This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.mft File: iWkzRGOKywU2WC-rCJh2V472vFY.mft (raw, json) Hash identifier: hiEIaW2Wd/QElVE9iDZdgp+cK4XTgvZugJSA9kI9Nbc= Subject key identifier: 23:54:CA:CF:B4:5D:14:48:50:AE:98:29:87:B1:99:8D:1A:9D:EB:E0 Authority key identifier: 89:69:33:44:63:8A:CB:05:36:58:2F:AB:08:98:76:57:8E:F6:BC:56 Certificate issuer: /CN=89693344638acb0536582fab089876578ef6bc56 Certificate serial: 019AF12EA2A5C311807D88456A4E4479A420 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWkzRGOKywU2WC-rCJh2V472vFY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 01:02:36 +0000 Manifest this update: Sat 06 Dec 2025 01:02:36 +0000 Manifest next update: Sun 07 Dec 2025 01:02:36 +0000 Files and hashes: 1: fCZrKI-6j3JypnfEm5_gs1n5dFw.roa (hash: iZ/p7v8ZHeoQxTyUiH1KnvRb3hj8zk8sCV0wmzxeW2k=) 2: iWkzRGOKywU2WC-rCJh2V472vFY.crl (hash: 1n34VX0IZixqzaS8dwtNvd8AvEl14wV71b5orawkUfk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.crl rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.mft rsync://rpki.ripe.net/repository/DEFAULT/iWkzRGOKywU2WC-rCJh2V472vFY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:a2:a5:c3:11:80:7d:88:45:6a:4e:44:79:a4:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89693344638acb0536582fab089876578ef6bc56 Validity Not Before: Dec 6 01:02:36 2025 GMT Not After : Dec 7 01:02:36 2025 GMT Subject: CN=2354cacfb45d144850ae982987b1998d1a9debe0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d4:17:fa:8a:99:87:f2:d2:16:a8:38:8f:15: 75:0f:71:88:df:d2:7e:b9:03:ca:ef:22:e5:7b:c0: 5c:e2:c8:42:47:96:0f:2c:3b:42:89:e0:26:64:e0: cf:08:95:84:40:f7:27:53:db:43:62:cd:17:26:a4: cb:e2:10:83:c9:a9:2e:68:41:1e:ff:26:c5:0e:07: 83:af:eb:46:70:23:56:02:40:a9:dd:d4:29:ac:d8: b8:2a:d9:d4:a4:d5:8e:35:43:7c:10:16:00:ee:f9: 21:25:d4:32:8e:1b:92:43:54:e7:1e:db:75:87:70: 21:96:5c:a9:9a:ff:4e:b3:c5:be:8d:11:6c:5e:aa: c6:c9:17:78:d5:d9:5a:e8:70:84:07:e6:49:4b:fe: e4:da:83:c3:57:f9:b0:74:77:d8:52:fa:5b:6b:4f: 3e:25:aa:6c:1d:a1:75:7e:b2:97:aa:1f:b8:82:8a: 0f:07:9d:78:47:2d:74:2f:2a:50:0b:e2:41:67:cc: df:d0:83:7e:64:ee:e4:21:26:c9:e2:dd:b1:ce:b6: dd:a5:af:33:33:db:96:45:8b:6d:a7:b5:a6:76:4e: bc:27:42:2b:f7:1a:e6:58:65:0b:42:9a:aa:d4:37: 38:d9:30:0c:a1:62:93:93:63:c5:fa:8b:c8:43:8c: 46:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:54:CA:CF:B4:5D:14:48:50:AE:98:29:87:B1:99:8D:1A:9D:EB:E0 X509v3 Authority Key Identifier: keyid:89:69:33:44:63:8A:CB:05:36:58:2F:AB:08:98:76:57:8E:F6:BC:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWkzRGOKywU2WC-rCJh2V472vFY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:6d:25:e8:65:b6:e3:28:41:25:4d:1d:18:94:61:88:93:a9: 18:00:c7:6c:4c:34:72:76:dd:d4:88:26:7b:05:fd:7c:fd:8c: 95:1d:70:7f:33:38:f4:62:83:be:49:95:8b:c9:e2:38:71:b3: 3f:f4:45:f0:41:2c:9a:14:83:37:7b:2d:8e:dd:9d:ad:17:29: 76:1e:dc:30:23:af:06:5a:6e:d0:5b:e5:e2:af:aa:59:5e:a3: 7f:c0:9a:06:f1:16:3a:b3:ef:fe:41:2f:c5:35:0e:d9:82:26: 37:5c:23:0e:7e:5d:46:43:c4:4a:f2:b7:8f:bf:c7:53:34:97: ac:1e:a0:e9:5f:51:49:f3:fa:0f:02:b8:20:9a:7f:02:dc:c6: 46:c1:00:09:31:b8:ee:e0:fd:63:7f:a8:b7:1f:9f:2f:06:7d: 31:46:e6:f3:45:fb:4d:1d:6b:4f:71:ff:54:c7:bb:b6:68:b8: e0:07:2c:85:e8:25:4f:8b:b9:86:0a:5a:3e:7a:a5:1c:a6:e9: 92:30:02:0d:57:49:a7:a8:f4:c6:68:93:02:97:3e:ea:2d:1e: 8b:b2:6c:8c:03:f1:c9:33:8f:84:68:ae:45:14:63:87:ee:ed: 2f:8d:a8:97:cf:bf:7a:5b:d9:2e:73:dd:f6:3b:37:bf:7b:c7: e3:23:e8:88 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLqKlwxGAfYhFak5EeaQgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5NjkzMzQ0NjM4YWNiMDUzNjU4MmZhYjA4OTg3NjU3OGVm NmJjNTYwHhcNMjUxMjA2MDEwMjM2WhcNMjUxMjA3MDEwMjM2WjAzMTEwLwYDVQQD EygyMzU0Y2FjZmI0NWQxNDQ4NTBhZTk4Mjk4N2IxOTk4ZDFhOWRlYmUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxNQX+oqZh/LSFqg4jxV1D3GI39J+ uQPK7yLle8Bc4shCR5YPLDtCieAmZODPCJWEQPcnU9tDYs0XJqTL4hCDyakuaEEe /ybFDgeDr+tGcCNWAkCp3dQprNi4KtnUpNWONUN8EBYA7vkhJdQyjhuSQ1TnHtt1 h3Ahllypmv9Os8W+jRFsXqrGyRd41dla6HCEB+ZJS/7k2oPDV/mwdHfYUvpba08+ JapsHaF1frKXqh+4gooPB514Ry10LypQC+JBZ8zf0IN+ZO7kISbJ4t2xzrbdpa8z M9uWRYttp7Wmdk68J0Ir9xrmWGULQpqq1Dc42TAMoWKTk2PF+ovIQ4xG7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCNUys+0XRRIUK6YKYexmY0anevgMB8GA1UdIwQY MBaAFIlpM0RjissFNlgvqwiYdleO9rxWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVdrelJHT0t5d1UyV0MtckNKaDJWNDcydkZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi83ZDg5MDAtYmU3Ni00MGUyLThjOTkt NzBmOTQzZWFjNGRiLzEvaVdrelJHT0t5d1UyV0MtckNKaDJWNDcydkZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNi83ZDg5MDAtYmU3Ni00MGUyLThjOTktNzBmOTQzZWFjNGRi LzEvaVdrelJHT0t5d1UyV0MtckNKaDJWNDcydkZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPm0l6GW2 4yhBJU0dGJRhiJOpGADHbEw0cnbd1IgmewX9fP2MlR1wfzM49GKDvkmVi8niOHGz P/RF8EEsmhSDN3stjt2drRcpdh7cMCOvBlpu0Fvl4q+qWV6jf8CaBvEWOrPv/kEv xTUO2YImN1wjDn5dRkPESvK3j7/HUzSXrB6g6V9RSfP6DwK4IJp/AtzGRsEACTG4 7uD9Y3+otx+fLwZ9MUbm80X7TR1rT3H/VMe7tmi44AcsheglT4u5hgpaPnqlHKbp kjACDVdJp6j0xmiTApc+6i0ei7JsjAPxyTOPhGiuRRRjh+7tL42ol8+/elvZLnPd 9js3v3vH4yPoiA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:19:14 2025 by rpki-client