This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft File: IvtSiroBjxQvRETMzJcjc2zU5LY.mft (raw, json) Hash identifier: lfu8lx8RciwpYkS9o6+jSomQdJtQ8xAO1blN3AlJTRg= Subject key identifier: AC:DD:76:D6:32:D6:D8:A0:4E:DB:25:28:4E:68:E5:95:4C:9F:CA:90 Authority key identifier: 22:FB:52:8A:BA:01:8F:14:2F:44:44:CC:CC:97:23:73:6C:D4:E4:B6 Certificate issuer: /CN=22fb528aba018f142f4444cccc9723736cd4e4b6 Certificate serial: 019AF2403446F19DF340F3D3A24494C3577E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvtSiroBjxQvRETMzJcjc2zU5LY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft Manifest number: 134C Signing time: Sat 06 Dec 2025 06:01:24 +0000 Manifest this update: Sat 06 Dec 2025 06:01:24 +0000 Manifest next update: Sun 07 Dec 2025 06:01:24 +0000 Files and hashes: 1: 4Qe9-T0nXWoVHW9lPtNAFV1MJeQ.roa (hash: MEUx9Qe02B/09ozBtbyk47nH68xJFm0Hu6pf18Q/8p0=) 2: IvtSiroBjxQvRETMzJcjc2zU5LY.crl (hash: eWMLyFrczQxLeT9arZaZbA72Ywf0Y+QQ04UPj8DQ+RA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft rsync://rpki.ripe.net/repository/DEFAULT/IvtSiroBjxQvRETMzJcjc2zU5LY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:40:34:46:f1:9d:f3:40:f3:d3:a2:44:94:c3:57:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22fb528aba018f142f4444cccc9723736cd4e4b6 Validity Not Before: Dec 6 06:01:24 2025 GMT Not After : Dec 7 06:01:24 2025 GMT Subject: CN=acdd76d632d6d8a04edb25284e68e5954c9fca90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:9a:8a:7e:f5:7c:d3:fc:37:87:eb:7f:b0:28: ca:74:15:bb:c9:84:a8:43:11:2c:56:6b:9c:91:3e: b8:20:36:58:c1:16:a0:8f:17:2d:56:7f:36:6d:d1: 62:2a:1e:04:fb:b9:38:af:56:4c:d4:2f:99:c3:eb: 0e:88:54:e2:96:18:9e:3b:5e:9c:0e:db:36:30:56: 97:b2:e1:3e:fd:2b:17:de:70:dc:c7:53:29:04:40: ed:44:9a:6e:4f:e1:46:b6:47:a4:b7:31:d1:4e:3a: df:42:e6:a4:57:2e:ce:37:62:77:9f:45:e0:02:2b: b5:e5:b6:2a:bd:30:3b:48:b7:66:69:df:3b:2e:af: a4:35:09:a8:99:a7:69:6e:17:0c:90:71:4b:7b:f2: be:bf:e2:4c:c1:2c:88:1a:4e:87:11:fa:da:8a:49: cb:38:62:b7:49:b1:ac:e2:b4:e5:66:8b:c5:a4:93: 73:79:40:c1:d2:dc:e6:4b:ec:bd:f3:59:33:d3:8f: d9:55:6b:b3:25:5b:09:2b:79:69:2a:44:92:15:dd: 1e:8c:a9:b5:88:9b:02:01:e6:e3:3e:8e:61:54:34: 3a:62:1c:2c:9b:6f:67:ef:08:0b:f0:25:41:b0:49: 9e:81:4b:7d:55:7d:3d:cc:fb:cb:cd:aa:91:fe:a4: 60:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:DD:76:D6:32:D6:D8:A0:4E:DB:25:28:4E:68:E5:95:4C:9F:CA:90 X509v3 Authority Key Identifier: keyid:22:FB:52:8A:BA:01:8F:14:2F:44:44:CC:CC:97:23:73:6C:D4:E4:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvtSiroBjxQvRETMzJcjc2zU5LY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:ef:a4:12:14:fb:f4:c7:a4:2a:31:ab:ef:84:5a:63:a1:f9: 