This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft File: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft (raw, json) Hash identifier: Ws4bpnBF6LFMA1gmF9Ga9MB8BWMw/Aa53SzHJwWFNQU= Subject key identifier: C0:47:28:27:CB:EB:75:B5:20:44:42:3F:79:1C:EC:62:C5:6E:23:B3 Authority key identifier: 22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32 Certificate issuer: /CN=225cf0d31704b59d7eeb018548202d3a570da932 Certificate serial: 019B0F3780AB7B2A545B30254061820B32F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft Manifest number: 1645 Signing time: Thu 11 Dec 2025 21:00:53 +0000 Manifest this update: Thu 11 Dec 2025 21:00:53 +0000 Manifest next update: Fri 12 Dec 2025 21:00:53 +0000 Files and hashes: 1: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl (hash: ASjJj3m8YEI0eaPMN4BNKb7xJZl2pgP7S+JQ2LsD9o4=) 2: rRTGMxhiOpV_X766sLDj0H5s3lk.roa (hash: Fk8zZgs5ltomuLpQlhRuRyNBCQpASYJvnVS5AQLwlOo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:37:80:ab:7b:2a:54:5b:30:25:40:61:82:0b:32:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=225cf0d31704b59d7eeb018548202d3a570da932 Validity Not Before: Dec 11 21:00:53 2025 GMT Not After : Dec 12 21:00:53 2025 GMT Subject: CN=c0472827cbeb75b52044423f791cec62c56e23b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:fc:c4:9d:6a:93:92:9c:5f:ed:a1:db:de:f9: 02:bc:50:96:a9:7e:c4:52:e2:6f:6e:d8:03:ad:13: 8b:87:0c:15:65:9f:90:8c:46:4a:15:7a:62:8b:ec: 58:18:c0:5d:96:b5:3a:89:dd:8f:88:2e:c2:0d:20: e4:d5:77:4f:90:e5:8c:a9:ef:f9:22:aa:00:10:c8: d3:a5:b7:8c:4e:d4:03:07:6b:f5:0f:ef:f6:f5:72: e8:c2:b7:28:48:ef:36:e0:c7:fb:93:30:5a:e6:ee: c3:1e:aa:d8:81:d3:d1:44:e3:fa:3a:6f:7d:53:38: 06:ec:46:0b:78:38:48:2d:7e:c8:0d:0e:fd:bc:b4: 20:db:0f:e7:00:cb:d4:c1:fe:c0:ee:6e:42:ea:b4: 9d:28:d9:68:1d:e1:1f:fc:20:d2:18:40:21:6b:b9: af:ee:df:80:86:2f:f3:06:d1:81:69:2b:b7:0d:52: 3c:01:28:47:1b:34:c1:cd:8d:6d:1f:f5:1a:9f:e4: e5:5a:2a:ab:13:82:82:a3:11:78:45:10:0b:30:22: 9e:2e:c3:b0:a6:fc:ae:7a:44:25:76:7a:5d:f0:59: ff:12:07:35:8e:43:3b:c7:ea:25:eb:1f:93:c2:78: 31:4a:eb:a4:93:f7:a7:da:3c:96:3d:5b:e8:56:b9: c9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:47:28:27:CB:EB:75:B5:20:44:42:3F:79:1C:EC:62:C5:6E:23:B3 X509v3 Authority Key Identifier: keyid:22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:2f:d0:00:9c:d6:6f:b8:c5:21:45:53:68:10:fb:aa:01:54: 