier: 23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17 Certificate issuer: /CN=2378a4a9c52325a85920809ba1a4d89e21c02f17 Certificate serial: 019AF31CDB2A873765B138FCE8DC3329E3BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft Manifest number: 14B1 Signing time: Sat 06 Dec 2025 10:02:25 +0000 Manifest this update: Sat 06 Dec 2025 10:02:25 +0000 Manifest next update: Sun 07 Dec 2025 10:02:25 +0000 Files and hashes: 1: I3ikqcUjJahZIICboaTYniHALxc.crl (hash: C3L2XB2Fti9N6fZm+1OunYD+LpTIPS9owOjeg+pShc8=) 2: LWXmlZUU3ecfqvwZHXpe4N13PwE.roa (hash: 4NYVwWGAs7YF0X626zcPKU0/2BhITxR5hdojEVCb7vQ=) 3: Sb-J4R6jgDy1hu0trOifGY0aUIY.roa (hash: BnRnuIbBZBHwGOy/+XFTLzwpti+5vGhUFRVEfpqfups=) 4: XNLU8qoxsRXpQnmwz4ctSe-cqyE.roa (hash: JQ5L08jadmyYilDYeIqvPylZ8SNDZ1MGMwYpTLmwoLo=) 5: caXYCCXqjYg5FcmsNZB3ePKReDk.roa (hash: XSzupsyXsQ8GmhQZJGGSHfiNeG8fCN+9mFDFmlJ4Bu4=) 6: gnOWx6TZJqqJDVFgIEMBOXAqJm4.roa (hash: fy9tgSe6kfwMDX9Ibp9s7/6EtOy/O5uDNSQU1PskuXs=) 7: pCwDdjVqKehtW8BEUKXN0O7wEnk.roa (hash: 9s0GASAbpwgJKOxbp75/GwEb4yuJGmhv0RUIKaWppDk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:02:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:db:2a:87:37:65:b1:38:fc:e8:dc:33:29:e3:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2378a4a9c52325a85920809ba1a4d89e21c02f17 Validity Not Before: Dec 6 10:02:25 2025 GMT Not After : Dec 7 10:02:25 2025 GMT Subject: CN=7f2c5ae6b6ddc65087adee9ab8623bdce87c4fd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:21:7d:62:1d:d7:31:c6:9d:f0:59:46:a5:0c: 52:73:ca:98:8a:e5:5a:4b:b7:a3:88:2f:5f:ab:ad: e8:4a:85:05:11:1e:73:1e:f2:bb:c9:90:5b:7a:e7: 5c:7d:0c:c3:ed:d9:6d:ed:86:b3:c7:de:55:8e:05: e4:a8:75:bd:54:08:47:e4:25:bf:7a:e6:bf:d9:95: 66:29:1d:85:c1:7c:e7:d9:6f:46:17:e8:d3:6e:73: 4f:53:e5:d1:3f:11:72:51:13:51:97:cb:61:08:6d: c5:7a:43:3d:ef:12:89:d9:55:1c:01:35:ce:b7:5e: 47:dc:8c:bc:89:e8:62:8f:d5:61:fe:ea:4a:74:11: 8e:a6:c3:92:2d:e7:94:d3:13:81:c8:67:7f:a6:fc: 24:ab:97:4a:e5:c8:23:e9:fe:b6:8f:c0:56:de:ed: b1:72:b3:fa:a6:2f:39:c4:b8:2d:08:c0:1a:aa:95: f4:4a:ab:f3:29:98:22:fb:ef:29:37:b4:e2:57:6a: 2d:5d:c1:7c:0d:24:19:ba:8a:8e:06:e9:85:c9:53: 85:12:1d:85:03:64:f6:c3:fa:7c:a5:2c:be:d9:3c: 30:fc:9b:91:93:d0:f5:12:b5:eb:8d:61:8c:e9:5d: 20:91:32:c7:5c:24:a9:de:2b:49:09:53:b3:b8:fc: f2:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:2C:5A:E6:B6:DD:C6:50:87:AD:EE:9A:B8:62:3B:DC:E8:7C:4F:D6 X509v3 Authority Key Identifier: