This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.mft File: IYCTB4hvuv261Th2Eu_-dxOHowA.mft (raw, json) Hash identifier: fPsxazFm7svFJgSTGwRVBFJqsW7SX4vEmKPkBXrt0ts= Subject key identifier: D4:1F:36:0E:A9:61:0B:49:A6:23:A5:BB:13:54:5C:27:92:2D:78:1A Authority key identifier: 21:80:93:07:88:6F:BA:FD:BA:D5:38:76:12:EF:FE:77:13:87:A3:00 Certificate issuer: /CN=21809307886fbafdbad5387612effe771387a300 Certificate serial: 019AF12CF223A4EF7DD47FFDE273ACCF51B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYCTB4hvuv261Th2Eu_-dxOHowA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.mft Manifest number: 08A5 Signing time: Sat 06 Dec 2025 01:00:45 +0000 Manifest this update: Sat 06 Dec 2025 01:00:45 +0000 Manifest next update: Sun 07 Dec 2025 01:00:45 +0000 Files and hashes: 1: IYCTB4hvuv261Th2Eu_-dxOHowA.crl (hash: BRAJ5Hy+UcmQ3XDXv5HmaQ5Da9pDXuMj7md6ANbzaW8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.mft rsync://rpki.ripe.net/repository/DEFAULT/IYCTB4hvuv261Th2Eu_-dxOHowA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2c:f2:23:a4:ef:7d:d4:7f:fd:e2:73:ac:cf:51:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21809307886fbafdbad5387612effe771387a300 Validity Not Before: Dec 6 01:00:45 2025 GMT Not After : Dec 7 01:00:45 2025 GMT Subject: CN=d41f360ea9610b49a623a5bb13545c27922d781a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:80:c7:c1:31:1b:4b:58:e0:17:4b:fe:04:97: 10:fd:83:c0:20:c8:e8:6c:c6:4c:3a:da:f6:e1:4d: 96:ad:c9:75:05:7f:8f:7a:55:eb:e8:d7:9e:43:64: cc:5c:a5:98:e3:b7:5f:1a:11:e2:d3:5f:7b:cb:29: 69:86:08:0f:9b:dc:59:21:9f:ef:87:a1:d3:f4:e1: c9:f8:e0:32:1d:70:8f:c3:11:50:39:51:f8:20:bd: 31:02:60:79:19:e7:6b:fa:41:2f:da:48:bc:f1:af: cd:4f:4b:6d:22:ca:6c:4f:6d:ca:dd:b8:c7:af:07: 0f:4d:fe:88:e6:b7:4c:9a:8b:b9:8d:d5:0a:f6:de: 79:79:fc:bf:26:6d:a8:36:db:bf:0e:10:df:c3:9e: 12:1f:1c:2e:14:ab:7c:da:17:18:25:93:51:ef:67: 4e:04:a2:23:89:a1:f8:25:2f:f3:51:ff:e1:ce:57: 44:0e:97:80:52:a6:a9:ea:4a:ea:65:df:02:b8:52: e4:bb:fc:f5:ba:db:b1:59:80:9a:b6:3f:c9:85:e3: 97:d4:f0:8d:63:2a:7d:82:3d:7b:b7:14:92:6b:b5: 72:7c:ae:6f:0c:89:d7:61:9a:66:09:14:57:ee:fb: 8f:69:65:30:98:1f:1c:9b:23:f2:be:bb:83:c4:8d: dd:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:1F:36:0E:A9:61:0B:49:A6:23:A5:BB:13:54:5C:27:92:2D:78:1A X509v3 Authority Key Identifier: keyid:21:80:93:07:88:6F:BA:FD:BA:D5:38:76:12:EF:FE:77:13:87:A3:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYCTB4hvuv261Th2Eu_-dxOHowA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:3d:39:79:39:74:b7:a2:27:26:6e:89:e1:a0:7f:a6:88:0a: