This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/7895f8-ac31-4798-8404-4e278dd48a3f/1/iTbfSsL0Z-pmwRl6hinT9ku1Y_A.mft File: iTbfSsL0Z-pmwRl6hinT9ku1Y_A.mft (raw, json) Hash identifier: Nx6U2JsJmTkptGDFyJcodNZHp7AmUUWvPJ6UENYpxGo= Subject key identifier: 5E:5E:3B:CD:25:01:93:D0:57:8D:2B:F5:6C:89:5D:0B:64:71:FF:1B Authority key identifier: 89:36:DF:4A:C2:F4:67:EA:66:C1:19:7A:86:29:D3:F6:4B:B5:63:F0 Certificate issuer: /CN=8936df4ac2f467ea66c1197a8629d3f64bb563f0 Certificate serial: 019AF12CC40979807EA324D71532F7AD9C32 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iTbfSsL0Z-pmwRl6hinT9ku1Y_A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/7895f8-ac31-4798-8404-4e278dd48a3f/1/iTbfSsL0Z-pmwRl6hinT9ku1Y_A.mft Manifest number: 13A6 Signing time: Sat 06 Dec 2025 01:00:34 +0000 Manifest this update: Sat 06 Dec 2025 01:00:34 +0000 Manifest next update: Sun 07 Dec 2025 01:00:34 +0000 Files and hashes: 1: iTbfSsL0Z-pmwRl6hinT9ku1Y_A.crl (hash: XKv9/rMJlMx8plVy3eK7FccROPmt5hawMjFfzMPbDeU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/7895f8-ac31-4798-8404-4e278dd48a3f/1/iTbfSsL0Z-pmwRl6hinT9ku1Y_A.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/7895f8-ac31-4798-8404-4e278dd48a3f/1/iTbfSsL0Z-pmwRl6hinT9ku1Y_A.mft rsync://rpki.ripe.net/repository/DEFAULT/iTbfSsL0Z-pmwRl6hinT9ku1Y_A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2c:c4:09:79:80:7e:a3:24:d7:15:32:f7:ad:9c:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8936df4ac2f467ea66c1197a8629d3f64bb563f0 Validity Not Before: Dec 6 01:00:34 2025 GMT Not After : Dec 7 01:00:34 2025 GMT Subject: CN=5e5e3bcd250193d0578d2bf56c895d0b6471ff1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:17:5c:dc:46:30:c5:86:d9:bf:6a:93:cc:4e: fd:cb:e8:17:0d:1a:ed:37:3a:c4:7f:2b:99:f0:a8: 36:98:76:d2:fd:db:e3:90:fb:f1:c4:6d:d1:75:89: db:16:05:ea:0e:2e:11:12:89:43:5e:9e:e6:34:72: 5d:48:e6:63:9b:76:6a:93:2b:fb:be:04:82:db:44: ec:17:5a:a7:79:0f:be:45:0d:f7:0b:bf:36:99:8a: 66:87:cd:99:24:88:0e:fe:be:d4:b5:a4:c6:e3:0e: ff:14:3c:aa:5e:41:03:1b:d7:5a:24:1d:cf:05:72: e8:a4:d3:88:f0:f0:b3:ab:0e:2a:bf:95:55:23:c5: 70:88:fb:01:cc:41:ab:aa:3b:a4:59:b0:97:89:72: ce:94:2f:b0:af:6b:4f:9c:0f:00:61:88:15:c9:91: 85:47:63:88:eb:09:1c:e3:4c:78:8e:6d:8f:73:11: a6:02:a9:98:fc:8b:87:e9:a8:8a:9c:93:5f:8f:de: 9e:27:3f:25:23:eb:0a:47:fc:62:e4:fd:98:2a:c5: a8:89:f6:f3:3c:eb:9f:ed:f2:73:9a:bd:f5:36:7e: c8:06:69:c1:34:8d:a0:78:2d:7d:84:de:a4:5b:57: e3:fb:95:7e:ff:69:68:eb:4c:ca:ab:85:11:b3:44: fe:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:5E:3B:CD:25:01:93:D0:57:8D:2B:F5:6C:89:5D:0B:64:71:FF:1B X509v3 Authority Key Identifier: keyid:89:36:DF:4A:C2:F4:67:EA:66:C1:19:7A:86:29:D3:F6:4B:B5:63:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iTbfSsL0Z-pmwRl6hinT9ku1Y_A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/7895f8-ac31-4798-8404-4e278dd48a3f/1/iTbfSsL0Z-pmwRl6hinT9ku1Y_A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/7895f8-ac31-4798-8404-4e278dd48a3f/1/iTbfSsL0Z-pmwRl6hinT9ku1Y_A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:5d:a0:44:ba:3c:fd:0d:4b:88:f0:77:52:ae:f1:17:89:de: c5:44:02:6f:4c:e2:a9:50:69:57:e0:25:cc:8d:51:81:3a:30: d0:7e:79:e0:c5:28:25:a4:00:04:bf:f0:dd:91:06:f1:5d:4d: 5f:5b:2a:44:75:14:d1:ac:65:d8:c8:3e:d9:21:17:43:ed:de: 83:d5:20:c2:bd:16:76:f5:85:43:b5:ed:66:c7:01:9e:81:03: d7:26:cd:84:37:12:1d:b7:39:5a:61:39:c6:68:41:07:62:4b: 29:7e:03:7f:a0:03:69:9a:ce:9b:f3:15:78:0d:88:79:c0:d0: b6:c3:f9:41:57:3e:af:93:81:72:90:7d:98:87:40:e8:9a:91: 95:f4:b7:7a:e9:44:b0:73:51:8d:ea:6a:66:d3:12:bf:4c:92: a1:d2:1c:15:fb:20:ce:f4:00:d1:fd:dc:ea:d4:2a:43:11:f6: 0f:8b:a6:3d:fd:0a:50:58:df:c7:26:ee:bf:79:af:e3:bf:ad: 1a:83:c3:60:0d:ce:33:9f:7e:db:9e:31:41:28:fc:4c:73:f3: 2a:73:f0:e8:54:22:3f:12:1c:2c:cd:00:c8:51:45:44:a0:3b: 83:69:42:9f:5d:12:af:49:c0:74:32:48:04:42:84:fb:48:7e: 5e:c2:a4:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLMQJeYB+oyTXFTL3rZwyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5MzZkZjRhYzJmNDY3ZWE2NmMxMTk3YTg2MjlkM2Y2NGJi NTYzZjAwHhcNMjUxMjA2MDEwMDM0WhcNMjUxMjA3MDEwMDM0WjAzMTEwLwYDVQQD Eyg1ZTVlM2JjZDI1MDE5M2QwNTc4ZDJiZjU2Yzg5NWQwYjY0NzFmZjFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhxdc3EYwxYbZv2qTzE79y+gXDRrt NzrEfyuZ8Kg2mHbS/dvjkPvxxG3RdYnbFgXqDi4REolDXp7mNHJdSOZjm3Zqkyv7 vgSC20TsF1qneQ++RQ33C782mYpmh82ZJIgO/r7UtaTG4w7/FDyqXkEDG9daJB3P BXLopNOI8PCzqw4qv5VVI8VwiPsBzEGrqjukWbCXiXLOlC+wr2tPnA8AYYgVyZGF R2OI6wkc40x4jm2PcxGmAqmY/IuH6aiKnJNfj96eJz8lI+sKR/xi5P2YKsWoifbz POuf7fJzmr31Nn7IBmnBNI2geC19hN6kW1fj+5V+/2lo60zKq4URs0T++QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF5eO80lAZPQV40r9WyJXQtkcf8bMB8GA1UdIwQY MBaAFIk230rC9GfqZsEZeoYp0/ZLtWPwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVRiZlNzTDBaLXBtd1JsNmhpblQ5a3UxWV9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi83ODk1ZjgtYWMzMS00Nzk4LTg0MDQt NGUyNzhkZDQ4YTNmLzEvaVRiZlNzTDBaLXBtd1JsNmhpblQ5a3UxWV9BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi83ODk1ZjgtYWMzMS00Nzk4LTg0MDQtNGUyNzhkZDQ4YTNm LzEvaVRiZlNzTDBaLXBtd1JsNmhpblQ5a3UxWV9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKF2gRLo8 /Q1LiPB3Uq7xF4nexUQCb0ziqVBpV+AlzI1RgTow0H554MUoJaQABL/w3ZEG8V1N X1sqRHUU0axl2Mg+2SEXQ+3eg9Ugwr0WdvWFQ7XtZscBnoED1ybNhDcSHbc5WmE5 xmhBB2JLKX4Df6ADaZrOm/MVeA2IecDQtsP5QVc+r5OBcpB9mIdA6JqRlfS3eulE sHNRjepqZtMSv0ySodIcFfsgzvQA0f3c6tQqQxH2D4umPf0KUFjfxybuv3mv47+t GoPDYA3OM59+254xQSj8THPzKnPw6FQiPxIcLM0AyFFFRKA7g2lCn10Sr0nAdDJI BEKE+0h+XsKkhA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:10:14 2025 by rpki-client