This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft File: iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft (raw, json) Hash identifier: nrm6PEABBKJLWFUB8+eiur78/JLUQTNZ2jd7N7lCplc= Subject key identifier: D5:42:E7:2B:15:2A:43:BC:1C:51:35:CC:52:E9:C9:B1:22:18:FF:44 Authority key identifier: 88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2 Certificate issuer: /CN=885c09522f635fcafa29bcebac72c894e4ffeed2 Certificate serial: 019AF19B5D703929C5E8AC432758CBF6596B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft Manifest number: 0214 Signing time: Sat 06 Dec 2025 03:01:22 +0000 Manifest this update: Sat 06 Dec 2025 03:01:22 +0000 Manifest next update: Sun 07 Dec 2025 03:01:22 +0000 Files and hashes: 1: XcIL6Sukfm7k1AWtWl445xp4QV0.roa (hash: 4UDRmx72tIl2+y56n6Ye2uGR21iaVE2WkWXR6GxV+6Y=) 2: iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl (hash: 4wXqkw0AzX7LD26Icl+0ZaYvSvtdV9l3rzVV+AiJHYc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:5d:70:39:29:c5:e8:ac:43:27:58:cb:f6:59:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=885c09522f635fcafa29bcebac72c894e4ffeed2 Validity Not Before: Dec 6 03:01:22 2025 GMT Not After : Dec 7 03:01:22 2025 GMT Subject: CN=d542e72b152a43bc1c5135cc52e9c9b12218ff44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0c:90:6a:8f:a9:b9:05:54:4d:c0:13:38:bd: ad:70:c2:41:57:25:79:aa:15:87:dc:4e:4c:9d:56: 82:40:60:32:56:6b:99:a2:fa:ae:88:21:5d:dd:d0: 4e:20:e3:8e:42:11:eb:28:54:f0:02:78:e2:7c:15: 06:30:00:57:55:8e:0a:d7:e1:c8:63:78:57:8a:d7: f2:b0:b0:af:c6:5f:14:84:99:14:f7:5f:94:fd:1f: ba:69:3f:7b:d6:5c:f2:48:9c:f7:76:7e:a8:fc:c3: b3:aa:69:e7:13:91:4d:d6:e7:53:ef:82:7b:a8:ff: 07:e9:15:03:9e:f7:c6:2a:38:ec:84:79:69:89:75: 4c:c7:2b:1a:91:16:e2:7f:f2:43:96:40:6e:7c:2c: e8:78:12:c5:3c:9f:73:c8:f8:fd:15:20:dd:f2:ee: 6b:2b:7a:fa:19:a7:43:1a:1b:5b:f3:b0:5b:0e:69: 53:78:99:71:f2:fa:53:39:c6:09:7f:8b:9a:3c:03: 64:71:e3:7e:32:9c:f4:ba:57:d0:f9:e6:03:71:a8: e7:0b:8e:b7:ac:2e:d4:c4:f4:28:62:23:b0:c1:de: c3:8e:d6:86:84:0a:71:5b:72:b0:3c:f6:78:66:0b: 28:91:b5:7f:6f:3d:1f:4a:f6:56:09:14:31:6b:10: bf:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:42:E7:2B:15:2A:43:BC:1C:51:35:CC:52:E9:C9:B1:22:18:FF:44 X509v3 Authority Key Identifier: keyid:88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:18:89:07:d3:54:a4:d2:4e:57:6a:63:f6:7d:e0:b2:3f:9b: 