dd:30:b1:b2:6e:e3:9a:85:8a:b5:dd:24:17:b9:32:ff:ae:ed: c9:b2:ef:52:3d:57:c1:e6:05:ad:0b:e3:75:60:ef:5e:43:e1: 39:f0:15:0c:c2:c8:de:3c:d9:08:64:49:a3:15:9a:d7:29:c5: 11:bc:f8:92:27:31:ca:0c:e2:1d:f9:b8:28:d5:70:e6:29:4c: 83:f2:6e:f5:22:01:c7:fe:d7:32:4d:c5:f4:fb:13:e5:26:2e: b5:15:9c:b3:8d:cb:68:91:90:a8:b5:fc:e6:13:76:fb:c0:8a: 4e:6a:92:33:9b:48:3c:86:8c:b3:43:67:46:1b:a8:6c:39:88: 8d:90:dd:f2:b8:59:4c:32:be:53:14:9e:a3:91:06:75:56:46: a4:3c:1c:c6:0a:78:4f:76:24:31:c9:67:a9:d4:eb:a2:cd:7f: 2d:5c:55:9b:f0:47:d3:94:75:d8:0d:80:88:a2:b2:02:36:bc: 5e:c5:98:1f:a7:33:90:79:f9:ac:5c:b1:97:ec:44:c1:ea:f3: 7c:3f:d8:99:63:d6:f2:3e:01:1e:08:30:e8:95:d5:e6:a6:bd: 07:fb:e9:11:f0:22:da:95:ff:b8:7d:a9:42:da:4c:a6:72:1d: 4b:63:1a:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLPIjpO991H/94nOsz1GxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxODA5MzA3ODg2ZmJhZmRiYWQ1Mzg3NjEyZWZmZTc3MTM4 N2EzMDAwHhcNMjUxMjA2MDEwMDQ1WhcNMjUxMjA3MDEwMDQ1WjAzMTEwLwYDVQQD EyhkNDFmMzYwZWE5NjEwYjQ5YTYyM2E1YmIxMzU0NWMyNzkyMmQ3ODFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyIDHwTEbS1jgF0v+BJcQ/YPAIMjo bMZMOtr24U2Wrcl1BX+PelXr6NeeQ2TMXKWY47dfGhHi0197yylphggPm9xZIZ/v h6HT9OHJ+OAyHXCPwxFQOVH4IL0xAmB5Gedr+kEv2ki88a/NT0ttIspsT23K3bjH rwcPTf6I5rdMmou5jdUK9t55efy/Jm2oNtu/DhDfw54SHxwuFKt82hcYJZNR72dO BKIjiaH4JS/zUf/hzldEDpeAUqap6krqZd8CuFLku/z1utuxWYCatj/JheOX1PCN Yyp9gj17txSSa7VyfK5vDInXYZpmCRRX7vuPaWUwmB8cmyPyvruDxI3dEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNQfNg6pYQtJpiOluxNUXCeSLXgaMB8GA1UdIwQY MBaAFCGAkweIb7r9utU4dhLv/ncTh6MAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVlDVEI0aHZ1djI2MVRoMkV1Xy1keE9Ib3dBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9hN2NiYWEtYmI5ZC00N2Y1LTkyMmQt ZjcwOGRhZDBlZWNhLzEvSVlDVEI0aHZ1djI2MVRoMkV1Xy1keE9Ib3dBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy9hN2NiYWEtYmI5ZC00N2Y1LTkyMmQtZjcwOGRhZDBlZWNh LzEvSVlDVEI0aHZ1djI2MVRoMkV1Xy1keE9Ib3dBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnT05eTl0 t6InJm6J4aB/pogK3TCxsm7jmoWKtd0kF7ky/67tybLvUj1XweYFrQvjdWDvXkPh OfAVDMLI3jzZCGRJoxWa1ynFEbz4kicxygziHfm4KNVw5ilMg/Ju9SIBx/7XMk3F 9PsT5SYutRWcs43LaJGQqLX85hN2+8CKTmqSM5tIPIaMs0NnRhuobDmIjZDd8rhZ TDK+UxSeo5EGdVZGpDwcxgp4T3YkMclnqdTros1/LVxVm/BH05R12A2AiKKyAja8 XsWYH6czkHn5rFyxl+xEwerzfD/YmWPW8j4BHggw6JXV5qa9B/vpEfAi2pX/uH2p QtpMpnIdS2MaWA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:26:38 2025 by rpki-client