This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.mft File: ilUt2GldSD1Hzkz4RbkGsXUnalw.mft (raw, json) Hash identifier: EZYKvJDJF5i18yODjKObTWI9+YuUcmEP3U5WGuqFdME= Subject key identifier: 1A:35:03:49:28:DC:59:43:18:94:A7:83:A1:6E:CF:3E:8C:EE:2F:40 Authority key identifier: 8A:55:2D:D8:69:5D:48:3D:47:CE:4C:F8:45:B9:06:B1:75:27:6A:5C Certificate issuer: /CN=8a552dd8695d483d47ce4cf845b906b175276a5c Certificate serial: 019AF4652C65D54C0ED33326B8138D974930 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ilUt2GldSD1Hzkz4RbkGsXUnalw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.mft Manifest number: FE Signing time: Sat 06 Dec 2025 16:01:02 +0000 Manifest this update: Sat 06 Dec 2025 16:01:02 +0000 Manifest next update: Sun 07 Dec 2025 16:01:02 +0000 Files and hashes: 1: bvDQqROOqfcLitLUBX84FPsCs1c.roa (hash: 5rWrrkrkVV/HRYCs0+RexUArPHHbqW+EtH7f8xFEtLs=) 2: ilUt2GldSD1Hzkz4RbkGsXUnalw.crl (hash: anflG9h8zNUJ006TCDzMKrl5P+H6eIeSCUylcjoEyA4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.mft rsync://rpki.ripe.net/repository/DEFAULT/ilUt2GldSD1Hzkz4RbkGsXUnalw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 16:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:65:2c:65:d5:4c:0e:d3:33:26:b8:13:8d:97:49:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8a552dd8695d483d47ce4cf845b906b175276a5c Validity Not Before: Dec 6 16:01:02 2025 GMT Not After : Dec 7 16:01:02 2025 GMT Subject: CN=1a35034928dc59431894a783a16ecf3e8cee2f40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:78:bb:8a:78:f5:9d:7d:1c:e1:a7:b5:44:5a: b6:b3:f3:f7:16:3a:2f:c3:b7:cd:b9:4e:58:c2:9f: 49:42:82:36:92:19:11:01:cb:d2:49:98:63:e2:43: 58:55:e8:cd:5b:e8:cf:a1:10:ab:68:d9:39:4b:9a: 13:d2:43:61:e9:29:ba:fa:c8:d2:76:e4:72:6e:74: 32:57:f4:21:02:f7:c7:21:32:73:a0:29:32:b1:72: ec:42:57:df:56:97:8c:53:92:91:1e:c0:8a:28:c0: 1c:f3:10:05:22:85:66:e4:90:8b:e9:99:61:d2:0c: f0:3b:c6:e5:9e:43:f8:7e:30:aa:ee:c1:cf:b2:f7: c0:a4:12:56:72:c0:f1:62:b6:19:f1:b5:c7:28:2a: 3d:36:4e:6a:aa:3f:84:d0:8c:a1:5d:30:72:c2:8a: 38:b3:d5:72:2e:9c:59:a6:b0:e0:a7:a4:6e:2f:5f: bd:94:7f:e2:7f:f4:c7:d1:5a:f4:a9:9b:bb:ab:88: c7:0e:2a:a9:90:4f:50:cd:f7:ec:9c:9e:1c:a1:88: 69:b8:39:8a:13:ef:d3:00:60:f7:ec:17:0f:49:2d: d2:d8:46:8a:e6:84:10:ca:f6:95:fe:b8:1b:7c:95: f7:77:fb:a9:ec:fc:eb:2e:b5:20:8f:98:a4:a3:01: e3:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:35:03:49:28:DC:59:43:18:94:A7:83:A1:6E:CF:3E:8C:EE:2F:40 X509v3 Authority Key Identifier: keyid:8A:55:2D:D8:69:5D:48:3D:47:CE:4C:F8:45:B9:06:B1:75:27:6A:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ilUt2GldSD1Hzkz4RbkGsXUnalw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c0:c0:6e:e6:a1:f9:90:db:36:a6:f0:a6:93:2e:98:a2:d2:58: 7b:b3:c9:82:c0:06:87:2f:37:a8:f2:5f:8b:c9:3c:51:88:04: df:80:ae:e4:76:fe:cc:97:6d:d8:8e:77:94:bc:6f:0d:47:17: b9:f7:8d:ff:a6:5e:74:2b:e1:34:bb:3c:52:3f:4b:16:e3:20: b4:83:1e:a4:5e:7c:19:ca:f5:76:91:bc:35:1e:ff:a3:c4:d5: f5:ff:b9:ab:24:cb:a5:df:39:e9:df:70:90:7c:d6:39:e1:d5: 35:74:9a:14:cc:4d:06:15:84:c5:ca:0c:21:36:f6:1f:d8:04: 0b:fe:2d:60:1a:09:94:2b:61:bb:16:3e:39:4f:0e:ba:ce:f0: ae:30:de:21:67:40:e2:34:50:58:c6:7b:6d:02:16:c8:1b:f4: ee:40:4c:9c:b8:53:31:93:17:8c:82:00:c8:23:bb:36:02:0f: 1d:06:f5:68:46:fe:b3:9e:30:84:84:2b:c9:ac:2e:11:10:29: c7:f1:45:16:f4:2f:50:0d:25:1e:97:b1:bb:d9:47:4f:8e:a5: 61:ff:80:fa:f6:0c:c1:03:98:b1:32:b8:d5:ad:52:af:e9:8e: 37:e9:87:db:e2:0a:2f:58:57:20:ec:e0:3f:d1:e8:74:43:a6: a5:65:39:ad -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0ZSxl1UwO0zMmuBONl0kwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhNTUyZGQ4Njk1ZDQ4M2Q0N2NlNGNmODQ1YjkwNmIxNzUy NzZhNWMwHhcNMjUxMjA2MTYwMTAyWhcNMjUxMjA3MTYwMTAyWjAzMTEwLwYDVQQD EygxYTM1MDM0OTI4ZGM1OTQzMTg5NGE3ODNhMTZlY2YzZThjZWUyZjQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs3i7inj1nX0c4ae1RFq2s/P3Fjov w7fNuU5Ywp9JQoI2khkRAcvSSZhj4kNYVejNW+jPoRCraNk5S5oT0kNh6Sm6+sjS duRybnQyV/QhAvfHITJzoCkysXLsQlffVpeMU5KRHsCKKMAc8xAFIoVm5JCL6Zlh 0gzwO8blnkP4fjCq7sHPsvfApBJWcsDxYrYZ8bXHKCo9Nk5qqj+E0IyhXTBywoo4 s9VyLpxZprDgp6RuL1+9lH/if/TH0Vr0qZu7q4jHDiqpkE9QzffsnJ4coYhpuDmK E+/TAGD37BcPSS3S2EaK5oQQyvaV/rgbfJX3d/up7PzrLrUgj5ikowHjowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBo1A0ko3FlDGJSng6Fuzz6M7i9AMB8GA1UdIwQY MBaAFIpVLdhpXUg9R85M+EW5BrF1J2pcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWxVdDJHbGRTRDFIemt6NFJia0dzWFVuYWx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS80MjA2MjEtOThiOS00OTYxLWEyMzAt MjliM2YwMjcyYjlmLzEvaWxVdDJHbGRTRDFIemt6NFJia0dzWFVuYWx3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS80MjA2MjEtOThiOS00OTYxLWEyMzAtMjliM2YwMjcyYjlm LzEvaWxVdDJHbGRTRDFIemt6NFJia0dzWFVuYWx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwMBu5qH5 kNs2pvCmky6YotJYe7PJgsAGhy83qPJfi8k8UYgE34Cu5Hb+zJdt2I53lLxvDUcX ufeN/6ZedCvhNLs8Uj9LFuMgtIMepF58Gcr1dpG8NR7/o8TV9f+5qyTLpd856d9w kHzWOeHVNXSaFMxNBhWExcoMITb2H9gEC/4tYBoJlCthuxY+OU8Ous7wrjDeIWdA 4jRQWMZ7bQIWyBv07kBMnLhTMZMXjIIAyCO7NgIPHQb1aEb+s54whIQryawuERAp x/FFFvQvUA0lHpexu9lHT46lYf+A+vYMwQOYsTK41a1Sr+mON+mH2+IKL1hXIOzg P9HodEOmpWU5rQ== -----END CERTIFICATE-----Generated at Sun Dec 7 01:41:08 2025 by rpki-client