This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.mft File: iDyv-AezKVLWjHGq8BuRmErR6gg.mft (raw, json) Hash identifier: ebMAh7zbFTsA7mb7wkpbByBoYcymdv7vILE6VdZaB2g= Subject key identifier: 4C:E6:84:22:B7:EA:D4:45:8F:00:63:AB:51:B3:E1:C6:75:FD:FD:C8 Authority key identifier: 88:3C:AF:F8:07:B3:29:52:D6:8C:71:AA:F0:1B:91:98:4A:D1:EA:08 Certificate issuer: /CN=883caff807b32952d68c71aaf01b91984ad1ea08 Certificate serial: 019AF12E66CAEE199D452CE29976B624F730 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDyv-AezKVLWjHGq8BuRmErR6gg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.mft Manifest number: 054A Signing time: Sat 06 Dec 2025 01:02:21 +0000 Manifest this update: Sat 06 Dec 2025 01:02:21 +0000 Manifest next update: Sun 07 Dec 2025 01:02:21 +0000 Files and hashes: 1: iDyv-AezKVLWjHGq8BuRmErR6gg.crl (hash: 58HlziNF6kGR2cqLUi1AeF62msTN/OfvYXGjMb2l3LI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.mft rsync://rpki.ripe.net/repository/DEFAULT/iDyv-AezKVLWjHGq8BuRmErR6gg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:66:ca:ee:19:9d:45:2c:e2:99:76:b6:24:f7:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=883caff807b32952d68c71aaf01b91984ad1ea08 Validity Not Before: Dec 6 01:02:21 2025 GMT Not After : Dec 7 01:02:21 2025 GMT Subject: CN=4ce68422b7ead4458f0063ab51b3e1c675fdfdc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1c:2f:f8:67:d6:c8:2e:a0:e1:03:8c:99:21: af:e3:ab:c7:ec:ad:57:96:f9:26:cf:6a:8b:17:87: 84:45:13:a7:61:da:26:30:ae:41:c4:d7:4b:1a:56: 79:73:fe:ab:2a:18:66:ff:2d:65:9a:c5:dd:ad:c4: f6:d0:67:4b:ab:03:30:0d:0c:b9:e6:6e:28:5f:f7: c1:5d:3c:df:0f:f9:1a:4c:f1:8c:ea:cf:fb:31:90: 04:b5:a7:e2:6c:49:12:b6:29:9f:dc:d8:bb:61:39: 38:50:1b:2c:08:11:3c:3a:42:b9:74:f8:35:6f:d0: 5c:d4:34:b2:ee:8d:98:41:01:72:4f:b8:d7:4f:14: 53:29:93:05:02:91:88:9f:8c:3c:35:e6:cc:8f:65: 83:e0:2a:cc:f0:66:1b:bc:8e:75:71:d4:3b:8e:cc: b9:c3:29:c0:a2:72:b8:78:75:59:b7:e1:24:17:33: 6b:31:9f:8b:64:89:65:21:54:5a:f7:37:44:e8:0d: d4:90:30:70:c4:89:8b:5f:03:6d:fe:9a:7a:ac:5f: e5:b8:10:95:54:49:dc:e6:36:bb:aa:34:2c:32:16: f9:8d:0f:01:ed:83:ab:c4:f9:df:13:df:96:19:79: a0:33:b3:ec:a6:90:52:24:22:de:14:35:cf:0e:d8: 59:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:E6:84:22:B7:EA:D4:45:8F:00:63:AB:51:B3:E1:C6:75:FD:FD:C8 X509v3 Authority Key Identifier: keyid:88:3C:AF:F8:07:B3:29:52:D6:8C:71:AA:F0:1B:91:98:4A:D1:EA:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDyv-AezKVLWjHGq8BuRmErR6gg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:de:63:1e:51:cb:72:fa:a9:0e:c4:a6:0d:70:b6:70:44:08: 