This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft File: iW81xeAyGs0CFn3viAfwu29xwo0.mft (raw, json) Hash identifier: EK58Hsdx16lcoMkXd1Qp6KESCJYxjTkXKD5teZvBTIA= Subject key identifier: DC:03:C5:53:F5:20:B9:A9:7A:05:B7:7D:6A:C1:39:0C:D2:C4:A0:2A Authority key identifier: 89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D Certificate issuer: /CN=896f35c5e0321acd02167def8807f0bb6f71c28d Certificate serial: 019B34C5D6365BE23872A17D54DEA042CB45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft Manifest number: 1346 Signing time: Fri 19 Dec 2025 04:02:19 +0000 Manifest this update: Fri 19 Dec 2025 04:02:19 +0000 Manifest next update: Sat 20 Dec 2025 04:02:19 +0000 Files and hashes: 1: KzxZqybvsz4qWRvLNMoGl_b-dg0.roa (hash: waO3ZFTQ9Kiow9t+yCx6WlAToF1IQKM9UgVqX7Ju9ms=) 2: iW81xeAyGs0CFn3viAfwu29xwo0.crl (hash: +R1q7S8eawQdiYoSg4HAvZp+YRN6Q49mdtPcfvFGFCI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.crl rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 04:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:c5:d6:36:5b:e2:38:72:a1:7d:54:de:a0:42:cb:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=896f35c5e0321acd02167def8807f0bb6f71c28d Validity Not Before: Dec 19 04:02:19 2025 GMT Not After : Dec 20 04:02:19 2025 GMT Subject: CN=dc03c553f520b9a97a05b77d6ac1390cd2c4a02a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d7:1c:56:29:2b:86:73:fa:de:35:48:3c:2c: 8b:b4:39:96:47:c5:2d:f0:4d:e9:46:32:d5:49:2f: f4:98:01:47:50:64:fe:2e:fe:12:16:c1:0a:ee:87: 81:a3:0e:54:03:28:40:8d:db:8d:78:c2:6a:dd:a2: e6:55:50:63:13:b9:37:f6:48:bd:64:15:bf:26:77: da:94:02:8f:a3:17:80:75:fb:cc:e4:2e:0b:0d:56: a1:5d:dc:a3:69:58:6f:ee:be:57:f2:4a:51:b4:02: b4:a9:9d:12:8e:f7:e1:ff:86:7b:a4:e4:8e:c9:02: 40:2c:71:27:9e:38:d2:5a:3f:50:3f:9d:62:c5:70: af:a8:22:7a:5d:30:75:7d:eb:92:b5:f9:cf:23:98: ff:ea:ff:2f:d4:6b:49:88:93:62:22:58:46:bf:f1: be:7c:18:ab:77:37:94:37:ee:ed:6d:5b:8f:6d:68: 2b:e6:b4:17:33:46:80:d4:c8:e4:8f:b3:68:ac:21: 67:99:34:52:ce:bc:6f:a4:b1:07:b4:ee:6e:57:b1: c0:e6:83:38:5c:60:9b:6c:b8:72:e5:db:0f:73:f7: 8f:9f:14:8b:00:fc:62:64:79:b4:c4:e1:4b:06:c2: 7f:3c:16:a0:3f:6b:f6:54:73:fe:b1:55:9e:99:21: 30:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:03:C5:53:F5:20:B9:A9:7A:05:B7:7D:6A:C1:39:0C:D2:C4:A0:2A X509v3 Authority Key Identifier: keyid:89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:0b:44:07:b9:8c:2d:fb:fb:2b:67:e4:3d:d0:6b:23:e2:05: 