This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.mft File: iDyv-AezKVLWjHGq8BuRmErR6gg.mft (raw, json) Hash identifier: 31QgqYMCO44lxTe7Udc6O2jjmWsUYj6j+PFwKe2OEJ0= Subject key identifier: C6:61:38:03:32:6F:02:C7:5B:2C:AE:2E:E1:52:57:EA:73:9C:40:DB Authority key identifier: 88:3C:AF:F8:07:B3:29:52:D6:8C:71:AA:F0:1B:91:98:4A:D1:EA:08 Certificate issuer: /CN=883caff807b32952d68c71aaf01b91984ad1ea08 Certificate serial: 019B2EFACA5969A0CFA2D3AD59DD9CDD69F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDyv-AezKVLWjHGq8BuRmErR6gg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.mft Manifest number: 056A Signing time: Thu 18 Dec 2025 01:02:26 +0000 Manifest this update: Thu 18 Dec 2025 01:02:26 +0000 Manifest next update: Fri 19 Dec 2025 01:02:26 +0000 Files and hashes: 1: iDyv-AezKVLWjHGq8BuRmErR6gg.crl (hash: CMGGE+RbApajCPM17xhkEmS8prwzC4C45gxKqm1lV8o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.mft rsync://rpki.ripe.net/repository/DEFAULT/iDyv-AezKVLWjHGq8BuRmErR6gg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 01:02:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:fa:ca:59:69:a0:cf:a2:d3:ad:59:dd:9c:dd:69:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=883caff807b32952d68c71aaf01b91984ad1ea08 Validity Not Before: Dec 18 01:02:26 2025 GMT Not After : Dec 19 01:02:26 2025 GMT Subject: CN=c6613803326f02c75b2cae2ee15257ea739c40db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:53:51:01:a6:1f:df:a1:75:6c:29:38:96:37: 5e:93:03:48:fa:67:8d:e3:9a:44:62:af:6d:e1:8a: bf:4e:e5:79:8d:b4:17:81:1a:66:3e:83:1f:23:a8: 3f:eb:7c:3d:b1:9b:cc:b3:fc:6a:5a:18:51:ff:d6: a3:e5:ae:77:30:31:cc:09:10:8e:3b:f8:89:ca:2d: f1:42:66:3c:f5:60:9a:d9:bc:1d:c0:6f:84:54:ae: 33:fd:a6:b5:38:ae:24:47:4d:ec:16:78:92:3f:46: 3d:af:8c:d4:2b:29:2b:c2:98:ca:3e:88:36:b8:e5: e7:19:bb:23:9d:00:ea:66:94:47:83:06:d3:a7:13: 8c:b2:96:17:3d:fd:5e:25:9f:95:2a:76:74:9a:72: a6:9c:48:38:7f:51:31:33:ed:c6:4c:5e:79:fe:2b: e7:18:6b:62:10:34:7d:96:3c:9d:ee:a9:49:63:58: 51:48:e3:04:65:ac:4e:cd:6a:ec:ce:56:ed:b9:2a: 24:24:c9:f7:b8:e0:ca:0c:46:7a:0b:aa:2b:ad:71: c2:f6:b5:ac:5e:06:d0:e6:74:e8:48:3d:c2:ad:d1: 5c:5f:c9:1b:6f:f1:db:83:c5:4d:4c:b9:ff:23:23: 38:29:2f:36:99:6e:64:1f:e7:47:b3:61:5e:30:6d: 5e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:61:38:03:32:6F:02:C7:5B:2C:AE:2E:E1:52:57:EA:73:9C:40:DB X509v3 Authority Key Identifier: keyid:88:3C:AF:F8:07:B3:29:52:D6:8C:71:AA:F0:1B:91:98:4A:D1:EA:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDyv-AezKVLWjHGq8BuRmErR6gg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:9f:8e:f4:31:1b:8f:28:8a:f4:78:66:28:69:a6:e8:b0:02: 