keyid:23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:a0:41:f4:0e:e4:66:f9:4a:25:23:4a:58:0a:4b:52:b4:52: a2:44:80:f9:68:26:76:96:3a:e4:d3:4d:b6:75:9d:94:f9:ea: 50:a8:50:1a:66:6f:98:56:ad:14:3b:e9:6b:f0:3f:78:dc:6d: d7:3f:c2:1a:19:7d:37:03:99:7a:b0:ce:08:68:b2:68:92:41: 56:3d:71:39:15:9d:e7:b7:b1:30:51:b9:9a:77:4b:dc:25:06: 49:c0:d3:30:b6:79:73:be:66:01:88:fd:38:db:f1:8c:f7:c2: 52:a5:ab:6a:d3:ba:ca:e9:2f:f8:84:88:74:95:ea:59:8d:60: f1:89:4f:eb:92:13:76:de:b2:9d:d8:04:4a:31:51:06:0d:fb: 5a:99:da:e6:41:aa:22:ff:a1:f9:cc:b8:43:10:4a:11:16:3e: 41:a7:41:b2:2f:4b:2e:b0:2d:52:89:31:3f:dc:ca:2d:89:98: 2d:f1:79:8d:d3:55:14:8a:f8:4e:a1:b0:0e:17:6d:52:fa:2c: 6c:72:f0:6c:0d:85:bd:6d:f8:e4:ee:32:e9:53:28:18:ad:2b: 5f:d4:14:5e:85:f3:3c:97:34:c9:cf:83:47:f5:85:09:3a:80: 05:e8:69:25:87:4a:e1:d2:39:69:d8:4f:02:18:a4:d9:58:d3: ca:ee:d8:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHNsqhzdlsTj86NwzKeO6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzNzhhNGE5YzUyMzI1YTg1OTIwODA5YmExYTRkODllMjFj MDJmMTcwHhcNMjUxMjA2MTAwMjI1WhcNMjUxMjA3MTAwMjI1WjAzMTEwLwYDVQQD Eyg3ZjJjNWFlNmI2ZGRjNjUwODdhZGVlOWFiODYyM2JkY2U4N2M0ZmQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/SF9Yh3XMcad8FlGpQxSc8qYiuVa S7ejiC9fq63oSoUFER5zHvK7yZBbeudcfQzD7dlt7Yazx95VjgXkqHW9VAhH5CW/ eua/2ZVmKR2FwXzn2W9GF+jTbnNPU+XRPxFyURNRl8thCG3FekM97xKJ2VUcATXO t15H3Iy8iehij9Vh/upKdBGOpsOSLeeU0xOByGd/pvwkq5dK5cgj6f62j8BW3u2x crP6pi85xLgtCMAaqpX0SqvzKZgi++8pN7TiV2otXcF8DSQZuoqOBumFyVOFEh2F A2T2w/p8pSy+2Tww/JuRk9D1ErXrjWGM6V0gkTLHXCSp3itJCVOzuPzydwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH8sWua23cZQh63umrhiO9zofE/WMB8GA1UdIwQY MBaAFCN4pKnFIyWoWSCAm6Gk2J4hwC8XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTNpa3FjVWpKYWhaSUlDYm9hVFluaUhBTHhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9kNjU0YmUtMTc0ZS00MWY3LTljZmIt OTM3ZTI3ZWUxYjViLzEvSTNpa3FjVWpKYWhaSUlDYm9hVFluaUhBTHhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC9kNjU0YmUtMTc0ZS00MWY3LTljZmItOTM3ZTI3ZWUxYjVi LzEvSTNpa3FjVWpKYWhaSUlDYm9hVFluaUhBTHhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZaBB9A7k ZvlKJSNKWApLUrRSokSA+WgmdpY65NNNtnWdlPnqUKhQGmZvmFatFDvpa/A/eNxt 1z/CGhl9NwOZerDOCGiyaJJBVj1xORWd57exMFG5mndL3CUGScDTMLZ5c75mAYj9 ONvxjPfCUqWratO6yukv+ISIdJXqWY1g8YlP65ITdt6yndgESjFRBg37Wpna5kGq Iv+h+cy4QxBKERY+QadBsi9LLrAtUokxP9zKLYmYLfF5jdNVFIr4TqGwDhdtUvos bHLwbA2FvW345O4y6VMoGK0rX9QUXoXzPJc0yc+DR/WFCTqABehpJYdK4dI5adhP Ahik2VjTyu7YSQ== -----END CERTIFICATE-----Generated at Sat Dec 6 16:45:31 2025 by rpki-client