This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.mft File: io-pkrwKYdssvnhuHFnTYMzlRIY.mft (raw, json) Hash identifier: cP3JEtUOsm3Cts+wHCSL7i/oEtOEKmZjU3zFxhJ6/7c= Subject key identifier: F3:87:71:44:BA:DF:F3:98:E5:D6:5C:76:57:8F:55:AD:D1:3D:25:C5 Authority key identifier: 8A:8F:A9:92:BC:0A:61:DB:2C:BE:78:6E:1C:59:D3:60:CC:E5:44:86 Certificate issuer: /CN=8a8fa992bc0a61db2cbe786e1c59d360cce54486 Certificate serial: 019B360E9C64713D4079A8647EF40C52DED0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/io-pkrwKYdssvnhuHFnTYMzlRIY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.mft Manifest number: 08DA Signing time: Fri 19 Dec 2025 10:01:25 +0000 Manifest this update: Fri 19 Dec 2025 10:01:25 +0000 Manifest next update: Sat 20 Dec 2025 10:01:25 +0000 Files and hashes: 1: UCOQjmQUUOgrTdTJgotuOqOo8tE.roa (hash: LKSVHd9tPQynvxDd2UN8Jk/eJK88GQBFqDbfRDHvZ3g=) 2: io-pkrwKYdssvnhuHFnTYMzlRIY.crl (hash: aUBvQ/XdAZ9K3KbrbUNsIoV/xIbKkaobVUiY11nfsDg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.crl rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.mft rsync://rpki.ripe.net/repository/DEFAULT/io-pkrwKYdssvnhuHFnTYMzlRIY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:0e:9c:64:71:3d:40:79:a8:64:7e:f4:0c:52:de:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8a8fa992bc0a61db2cbe786e1c59d360cce54486 Validity Not Before: Dec 19 10:01:25 2025 GMT Not After : Dec 20 10:01:25 2025 GMT Subject: CN=f3877144badff398e5d65c76578f55add13d25c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9b:d5:29:15:77:c0:13:da:f7:46:3f:93:5f: 59:f5:26:82:fe:c2:23:cc:2f:f7:05:a7:cb:16:0a: 56:58:94:1c:47:50:cf:bc:01:2a:a2:a2:df:dd:2b: 3d:5f:17:72:8d:85:96:7c:9f:f2:cd:78:aa:e4:4f: b8:51:71:1a:f1:d0:e6:04:c5:4a:cd:eb:7d:e3:be: 26:1d:24:13:9e:bb:4b:33:e0:4c:ce:9a:6a:d0:64: a0:c6:71:f5:49:0f:50:20:1d:c8:3f:bb:4d:72:4b: 67:8b:32:27:8b:a5:d1:b7:93:53:35:41:c3:60:f2: 56:99:d7:9e:50:de:d9:5a:30:63:64:94:a9:d5:f6: da:8e:b7:28:05:c9:e6:bf:ab:72:ff:67:f0:7d:ee: 01:4c:39:83:d4:87:c1:f5:f4:e1:bd:d0:da:17:34: d4:99:5c:66:f1:ce:a8:50:60:da:69:d4:75:f3:87: 4d:a1:f3:52:08:0c:6c:ac:e1:dc:ea:6a:07:f6:36: 2a:b5:39:4b:50:d9:fb:4e:8a:d0:5e:c4:00:80:f6: c1:41:3f:43:92:e4:b4:0e:26:33:fd:13:75:c7:0c: 99:21:b0:4a:62:ca:53:64:69:23:96:4b:66:1d:ae: 62:b7:84:ec:7f:19:07:43:00:60:a5:8e:2e:1c:11: 7e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:87:71:44:BA:DF:F3:98:E5:D6:5C:76:57:8F:55:AD:D1:3D:25:C5 X509v3 Authority Key Identifier: keyid:8A:8F:A9:92:BC:0A:61:DB:2C:BE:78:6E:1C:59:D3:60:CC:E5:44:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/io-pkrwKYdssvnhuHFnTYMzlRIY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:c0:d9:49:4d:69:67:78:65:95:7f:6b:4b:a1:0e:d0:d3:5f: d9:14:83:2d:d1:93:f1:84:26:f9:b0:68:2a:ec:b4:91:75:d9: c1:9c:13:58:eb:52:3d:ed:00:52:71:ec:f2:0f:10:ba:44:ae: 6d:d7:44:bf:16:d5:68:ad:20:93:36:61:c7:88:ab:82:34:7d: 47:1a:07:2c:6e:23:10:17:b1:27:60:8f:e9:f3:83:df:aa:54: 45:a4:1e:05:36:d8:dc:70:b2:e9:bb:91:d3:10:28:a0:6d:9b: 8f:0b:4e:20:69:a4:3a:8b:ec:21:5a:35:e0:47:b4:bf:46:2e: 11:7f:67:a4:50:8c:86:0f:17:64:86:51:19:9d:63:bc:e8:ac: a4:8e:c9:71:08:40:f0:3a:c7:16:6c:45:8e:fc:2f:71:e4:8a: 8e:63:21:35:69:69:09:55:73:50:4b:46:a2:80:3f:69:d8:a6: da:a9:d0:b0:32:56:55:dc:35:b0:8e:ee:4c:b5:11:26:4a:c2: c0:cc:cf:17:4b:12:88:33:cc:40:c9:fa:c2:2e:97:7b:55:2c: fc:96:55:43:ea:16:35:1f:c4:88:6f:15:e9:9e:f2:0f:e9:b6: 72:42:92:23:44:79:4c:59:1f:4a:4b:6e:39:f7:ed:c4:44:e0: ec:b1:c1:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs2DpxkcT1AeahkfvQMUt7QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhOGZhOTkyYmMwYTYxZGIyY2JlNzg2ZTFjNTlkMzYwY2Nl NTQ0ODYwHhcNMjUxMjE5MTAwMTI1WhcNMjUxMjIwMTAwMTI1WjAzMTEwLwYDVQQD EyhmMzg3NzE0NGJhZGZmMzk4ZTVkNjVjNzY1NzhmNTVhZGQxM2QyNWM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyJvVKRV3wBPa90Y/k19Z9SaC/sIj zC/3BafLFgpWWJQcR1DPvAEqoqLf3Ss9XxdyjYWWfJ/yzXiq5E+4UXEa8dDmBMVK zet9474mHSQTnrtLM+BMzppq0GSgxnH1SQ9QIB3IP7tNcktnizIni6XRt5NTNUHD YPJWmdeeUN7ZWjBjZJSp1fbajrcoBcnmv6ty/2fwfe4BTDmD1IfB9fThvdDaFzTU mVxm8c6oUGDaadR184dNofNSCAxsrOHc6moH9jYqtTlLUNn7TorQXsQAgPbBQT9D kuS0DiYz/RN1xwyZIbBKYspTZGkjlktmHa5it4TsfxkHQwBgpY4uHBF+MQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPOHcUS63/OY5dZcdlePVa3RPSXFMB8GA1UdIwQY MBaAFIqPqZK8CmHbLL54bhxZ02DM5USGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaW8tcGtyd0tZZHNzdm5odUhGblRZTXpsUklZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS8xODAyMmMtMmQ5ZC00MzgwLWExNWIt OTZhNjAxYmI2YmE4LzEvaW8tcGtyd0tZZHNzdm5odUhGblRZTXpsUklZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS8xODAyMmMtMmQ5ZC00MzgwLWExNWItOTZhNjAxYmI2YmE4 LzEvaW8tcGtyd0tZZHNzdm5odUhGblRZTXpsUklZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYsDZSU1p Z3hllX9rS6EO0NNf2RSDLdGT8YQm+bBoKuy0kXXZwZwTWOtSPe0AUnHs8g8QukSu bddEvxbVaK0gkzZhx4irgjR9RxoHLG4jEBexJ2CP6fOD36pURaQeBTbY3HCy6buR 0xAooG2bjwtOIGmkOovsIVo14Ee0v0YuEX9npFCMhg8XZIZRGZ1jvOispI7JcQhA 8DrHFmxFjvwvceSKjmMhNWlpCVVzUEtGooA/adim2qnQsDJWVdw1sI7uTLURJkrC wMzPF0sSiDPMQMn6wi6Xe1Us/JZVQ+oWNR/EiG8V6Z7yD+m2ckKSI0R5TFkfSktu OfftxETg7LHBwg== -----END CERTIFICATE-----Generated at Fri Dec 19 14:54:31 2025 by rpki-client