This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft File: CiINqbbilYVbYn_qYQ4cthZGiUs.mft (raw, json) Hash identifier: PwfQ7gmphv8Ckuk8B0wqt17OybQpJAno4IClMzvU76o= Subject key identifier: 0F:AB:48:F6:91:2D:AD:91:C9:DF:B1:13:FC:43:6D:56:9E:5B:78:9A Authority key identifier: 0A:22:0D:A9:B6:E2:95:85:5B:62:7F:EA:61:0E:1C:B6:16:46:89:4B Certificate issuer: /CN=0a220da9b6e295855b627fea610e1cb61646894b Certificate serial: 019B5ABF6214058BAC94DD23DB4D669FB0ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CiINqbbilYVbYn_qYQ4cthZGiUs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft Manifest number: 1317 Signing time: Fri 26 Dec 2025 13:00:50 +0000 Manifest this update: Fri 26 Dec 2025 13:00:50 +0000 Manifest next update: Sat 27 Dec 2025 13:00:50 +0000 Files and hashes: 1: CiINqbbilYVbYn_qYQ4cthZGiUs.crl (hash: LqgRmciu7S/teobVqklPXkFgTPsxz/HLX+UvzB1kEG8=) 2: wkXSNgmrYa8rCdcuzp6T9kjqo9c.roa (hash: PKA5n5GL19/MWS8CZc9zMrpSRD9clDPEtJzbH91PkU8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.crl rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft rsync://rpki.ripe.net/repository/DEFAULT/CiINqbbilYVbYn_qYQ4cthZGiUs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:bf:62:14:05:8b:ac:94:dd:23:db:4d:66:9f:b0:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0a220da9b6e295855b627fea610e1cb61646894b Validity Not Before: Dec 26 13:00:50 2025 GMT Not After : Dec 27 13:00:50 2025 GMT Subject: CN=0fab48f6912dad91c9dfb113fc436d569e5b789a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:f3:e7:01:12:96:41:7b:2b:c7:94:06:c1:72: 67:5e:9a:b4:18:45:65:48:8f:71:30:0c:99:00:e8: 47:24:c6:a8:d7:b4:af:24:08:49:af:7f:13:be:85: fc:61:1f:59:b3:29:31:a3:27:c1:74:2d:68:ba:ae: 9e:f7:e6:c3:05:be:70:5e:e3:83:1a:03:a4:c8:75: da:6a:d0:65:99:29:02:8b:89:51:a5:6d:6a:da:56: ce:ae:e8:17:74:54:ce:6c:18:d6:94:0f:00:19:c9: 24:44:0f:b8:28:be:6c:e1:a0:1d:ce:5a:6e:54:2d: d3:a2:32:f3:bb:19:0b:d0:44:52:69:b2:ee:3b:83: 3a:0d:46:65:63:af:0d:ff:f0:45:de:9c:e2:85:cb: d5:44:c9:39:bf:c2:67:0f:85:07:5d:7c:00:aa:d2: 8f:ff:76:e5:4e:50:21:ff:46:fb:ef:eb:15:09:da: fa:eb:46:76:86:33:8d:17:8b:22:ed:a3:b4:0d:fe: f8:7f:5f:ec:fe:98:6d:74:b6:ec:b0:5d:14:b4:30: cf:41:3c:0d:0c:74:7a:60:b2:3b:da:65:78:bb:2c: 06:c9:23:51:2f:b3:d1:17:f3:b4:f1:9a:6f:0a:b6: a6:f2:cf:75:5a:54:a3:8b:6d:49:61:e2:54:c6:b3: 3c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:AB:48:F6:91:2D:AD:91:C9:DF:B1:13:FC:43:6D:56:9E:5B:78:9A X509v3 Authority Key Identifier: keyid:0A:22:0D:A9:B6:E2:95:85:5B:62:7F:EA:61:0E:1C:B6:16:46:89:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CiINqbbilYVbYn_qYQ4cthZGiUs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e5:62:79:b2:55:b2:74:a0:47:fa:d9:dc:8e:04:22:83:e4:78: 2d:6e:51:cb:0e:df:eb:aa:21:fe:02:49:3b:fd:50:fb:35:ad: 3a:68:99:b0:b5:69:24:f3:5c:6e:38:0f:85:c8:3d:2f:0b:20: 9f:64:ce:a8:49:58:95:53:76:0f:ff:44:ea:7f:3e:0a:92:b3: f2:24:3b:28:ce:1b:b5:4b:3e:f1:5e:68:3c:92:12:df:92:a4: 16:a0:00:a1:35:2d:ec:e9:34:04:e9:2e:8e:d6:75:11:fa:5a: fa:9b:10:02:88:c2:ee:c9:79:2f:a3:55:38:99:5b:78:0c:28: a4:b8:3b:eb:a0:dd:e4:57:d0:be:6d:54:2f:46:42:5b:20:e4: f0:0a:26:b3:b7:56:c3:94:b4:51:50:34:12:de:05:40:29:2a: 14:54:b7:58:bb:73:4e:45:a1:ca:fb:42:e0:94:b6:9e:aa:05: 84:f6:de:c7:d5:e8:96:5d:ec:e7:08:ef:b4:7b:36:5b:eb:97: 47:d2:2d:fe:83:47:31:c6:4b:f6:ca:54:6a:c6:68:e4:8f:ee: 90:41:ee:92:55:50:8b:88:74:0e:61:e0:c4:ca:27:0c:ba:22: 3c:05:e7:04:e0:6a:e1:fe:2a:3c:d9:11:03:6a:1f:65:14:eb: b9:ce:bd:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtav2IUBYuslN0j201mn7DtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBhMjIwZGE5YjZlMjk1ODU1YjYyN2ZlYTYxMGUxY2I2MTY0 Njg5NGIwHhcNMjUxMjI2MTMwMDUwWhcNMjUxMjI3MTMwMDUwWjAzMTEwLwYDVQQD EygwZmFiNDhmNjkxMmRhZDkxYzlkZmIxMTNmYzQzNmQ1NjllNWI3ODlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkvPnARKWQXsrx5QGwXJnXpq0GEVl SI9xMAyZAOhHJMao17SvJAhJr38TvoX8YR9ZsykxoyfBdC1ouq6e9+bDBb5wXuOD GgOkyHXaatBlmSkCi4lRpW1q2lbOrugXdFTObBjWlA8AGckkRA+4KL5s4aAdzlpu VC3TojLzuxkL0ERSabLuO4M6DUZlY68N//BF3pzihcvVRMk5v8JnD4UHXXwAqtKP /3blTlAh/0b77+sVCdr660Z2hjONF4si7aO0Df74f1/s/phtdLbssF0UtDDPQTwN DHR6YLI72mV4uywGySNRL7PRF/O08ZpvCram8s91WlSji21JYeJUxrM8ZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA+rSPaRLa2Ryd+xE/xDbVaeW3iaMB8GA1UdIwQY MBaAFAoiDam24pWFW2J/6mEOHLYWRolLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ2lJTnFiYmlsWVZiWW5fcVlRNGN0aFpHaVVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS85ODE4MzktOWRmYS00MmQzLWFjYjEt NjIxODgyOGVkODk2LzEvQ2lJTnFiYmlsWVZiWW5fcVlRNGN0aFpHaVVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS85ODE4MzktOWRmYS00MmQzLWFjYjEtNjIxODgyOGVkODk2 LzEvQ2lJTnFiYmlsWVZiWW5fcVlRNGN0aFpHaVVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA5WJ5slWy dKBH+tncjgQig+R4LW5Ryw7f66oh/gJJO/1Q+zWtOmiZsLVpJPNcbjgPhcg9Lwsg n2TOqElYlVN2D/9E6n8+CpKz8iQ7KM4btUs+8V5oPJIS35KkFqAAoTUt7Ok0BOku jtZ1Efpa+psQAojC7sl5L6NVOJlbeAwopLg766Dd5FfQvm1UL0ZCWyDk8Aoms7dW w5S0UVA0Et4FQCkqFFS3WLtzTkWhyvtC4JS2nqoFhPbex9Xoll3s5wjvtHs2W+uX R9It/oNHMcZL9spUasZo5I/ukEHuklVQi4h0DmHgxMonDLoiPAXnBOBq4f4qPNkR A2ofZRTruc69JA== -----END CERTIFICATE-----Generated at Fri Dec 26 15:58:08 2025 by rpki-client