This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/I9hEjFy5A5jkwoXOycD0dmrJMd8.mft File: I9hEjFy5A5jkwoXOycD0dmrJMd8.mft (raw, json) Hash identifier: 1yN8KsFeiqu16y7y8LwsIJkqW6EvRqldZ+L6tWJH+wc= Subject key identifier: 19:39:64:12:BA:1A:F8:29:81:AE:A7:91:FE:2D:3D:92:50:41:54:11 Authority key identifier: 23:D8:44:8C:5C:B9:03:98:E4:C2:85:CE:C9:C0:F4:76:6A:C9:31:DF Certificate issuer: /CN=23d8448c5cb90398e4c285cec9c0f4766ac931df Certificate serial: 019AF1D1D81DBD3155A61B7B4CE67C412995 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9hEjFy5A5jkwoXOycD0dmrJMd8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/I9hEjFy5A5jkwoXOycD0dmrJMd8.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 04:00:52 +0000 Manifest this update: Sat 06 Dec 2025 04:00:52 +0000 Manifest next update: Sun 07 Dec 2025 04:00:52 +0000 Files and hashes: 1: 0R9hBHck9goXLckWs83vfzxcFiw.roa (hash: obv3yvxGMmGg4JBfXp95o/8uj2ocziHcF4Wd0qYKBC0=) 2: 2ZLinOVEwJGKFicgX--T-MLOzJk.roa (hash: c5tPFVJAjAdrD/biJVfWeRiWObKwMs1MmzB2QE9giIE=) 3: 9unXgezNMxzwNg4bzifOYAuCs0o.roa (hash: g4XwuMrRwxeGeiZBFLLb9s8Q1VZBOHGp5ebHoGbs+mc=) 4: I9hEjFy5A5jkwoXOycD0dmrJMd8.crl (hash: hzDFd6lJ3vR/42EAA/Q6Y+Hm2v0DsFhR2NPTKfSE2cs=) 5: dK0aI2R_s129Y-75FIrpBYL1yE8.roa (hash: R66OS8lUtMZTTbo9eo/xMi56yXXva1T37X0KuifJS+s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/I9hEjFy5A5jkwoXOycD0dmrJMd8.crl rsync://rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/I9hEjFy5A5jkwoXOycD0dmrJMd8.mft rsync://rpki.ripe.net/repository/DEFAULT/I9hEjFy5A5jkwoXOycD0dmrJMd8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:d8:1d:bd:31:55:a6:1b:7b:4c:e6:7c:41:29:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23d8448c5cb90398e4c285cec9c0f4766ac931df Validity Not Before: Dec 6 04:00:52 2025 GMT Not After : Dec 7 04:00:52 2025 GMT Subject: CN=19396412ba1af82981aea791fe2d3d9250415411 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1d:c7:3a:20:2d:6e:cc:9c:56:70:bf:7a:2c: 1e:21:ca:d2:9b:8a:16:0e:6a:1d:7a:31:34:21:80: ee:13:6f:25:b0:48:91:60:c2:88:8c:b2:f2:88:5e: ef:07:ab:c8:8d:54:5e:f9:7f:c2:aa:1e:c2:f1:2c: 07:ca:70:67:50:98:95:3d:e0:a7:43:08:20:3b:73: 55:57:63:ce:80:90:4b:db:97:08:8f:0a:ff:fb:37: 45:db:49:8d:30:34:33:7f:00:b8:ba:45:ff:e4:3d: 38:4e:cb:1f:06:5b:83:d1:a8:7a:27:f1:72:b7:c1: 72:93:4f:88:11:3f:14:92:ba:2f:1b:e2:9d:32:38: 48:c8:20:b3:f0:72:27:dd:c6:c5:0b:e9:09:df:52: b2:b3:5c:27:de:15:e0:63:47:b9:4a:a9:1a:f5:a2: 68:3c:b8:5a:0f:0d:6d:ea:ff:ff:49:8d:1a:51:91: 4f:9f:8c:02:1d:fe:ca:b0:97:5c:88:cf:45:38:dd: 5c:1d:7d:ec:64:40:47:03:6d:6d:2a:8d:99:55:c7: c9:58:c8:97:e2:88:02:21:ac:b1:7b:47:f3:ef:05: d6:cd:17:0a:7b:9a:ce:4a:ab:b0:f1:ee:29:1f:0b: 8c:f6:9e:66:92:6b:ae:66:e7:e9:10:00:87:eb:83: c1:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:39:64:12:BA:1A:F8:29:81:AE:A7:91:FE:2D:3D:92:50:41:54:11 X509v3 Authority