This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/67c21d-0e92-4242-994e-fb40d6da2468/1/Icsqw3f8YD-V-uzFSsfVkPLMMZ0.mft File: Icsqw3f8YD-V-uzFSsfVkPLMMZ0.mft (raw, json) Hash identifier: KQUfZd8qQOIJf557iRlhixAcvEkufnvKo/yGUrx3dCk= Subject key identifier: A3:2F:4C:56:66:2B:BF:02:D3:A3:43:FA:AA:92:21:BF:EC:10:65:6E Authority key identifier: 21:CB:2A:C3:77:FC:60:3F:95:FA:EC:C5:4A:C7:D5:90:F2:CC:31:9D Certificate issuer: /CN=21cb2ac377fc603f95faecc54ac7d590f2cc319d Certificate serial: 019B2BF853C87FDBF71D2577102961AB3B13 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Icsqw3f8YD-V-uzFSsfVkPLMMZ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/67c21d-0e92-4242-994e-fb40d6da2468/1/Icsqw3f8YD-V-uzFSsfVkPLMMZ0.mft Manifest number: 0F05 Signing time: Wed 17 Dec 2025 11:00:53 +0000 Manifest this update: Wed 17 Dec 2025 11:00:53 +0000 Manifest next update: Thu 18 Dec 2025 11:00:53 +0000 Files and hashes: 1: 1aXSgr_gUgovXfJiITFePiXzxSk.roa (hash: jkxbT1LZqZ8DIR9TrEhNrVWEu3vyrY3VEx/71A/Vpxo=) 2: 9bZMaVRDUPty_7efLT2YpkpIYcM.roa (hash: CtsPPucmvohErAHToYEeV/HheWSPpHxQEHc0Z1mOfCU=) 3: AtctRtEqNWKPB5rlQKlPqC6yWDs.roa (hash: 05XetyyHEDIPnW6uLoBtl5Z9uPB/DAO88wvWzPJ/MPs=) 4: Icsqw3f8YD-V-uzFSsfVkPLMMZ0.crl (hash: 7fV0IvOQ72rcI4vCfDVjZgimxt1LNnzq7S+2v7IH4g0=) 5: PSBx1Ap1dSVwu4S3zItuhXFXT84.roa (hash: BJW2moxRlz3fWDKj7aaF6fzBur3RzPQUthWd7EvMjfQ=) 6: Yv5Vb1UYXxXLpSQFLwUNvoBL1uk.roa (hash: zQenlhAbszJDRqh2xIFTp2RhN0nwTs4w2oT1T/Kp9dM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/67c21d-0e92-4242-994e-fb40d6da2468/1/Icsqw3f8YD-V-uzFSsfVkPLMMZ0.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/67c21d-0e92-4242-994e-fb40d6da2468/1/Icsqw3f8YD-V-uzFSsfVkPLMMZ0.mft rsync://rpki.ripe.net/repository/DEFAULT/Icsqw3f8YD-V-uzFSsfVkPLMMZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:f8:53:c8:7f:db:f7:1d:25:77:10:29:61:ab:3b:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21cb2ac377fc603f95faecc54ac7d590f2cc319d Validity Not Before: Dec 17 11:00:53 2025 GMT Not After : Dec 18 11:00:53 2025 GMT Subject: CN=a32f4c56662bbf02d3a343faaa9221bfec10656e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:35:fd:03:9f:72:8a:39:eb:53:b8:4a:36:3f: 2f:33:ab:ef:b3:3a:7a:4c:79:c6:bd:76:67:5a:52: 33:94:cf:ad:78:08:9b:38:ee:1e:2d:bd:bf:2f:e9: 51:3b:e3:5b:38:8c:d4:5d:c9:63:62:0f:4e:8e:fb: eb:10:8a:ea:3e:ca:c1:a4:5a:52:23:07:4c:3b:27: fb:df:0e:cd:d5:c4:45:0f:7c:d0:50:7f:a6:61:db: f5:95:d9:88:8f:c4:76:02:6c:0e:3f:64:67:2d:b4: 03:18:2c:66:08:fb:bb:ec:a1:b7:c7:01:54:0d:c8: b9:12:a9:22:9a:4d:b0:f4:07:71:89:f4:a9:b2:75: df:de:e8:2c:c5:3c:f1:1b:b3:98:31:bf:af:e7:37: af:91:a9:ea:be:37:4c:16:d3:36:79:6e:bd:83:90: 0e:26:d1:7f:fd:7e:a7:ca:d8:89:b6:c4:ec:04:d0: b7:a8:46:ec:9f:f8:a8:75:1c:d4:b7:a8:61:d9:7d: 53:ed:8f:e2:62:87:21:c7:54:e0:67:6f:4e:0d:fc: c8:a1:22:3b:f4:f3:80:b4:d9:22:c6:08:a5:10:cb: da:8a:2c:92:2d:15:77:9d:eb:59:80:aa:31:63:3a: a1:8a:66:54:b3:2d:c4:4e:87:d3:86:ad:2f:21:fd: b1:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:2F:4C:56:66:2B:BF:02:D3:A3:43:FA:AA:92:21:BF:EC:10:65:6E X509v3 Authority Key Identifier: keyid:21:CB:2A:C3:77:FC:60:3F:95:FA:EC:C5:4A:C7:D5:90:F2:CC:31:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Icsqw3f8YD-V-uzFSsfVkPLMMZ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/67c21d-0e92-4242-994e-fb40d6da2468/1/Icsqw3f8YD-V-uzFSsfVkPLMMZ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/67c21d-0e92-4242-994e-fb40d6da2468/1/Icsqw3f8YD-V-uzFSsfVkPLMMZ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:3d:e0:57:20:4e:76:94:a1:10:40:dc:75:fc:a2:a7:14:78: 82:58:8a:ed:d3:71:6f:bf:fc:da:19:32:64:56:44:4c:44:24: 4b:f2:d2:ad:b2:1d:71:9f:f9:6a:0f:64:f6:20:7c:4b:8c:d4: aa:cc:5a:39:ba:6a:83:26:f2:62:47:72:89:7e:99:6e:2e:22: 22:12:29:4d:6d:bc:0a:94:d1:56:df:0c:da:ab:96:78:01:13: 2b:9c:84:3a:66:e7:85:ac:49:fa:df:c3:e0:b5:d3:79:ab:01: d5:c3:70:50:32:37:ab:9f:f1:db:fc:ce:37:09:b0:37:c9:6f: 00:5f:07:c5:25:cc:9e:61:7f:17:bd:10:63:aa:59:7c:76:3e: 41:b4:68:39:da:8b:3a:2d:35:89:82:3b:80:f2:1e:91:83:05: 2a:6d:22:99:74:8a:04:b2:4d:66:87:3f:3b:e0:f7:0f:f7:45: b4:b0:0e:80:f6:df:13:fe:7e:e3:f1:3e:76:7f:f3:7e:ba:0c: d8:70:84:34:e7:1d:5b:75:2a:98:f9:f2:c1:07:a9:5e:7e:da: ca:be:c5:14:30:58:85:cb:28:3e:04:61:ca:e3:53:f0:b1:f2: 76:b7:72:19:2a:35:cc:9c:51:35:a6:00:ad:d1:d7:09:d8:5b: 92:e2:42:53 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsr+FPIf9v3HSV3EClhqzsTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxY2IyYWMzNzdmYzYwM2Y5NWZhZWNjNTRhYzdkNTkwZjJj YzMxOWQwHhcNMjUxMjE3MTEwMDUzWhcNMjUxMjE4MTEwMDUzWjAzMTEwLwYDVQQD EyhhMzJmNGM1NjY2MmJiZjAyZDNhMzQzZmFhYTkyMjFiZmVjMTA2NTZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjTX9A59yijnrU7hKNj8vM6vvszp6 THnGvXZnWlIzlM+teAibOO4eLb2/L+lRO+NbOIzUXcljYg9OjvvrEIrqPsrBpFpS IwdMOyf73w7N1cRFD3zQUH+mYdv1ldmIj8R2AmwOP2RnLbQDGCxmCPu77KG3xwFU Dci5Eqkimk2w9AdxifSpsnXf3ugsxTzxG7OYMb+v5zevkanqvjdMFtM2eW69g5AO JtF//X6nytiJtsTsBNC3qEbsn/iodRzUt6hh2X1T7Y/iYochx1TgZ29ODfzIoSI7 9POAtNkixgilEMvaiiySLRV3netZgKoxYzqhimZUsy3ETofThq0vIf2xxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKMvTFZmK78C06ND+qqSIb/sEGVuMB8GA1UdIwQY MBaAFCHLKsN3/GA/lfrsxUrH1ZDyzDGdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWNzcXczZjhZRC1WLXV6RlNzZlZrUExNTVowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy82N2MyMWQtMGU5Mi00MjQyLTk5NGUt ZmI0MGQ2ZGEyNDY4LzEvSWNzcXczZjhZRC1WLXV6RlNzZlZrUExNTVowLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy82N2MyMWQtMGU5Mi00MjQyLTk5NGUtZmI0MGQ2ZGEyNDY4 LzEvSWNzcXczZjhZRC1WLXV6RlNzZlZrUExNTVowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnz3gVyBO dpShEEDcdfyipxR4gliK7dNxb7/82hkyZFZETEQkS/LSrbIdcZ/5ag9k9iB8S4zU qsxaObpqgybyYkdyiX6Zbi4iIhIpTW28CpTRVt8M2quWeAETK5yEOmbnhaxJ+t/D 4LXTeasB1cNwUDI3q5/x2/zONwmwN8lvAF8HxSXMnmF/F70QY6pZfHY+QbRoOdqL Oi01iYI7gPIekYMFKm0imXSKBLJNZoc/O+D3D/dFtLAOgPbfE/5+4/E+dn/zfroM 2HCENOcdW3UqmPnywQepXn7ayr7FFDBYhcsoPgRhyuNT8LHydrdyGSo1zJxRNaYA rdHXCdhbkuJCUw== -----END CERTIFICATE-----Generated at Wed Dec 17 20:45:27 2025 by rpki-client