This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft File: IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft (raw, json) Hash identifier: 2sTibEJpajXpNo7GHeUU5sanl5I2ESAfxwRyS+dQXOg= Subject key identifier: 76:CF:12:60:BE:1A:A9:73:D8:52:EA:6B:55:B6:F4:7C:96:7F:49:4A Authority key identifier: 21:01:B6:38:8D:64:35:F5:49:90:90:53:82:B4:1D:C9:67:5F:D4:90 Certificate issuer: /CN=2101b6388d6435f54990905382b41dc9675fd490 Certificate serial: 019AF19AAD4441194973221AF63A3F988918 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQG2OI1kNfVJkJBTgrQdyWdf1JA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft Manifest number: 05F1 Signing time: Sat 06 Dec 2025 03:00:37 +0000 Manifest this update: Sat 06 Dec 2025 03:00:37 +0000 Manifest next update: Sun 07 Dec 2025 03:00:37 +0000 Files and hashes: 1: EAD0diuoZK02qxxsVWWiclAVX5I.roa (hash: kzXgijoQ+OFnt0McFOmyH17ijOy9UUEek/dQbYMoKFU=) 2: IQG2OI1kNfVJkJBTgrQdyWdf1JA.crl (hash: nlEcTEGZ0Hv+9O34z9W9B4MTT2yJ9jxelVtAjMxULwA=) 3: nyGLR8VZWMaY-kU1NUM_fc4iRjM.roa (hash: voylSjHlayiNYZNWUzC6whbKd8QLUjoGC1qGpaQazoM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft rsync://rpki.ripe.net/repository/DEFAULT/IQG2OI1kNfVJkJBTgrQdyWdf1JA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:ad:44:41:19:49:73:22:1a:f6:3a:3f:98:89:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2101b6388d6435f54990905382b41dc9675fd490 Validity Not Before: Dec 6 03:00:37 2025 GMT Not After : Dec 7 03:00:37 2025 GMT Subject: CN=76cf1260be1aa973d852ea6b55b6f47c967f494a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ef:14:28:70:3c:d7:99:f1:b7:1f:36:21:91: 97:2f:9b:49:89:51:47:f0:35:97:e7:4b:91:3d:f8: 04:bb:f9:f0:e9:ee:08:83:0f:9b:2b:ab:7c:c8:46: 76:e2:5b:a2:8e:e9:cf:7a:59:5d:82:85:40:a8:6f: 3b:86:3f:d9:f8:22:fd:cc:c3:0f:84:e4:6a:8f:b7: 9b:58:be:b9:92:48:fa:53:22:08:42:25:cd:eb:90: f5:95:8b:e9:22:f6:0a:1c:92:86:7f:fb:a7:30:2e: 26:e7:59:b3:a6:46:28:02:5e:d0:98:e5:ed:58:dc: f3:31:25:e8:7d:bc:83:a9:42:37:9c:2c:0b:70:b1: 1a:59:94:fe:2d:99:8c:51:65:85:3e:cd:f3:fa:8b: ba:b7:07:58:23:98:ad:e2:55:6a:1a:89:d4:36:6f: 70:07:6a:2d:41:4c:bd:13:73:02:70:1a:43:a6:0e: 8a:a5:22:0e:42:c6:42:79:dd:3d:c3:c6:d1:ae:6f: c0:f1:f2:12:28:84:91:35:5d:cf:45:c1:03:4f:1e: b5:4e:e7:4a:24:7b:77:af:f1:4f:ff:af:75:7b:94: 00:6d:cd:52:12:2f:37:71:41:dd:78:1d:5f:08:5b: dd:5d:76:6c:94:34:18:23:1f:e9:4e:ca:fd:3e:e9: de:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:CF:12:60:BE:1A:A9:73:D8:52:EA:6B:55:B6:F4:7C:96:7F:49:4A X509v3 Authority Key Identifier: keyid:21:01:B6:38:8D:64:35:F5:49:90:90:53:82:B4:1D:C9:67:5F:D4:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQG2OI1kNfVJkJBTgrQdyWdf1JA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:94:77:2c:95:4b:ec:cb:64:d0:7c:a1:00:5f:2a:5f:13:f0: 9d:21:f8:b3:0d:4b:37:86:aa:35:55:a5:d4:65:14:b1:ce:95: 1a:97:a5:79:b0:72:e2:57:06:68:d2:69:c5:e3:dd:8d:44:32: bd:24:26:ff:3b:b8:0a:d3:d3:1b:8e:4a:67:4b:1e:f6:0c:c1: 21:e9:92:08:64:44:ea:d2:03:77:b8:1f:55:20:4c:74:78:45: 84:28:b5:d3:3c:b2:d0:93:7c:99:e3:9e:9f:b4:ae:09:61:e8: 1e:29:28:02:6f:85:59:e4:b5:0b:b2:12:27:db:3f:1f:78:fb: 4f:df:7f:f8:f0:cc:e8:07:3e:a4:d0:c4:e9:80:6b:f0:6d:a3: 24:ec:cd:a8:84:b2:b3:73:a7:de:58:81:09:b1:5b:05:c5:11: a8:f5:6a:65:3f:26:22:ae:c1:b9:65:9c:69:f8:53:2f:d4:45: bc:2b:2c:d0:77:f4:fe:eb:ac:11:dc:2f:59:6c:31:9e:d0:43: 8e:28:f9:26:00:39:a1:ac:b7:dc:c2:0b:2d:37:11:89:e8:e9: 13:f3:36:74:57:aa:82:bd:95:7e:59:94:65:25:77:a8:74:f1: 72:55:f2:11:c9:a5:01:d7:c3:37:59:38:7f:cf:df:eb:88:a6: a1:74:e5:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmq1EQRlJcyIa9jo/mIkYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMDFiNjM4OGQ2NDM1ZjU0OTkwOTA1MzgyYjQxZGM5Njc1 ZmQ0OTAwHhcNMjUxMjA2MDMwMDM3WhcNMjUxMjA3MDMwMDM3WjAzMTEwLwYDVQQD Eyg3NmNmMTI2MGJlMWFhOTczZDg1MmVhNmI1NWI2ZjQ3Yzk2N2Y0OTRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAme8UKHA815nxtx82IZGXL5tJiVFH 8DWX50uRPfgEu/nw6e4Igw+bK6t8yEZ24luijunPelldgoVAqG87hj/Z+CL9zMMP hORqj7ebWL65kkj6UyIIQiXN65D1lYvpIvYKHJKGf/unMC4m51mzpkYoAl7QmOXt WNzzMSXofbyDqUI3nCwLcLEaWZT+LZmMUWWFPs3z+ou6twdYI5it4lVqGonUNm9w B2otQUy9E3MCcBpDpg6KpSIOQsZCed09w8bRrm/A8fISKISRNV3PRcEDTx61TudK JHt3r/FP/691e5QAbc1SEi83cUHdeB1fCFvdXXZslDQYIx/pTsr9PunewwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHbPEmC+Gqlz2FLqa1W29HyWf0lKMB8GA1UdIwQY MBaAFCEBtjiNZDX1SZCQU4K0HclnX9SQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVFHMk9JMWtOZlZKa0pCVGdyUWR5V2RmMUpBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9jMjA5NWEtM2IzZC00YWM0LTljMzIt NGRmODkxMjE4OGY3LzEvSVFHMk9JMWtOZlZKa0pCVGdyUWR5V2RmMUpBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9jMjA5NWEtM2IzZC00YWM0LTljMzItNGRmODkxMjE4OGY3 LzEvSVFHMk9JMWtOZlZKa0pCVGdyUWR5V2RmMUpBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqJR3LJVL 7Mtk0HyhAF8qXxPwnSH4sw1LN4aqNVWl1GUUsc6VGpelebBy4lcGaNJpxePdjUQy vSQm/zu4CtPTG45KZ0se9gzBIemSCGRE6tIDd7gfVSBMdHhFhCi10zyy0JN8meOe n7SuCWHoHikoAm+FWeS1C7ISJ9s/H3j7T99/+PDM6Ac+pNDE6YBr8G2jJOzNqISy s3On3liBCbFbBcURqPVqZT8mIq7BuWWcafhTL9RFvCss0Hf0/uusEdwvWWwxntBD jij5JgA5oay33MILLTcRiejpE/M2dFeqgr2VflmUZSV3qHTxclXyEcmlAdfDN1k4 f8/f64imoXTl1A== -----END CERTIFICATE-----Generated at Sat Dec 6 10:00:23 2025 by rpki-client