This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft File: iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft (raw, json) Hash identifier: vBn8WJTd7pKQePY1IDcLpWakV3msZFG9UT6tAzVHdxU= Subject key identifier: A8:35:82:08:73:2F:B2:2B:6F:CE:4F:44:3B:28:C0:1B:D6:8A:09:24 Authority key identifier: 89:16:AA:A5:D2:52:FD:90:14:5F:ED:AC:68:37:62:D6:E2:07:41:55 Certificate issuer: /CN=8916aaa5d252fd90145fedac683762d6e2074155 Certificate serial: 019B59083AC44045737FF377744FA94EBEDD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft Manifest number: 1797 Signing time: Fri 26 Dec 2025 05:01:10 +0000 Manifest this update: Fri 26 Dec 2025 05:01:10 +0000 Manifest next update: Sat 27 Dec 2025 05:01:10 +0000 Files and hashes: 1: EJO9ljE1s0Q84FuNpxDY98O5gUs.roa (hash: MidhZCUKLP8FjCtsor/fdefcfGoS6d1va0RAyvBU+x4=) 2: iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl (hash: WQUu1pQ7Cz1rR4vZIZoi+gwOHsD61Eqk2eMecgp1n6E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 05:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:08:3a:c4:40:45:73:7f:f3:77:74:4f:a9:4e:be:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8916aaa5d252fd90145fedac683762d6e2074155 Validity Not Before: Dec 26 05:01:10 2025 GMT Not After : Dec 27 05:01:10 2025 GMT Subject: CN=a8358208732fb22b6fce4f443b28c01bd68a0924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:c0:f4:eb:28:7b:26:ce:ec:d0:31:c0:a3:97: a0:37:45:89:28:fb:7a:27:ca:ef:8f:1b:f2:bd:74: b9:f2:96:d7:61:5c:fa:a6:7c:39:55:6a:ab:44:57: 8f:16:b5:f2:76:87:9b:11:f8:8f:7d:16:88:e7:10: 15:52:f5:55:f9:7b:f7:60:33:c4:1d:2e:db:25:69: 10:3a:00:b6:0a:e3:52:23:9e:c8:18:71:f8:82:5a: 8c:6d:16:27:2d:d7:db:18:d6:f8:46:2e:b8:6e:a1: 52:54:ac:1f:80:cb:59:3b:d9:60:b2:90:6e:59:20: 3c:66:59:11:69:02:61:84:07:61:1d:b5:4e:04:7a: c1:9f:c0:de:fc:c3:f9:06:39:0e:bd:19:81:0a:93: 67:c7:77:de:2f:0a:de:e2:6c:18:1f:6a:d5:98:be: da:66:66:45:f3:9e:80:f9:f8:f1:94:33:e4:aa:bb: ff:32:45:8c:a5:54:da:9e:31:ba:e4:e9:7e:2c:2c: 64:31:ad:c9:ed:5f:b1:b3:da:39:d5:d3:2b:45:37: c9:76:4a:bc:5e:85:31:de:02:ab:0b:58:13:5d:47: f4:06:b0:fc:8d:a5:cc:96:a1:49:8f:5f:0d:46:c1: 9c:37:d9:6e:b9:6f:aa:bb:d3:d2:13:2b:bd:22:5f: 20:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:35:82:08:73:2F:B2:2B:6F:CE:4F:44:3B:28:C0:1B:D6:8A:09:24 X509v3 Authority Key Identifier: keyid:89:16:AA:A5:D2:52:FD:90:14:5F:ED:AC:68:37:62:D6:E2:07:41:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:cd:88:fa:b6:f2:47:dc:57:da:e4:36:28:cb:ca:75:95:1a: 