0d:17:41:da:7a:dd:fd:8c:f4:47:a3:a5:6a:53:ab:a4:7b:64: 31:22:97:2f:ae:24:ac:36:73:19:0f:1c:af:43:2a:79:a7:49: 21:59:a3:28:7d:36:b4:80:d4:93:a0:35:3c:25:d9:ce:42:28: b0:1e:d9:7b:24:40:9f:38:69:b3:a5:94:95:77:89:2d:8a:b3: ed:e4:f8:db:fe:91:9c:ea:94:02:f3:55:83:77:0b:99:f4:64: 2f:ca:56:dd:72:01:48:4e:71:b8:de:a5:75:7a:fc:db:7b:57: 78:14:89:2e:e7:30:69:91:ac:41:ef:b2:f3:b4:02:09:35:79: 9c:55:a9:3b:4a:88:73:ce:fa:b7:71:ae:54:54:3b:31:1f:72: 13:b8:2a:ff:ef:b1:52:d8:94:4d:ae:04:e6:6a:4f:24:9e:22: 71:cf:df:cd:3d:2a:94:a2:de:00:ae:80:b8:30:92:02:78:4b: d4:d5:94:cd:29:30:43:dc:6e:54:62:b1:c3:89:10:79:e1:65: b7:1c:25:2a:23:60:20:64:43:22:ea:90:ae:f6:53:78:e4:46: d3:7d:b6:e9:9c:ca:5e:1a:1d:2a:c1:34:7f:ac:bc:e5:f7:b3: 83:0b:ec:ab -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm11wOSnF6KxDJ1jL9llrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4NWMwOTUyMmY2MzVmY2FmYTI5YmNlYmFjNzJjODk0ZTRm ZmVlZDIwHhcNMjUxMjA2MDMwMTIyWhcNMjUxMjA3MDMwMTIyWjAzMTEwLwYDVQQD EyhkNTQyZTcyYjE1MmE0M2JjMWM1MTM1Y2M1MmU5YzliMTIyMThmZjQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApwyQao+puQVUTcATOL2tcMJBVyV5 qhWH3E5MnVaCQGAyVmuZovquiCFd3dBOIOOOQhHrKFTwAnjifBUGMABXVY4K1+HI Y3hXitfysLCvxl8UhJkU91+U/R+6aT971lzySJz3dn6o/MOzqmnnE5FN1udT74J7 qP8H6RUDnvfGKjjshHlpiXVMxysakRbif/JDlkBufCzoeBLFPJ9zyPj9FSDd8u5r K3r6GadDGhtb87BbDmlTeJlx8vpTOcYJf4uaPANkceN+Mpz0ulfQ+eYDcajnC463 rC7UxPQoYiOwwd7DjtaGhApxW3KwPPZ4ZgsokbV/bz0fSvZWCRQxaxC/WQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNVC5ysVKkO8HFE1zFLpybEiGP9EMB8GA1UdIwQY MBaAFIhcCVIvY1/K+im866xyyJTk/+7SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUZ3SlVpOWpYOHI2S2J6cnJITElsT1RfN3RJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hMDJjMDgtZjMxYi00OGM1LWFkNDct ZjgzYjhkMDQwODdjLzEvaUZ3SlVpOWpYOHI2S2J6cnJITElsT1RfN3RJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi9hMDJjMDgtZjMxYi00OGM1LWFkNDctZjgzYjhkMDQwODdj LzEvaUZ3SlVpOWpYOHI2S2J6cnJITElsT1RfN3RJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYxiJB9NU pNJOV2pj9n3gsj+bDRdB2nrd/Yz0R6OlalOrpHtkMSKXL64krDZzGQ8cr0MqeadJ IVmjKH02tIDUk6A1PCXZzkIosB7ZeyRAnzhps6WUlXeJLYqz7eT42/6RnOqUAvNV g3cLmfRkL8pW3XIBSE5xuN6ldXr823tXeBSJLucwaZGsQe+y87QCCTV5nFWpO0qI c876t3GuVFQ7MR9yE7gq/++xUtiUTa4E5mpPJJ4icc/fzT0qlKLeAK6AuDCSAnhL 1NWUzSkwQ9xuVGKxw4kQeeFltxwlKiNgIGRDIuqQrvZTeORG03226ZzKXhodKsE0 f6y85fezgwvsqw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:01:22 2025 by rpki-client