This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.mft File: i58lgoNRffGYWTiOE7rRrgJopfs.mft (raw, json) Hash identifier: /Z+nPm91q+gI4XQBNNzMN9wFfSSGG/qlovYPqb/KSBE= Subject key identifier: 2A:4D:23:BC:E8:5C:AF:73:BF:5E:26:B5:F3:E9:C0:83:BA:78:4F:5F Authority key identifier: 8B:9F:25:82:83:51:7D:F1:98:59:38:8E:13:BA:D1:AE:02:68:A5:FB Certificate issuer: /CN=8b9f258283517df19859388e13bad1ae0268a5fb Certificate serial: 019AF19BB7E7DFD0A861D967FC2FDA52A5F2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i58lgoNRffGYWTiOE7rRrgJopfs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 03:01:45 +0000 Manifest this update: Sat 06 Dec 2025 03:01:45 +0000 Manifest next update: Sun 07 Dec 2025 03:01:45 +0000 Files and hashes: 1: aUEo_6I1NIoEpJrfmKA_-34y2x4.roa (hash: qf/pPhy348tojuz4A7OR24KHAsQ8d6peWd65flxSoJ4=) 2: i58lgoNRffGYWTiOE7rRrgJopfs.crl (hash: zqd/D7GFwfjL5ZamRXSWYzYq9bALOm0Ds4xbOqzWJKs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.mft rsync://rpki.ripe.net/repository/DEFAULT/i58lgoNRffGYWTiOE7rRrgJopfs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:b7:e7:df:d0:a8:61:d9:67:fc:2f:da:52:a5:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b9f258283517df19859388e13bad1ae0268a5fb Validity Not Before: Dec 6 03:01:45 2025 GMT Not After : Dec 7 03:01:45 2025 GMT Subject: CN=2a4d23bce85caf73bf5e26b5f3e9c083ba784f5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:e6:55:a7:11:b0:d0:d0:3a:db:b8:75:9a:24: c2:60:90:b3:23:f7:27:63:4e:3f:98:55:5b:f0:4b: 38:0c:f4:d1:b2:15:c6:23:ce:b1:fd:c3:3f:d1:7a: 2f:d0:82:5a:bb:6a:0f:6b:e4:d4:3c:31:63:69:40: 84:f3:a4:a2:4d:08:7f:1b:3c:59:a5:43:d6:a7:e1: 85:3f:f7:7c:a8:40:0a:31:9b:3c:ce:1b:6f:db:2b: 27:51:54:68:db:75:0a:ea:81:18:50:9e:44:f6:cf: a6:52:af:51:95:9a:38:30:71:89:c7:6b:74:4c:be: 93:4b:22:a1:21:58:2b:7d:48:a0:4f:56:a5:7e:d1: dd:6b:ad:ff:85:8f:40:45:53:ac:5a:16:c9:a6:57: aa:92:e0:17:fe:41:f9:26:ec:03:69:f8:cf:54:93: 26:fe:98:d3:09:1e:9a:2b:df:30:54:90:5e:15:bb: 8d:f0:c9:df:3e:c0:81:9b:c7:1f:32:af:01:f2:29: 48:dd:58:60:da:62:20:cc:66:98:ef:a6:81:c7:cb: 31:0b:11:a3:85:6f:a7:c9:81:4b:ba:df:f9:b6:6d: 21:9c:68:9f:d3:9c:77:2f:24:0a:32:62:1f:3a:ad: 21:a6:c5:d8:4b:7d:82:89:36:60:15:60:be:9a:1c: bd:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:4D:23:BC:E8:5C:AF:73:BF:5E:26:B5:F3:E9:C0:83:BA:78:4F:5F X509v3 Authority Key Identifier: keyid:8B:9F:25:82:83:51:7D:F1:98:59:38:8E:13:BA:D1:AE:02:68:A5:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i58lgoNRffGYWTiOE7rRrgJopfs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:23:31:e8:70:f9:25:11:47:12:11:b6:ef:6e:07:de:f4:75: 