This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft File: iaBBZwABZgo3ILd9dk2DaFIZATg.mft (raw, json) Hash identifier: Vx5+J2XSjCZebT82tROoPP9ct9wCwR84+4pOXY9Tst8= Subject key identifier: 44:BD:4B:FD:88:0A:31:F8:D4:6C:95:55:12:05:45:37:86:81:AF:E5 Authority key identifier: 89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38 Certificate issuer: /CN=89a041670001660a3720b77d764d836852190138 Certificate serial: 019B18DF86ABD480C16402B81DE4F1954D82 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft Manifest number: 057C Signing time: Sat 13 Dec 2025 18:01:00 +0000 Manifest this update: Sat 13 Dec 2025 18:01:00 +0000 Manifest next update: Sun 14 Dec 2025 18:01:00 +0000 Files and hashes: 1: YYgzCJR0-0gXgfzyBpOEkQ4pXkc.roa (hash: DEoGAyI9/dVWa6pEX3QAslv+mwYbksED/2fQOt0a8aI=) 2: iaBBZwABZgo3ILd9dk2DaFIZATg.crl (hash: jT4F9gPEZMf7aRSNmmQcOnahGidGAnQi1/LR02z+Dhk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:18:df:86:ab:d4:80:c1:64:02:b8:1d:e4:f1:95:4d:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89a041670001660a3720b77d764d836852190138 Validity Not Before: Dec 13 18:01:00 2025 GMT Not After : Dec 14 18:01:00 2025 GMT Subject: CN=44bd4bfd880a31f8d46c9555120545378681afe5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:47:de:a9:da:a8:41:c3:79:c9:f8:15:bd:81: 6a:42:dc:97:da:98:6a:b0:6d:ba:dd:21:f4:99:85: 88:c8:39:3f:42:f1:c8:20:44:4d:2f:7b:af:43:5c: 03:37:b6:43:67:3b:b0:bd:68:03:5d:07:ed:fb:a6: 51:92:8f:00:1c:ea:28:07:25:92:e3:e9:97:79:06: f2:37:a4:38:3d:ab:91:4c:bd:bc:97:2e:d8:fa:8a: 4f:87:b7:b7:14:23:8d:b6:11:d9:95:5a:36:c7:e5: 3d:56:5b:08:00:92:b8:e2:95:fb:05:3a:21:c2:88: c3:e5:78:f0:bf:fa:3b:e9:76:6d:03:7a:0c:dd:ff: 78:2c:1c:5a:98:8f:55:6f:ec:c3:cc:23:80:67:25: a3:3e:01:c1:b2:09:05:1b:6b:05:33:8f:ca:76:66: 2d:5e:9d:14:8b:64:b1:76:2c:37:81:bc:36:20:7c: b2:55:e9:12:f9:2e:d1:9b:d8:33:05:17:1b:67:97: 6c:b1:93:4f:7a:31:ea:c0:65:b4:ec:e9:df:97:5f: d8:3b:fc:47:4a:67:bc:f6:e5:9c:66:32:38:a5:30: 19:fe:12:8c:d8:80:d8:0a:3e:10:fa:15:ab:b6:65: 76:c6:43:28:91:a7:62:99:0d:80:6e:a6:0c:d9:6e: b1:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:BD:4B:FD:88:0A:31:F8:D4:6C:95:55:12:05:45:37:86:81:AF:E5 X509v3 Authority Key Identifier: keyid:89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:9f:15:d7:21:c3:d7:f6:ef:d3:11:25:cd:be:2a:a6:81:34: fe:86:38:86:aa:1f:7e:6f:47:8f:a2:09:63:c4:e1:51:69:a3: 