This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/f74d38-965d-4a29-ad8a-f84674d46303/1/izHINiDus1ExJXtb-vqrOTRSyJE.mft File: izHINiDus1ExJXtb-vqrOTRSyJE.mft (raw, json) Hash identifier: VBluHZdWRrCAg58N4x9SCbo1TtBc0/8N+k4sdqw/yz8= Subject key identifier: 2B:C5:23:71:CD:20:10:A7:39:CB:5F:A6:18:6B:64:77:7C:BE:56:B7 Authority key identifier: 8B:31:C8:36:20:EE:B3:51:31:25:7B:5B:FA:FA:AB:39:34:52:C8:91 Certificate issuer: /CN=8b31c83620eeb35131257b5bfafaab393452c891 Certificate serial: 019AF27719596B42C15A564501D2F2B39EFA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/izHINiDus1ExJXtb-vqrOTRSyJE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/f74d38-965d-4a29-ad8a-f84674d46303/1/izHINiDus1ExJXtb-vqrOTRSyJE.mft Manifest number: 175D Signing time: Sat 06 Dec 2025 07:01:22 +0000 Manifest this update: Sat 06 Dec 2025 07:01:22 +0000 Manifest next update: Sun 07 Dec 2025 07:01:22 +0000 Files and hashes: 1: izHINiDus1ExJXtb-vqrOTRSyJE.crl (hash: knltT9yaoehfXCEROM6EGC3W0kVqCsXrxcgHRJQjNgk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/f74d38-965d-4a29-ad8a-f84674d46303/1/izHINiDus1ExJXtb-vqrOTRSyJE.crl rsync://rpki.ripe.net/repository/DEFAULT/91/f74d38-965d-4a29-ad8a-f84674d46303/1/izHINiDus1ExJXtb-vqrOTRSyJE.mft rsync://rpki.ripe.net/repository/DEFAULT/izHINiDus1ExJXtb-vqrOTRSyJE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:77:19:59:6b:42:c1:5a:56:45:01:d2:f2:b3:9e:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b31c83620eeb35131257b5bfafaab393452c891 Validity Not Before: Dec 6 07:01:22 2025 GMT Not After : Dec 7 07:01:22 2025 GMT Subject: CN=2bc52371cd2010a739cb5fa6186b64777cbe56b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:c8:28:6f:28:d5:13:74:21:75:14:9b:a0:69: 57:09:93:5f:19:1d:94:19:57:29:bb:60:50:d3:2f: 23:00:0f:6d:91:2a:d5:47:09:7a:b8:e7:4e:e7:16: 04:56:d0:f6:a0:30:ff:dc:7c:b4:15:04:8d:ee:b7: 33:b1:4b:ab:83:fd:ed:17:3e:7b:9e:50:fe:2a:d8: 24:ac:96:b6:9a:2f:1c:1b:cd:dc:19:22:fd:bb:3a: b1:64:6f:55:db:66:42:dc:06:89:78:41:4f:c3:b4: d7:62:77:bb:e4:64:aa:e6:84:e8:d2:18:06:0e:6d: 57:f2:23:55:9e:49:61:35:f4:91:aa:d5:08:54:64: c2:76:18:f3:fd:8f:cf:5f:a7:37:7f:ce:9b:ab:02: 73:47:91:ff:a1:77:0b:f3:26:ff:7f:e0:b8:21:61: 16:05:4a:e5:8c:3d:40:0b:03:4e:17:bf:e6:76:4f: 39:45:cf:86:cd:01:3b:25:4e:5a:bd:dd:95:85:2e: 14:88:5a:ff:0f:61:4e:6f:35:db:2d:27:e1:f7:23: 8a:e0:8b:3b:df:c1:36:75:59:c7:2c:37:01:86:4d: 1e:eb:0b:11:1b:70:36:bf:68:5e:02:b5:26:70:cb: b3:53:9c:1c:d6:72:56:15:75:b8:5f:4a:e6:70:c5: 86:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:C5:23:71:CD:20:10:A7:39:CB:5F:A6:18:6B:64:77:7C:BE:56:B7 X509v3 Authority Key Identifier: keyid:8B:31:C8:36:20:EE:B3:51:31:25:7B:5B:FA:FA:AB:39:34:52:C8:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/izHINiDus1ExJXtb-vqrOTRSyJE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/f74d38-965d-4a29-ad8a-f84674d46303/1/izHINiDus1ExJXtb-vqrOTRSyJE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/91/f74d38-965d-4a29-ad8a-f84674d46303/1/izHINiDus1ExJXtb-vqrOTRSyJE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:df:35:14:1f:63:3f:ae:d0:54:37:fe:19:99:da:fe:49:32: a2:49:a0:af:00:1b:ba:df:c5:84:d5:b1:6b:be:6c:19:9f:fd: db:ab:59:9e:3f:f8:be:50:9c:76:26:1f:77:15:17:3d:82:3a: 69:1b:86:0b:95:b5:f7:6e:d4:0e:bf:a2:21:a6:93:95:1f:d4: 12:71:5a:c1:c2:41:99:1e:f9:5f:9d:3c:bc:53:eb:09:09:91: 58:35:4a:4d:66:58:78:1e:71:a8:e4:70:8c:27:87:da:20:56: 86:ba:06:80:29:e7:37:d1:31:ad:f3:07:f4:be:77:56:4b:3a: e4:5a:df:ec:6c:8b:25:6a:53:13:bb:2d:c6:8c:0a:db:03:41: ae:c4:df:c4:e1:5a:76:bf:ea:2f:e0:c4:28:61:81:f0:b6:06: 23:c5:db:2b:67:03:04:43:c8:01:c8:d5:2c:04:a3:c8:b9:56: 32:86:87:20:ff:b7:80:01:51:b8:e0:c6:04:3f:e3:a4:35:be: 8f:65:1f:86:c3:eb:74:05:53:12:23:38:a2:1c:a1:1f:a7:e2: 6b:02:65:b5:8d:0d:ef:46:15:f9:b3:b2:a3:b0:98:e3:27:58: 60:95:3f:7b:cf:f2:b0:aa:ee:a9:44:a6:5c:d5:1e:30:45:2b: 1f:94:cc:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydxlZa0LBWlZFAdLys576MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiMzFjODM2MjBlZWIzNTEzMTI1N2I1YmZhZmFhYjM5MzQ1 MmM4OTEwHhcNMjUxMjA2MDcwMTIyWhcNMjUxMjA3MDcwMTIyWjAzMTEwLwYDVQQD EygyYmM1MjM3MWNkMjAxMGE3MzljYjVmYTYxODZiNjQ3NzdjYmU1NmI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAksgobyjVE3QhdRSboGlXCZNfGR2U GVcpu2BQ0y8jAA9tkSrVRwl6uOdO5xYEVtD2oDD/3Hy0FQSN7rczsUurg/3tFz57 nlD+KtgkrJa2mi8cG83cGSL9uzqxZG9V22ZC3AaJeEFPw7TXYne75GSq5oTo0hgG Dm1X8iNVnklhNfSRqtUIVGTCdhjz/Y/PX6c3f86bqwJzR5H/oXcL8yb/f+C4IWEW BUrljD1ACwNOF7/mdk85Rc+GzQE7JU5avd2VhS4UiFr/D2FObzXbLSfh9yOK4Is7 38E2dVnHLDcBhk0e6wsRG3A2v2heArUmcMuzU5wc1nJWFXW4X0rmcMWGuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCvFI3HNIBCnOctfphhrZHd8vla3MB8GA1UdIwQY MBaAFIsxyDYg7rNRMSV7W/r6qzk0UsiRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXpISU5pRHVzMUV4Slh0Yi12cXJPVFJTeUpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS9mNzRkMzgtOTY1ZC00YTI5LWFkOGEt Zjg0Njc0ZDQ2MzAzLzEvaXpISU5pRHVzMUV4Slh0Yi12cXJPVFJTeUpFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MS9mNzRkMzgtOTY1ZC00YTI5LWFkOGEtZjg0Njc0ZDQ2MzAz LzEvaXpISU5pRHVzMUV4Slh0Yi12cXJPVFJTeUpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaN81FB9j P67QVDf+GZna/kkyokmgrwAbut/FhNWxa75sGZ/926tZnj/4vlCcdiYfdxUXPYI6 aRuGC5W1927UDr+iIaaTlR/UEnFawcJBmR75X508vFPrCQmRWDVKTWZYeB5xqORw jCeH2iBWhroGgCnnN9ExrfMH9L53Vks65Frf7GyLJWpTE7stxowK2wNBrsTfxOFa dr/qL+DEKGGB8LYGI8XbK2cDBEPIAcjVLASjyLlWMoaHIP+3gAFRuODGBD/jpDW+ j2UfhsPrdAVTEiM4ohyhH6fiawJltY0N70YV+bOyo7CY4ydYYJU/e8/ysKruqUSm XNUeMEUrH5TMVQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:22:45 2025 by rpki-client