77:c5:6b:c8:5a:83:ef:83:84:64:79:49:8a:d6:ce:64:9d:e5: b3:65:81:d7:5d:e7:4d:4c:1b:ff:4c:9e:1f:34:b0:48:63:f8: c0:0d:31:55:38:e2:df:58:94:5d:47:81:10:3d:a9:af:ef:e8: 5e:4a:bf:01:c0:92:27:7f:ae:eb:f2:59:66:7a:3a:cf:df:a1: 2a:c6:b9:af:08:68:df:90:ac:61:1a:39:8f:d3:1f:4c:5f:ae: d1:3a:e3:5c:b0:e9:a3:1b:97:11:c8:42:ab:53:06:be:e9:7c: 98:52:3f:28:e7:b6:e9:41:11:01:93:b9:c2:73:7e:40:df:2c: fa:74:28:85:f4:71:a8:67:1d:f1:ee:32:4b:07:86:94:da:c7: 3f:b1:40:9f:5c:a9:8d:07:9c:93:8e:80:f9:69:6a:bf:62:27: 2a:27:6c:71:33:60:31:13:02:80:12:f0:74:5b:1d:17:f1:2b: f8:68:e8:37:03:54:2f:b7:c9:a8:83:a1:4a:3e:0c:3e:ac:5e: 24:0b:a9:3a:53:25:02:b6:08:03:d0:53:db:3a:2c:ff:02:d7: 8c:7b:ac:c6:5f:6e:b6:fe:dd:ba:1d:8f:b0:79:68:6b:60:5b: 3d:e7:1f:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZCDrEQEVzf/N3dE+pTr7dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5MTZhYWE1ZDI1MmZkOTAxNDVmZWRhYzY4Mzc2MmQ2ZTIw NzQxNTUwHhcNMjUxMjI2MDUwMTEwWhcNMjUxMjI3MDUwMTEwWjAzMTEwLwYDVQQD EyhhODM1ODIwODczMmZiMjJiNmZjZTRmNDQzYjI4YzAxYmQ2OGEwOTI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2sD06yh7Js7s0DHAo5egN0WJKPt6 J8rvjxvyvXS58pbXYVz6pnw5VWqrRFePFrXydoebEfiPfRaI5xAVUvVV+Xv3YDPE HS7bJWkQOgC2CuNSI57IGHH4glqMbRYnLdfbGNb4Ri64bqFSVKwfgMtZO9lgspBu WSA8ZlkRaQJhhAdhHbVOBHrBn8De/MP5BjkOvRmBCpNnx3feLwre4mwYH2rVmL7a ZmZF856A+fjxlDPkqrv/MkWMpVTanjG65Ol+LCxkMa3J7V+xs9o51dMrRTfJdkq8 XoUx3gKrC1gTXUf0BrD8jaXMlqFJj18NRsGcN9luuW+qu9PSEyu9Il8gowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKg1gghzL7Irb85PRDsowBvWigkkMB8GA1UdIwQY MBaAFIkWqqXSUv2QFF/trGg3YtbiB0FVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVJhcXBkSlNfWkFVWC0yc2FEZGkxdUlIUVZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS85MDc0MDktNWU2MS00YzY2LTk0ZTYt ZDY5ZWE5M2NiYWZiLzEvaVJhcXBkSlNfWkFVWC0yc2FEZGkxdUlIUVZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS85MDc0MDktNWU2MS00YzY2LTk0ZTYtZDY5ZWE5M2NiYWZi LzEvaVJhcXBkSlNfWkFVWC0yc2FEZGkxdUlIUVZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhc2I+rby R9xX2uQ2KMvKdZUad8VryFqD74OEZHlJitbOZJ3ls2WB113nTUwb/0yeHzSwSGP4 wA0xVTji31iUXUeBED2pr+/oXkq/AcCSJ3+u6/JZZno6z9+hKsa5rwho35CsYRo5 j9MfTF+u0TrjXLDpoxuXEchCq1MGvul8mFI/KOe26UERAZO5wnN+QN8s+nQohfRx qGcd8e4ySweGlNrHP7FAn1ypjQeck46A+Wlqv2InKidscTNgMRMCgBLwdFsdF/Er +GjoNwNUL7fJqIOhSj4MPqxeJAupOlMlArYIA9BT2zos/wLXjHusxl9utv7duh2P sHloa2BbPecfEA== -----END CERTIFICATE-----Generated at Fri Dec 26 14:16:52 2025 by rpki-client