94:ab:f0:c2:8f:29:2b:c0:a7:6a:71:0e:a8:a2:3d:f9:3a:89: b4:b8:96:22:4d:75:e7:0d:a8:71:31:2e:85:6a:61:95:10:6f: e8:91:a5:76:73:14:56:62:69:ee:09:17:2f:6d:fe:b3:b2:4d: f5:37:11:f3:ae:e8:ed:72:68:fa:78:74:55:6c:0c:cf:88:42: eb:8a:e7:db:4b:6e:53:dc:ad:fb:3d:72:63:fa:69:2d:37:2e: 5b:9b:7c:8e:12:86:9e:3b:87:0e:68:ea:12:cc:02:ee:e4:e4: 70:d0:fb:d1:9b:6a:22:d6:43:60:3e:06:eb:25:1f:30:c2:14: 49:b2:5d:77:ca:a8:7e:01:80:73:88:33:f1:99:d3:25:20:b0: f8:ca:8a:a4:37:d4:93:9b:9c:93:05:b8:6b:1c:80:5d:81:76: 52:c7:46:23:47:f0:e8:95:b8:0a:e7:64:4f:d9:53:15:b7:4b: 80:dd:19:b5:a4:45:ff:97:a4:5c:a0:06:d3:7f:23:e7:a7:28: f2:1d:0c:66:e3:00:a5:07:af:16:fa:6c:79:17:da:59:d0:c7: 96:82:8e:92:90:c0:fc:01:bf:f1:49:98:65:a3:ee:e8:9f:09: 71:fc:5b:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryQDRG8Z3zQPPTokSUw1d+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyZmI1MjhhYmEwMThmMTQyZjQ0NDRjY2NjOTcyMzczNmNk NGU0YjYwHhcNMjUxMjA2MDYwMTI0WhcNMjUxMjA3MDYwMTI0WjAzMTEwLwYDVQQD EyhhY2RkNzZkNjMyZDZkOGEwNGVkYjI1Mjg0ZTY4ZTU5NTRjOWZjYTkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7ZqKfvV80/w3h+t/sCjKdBW7yYSo QxEsVmuckT64IDZYwRagjxctVn82bdFiKh4E+7k4r1ZM1C+Zw+sOiFTilhieO16c Dts2MFaXsuE+/SsX3nDcx1MpBEDtRJpuT+FGtkektzHRTjrfQuakVy7ON2J3n0Xg Aiu15bYqvTA7SLdmad87Lq+kNQmomadpbhcMkHFLe/K+v+JMwSyIGk6HEfraiknL OGK3SbGs4rTlZovFpJNzeUDB0tzmS+y981kz04/ZVWuzJVsJK3lpKkSSFd0ejKm1 iJsCAebjPo5hVDQ6Yhwsm29n7wgL8CVBsEmegUt9VX09zPvLzaqR/qRgSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKzddtYy1tigTtslKE5o5ZVMn8qQMB8GA1UdIwQY MBaAFCL7Uoq6AY8UL0REzMyXI3Ns1OS2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXZ0U2lyb0JqeFF2UkVUTXpKY2pjMnpVNUxZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC8zODFkNjktMmM0MS00NWE4LTkwZDQt NmFlOTBiMjQ3NTkyLzEvSXZ0U2lyb0JqeFF2UkVUTXpKY2pjMnpVNUxZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC8zODFkNjktMmM0MS00NWE4LTkwZDQtNmFlOTBiMjQ3NTky LzEvSXZ0U2lyb0JqeFF2UkVUTXpKY2pjMnpVNUxZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATu+kEhT7 9MekKjGr74RaY6H5lKvwwo8pK8CnanEOqKI9+TqJtLiWIk115w2ocTEuhWphlRBv 6JGldnMUVmJp7gkXL23+s7JN9TcR867o7XJo+nh0VWwMz4hC64rn20tuU9yt+z1y Y/ppLTcuW5t8jhKGnjuHDmjqEswC7uTkcND70ZtqItZDYD4G6yUfMMIUSbJdd8qo fgGAc4gz8ZnTJSCw+MqKpDfUk5uckwW4axyAXYF2UsdGI0fw6JW4CudkT9lTFbdL gN0ZtaRF/5ekXKAG038j56co8h0MZuMApQevFvpseRfaWdDHloKOkpDA/AG/8UmY ZaPu6J8JcfxbgA== -----END CERTIFICATE-----Generated at Sat Dec 6 10:18:05 2025 by rpki-client