33:c9:1d:c6:86:05:50:17:9b:42:8c:14:65:e4:24:a9:93:f5: 5d:d6:a9:55:4e:64:fe:0d:a1:7f:6f:b9:d7:03:32:1f:0f:3a: b6:40:c5:55:41:ba:ca:6f:fc:52:17:1c:ef:1b:ea:10:21:2a: 2b:fd:21:cc:13:f7:1c:1c:f0:06:68:1d:17:1f:db:51:74:4b: c7:11:8f:52:df:94:ce:c0:41:ce:b3:8f:60:3c:49:b5:6a:5a: 88:73:8e:b5:26:4f:8a:1f:44:22:79:15:9d:7d:b6:1f:ec:27: 99:a4:3c:c3:d0:d6:37:f6:47:2e:d0:1d:da:97:45:2d:44:ae: 21:97:a3:d1:b2:a7:46:48:32:0b:e0:42:59:b6:b9:c6:e0:c2: d4:e6:74:a4:38:35:13:38:4d:fe:d4:56:22:d7:5a:42:ae:51: 81:2f:04:73:af:75:1d:68:c6:55:67:4c:03:9b:7e:4f:ef:e0: c5:17:5c:be:49:f4:4d:2d:fb:3e:5c:44:f3:54:43:4f:0c:24: 77:eb:b5:71:e1:75:b5:e7:7e:e0:61:15:ab:12:28:bd:49:7f: ba:8d:13:e3:71:3f:84:bd:c4:a3:47:6e:2a:11:25:03:20:a5: 1d:b9:cc:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsu+spZaaDPotOtWd2c3WnxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4M2NhZmY4MDdiMzI5NTJkNjhjNzFhYWYwMWI5MTk4NGFk MWVhMDgwHhcNMjUxMjE4MDEwMjI2WhcNMjUxMjE5MDEwMjI2WjAzMTEwLwYDVQQD EyhjNjYxMzgwMzMyNmYwMmM3NWIyY2FlMmVlMTUyNTdlYTczOWM0MGRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4FNRAaYf36F1bCk4ljdekwNI+meN 45pEYq9t4Yq/TuV5jbQXgRpmPoMfI6g/63w9sZvMs/xqWhhR/9aj5a53MDHMCRCO O/iJyi3xQmY89WCa2bwdwG+EVK4z/aa1OK4kR03sFniSP0Y9r4zUKykrwpjKPog2 uOXnGbsjnQDqZpRHgwbTpxOMspYXPf1eJZ+VKnZ0mnKmnEg4f1ExM+3GTF55/ivn GGtiEDR9ljyd7qlJY1hRSOMEZaxOzWrszlbtuSokJMn3uODKDEZ6C6orrXHC9rWs XgbQ5nToSD3CrdFcX8kbb/Hbg8VNTLn/IyM4KS82mW5kH+dHs2FeMG1e/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMZhOAMybwLHWyyuLuFSV+pznEDbMB8GA1UdIwQY MBaAFIg8r/gHsylS1oxxqvAbkZhK0eoIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUR5di1BZXpLVkxXakhHcThCdVJtRXJSNmdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS9hOGIzYzItY2FkNS00NWEzLWFmYWEt OWNlZDVlNWVmZjBmLzEvaUR5di1BZXpLVkxXakhHcThCdVJtRXJSNmdnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS9hOGIzYzItY2FkNS00NWEzLWFmYWEtOWNlZDVlNWVmZjBm LzEvaUR5di1BZXpLVkxXakhHcThCdVJtRXJSNmdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATp+O9DEb jyiK9HhmKGmm6LACM8kdxoYFUBebQowUZeQkqZP1XdapVU5k/g2hf2+51wMyHw86 tkDFVUG6ym/8Uhcc7xvqECEqK/0hzBP3HBzwBmgdFx/bUXRLxxGPUt+UzsBBzrOP YDxJtWpaiHOOtSZPih9EInkVnX22H+wnmaQ8w9DWN/ZHLtAd2pdFLUSuIZej0bKn RkgyC+BCWba5xuDC1OZ0pDg1EzhN/tRWItdaQq5RgS8Ec691HWjGVWdMA5t+T+/g xRdcvkn0TS37PlxE81RDTwwkd+u1ceF1ted+4GEVqxIovUl/uo0T43E/hL3Eo0du KhElAyClHbnMfw== -----END CERTIFICATE-----Generated at Thu Dec 18 07:46:03 2025 by rpki-client