06:7e:27:e4:cb:c6:86:7f:7b:eb:95:a3:4a:db:39:d3:d9:eb: 14:42:a1:36:9f:58:e8:61:cd:36:51:88:8d:1a:d9:cc:ce:a7: 93:57:96:a6:b9:70:ee:f5:81:b4:ba:6a:f2:4a:e3:1f:06:35: 08:7d:43:0d:17:5b:26:47:2a:b5:76:d2:17:07:6a:3c:e5:1f: 65:33:c3:e8:4b:4e:c5:54:b0:17:40:b1:a3:de:6d:26:91:d5: 2c:88:38:ca:cd:dc:3c:61:33:5c:38:24:16:10:b4:65:60:f5: a5:0d:5b:d8:ca:e8:f2:16:26:55:1b:ce:37:5c:e9:dd:82:72: 2b:a1:af:e9:0b:8e:38:26:da:64:cd:66:ae:f4:cd:39:97:bb: b2:69:37:61:7a:57:18:54:4b:45:a9:0e:1a:86:cb:aa:fb:a8: 74:e4:d8:97:58:71:e3:72:06:2a:b3:db:dc:0b:64:c9:b0:47: 70:63:52:7e:4a:1a:64:74:a2:71:d3:ae:7c:c9:63:8f:04:00: 95:bb:e8:1b:7e:82:dc:6c:7f:13:47:57:38:05:1f:2b:af:21: 5c:68:1f:53:4d:74:78:1f:6b:d5:34:6b:80:2f:bd:ad:e9:dc: a9:d8:1d:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0xdY2W+I4cqF9VN6gQstFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5NmYzNWM1ZTAzMjFhY2QwMjE2N2RlZjg4MDdmMGJiNmY3 MWMyOGQwHhcNMjUxMjE5MDQwMjE5WhcNMjUxMjIwMDQwMjE5WjAzMTEwLwYDVQQD EyhkYzAzYzU1M2Y1MjBiOWE5N2EwNWI3N2Q2YWMxMzkwY2QyYzRhMDJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArtccVikrhnP63jVIPCyLtDmWR8Ut 8E3pRjLVSS/0mAFHUGT+Lv4SFsEK7oeBow5UAyhAjduNeMJq3aLmVVBjE7k39ki9 ZBW/JnfalAKPoxeAdfvM5C4LDVahXdyjaVhv7r5X8kpRtAK0qZ0Sjvfh/4Z7pOSO yQJALHEnnjjSWj9QP51ixXCvqCJ6XTB1feuStfnPI5j/6v8v1GtJiJNiIlhGv/G+ fBirdzeUN+7tbVuPbWgr5rQXM0aA1Mjkj7NorCFnmTRSzrxvpLEHtO5uV7HA5oM4 XGCbbLhy5dsPc/ePnxSLAPxiZHm0xOFLBsJ/PBagP2v2VHP+sVWemSEwbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNwDxVP1ILmpegW3fWrBOQzSxKAqMB8GA1UdIwQY MBaAFIlvNcXgMhrNAhZ974gH8LtvccKNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVc4MXhlQXlHczBDRm4zdmlBZnd1Mjl4d28wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC84MGM0YzAtYzcyOS00MThlLTgwYWYt MjI5OWE2N2U2MDAxLzEvaVc4MXhlQXlHczBDRm4zdmlBZnd1Mjl4d28wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC84MGM0YzAtYzcyOS00MThlLTgwYWYtMjI5OWE2N2U2MDAx LzEvaVc4MXhlQXlHczBDRm4zdmlBZnd1Mjl4d28wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACQtEB7mM Lfv7K2fkPdBrI+IFBn4n5MvGhn9765WjSts509nrFEKhNp9Y6GHNNlGIjRrZzM6n k1eWprlw7vWBtLpq8krjHwY1CH1DDRdbJkcqtXbSFwdqPOUfZTPD6EtOxVSwF0Cx o95tJpHVLIg4ys3cPGEzXDgkFhC0ZWD1pQ1b2Mro8hYmVRvON1zp3YJyK6Gv6QuO OCbaZM1mrvTNOZe7smk3YXpXGFRLRakOGobLqvuodOTYl1hx43IGKrPb3AtkybBH cGNSfkoaZHSicdOufMljjwQAlbvoG36C3Gx/E0dXOAUfK68hXGgfU010eB9r1TRr gC+9rencqdgd0A== -----END CERTIFICATE-----Generated at Fri Dec 19 12:08:10 2025 by rpki-client