This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.mft File: IwQieKfGvGylbuevokosgfPcvvs.mft (raw, json) Hash identifier: scBzXBynm9PcmDjaCPwaSQIkYy/cPd7GY/GPUNefLnA= Subject key identifier: AC:DE:0D:B3:D7:96:C3:19:44:DB:7A:B1:20:85:97:09:B5:5B:D5:79 Authority key identifier: 23:04:22:78:A7:C6:BC:6C:A5:6E:E7:AF:A2:4A:2C:81:F3:DC:BE:FB Certificate issuer: /CN=23042278a7c6bc6ca56ee7afa24a2c81f3dcbefb Certificate serial: 019AF0BF8AE8489530945B1B45D6CFB7F7F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwQieKfGvGylbuevokosgfPcvvs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.mft Manifest number: 0113 Signing time: Fri 05 Dec 2025 23:01:15 +0000 Manifest this update: Fri 05 Dec 2025 23:01:15 +0000 Manifest next update: Sat 06 Dec 2025 23:01:15 +0000 Files and hashes: 1: IwQieKfGvGylbuevokosgfPcvvs.crl (hash: S9aV3yR13kv1s55vRm+Cjjm8vMtEudYVextuIQa2P/Q=) 2: ManRoikqCH8KwvOz44LDMrdwCFo.roa (hash: qAyJuAPjcARXxe4I2UO3Ge3c4j/b7yjJiIwvOV306Hc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.mft rsync://rpki.ripe.net/repository/DEFAULT/IwQieKfGvGylbuevokosgfPcvvs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:8a:e8:48:95:30:94:5b:1b:45:d6:cf:b7:f7:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23042278a7c6bc6ca56ee7afa24a2c81f3dcbefb Validity Not Before: Dec 5 23:01:15 2025 GMT Not After : Dec 6 23:01:15 2025 GMT Subject: CN=acde0db3d796c31944db7ab120859709b55bd579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7b:6e:c9:b2:94:13:3c:c4:79:89:77:e8:14: 91:88:d3:31:fe:03:88:f6:6b:18:4a:62:56:65:68: ad:ac:0e:57:ca:06:e7:9f:b7:6a:15:61:73:cb:a5: fb:59:f1:e9:fe:a8:a2:cf:90:97:0a:4f:43:a9:ea: 21:c3:dd:f0:42:2a:5c:4b:6e:ca:f9:f7:55:cb:dc: 56:0b:b5:c5:c3:7f:77:f5:69:4a:27:94:f9:4b:9a: 30:e1:58:1d:4b:b5:04:44:e8:55:9a:ee:78:62:18: a2:9c:87:fb:65:ac:24:a7:a5:82:2e:ec:ca:d9:73: 68:bd:d6:f8:db:02:fb:e6:0b:c8:de:6d:ef:75:d0: 0a:b2:5c:38:21:df:d6:cb:91:72:a8:a0:f9:32:fe: e6:76:02:9e:3f:b2:cc:6a:17:65:98:04:43:2f:06: 4d:a6:21:f2:59:6a:cb:eb:b6:9a:79:a7:ce:fb:9b: 82:d7:d1:05:0c:7c:21:e4:31:a3:b7:ed:30:73:c2: 98:00:57:75:f3:dd:dd:59:cf:a0:f0:63:11:05:b5: e2:d6:c1:ea:2e:4c:d4:ef:8e:5d:ba:30:70:fd:c4: 18:54:ec:b8:78:25:51:8c:8b:10:ea:03:27:2b:73: fa:c2:43:09:5b:0a:80:2c:e2:16:4e:60:4d:04:28: 3d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:DE:0D:B3:D7:96:C3:19:44:DB:7A:B1:20:85:97:09:B5:5B:D5:79 X509v3 Authority Key Identifier: keyid:23:04:22:78:A7:C6:BC:6C:A5:6E:E7:AF:A2:4A:2C:81:F3:DC:BE:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwQieKfGvGylbuevokosgfPcvvs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:61:b6:86:a9:9f:21:c5:29:b4:d2:4d:a6:82:e5:b5:16:4c: a6:89:e9:73:ed:a3:61:d7:b3:88:75:44:ae:46:e1:16:4e:b1: 17:05:38:86:f1:a2:7b:9d:99:d7:be:54:2e:83:07:35:77:b9: 44:41:79:18:5d:32:2a:23:55:82:3f:91:b6:46:ca:7d:5a:97: 70:e9:41:47:79:12:20:b3:43:d0:b0:da:a1:d0:7f:17:ac:ab: b7:f4:36:ec:30:74:4d:67:dc:b0:06:a3:c2:95:c8:b3:16:9d: 11:ce:fe:e9:04:45:16:46:f6:80:ba:cf:ef:a6:00:5b:90:8c: 49:11:af:b6:08:9b:36:56:b4:2e:de:ba:75:4d:5a:f5:35:ce: e8:a8:e1:a3:e5:d8:97:0a:9d:78:8b:10:5d:fb:32:d4:9b:ad: 72:5b:d3:ac:45:13:bb:d6:dd:ed:fd:fb:a4:24:16:ca:21:51: 80:07:13:07:aa:8d:f8:4d:90:52:12:5b:72:f3:97:18:4d:9f: 54:ff:63:34:d7:70:6b:20:75:33:9b:68:df:a5:de:b9:bf:5b: 1b:e3:25:e4:85:cd:fa:2a:f2:bf:e3:8e:00:49:5e:4a:c5:09: fb:d3:92:52:22:18:69:73:6e:89:29:6c:b0:c5:db:ea:c7:14: 59:55:ae:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwv4roSJUwlFsbRdbPt/fxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzMDQyMjc4YTdjNmJjNmNhNTZlZTdhZmEyNGEyYzgxZjNk Y2JlZmIwHhcNMjUxMjA1MjMwMTE1WhcNMjUxMjA2MjMwMTE1WjAzMTEwLwYDVQQD EyhhY2RlMGRiM2Q3OTZjMzE5NDRkYjdhYjEyMDg1OTcwOWI1NWJkNTc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqHtuybKUEzzEeYl36BSRiNMx/gOI 9msYSmJWZWitrA5Xygbnn7dqFWFzy6X7WfHp/qiiz5CXCk9Dqeohw93wQipcS27K +fdVy9xWC7XFw3939WlKJ5T5S5ow4VgdS7UEROhVmu54YhiinIf7Zawkp6WCLuzK 2XNovdb42wL75gvI3m3vddAKslw4Id/Wy5FyqKD5Mv7mdgKeP7LMahdlmARDLwZN piHyWWrL67aaeafO+5uC19EFDHwh5DGjt+0wc8KYAFd1893dWc+g8GMRBbXi1sHq LkzU745dujBw/cQYVOy4eCVRjIsQ6gMnK3P6wkMJWwqALOIWTmBNBCg9twIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKzeDbPXlsMZRNt6sSCFlwm1W9V5MB8GA1UdIwQY MBaAFCMEIninxrxspW7nr6JKLIHz3L77MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXdRaWVLZkd2R3lsYnVldm9rb3NnZlBjdnZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS83OGViY2ItZGNhOC00MmQ2LWFmODIt M2FkNmU1ZGMwN2Q3LzEvSXdRaWVLZkd2R3lsYnVldm9rb3NnZlBjdnZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS83OGViY2ItZGNhOC00MmQ2LWFmODItM2FkNmU1ZGMwN2Q3 LzEvSXdRaWVLZkd2R3lsYnVldm9rb3NnZlBjdnZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVmG2hqmf IcUptNJNpoLltRZMponpc+2jYdeziHVErkbhFk6xFwU4hvGie52Z175ULoMHNXe5 REF5GF0yKiNVgj+RtkbKfVqXcOlBR3kSILND0LDaodB/F6yrt/Q27DB0TWfcsAaj wpXIsxadEc7+6QRFFkb2gLrP76YAW5CMSRGvtgibNla0Lt66dU1a9TXO6Kjho+XY lwqdeIsQXfsy1JutclvTrEUTu9bd7f37pCQWyiFRgAcTB6qN+E2QUhJbcvOXGE2f VP9jNNdwayB1M5to36Xeub9bG+Ml5IXN+iryv+OOAEleSsUJ+9OSUiIYaXNuiSls sMXb6scUWVWuMg== -----END CERTIFICATE-----Generated at Sat Dec 6 08:27:30 2025 by rpki-client