28:56:b1:52:00:a7:5f:bd:21:00:41:8d:a4:91:20:ea:27:ae: 6e:ee:b9:1c:01:01:ed:b9:9f:d0:06:52:b3:9e:47:5a:7d:3b: a3:dd:56:9b:6e:29:60:0f:51:d4:7c:37:32:d6:ed:ec:72:a0: 41:09:0c:a0:13:f5:75:b1:f9:36:9a:81:fd:3c:a3:08:08:bc: c9:a7:ba:d5:50:9a:65:8c:f8:3d:c4:70:5f:15:0e:07:30:c0: cc:10:78:65:85:5c:b2:f3:22:a7:2d:8a:7d:db:34:f1:61:d6: ad:bf:bc:19:fe:4a:db:5b:3d:26:f1:c6:32:ae:e9:aa:86:c5: a2:44:96:d6:05:6a:48:eb:37:3e:ea:dc:c6:f7:6c:73:ba:d8: 65:9b:3c:7d:db:33:9e:7a:af:91:6e:29:5d:9f:a8:72:c3:d3: a0:16:95:41:20:76:47:90:e7:6b:7a:3b:cf:29:85:83:25:22: 5a:e5:2a:85:c9:f1:1c:64:1d:7b:3e:01:67:02:1a:9c:9c:56: 35:e3:ad:2a:14:f8:9c:db:0a:f3:9a:02:2b:19:c7:28:1a:4e: ca:bf:f7:e3:96:e0:5c:6c:5e:74:09:86:f6:89:5f:80:48:30: af:c2:88:40 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPN4CreypUWzAlQGGCCzL5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyNWNmMGQzMTcwNGI1OWQ3ZWViMDE4NTQ4MjAyZDNhNTcw ZGE5MzIwHhcNMjUxMjExMjEwMDUzWhcNMjUxMjEyMjEwMDUzWjAzMTEwLwYDVQQD EyhjMDQ3MjgyN2NiZWI3NWI1MjA0NDQyM2Y3OTFjZWM2MmM1NmUyM2IzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAofzEnWqTkpxf7aHb3vkCvFCWqX7E UuJvbtgDrROLhwwVZZ+QjEZKFXpii+xYGMBdlrU6id2PiC7CDSDk1XdPkOWMqe/5 IqoAEMjTpbeMTtQDB2v1D+/29XLowrcoSO824Mf7kzBa5u7DHqrYgdPRROP6Om99 UzgG7EYLeDhILX7IDQ79vLQg2w/nAMvUwf7A7m5C6rSdKNloHeEf/CDSGEAha7mv 7t+Ahi/zBtGBaSu3DVI8AShHGzTBzY1tH/Uan+TlWiqrE4KCoxF4RRALMCKeLsOw pvyuekQldnpd8Fn/Egc1jkM7x+ol6x+TwngxSuukk/en2jyWPVvoVrnJ0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMBHKCfL63W1IERCP3kc7GLFbiOzMB8GA1UdIwQY MBaAFCJc8NMXBLWdfusBhUggLTpXDakyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWx6dzB4Y0V0WjEtNndHRlNDQXRPbGNOcVRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS80ZGY0MjktZjc3Ni00ZmQzLThkZTQt MDBiYzkwM2QyNjIxLzEvSWx6dzB4Y0V0WjEtNndHRlNDQXRPbGNOcVRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS80ZGY0MjktZjc3Ni00ZmQzLThkZTQtMDBiYzkwM2QyNjIx LzEvSWx6dzB4Y0V0WjEtNndHRlNDQXRPbGNOcVRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYC/QAJzW b7jFIUVTaBD7qgFUKFaxUgCnX70hAEGNpJEg6ieubu65HAEB7bmf0AZSs55HWn07 o91Wm24pYA9R1Hw3Mtbt7HKgQQkMoBP1dbH5NpqB/TyjCAi8yae61VCaZYz4PcRw XxUOBzDAzBB4ZYVcsvMipy2Kfds08WHWrb+8Gf5K21s9JvHGMq7pqobFokSW1gVq SOs3Purcxvdsc7rYZZs8fdsznnqvkW4pXZ+ocsPToBaVQSB2R5Dna3o7zymFgyUi WuUqhcnxHGQdez4BZwIanJxWNeOtKhT4nNsK85oCKxnHKBpOyr/345bgXGxedAmG 9olfgEgwr8KIQA== -----END CERTIFICATE-----Generated at Thu Dec 11 23:13:02 2025 by rpki-client