Key Identifier: keyid:23:D8:44:8C:5C:B9:03:98:E4:C2:85:CE:C9:C0:F4:76:6A:C9:31:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9hEjFy5A5jkwoXOycD0dmrJMd8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/I9hEjFy5A5jkwoXOycD0dmrJMd8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/I9hEjFy5A5jkwoXOycD0dmrJMd8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:00:b0:55:3b:a0:30:2b:b7:fc:ae:76:f6:82:91:f0:5b:b6: 0a:9e:ca:b2:cb:a2:ee:21:46:ff:b4:cf:86:92:9e:6b:20:d0: de:3e:9b:2a:9d:0f:0c:da:b0:0d:43:74:9b:97:80:99:34:4c: 99:a4:47:81:6e:5c:46:38:a1:43:9e:c7:e6:60:b8:8c:53:39: 5c:e1:32:9c:1d:75:72:94:bb:c4:df:1d:a8:b8:01:66:ea:0b: 72:cb:b8:87:87:e9:1f:a2:e3:2f:61:69:67:d0:e6:37:0a:7b: 0a:58:b7:0b:c6:7b:1e:d3:74:c0:5d:9c:75:c4:bf:83:0b:94: 79:42:79:59:d2:d4:f9:c8:d0:39:30:c8:7c:34:dd:d1:44:8c: a0:69:db:a7:60:03:c1:6e:e4:b7:45:cc:3e:4b:90:ce:4a:50: e1:57:59:64:8d:e7:02:fa:80:be:68:b8:d5:87:6f:c8:49:bb: 1a:29:08:50:d7:7d:27:96:13:4b:1e:d7:bf:7c:80:1e:5d:62: ea:a0:db:f3:31:fa:84:01:fc:c7:8d:d3:e3:47:cb:56:44:c8: 0c:a3:56:5a:35:9e:c3:ad:4a:69:e4:3b:7f:71:38:fc:7b:12: f8:37:de:fc:a7:f5:ee:07:55:5a:2f:08:fe:84:50:53:87:28: 72:e9:21:b1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0dgdvTFVpht7TOZ8QSmVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzZDg0NDhjNWNiOTAzOThlNGMyODVjZWM5YzBmNDc2NmFj OTMxZGYwHhcNMjUxMjA2MDQwMDUyWhcNMjUxMjA3MDQwMDUyWjAzMTEwLwYDVQQD EygxOTM5NjQxMmJhMWFmODI5ODFhZWE3OTFmZTJkM2Q5MjUwNDE1NDExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApB3HOiAtbsycVnC/eiweIcrSm4oW DmodejE0IYDuE28lsEiRYMKIjLLyiF7vB6vIjVRe+X/Cqh7C8SwHynBnUJiVPeCn QwggO3NVV2POgJBL25cIjwr/+zdF20mNMDQzfwC4ukX/5D04TssfBluD0ah6J/Fy t8Fyk0+IET8UkrovG+KdMjhIyCCz8HIn3cbFC+kJ31Kys1wn3hXgY0e5Sqka9aJo PLhaDw1t6v//SY0aUZFPn4wCHf7KsJdciM9FON1cHX3sZEBHA21tKo2ZVcfJWMiX 4ogCIayxe0fz7wXWzRcKe5rOSquw8e4pHwuM9p5mkmuuZufpEACH64PBcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBk5ZBK6Gvgpga6nkf4tPZJQQVQRMB8GA1UdIwQY MBaAFCPYRIxcuQOY5MKFzsnA9HZqyTHfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTloRWpGeTVBNWprd29YT3ljRDBkbXJKTWQ4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9mNGE4MGQtZjVmNy00NTIyLWI5YjUt Zjc3MmEwMTM5MDE2LzEvSTloRWpGeTVBNWprd29YT3ljRDBkbXJKTWQ4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS9mNGE4MGQtZjVmNy00NTIyLWI5YjUtZjc3MmEwMTM5MDE2 LzEvSTloRWpGeTVBNWprd29YT3ljRDBkbXJKTWQ4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKgCwVTug MCu3/K529oKR8Fu2Cp7Kssui7iFG/7TPhpKeayDQ3j6bKp0PDNqwDUN0m5eAmTRM maRHgW5cRjihQ57H5mC4jFM5XOEynB11cpS7xN8dqLgBZuoLcsu4h4fpH6LjL2Fp Z9DmNwp7Cli3C8Z7HtN0wF2cdcS/gwuUeUJ5WdLU+cjQOTDIfDTd0USMoGnbp2AD wW7kt0XMPkuQzkpQ4VdZZI3nAvqAvmi41YdvyEm7GikIUNd9J5YTSx7Xv3yAHl1i 6qDb8zH6hAH8x43T40fLVkTIDKNWWjWew61KaeQ7f3E4/HsS+Dfe/Kf17gdVWi8I /oRQU4cocukhsQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:15:17 2025 by rpki-client