44:d3:13:c5:ec:42:4d:b0:71:10:80:7a:27:21:64:8b:5c:e9: 37:29:8c:4c:58:ab:e0:b1:35:ec:2e:16:e0:a1:f1:f3:07:10: aa:b8:31:83:00:07:a2:95:94:f5:a2:ab:3e:2d:f3:13:f4:b9: 69:b6:11:17:75:3c:8c:8b:c9:88:af:ea:8c:11:a6:09:53:0c: 7b:75:3d:84:96:ed:df:9f:ac:d6:1b:2e:65:20:66:d4:26:11: 4b:5a:b9:a2:85:2c:f5:ae:c2:21:3f:09:5e:8c:01:4b:28:25: 55:f8:31:5f:9d:aa:c7:81:48:e8:5e:b4:22:40:4f:c4:20:a0: d2:4a:2d:ed:72:f2:61:f8:bb:2a:e8:d2:c4:ed:7a:b9:1b:13: 84:ae:4e:5c:05:39:96:5f:10:71:1e:ac:69:f3:67:8e:38:87: 98:78:d3:a0:f9:f1:82:01:bc:a2:36:de:4a:e3:3b:9a:16:48: f6:ca:c7:f2:c9:25:e1:d2:13:80:1f:49:d5:54:99:2e:70:3f: 91:4e:64:b7:fe:49:19:6e:0c:c2:ac:7b:99:d9:e0:6c:2b:d2: 90:69:42:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsY34ar1IDBZAK4HeTxlU2CMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5YTA0MTY3MDAwMTY2MGEzNzIwYjc3ZDc2NGQ4MzY4NTIx OTAxMzgwHhcNMjUxMjEzMTgwMTAwWhcNMjUxMjE0MTgwMTAwWjAzMTEwLwYDVQQD Eyg0NGJkNGJmZDg4MGEzMWY4ZDQ2Yzk1NTUxMjA1NDUzNzg2ODFhZmU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5EfeqdqoQcN5yfgVvYFqQtyX2phq sG263SH0mYWIyDk/QvHIIERNL3uvQ1wDN7ZDZzuwvWgDXQft+6ZRko8AHOooByWS 4+mXeQbyN6Q4PauRTL28ly7Y+opPh7e3FCONthHZlVo2x+U9VlsIAJK44pX7BToh wojD5Xjwv/o76XZtA3oM3f94LBxamI9Vb+zDzCOAZyWjPgHBsgkFG2sFM4/KdmYt Xp0Ui2Sxdiw3gbw2IHyyVekS+S7Rm9gzBRcbZ5dssZNPejHqwGW07Onfl1/YO/xH Sme89uWcZjI4pTAZ/hKM2IDYCj4Q+hWrtmV2xkMokadimQ2AbqYM2W6x9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFES9S/2ICjH41GyVVRIFRTeGga/lMB8GA1UdIwQY MBaAFImgQWcAAWYKNyC3fXZNg2hSGQE4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWFCQlp3QUJaZ28zSUxkOWRrMkRhRklaQVRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9kNDQ2OWEtMTNhOC00NzJjLWI0NmYt NGJiNDE0NjIzYTE0LzEvaWFCQlp3QUJaZ28zSUxkOWRrMkRhRklaQVRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC9kNDQ2OWEtMTNhOC00NzJjLWI0NmYtNGJiNDE0NjIzYTE0 LzEvaWFCQlp3QUJaZ28zSUxkOWRrMkRhRklaQVRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjp8V1yHD 1/bv0xElzb4qpoE0/oY4hqoffm9Hj6IJY8ThUWmjRNMTxexCTbBxEIB6JyFki1zp NymMTFir4LE17C4W4KHx8wcQqrgxgwAHopWU9aKrPi3zE/S5abYRF3U8jIvJiK/q jBGmCVMMe3U9hJbt35+s1hsuZSBm1CYRS1q5ooUs9a7CIT8JXowBSyglVfgxX52q x4FI6F60IkBPxCCg0kot7XLyYfi7KujSxO16uRsThK5OXAU5ll8QcR6safNnjjiH mHjToPnxggG8ojbeSuM7mhZI9srH8skl4dITgB9J1VSZLnA/kU5kt/5JGW4Mwqx7 mdngbCvSkGlCWA== -----END CERTIFICATE-----Generated at Sun Dec 14 03:32:19 2025 by rpki-client