This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft File: iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft (raw, json) Hash identifier: vAGPUJd72lEKtWXzhGGH+dgLxCGG3yc+1LLhtaOyPLc= Subject key identifier: C0:66:F8:73:01:51:DE:2F:5F:40:E4:60:78:28:F8:BD:CD:51:D3:55 Authority key identifier: 89:53:64:DD:8F:F7:30:A9:08:B0:9B:5F:99:13:C1:53:FC:16:AA:3C Certificate issuer: /CN=895364dd8ff730a908b09b5f9913c153fc16aa3c Certificate serial: 019AF31BAEA97E49EA2D17341CE1901DF88A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft Manifest number: 1765 Signing time: Sat 06 Dec 2025 10:01:08 +0000 Manifest this update: Sat 06 Dec 2025 10:01:08 +0000 Manifest next update: Sun 07 Dec 2025 10:01:08 +0000 Files and hashes: 1: iVNk3Y_3MKkIsJtfmRPBU_wWqjw.crl (hash: 8xjckL0D1MUtusCEPiU0OSHdE1j0vDnIVpqQClHGY9g=) 2: vZncObou1n1Gou3XB_i7Ru4V5WA.roa (hash: iik1zhTFoCIgqbBLWbxX8UR2ffHIMvhG03bvL/Xp/YU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft rsync://rpki.ripe.net/repository/DEFAULT/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:ae:a9:7e:49:ea:2d:17:34:1c:e1:90:1d:f8:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=895364dd8ff730a908b09b5f9913c153fc16aa3c Validity Not Before: Dec 6 10:01:08 2025 GMT Not After : Dec 7 10:01:08 2025 GMT Subject: CN=c066f8730151de2f5f40e4607828f8bdcd51d355 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:ff:56:36:72:3c:41:89:81:c8:4e:0a:45:5e: 7d:d9:02:f8:8e:9b:d4:d8:8f:28:ac:05:a5:d2:36: dd:38:e8:74:b6:b6:d6:0e:23:af:0d:f3:ef:be:02: 5f:92:0d:20:ae:2c:59:f4:26:d4:ea:77:ef:b8:28: d1:5e:b0:c1:e9:78:92:8e:bd:fe:5d:b7:c9:6e:4b: 2c:39:f1:61:2c:67:88:75:19:7f:50:21:b2:e7:73: 41:01:45:14:24:84:9b:10:0e:47:7d:dd:26:1c:2c: 54:67:91:db:cd:e0:1e:07:6e:97:23:61:53:99:d5: 43:2d:86:6c:ec:c7:b0:5b:4c:94:23:41:d8:b8:65: 19:89:2f:18:87:b8:72:f3:c4:89:cb:54:43:2d:9b: e2:35:47:44:9b:5e:b7:94:2b:b7:06:99:d3:4d:1e: ce:3e:37:7b:51:9d:b1:be:32:18:4e:4d:9f:a8:5c: 07:f4:7d:a0:27:8c:48:c0:cf:d9:21:f9:f9:91:66: d1:21:35:41:aa:b3:1b:79:fc:c4:ce:6a:7e:81:f4: b9:1e:a8:78:b9:35:63:11:a9:b4:10:75:13:fa:79: 27:18:8d:95:25:d3:42:08:98:19:78:ea:3d:c1:5a: 3f:b8:08:46:63:f2:29:b0:03:f3:07:8a:e3:7a:d8: 32:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:66:F8:73:01:51:DE:2F:5F:40:E4:60:78:28:F8:BD:CD:51:D3:55 X509v3 Authority Key Identifier: keyid:89:53:64:DD:8F:F7:30:A9:08:B0:9B:5F:99:13:C1:53:FC:16:AA:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:16:7d:99:91:3f:83:39:6e:5a:fb:8d:ab:69:72:5d:ed:b5: dd:ae:98:01:8f:44:d6:75:58:b6:5a:81:97:c2:5f:e9:b0:bd: 09:81:41:40:9a:37:f0:cd:17:5e:a6:51:a4:57:81:02:a0:84: ff:c9:a5:6c:ed:d1:43:bf:ea:3d:72:58:47:35:50:cd:00:a7: d4:40:ef:db:fe:c1:85:d9:dc:54:07:7c:a4:68:f5:68:c6:23: 1c:22:ce:69:ee:be:8c:5f:a2:0c:32:0a:03:34:4f:91:40:2f: 26:60:6a:06:6e:24:18:a1:15:ca:51:70:88:e4:3d:39:05:0f: 56:58:db:3f:4c:1d:b7:e4:58:a4:ec:7d:45:fe:5a:56:ef:5a: 5b:e2:a1:15:c4:a3:83:20:7e:a2:2e:1e:45:26:8d:9b:08:2f: e1:24:53:db:a4:e9:93:05:d8:1e:72:01:99:60:fd:c1:bc:f6: a1:7c:39:66:b2:22:8f:f9:06:1b:5c:6e:69:82:90:68:35:a2: af:8f:c4:92:c3:f0:33:e8:2f:57:f3:91:b7:ca:03:29:ec:aa: ed:ab:59:0d:42:34:71:e3:30:f8:4a:d3:6d:be:65:82:f1:e1: 10:52:50:b2:7a:18:36:bd:5d:0e:e4:43:c0:8d:59:26:11:34: 7b:5d:3d:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG66pfknqLRc0HOGQHfiKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5NTM2NGRkOGZmNzMwYTkwOGIwOWI1Zjk5MTNjMTUzZmMx NmFhM2MwHhcNMjUxMjA2MTAwMTA4WhcNMjUxMjA3MTAwMTA4WjAzMTEwLwYDVQQD EyhjMDY2Zjg3MzAxNTFkZTJmNWY0MGU0NjA3ODI4ZjhiZGNkNTFkMzU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgf9WNnI8QYmByE4KRV592QL4jpvU 2I8orAWl0jbdOOh0trbWDiOvDfPvvgJfkg0grixZ9CbU6nfvuCjRXrDB6XiSjr3+ XbfJbkssOfFhLGeIdRl/UCGy53NBAUUUJISbEA5Hfd0mHCxUZ5HbzeAeB26XI2FT mdVDLYZs7MewW0yUI0HYuGUZiS8Yh7hy88SJy1RDLZviNUdEm163lCu3BpnTTR7O Pjd7UZ2xvjIYTk2fqFwH9H2gJ4xIwM/ZIfn5kWbRITVBqrMbefzEzmp+gfS5Hqh4 uTVjEam0EHUT+nknGI2VJdNCCJgZeOo9wVo/uAhGY/IpsAPzB4rjetgytwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMBm+HMBUd4vX0DkYHgo+L3NUdNVMB8GA1UdIwQY MBaAFIlTZN2P9zCpCLCbX5kTwVP8Fqo8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVZOazNZXzNNS2tJc0p0Zm1SUEJVX3dXcWp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy85MjJiY2QtZjFhZC00ZDYzLTgyNDMt Mjk0YjFhYTE0ODY2LzEvaVZOazNZXzNNS2tJc0p0Zm1SUEJVX3dXcWp3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy85MjJiY2QtZjFhZC00ZDYzLTgyNDMtMjk0YjFhYTE0ODY2 LzEvaVZOazNZXzNNS2tJc0p0Zm1SUEJVX3dXcWp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACRZ9mZE/ gzluWvuNq2lyXe213a6YAY9E1nVYtlqBl8Jf6bC9CYFBQJo38M0XXqZRpFeBAqCE /8mlbO3RQ7/qPXJYRzVQzQCn1EDv2/7BhdncVAd8pGj1aMYjHCLOae6+jF+iDDIK AzRPkUAvJmBqBm4kGKEVylFwiOQ9OQUPVljbP0wdt+RYpOx9Rf5aVu9aW+KhFcSj gyB+oi4eRSaNmwgv4SRT26TpkwXYHnIBmWD9wbz2oXw5ZrIij/kGG1xuaYKQaDWi r4/EksPwM+gvV/ORt8oDKeyq7atZDUI0ceMw+ErTbb5lgvHhEFJQsnoYNr1dDuRD wI1ZJhE0e109zA== -----END CERTIFICATE-----Generated at Sat Dec 6 12:40:15 2025 by rpki-client