This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft File: iqtMDPIcGj1upBBoy-kIvjiORQo.mft (raw, json) Hash identifier: CylJ+3lY6BW6Kl5l98NJ7LdWTbvCeuq5WZP/S0fY5as= Subject key identifier: C2:EA:D5:ED:D0:C6:68:4B:50:62:81:5D:BF:14:BF:9A:ED:B8:53:0C Authority key identifier: 8A:AB:4C:0C:F2:1C:1A:3D:6E:A4:10:68:CB:E9:08:BE:38:8E:45:0A Certificate issuer: /CN=8aab4c0cf21c1a3d6ea41068cbe908be388e450a Certificate serial: 019AF35297EEC5C6F446A2159A3CFC71E655 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft Manifest number: 04A5 Signing time: Sat 06 Dec 2025 11:01:07 +0000 Manifest this update: Sat 06 Dec 2025 11:01:07 +0000 Manifest next update: Sun 07 Dec 2025 11:01:07 +0000 Files and hashes: 1: G350oN6xck9sDuFPco_m0pUGJ-4.roa (hash: lAZMvwW39peHPp7Gi+NQnv+PV4aVrgoRzPsjZkOfCAA=) 2: KNoplKbnalbBlNJ0HrGiOS5fwgk.roa (hash: 6g25L6YriR7F4NqmIjLUqgHXTaSIa9NMu6Z6ggsvzHE=) 3: alNy-myxrA734TUoeZ1JVeikh6c.roa (hash: OCkDLXElKJB9eMUhsdq5dMT5WhX6caAwH3DuhC8oZvM=) 4: dQ-UnjUf_zrF6QrM_x6OnxYwXrs.roa (hash: lmcAQBoAG4rGhrHwCQpsyMirWvdOFHnh3mHdkplTacE=) 5: iqtMDPIcGj1upBBoy-kIvjiORQo.crl (hash: IOLaSfpnnEvDUvSy+jVQMFRcKSRsQMHsYoOwGJYF4Ko=) 6: o6gIOFd94HWkz0C7qKDElB9ddLg.roa (hash: O6hiQL5dtUMOxfO7I5/Qs8GG3APxd+JEX/g4sJbBrHE=) 7: t-24rH7-JcWRQl10GG2TwvUWpfw.roa (hash: Q+PFhb4BxvMEH8mNwldbOzxcrgHXdHD5grZaE0hgfdU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:97:ee:c5:c6:f4:46:a2:15:9a:3c:fc:71:e6:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8aab4c0cf21c1a3d6ea41068cbe908be388e450a Validity Not Before: Dec 6 11:01:07 2025 GMT Not After : Dec 7 11:01:07 2025 GMT Subject: CN=c2ead5edd0c6684b5062815dbf14bf9aedb8530c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d4:69:b3:f7:27:ca:cd:d9:f0:ba:8d:fc:b0: af:85:1c:5d:38:b0:ad:b6:55:89:87:fe:d5:96:37: 01:f0:a8:fd:d3:61:9b:57:11:99:16:82:55:9c:98: bb:46:68:b7:c1:5d:e2:4e:66:d1:d2:6a:62:c7:67: a6:2c:7d:78:3b:10:ef:90:b7:07:c8:c5:ec:fd:08: bc:fc:fd:8a:8d:bf:6d:0f:43:7d:26:cf:63:bb:24: 53:4d:09:5e:12:e6:63:9b:1d:4f:5c:a5:e2:50:d1: 11:de:f4:c4:52:21:88:b9:f3:de:a8:29:f7:2d:79: 52:7e:8b:bb:39:fd:5e:df:f2:a4:07:70:36:66:83: 63:e3:d0:da:df:83:c2:60:9c:07:61:51:4f:39:98: c0:eb:8d:46:53:dd:c1:49:c1:a2:74:a0:74:d9:24: 4b:e7:08:b3:45:0f:59:35:bf:35:f3:30:28:e5:02: b6:c4:c2:e1:13:9b:1d:e9:37:74:8d:61:ed:5d:5f: 13:c6:c5:4c:1e:c6:a7:c5:6a:32:01:85:a4:ed:63: ca:62:1d:1b:b5:fd:cc:1a:92:41:48:c3:09:5f:ff: 64:d0:9d:92:48:75:d1:01:9a:f3:ba:ee:47:fa:13: f2:67:0d:9c:d4:46:be:ca:81:56:15:9e:68:00:35: 09:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:EA:D5:ED:D0:C6:68:4B:50:62:81:5D:BF:14:BF:9A:ED:B8:53:0C X509v3 Authority Key Identifier: keyid:8A:AB:4C:0C:F2:1C:1A:3D:6E:A4:10:68:CB:E9:08:BE:38:8E:45:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:5d:c4:25:23:fd:8c:2f:ba:f3:0c:d3:9a:c5:7d:9b:32:eb: 3c:11:54:14:a5:1b:23:e6:8a:22:ed:62:f0:0c:91:ec:9c:fb: 91:7c:c0:4d:03:bf:2e:fc:4f:3d:de:19:a8:df:7c:7b:e4:53: 6e:01:8a:a2:21:c4:88:ff:3b:49:8d:8b:79:d6:96:96:5b:84: ad:a4:31:4b:ab:e3:1d:d8:dd:ae:5b:26:88:38:33:75:42:40: 22:9d:62:2b:7d:77:c6:6a:58:db:a1:d6:00:16:fd:61:1c:df: f9:98:e5:af:23:d7:ec:6b:81:08:8e:66:be:76:e8:04:cf:ac: ef:d9:17:88:a8:e5:b9:b4:62:e4:71:a2:b1:d9:22:15:ae:dd: 3e:ac:38:cc:19:31:a0:38:24:9a:9e:2e:0c:96:35:8f:d8:ac: 38:ca:2f:1c:51:6a:81:3a:05:4d:b8:c6:ba:98:b3:2f:a5:d0: d4:ed:b0:07:8d:d1:44:ea:ce:ae:0a:71:e9:91:c0:a1:b8:cd: c3:9e:00:f4:95:4a:ba:5a:b7:9b:12:29:7c:4a:2f:6c:3c:60: e7:45:a0:a3:82:11:21:f4:4c:8c:54:20:0d:a5:5a:81:1f:a4: 40:55:98:32:5c:c7:ab:a4:69:e0:7d:79:6c:ba:9f:9e:ec:e1: e5:72:fb:8d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUpfuxcb0RqIVmjz8ceZVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhYWI0YzBjZjIxYzFhM2Q2ZWE0MTA2OGNiZTkwOGJlMzg4 ZTQ1MGEwHhcNMjUxMjA2MTEwMTA3WhcNMjUxMjA3MTEwMTA3WjAzMTEwLwYDVQQD EyhjMmVhZDVlZGQwYzY2ODRiNTA2MjgxNWRiZjE0YmY5YWVkYjg1MzBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2NRps/cnys3Z8LqN/LCvhRxdOLCt tlWJh/7VljcB8Kj902GbVxGZFoJVnJi7Rmi3wV3iTmbR0mpix2emLH14OxDvkLcH yMXs/Qi8/P2Kjb9tD0N9Js9juyRTTQleEuZjmx1PXKXiUNER3vTEUiGIufPeqCn3 LXlSfou7Of1e3/KkB3A2ZoNj49Da34PCYJwHYVFPOZjA641GU93BScGidKB02SRL 5wizRQ9ZNb818zAo5QK2xMLhE5sd6Td0jWHtXV8TxsVMHsanxWoyAYWk7WPKYh0b tf3MGpJBSMMJX/9k0J2SSHXRAZrzuu5H+hPyZw2c1Ea+yoFWFZ5oADUJawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMLq1e3QxmhLUGKBXb8Uv5rtuFMMMB8GA1UdIwQY MBaAFIqrTAzyHBo9bqQQaMvpCL44jkUKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS83NDBjMWUtMWE0Yy00Y2EyLWJkNTMt NTM3YjFiNDlkZmU3LzEvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS83NDBjMWUtMWE0Yy00Y2EyLWJkNTMtNTM3YjFiNDlkZmU3 LzEvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABF3EJSP9 jC+68wzTmsV9mzLrPBFUFKUbI+aKIu1i8AyR7Jz7kXzATQO/LvxPPd4ZqN98e+RT bgGKoiHEiP87SY2LedaWlluEraQxS6vjHdjdrlsmiDgzdUJAIp1iK313xmpY26HW ABb9YRzf+ZjlryPX7GuBCI5mvnboBM+s79kXiKjlubRi5HGisdkiFa7dPqw4zBkx oDgkmp4uDJY1j9isOMovHFFqgToFTbjGupizL6XQ1O2wB43RROrOrgpx6ZHAobjN w54A9JVKulq3mxIpfEovbDxg50Wgo4IRIfRMjFQgDaVagR+kQFWYMlzHq6Rp4H15 bLqfnuzh5XL7jQ== -----END CERTIFICATE-----Generated at Sat Dec 6 14:39:33 2025 by rpki-client