This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft File: ilUqhuMbaeXVMg7egdNLsSikXO4.mft (raw, json) Hash identifier: h1JMeJMzr25oIpz4+2p41yYWFSgN3rTeRS/uGMrAsa4= Subject key identifier: 3E:B3:A0:06:FB:82:57:3B:22:50:67:85:1D:FE:6E:D3:A7:02:27:05 Authority key identifier: 8A:55:2A:86:E3:1B:69:E5:D5:32:0E:DE:81:D3:4B:B1:28:A4:5C:EE Certificate issuer: /CN=8a552a86e31b69e5d5320ede81d34bb128a45cee Certificate serial: 019AF23FACACC7122C893B840680791D72F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ilUqhuMbaeXVMg7egdNLsSikXO4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 06:00:50 +0000 Manifest this update: Sat 06 Dec 2025 06:00:50 +0000 Manifest next update: Sun 07 Dec 2025 06:00:50 +0000 Files and hashes: 1: gx1SCX17EN8yNFFOaZKqHyy38bg.roa (hash: y86l006aIRQbh6g6sMv1/V04L9sTmUKHfB0xrZAQk4Q=) 2: ilUqhuMbaeXVMg7egdNLsSikXO4.crl (hash: cXgoxRIMGzFCl5zDpF/EvLIUXuLKVF4plOeQcwMgjZQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft rsync://rpki.ripe.net/repository/DEFAULT/ilUqhuMbaeXVMg7egdNLsSikXO4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:ac:ac:c7:12:2c:89:3b:84:06:80:79:1d:72:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8a552a86e31b69e5d5320ede81d34bb128a45cee Validity Not Before: Dec 6 06:00:50 2025 GMT Not After : Dec 7 06:00:50 2025 GMT Subject: CN=3eb3a006fb82573b225067851dfe6ed3a7022705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ed:c5:ed:e0:dc:31:df:78:6b:fd:7a:bd:a7: d9:e0:96:8c:66:e4:c8:2a:d3:a1:9b:27:28:0e:5b: 2f:46:1e:5f:67:bb:36:46:8d:a6:ef:a7:cb:77:13: 33:7b:af:82:d1:9e:68:70:68:ce:09:ad:e5:76:12: d9:83:ea:23:dd:08:1c:a6:3d:4e:99:48:70:61:f8: 95:7a:89:1a:77:5b:47:03:e6:b2:72:a4:4d:f8:7d: 3a:dd:38:86:b7:42:53:99:68:a4:8e:c2:3e:1d:3b: bc:57:3d:28:fd:d3:fb:7d:0d:e7:37:bb:55:25:75: 6f:d0:56:e5:bf:9f:b1:0d:6e:55:1a:43:be:28:87: 2b:6a:32:da:6a:8a:61:75:42:0e:c4:62:82:d7:84: 99:8d:ff:91:8a:72:a6:8d:d7:d1:e5:83:7c:35:1e: d9:30:c2:c4:ff:6e:40:9c:d8:97:82:55:3c:34:81: f6:77:34:7c:39:47:86:65:72:b5:99:99:57:c0:5c: 57:f6:62:cb:fa:d8:cb:6f:0c:1e:9e:ec:14:26:e1: f0:6b:a4:1d:ed:a1:15:3e:c9:f8:46:75:e3:d1:b8: 33:23:f0:5b:77:64:ee:3a:0f:23:92:cc:03:4c:2b: 94:dd:e5:de:95:76:c8:fc:f5:28:32:91:e7:88:29: 85:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:B3:A0:06:FB:82:57:3B:22:50:67:85:1D:FE:6E:D3:A7:02:27:05 X509v3 Authority Key Identifier: keyid:8A:55:2A:86:E3:1B:69:E5:D5:32:0E:DE:81:D3:4B:B1:28:A4:5C:EE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ilUqhuMbaeXVMg7egdNLsSikXO4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption be:bb:25:48:6d:24:23:d7:ca:db:0e:70:de:25:b7:6d:38:9f: 80:21:54:6a:fa:cc:63:6a:85:58:a4:51:3a:8d:f0:4a:25:8e: 8c:2f:d9:2a:e9:31:b5:9e:3c:a2:07:6b:70:24:a6:c2:7e:b6: 74:93:3f:f0:d1:86:0a:5e:cb:db:c9:17:7d:80:5c:73:b6:87: 42:10:a6:3f:d0:87:c1:0b:98:58:6e:3d:d8:5b:ac:69:f6:ca: ba:b7:e5:86:25:18:1c:df:7a:7c:34:2a:60:3b:16:00:5f:dc: 49:b6:fe:27:a1:49:0e:79:f0:30:c4:7b:99:b6:e8:ef:99:dc: da:e7:95:0f:3a:e8:36:51:f3:41:f8:2f:c7:87:e4:31:23:6e: ac:20:97:35:65:0f:98:dd:af:35:fe:63:6d:d5:12:05:4a:99: 61:b1:44:64:a3:b5:35:11:50:dd:e7:34:9a:b9:ec:1b:da:51: c4:23:86:b7:a9:4a:df:ed:bf:4d:52:16:27:e1:e9:32:e9:7b: ff:fc:3d:4f:66:43:04:38:85:f8:c9:2d:c1:c9:52:ae:1d:07: be:94:01:2a:87:53:a2:ac:e3:5b:49:cc:90:59:53:ff:54:6c: f4:9b:03:f8:47:29:f6:af:29:dd:60:af:e7:98:b4:a8:d4:35: e9:5c:e9:9a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP6ysxxIsiTuEBoB5HXLzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhNTUyYTg2ZTMxYjY5ZTVkNTMyMGVkZTgxZDM0YmIxMjhh NDVjZWUwHhcNMjUxMjA2MDYwMDUwWhcNMjUxMjA3MDYwMDUwWjAzMTEwLwYDVQQD EygzZWIzYTAwNmZiODI1NzNiMjI1MDY3ODUxZGZlNmVkM2E3MDIyNzA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArO3F7eDcMd94a/16vafZ4JaMZuTI KtOhmycoDlsvRh5fZ7s2Ro2m76fLdxMze6+C0Z5ocGjOCa3ldhLZg+oj3Qgcpj1O mUhwYfiVeokad1tHA+aycqRN+H063TiGt0JTmWikjsI+HTu8Vz0o/dP7fQ3nN7tV JXVv0Fblv5+xDW5VGkO+KIcrajLaaophdUIOxGKC14SZjf+RinKmjdfR5YN8NR7Z MMLE/25AnNiXglU8NIH2dzR8OUeGZXK1mZlXwFxX9mLL+tjLbwwenuwUJuHwa6Qd 7aEVPsn4RnXj0bgzI/Bbd2TuOg8jkswDTCuU3eXelXbI/PUoMpHniCmFiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD6zoAb7glc7IlBnhR3+btOnAicFMB8GA1UdIwQY MBaAFIpVKobjG2nl1TIO3oHTS7EopFzuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWxVcWh1TWJhZVhWTWc3ZWdkTkxzU2lrWE80LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9lOTU0YjktODczOC00NDk2LTg5YWQt NzhhMTI2YmYwYWRjLzEvaWxVcWh1TWJhZVhWTWc3ZWdkTkxzU2lrWE80Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS9lOTU0YjktODczOC00NDk2LTg5YWQtNzhhMTI2YmYwYWRj LzEvaWxVcWh1TWJhZVhWTWc3ZWdkTkxzU2lrWE80LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvrslSG0k I9fK2w5w3iW3bTifgCFUavrMY2qFWKRROo3wSiWOjC/ZKukxtZ48ogdrcCSmwn62 dJM/8NGGCl7L28kXfYBcc7aHQhCmP9CHwQuYWG492FusafbKurflhiUYHN96fDQq YDsWAF/cSbb+J6FJDnnwMMR7mbbo75nc2ueVDzroNlHzQfgvx4fkMSNurCCXNWUP mN2vNf5jbdUSBUqZYbFEZKO1NRFQ3ec0mrnsG9pRxCOGt6lK3+2/TVIWJ+HpMul7 //w9T2ZDBDiF+MktwclSrh0HvpQBKodToqzjW0nMkFlT/1Rs9JsD+Ecp9q8p3WCv 55i0qNQ16Vzpmg== -----END CERTIFICATE-----Generated at Sat Dec 6 11:39:50 2025 by rpki-client