8d:3d:ed:dc:05:2e:fe:b6:a7:af:10:de:32:51:be:c4:24:05: ac:25:1d:53:4c:e5:94:49:bb:c5:db:07:af:88:9c:cf:32:43: 9e:3a:c2:0a:2a:77:a3:77:74:7b:6b:28:25:21:7c:fd:d4:4a: c7:a8:e5:33:5a:c8:38:9b:fe:8e:f7:1d:9f:c5:bb:2e:d3:9e: 83:0d:d7:57:08:32:59:44:fd:c6:16:47:25:93:7d:6f:12:6a: 52:44:21:f4:29:b6:0b:12:22:cb:93:91:9f:37:3b:7f:f0:38: c9:d3:73:92:8e:49:69:6a:1e:ed:cd:28:98:19:3d:2e:72:89: a6:ab:4a:93:8f:90:45:0d:b0:d7:39:be:30:87:d4:2d:5f:8c: 80:30:08:79:54:51:5f:ea:bd:bd:89:57:66:3f:80:e9:5d:13: 7d:a3:88:46:be:4c:1b:de:61:31:44:ee:d2:12:34:f1:68:a3: dc:12:48:3a:6a:61:98:45:1e:14:92:89:fb:61:1f:a3:0e:8f: 61:c8:f4:76:12:15:3d:ec:05:8b:ab:51:e1:b5:74:d5:cd:4e: 94:40:cd:a3:cb:b4:6c:21:87:e9:3e:b3:a1:14:2c:74:db:f2: c0:c8:9c:6f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm7fn39CoYdln/C/aUqXyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiOWYyNTgyODM1MTdkZjE5ODU5Mzg4ZTEzYmFkMWFlMDI2 OGE1ZmIwHhcNMjUxMjA2MDMwMTQ1WhcNMjUxMjA3MDMwMTQ1WjAzMTEwLwYDVQQD EygyYTRkMjNiY2U4NWNhZjczYmY1ZTI2YjVmM2U5YzA4M2JhNzg0ZjVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj+ZVpxGw0NA627h1miTCYJCzI/cn Y04/mFVb8Es4DPTRshXGI86x/cM/0Xov0IJau2oPa+TUPDFjaUCE86SiTQh/GzxZ pUPWp+GFP/d8qEAKMZs8zhtv2ysnUVRo23UK6oEYUJ5E9s+mUq9RlZo4MHGJx2t0 TL6TSyKhIVgrfUigT1alftHda63/hY9ARVOsWhbJpleqkuAX/kH5JuwDafjPVJMm /pjTCR6aK98wVJBeFbuN8MnfPsCBm8cfMq8B8ilI3Vhg2mIgzGaY76aBx8sxCxGj hW+nyYFLut/5tm0hnGif05x3LyQKMmIfOq0hpsXYS32CiTZgFWC+mhy9ewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCpNI7zoXK9zv14mtfPpwIO6eE9fMB8GA1UdIwQY MBaAFIufJYKDUX3xmFk4jhO60a4CaKX7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTU4bGdvTlJmZkdZV1RpT0U3clJyZ0pvcGZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy81MjhlMjEtMjNiMi00NDM2LWJjOGIt OGY1ZTk5N2FiMWI1LzEvaTU4bGdvTlJmZkdZV1RpT0U3clJyZ0pvcGZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy81MjhlMjEtMjNiMi00NDM2LWJjOGItOGY1ZTk5N2FiMWI1 LzEvaTU4bGdvTlJmZkdZV1RpT0U3clJyZ0pvcGZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmSMx6HD5 JRFHEhG2724H3vR1jT3t3AUu/ranrxDeMlG+xCQFrCUdU0zllEm7xdsHr4iczzJD njrCCip3o3d0e2soJSF8/dRKx6jlM1rIOJv+jvcdn8W7LtOegw3XVwgyWUT9xhZH JZN9bxJqUkQh9Cm2CxIiy5ORnzc7f/A4ydNzko5JaWoe7c0omBk9LnKJpqtKk4+Q RQ2w1zm+MIfULV+MgDAIeVRRX+q9vYlXZj+A6V0TfaOIRr5MG95hMUTu0hI08Wij 3BJIOmphmEUeFJKJ+2Efow6PYcj0dhIVPewFi6tR4bV01c1OlEDNo8u0bCGH6T6z oRQsdNvywMicbw== -----END CERTIFICATE-----Generated at Sat Dec 6 11:12:09 2025 by rpki-client