This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft File: i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft (raw, json) Hash identifier: R88KtzhC4MVSJL/Cx9Fx+G/eDIleEXHLFoMAytWqxhQ= Subject key identifier: 05:A1:FB:B4:E7:0F:AC:27:A8:64:8D:2D:74:CC:EF:9B:E5:3C:D0:44 Authority key identifier: 8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7 Certificate issuer: /CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7 Certificate serial: 019B1201A6AD8CF2DA481A1378AB02B83A9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft Manifest number: 1772 Signing time: Fri 12 Dec 2025 10:00:56 +0000 Manifest this update: Fri 12 Dec 2025 10:00:56 +0000 Manifest next update: Sat 13 Dec 2025 10:00:56 +0000 Files and hashes: 1: FE1p8xqk22ZLL8TtVpBgIJ5HCYk.roa (hash: EEjSbBj9sFsFeIYvGJ66Mb2B5f9wjNh8P6NHIHv03o4=) 2: Nj_g5XagzgChnaGJmyAjIxliPxQ.roa (hash: 2T2yAo36kvnreO/zfmG7HDMPjTZHcC33NYqG6yteeqQ=) 3: i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl (hash: e3AAypndRIzejm9PXvZ5E0IwQgDLPNns9IJa0M77CfI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:12:01:a6:ad:8c:f2:da:48:1a:13:78:ab:02:b8:3a:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7 Validity Not Before: Dec 12 10:00:56 2025 GMT Not After : Dec 13 10:00:56 2025 GMT Subject: CN=05a1fbb4e70fac27a8648d2d74ccef9be53cd044 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ad:af:13:10:f2:de:c9:cd:89:bc:f3:a3:d7: f2:e3:e9:f8:42:81:06:c9:b9:cc:cc:49:f2:ad:8a: d0:98:56:32:56:95:fd:b7:eb:ac:2c:2c:7f:f3:ae: 22:d5:05:1e:44:a6:39:87:16:4a:de:3d:ac:d2:a3: f9:8a:0f:ca:15:5e:7a:ed:8a:4d:b3:57:18:b5:4b: 99:06:4c:df:1d:0a:f7:24:42:b7:9e:ac:54:ae:c1: e9:77:8e:b3:05:78:09:f6:a3:55:08:da:12:8d:3a: 73:1d:91:cf:41:a8:0d:ab:a9:79:95:b4:e2:61:bd: 02:9c:4a:2c:65:7c:d4:f6:5c:2c:79:5a:96:e0:5a: 60:4c:c6:39:f4:41:ab:5d:62:fc:8f:9e:33:ea:cf: d4:8d:6c:94:94:db:ae:74:a2:f4:f8:a2:12:5d:4c: 9f:88:13:36:99:2e:2e:63:94:61:db:34:cc:9f:ba: b5:e5:fb:b2:05:a2:4c:54:05:2b:68:12:b3:13:8a: 1b:a7:29:37:35:1c:cb:e0:80:03:70:d7:28:7f:1c: 9b:b9:c2:14:cc:49:ec:2b:c6:f6:55:e0:78:62:a0: 9f:a3:a6:b3:ba:c5:b9:a8:43:89:c0:83:ac:8e:f6: 8f:55:d5:54:5c:c8:37:82:b1:92:d6:4a:84:5b:c4: f3:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A1:FB:B4:E7:0F:AC:27:A8:64:8D:2D:74:CC:EF:9B:E5:3C:D0:44 X509v3 Authority Key Identifier: keyid:8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:19:a1:8c:f6:4b:13:81:7b:a9:3b:b0:71:2f:dc:5e:54:31: c9:e5:3c:61:1e:d6:e2:28:a3:a6:4f:95:9d:2e:db:6a:65:16: be:d9:89:37:29:79:31:c7:35:50:ae:fe:9b:95:b7:36:66:44: aa:bf:32:14:34:62:44:f7:41:f5:40:25:15:15:07:44:4a:67: 3b:05:48:c9:17:f1:a5:2b:43:a0:3e:f1:6a:10:82:e9:e2:1c: 27:46:b3:f1:17:02:10:0e:87:c8:31:5f:7d:f4:0a:39:a4:52: 18:43:2c:7d:5b:9b:23:e1:09:09:2a:61:6f:1c:3c:8c:76:f3: 93:d8:24:c7:0a:42:60:76:ce:42:d6:66:f3:02:6c:3e:91:35: 72:20:7f:9f:2f:73:18:53:68:07:57:a1:36:2f:1c:3a:26:21: 9b:cc:ff:1c:ec:2b:ec:fc:ed:62:9c:4a:f2:74:3f:c7:68:f0: ab:7a:62:a2:20:3e:68:10:64:95:a1:b8:26:dd:15:42:65:c1: 96:1f:d1:2a:ca:2e:af:b3:ba:7d:7d:08:d0:aa:92:7f:66:b2: 7f:88:0a:8e:b4:f7:76:03:4d:16:8f:6b:1f:23:3f:19:de:01: fe:ee:dd:47:aa:cb:0b:14:67:de:d6:21:c7:6a:20:c0:9b:7b: 12:58:a7:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsSAaatjPLaSBoTeKsCuDqeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiNmEyM2EyZmQxYTA5NTYzNzhhMzdkNGZjZTI1OWRmMmJk Nzk0YTcwHhcNMjUxMjEyMTAwMDU2WhcNMjUxMjEzMTAwMDU2WjAzMTEwLwYDVQQD EygwNWExZmJiNGU3MGZhYzI3YTg2NDhkMmQ3NGNjZWY5YmU1M2NkMDQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx62vExDy3snNibzzo9fy4+n4QoEG ybnMzEnyrYrQmFYyVpX9t+usLCx/864i1QUeRKY5hxZK3j2s0qP5ig/KFV567YpN s1cYtUuZBkzfHQr3JEK3nqxUrsHpd46zBXgJ9qNVCNoSjTpzHZHPQagNq6l5lbTi Yb0CnEosZXzU9lwseVqW4FpgTMY59EGrXWL8j54z6s/UjWyUlNuudKL0+KISXUyf iBM2mS4uY5Rh2zTMn7q15fuyBaJMVAUraBKzE4obpyk3NRzL4IADcNcofxybucIU zEnsK8b2VeB4YqCfo6azusW5qEOJwIOsjvaPVdVUXMg3grGS1kqEW8TzLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAWh+7TnD6wnqGSNLXTM75vlPNBEMB8GA1UdIwQY MBaAFItqI6L9GglWN4o31PziWd8r15SnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTJvam92MGFDVlkzaWpmVV9PSlozeXZYbEtjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9mOTFiMmMtYzVmZS00NjI1LWExODAt OWE0NmVkNWI0MmRiLzEvaTJvam92MGFDVlkzaWpmVV9PSlozeXZYbEtjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS9mOTFiMmMtYzVmZS00NjI1LWExODAtOWE0NmVkNWI0MmRi LzEvaTJvam92MGFDVlkzaWpmVV9PSlozeXZYbEtjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnxmhjPZL E4F7qTuwcS/cXlQxyeU8YR7W4iijpk+VnS7bamUWvtmJNyl5Mcc1UK7+m5W3NmZE qr8yFDRiRPdB9UAlFRUHREpnOwVIyRfxpStDoD7xahCC6eIcJ0az8RcCEA6HyDFf ffQKOaRSGEMsfVubI+EJCSphbxw8jHbzk9gkxwpCYHbOQtZm8wJsPpE1ciB/ny9z GFNoB1ehNi8cOiYhm8z/HOwr7PztYpxK8nQ/x2jwq3pioiA+aBBklaG4Jt0VQmXB lh/RKsour7O6fX0I0KqSf2ayf4gKjrT3dgNNFo9rHyM/Gd4B/u7dR6rLCxRn3tYh x2ogwJt7ElinCw== -----END CERTIFICATE-----Generated at Fri Dec 12 13:21:46 2025 by rpki-client