5c:4b:8b:f4:c1:c3:fa:3a:82:0b:ab:d9:88:5f:86:44:56:b1: 1a:c7:55:eb:9a:49:35:30:4f:78:5a:9f:7f:ba:f2:41:b7:d9: 47:b0:6b:7a:fd:b3:b5:d7:22:17:ff:80:10:e7:32:b6:67:90: 4d:99:f8:df:e7:68:9f:12:23:1a:e2:3b:9e:c4:44:38:c1:17: 53:8f:94:63:c3:ca:9d:f9:bb:fa:25:95:84:5d:6f:3b:9f:1d: f6:33:b2:c7:2e:dd:f4:7d:ee:e6:5b:02:48:d5:08:2b:11:ab: 66:53:a6:a6:eb:8f:49:83:64:da:f0:87:19:e8:10:d0:14:4e: ce:0e:a0:97:0b:62:4c:8f:4a:0e:2a:b7:49:87:36:15:50:02: 70:d1:6d:03:8e:d5:ae:49:5b:5a:3b:98:a2:b3:4a:73:b4:24: 55:ca:7c:19:c3:b3:f6:b2:89:cb:f2:b5:18:9d:5e:72:bd:81: 9a:c5:ea:a2:3e:21:ec:65:f9:9f:ab:cd:eb:99:ba:a8:fa:81: 13:41:4c:2e:94:88:89:75:a7:70:3f:22:7d:02:c1:0e:8e:05: 6a:92:dd:92:e0:0c:c0:07:07:e7:42:05:36:4a:d4:c2:b8:0e: 3c:03:46:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLmbK7hmdRSzimXa2JPcwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4M2NhZmY4MDdiMzI5NTJkNjhjNzFhYWYwMWI5MTk4NGFk MWVhMDgwHhcNMjUxMjA2MDEwMjIxWhcNMjUxMjA3MDEwMjIxWjAzMTEwLwYDVQQD Eyg0Y2U2ODQyMmI3ZWFkNDQ1OGYwMDYzYWI1MWIzZTFjNjc1ZmRmZGM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuBwv+GfWyC6g4QOMmSGv46vH7K1X lvkmz2qLF4eERROnYdomMK5BxNdLGlZ5c/6rKhhm/y1lmsXdrcT20GdLqwMwDQy5 5m4oX/fBXTzfD/kaTPGM6s/7MZAEtafibEkStimf3Ni7YTk4UBssCBE8OkK5dPg1 b9Bc1DSy7o2YQQFyT7jXTxRTKZMFApGIn4w8NebMj2WD4CrM8GYbvI51cdQ7jsy5 wynAonK4eHVZt+EkFzNrMZ+LZIllIVRa9zdE6A3UkDBwxImLXwNt/pp6rF/luBCV VEnc5ja7qjQsMhb5jQ8B7YOrxPnfE9+WGXmgM7PsppBSJCLeFDXPDthZYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEzmhCK36tRFjwBjq1Gz4cZ1/f3IMB8GA1UdIwQY MBaAFIg8r/gHsylS1oxxqvAbkZhK0eoIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUR5di1BZXpLVkxXakhHcThCdVJtRXJSNmdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS9hOGIzYzItY2FkNS00NWEzLWFmYWEt OWNlZDVlNWVmZjBmLzEvaUR5di1BZXpLVkxXakhHcThCdVJtRXJSNmdnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS9hOGIzYzItY2FkNS00NWEzLWFmYWEtOWNlZDVlNWVmZjBm LzEvaUR5di1BZXpLVkxXakhHcThCdVJtRXJSNmdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj95jHlHL cvqpDsSmDXC2cEQIXEuL9MHD+jqCC6vZiF+GRFaxGsdV65pJNTBPeFqff7ryQbfZ R7Brev2ztdciF/+AEOcytmeQTZn43+donxIjGuI7nsREOMEXU4+UY8PKnfm7+iWV hF1vO58d9jOyxy7d9H3u5lsCSNUIKxGrZlOmpuuPSYNk2vCHGegQ0BROzg6glwti TI9KDiq3SYc2FVACcNFtA47VrklbWjuYorNKc7QkVcp8GcOz9rKJy/K1GJ1ecr2B msXqoj4h7GX5n6vN65m6qPqBE0FMLpSIiXWncD8ifQLBDo4FapLdkuAMwAcH50IF NkrUwrgOPANGfw== -----END CERTIFICATE-----Generated at Sat Dec 6 11:08:20 2025 by rpki-client