This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft File: iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft (raw, json) Hash identifier: /6+CT1SsXffA0Yqs5WEG15Yo3MfbRDD8TwTfD0ICiso= Subject key identifier: 27:06:A2:E9:39:84:29:F7:93:F6:08:7E:1D:75:4B:B8:AA:DB:68:A6 Authority key identifier: 88:A7:80:73:8B:85:3A:CF:FB:AB:DB:23:91:4C:50:E3:64:21:F7:73 Certificate issuer: /CN=88a780738b853acffbabdb23914c50e36421f773 Certificate serial: 019B0F004E216E42F10FBE3DDA26FE8A7311 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft Manifest number: 1772 Signing time: Thu 11 Dec 2025 20:00:36 +0000 Manifest this update: Thu 11 Dec 2025 20:00:36 +0000 Manifest next update: Fri 12 Dec 2025 20:00:36 +0000 Files and hashes: 1: 0JBSKBByojNYZjOoZlphUB11hQs.roa (hash: 9bDpXvSUlNPWWMoYaJSQ0SO0EuZKnPkwfl5l8GKFytk=) 2: aKf7cpyzNQSyfw8b7-Pr38WCYnc.roa (hash: oRGD5ClevpyjAOYjV/aBq4YhQP42jPwVRjMhzooXQlg=) 3: iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl (hash: V4h3O9W98rve07oscUQOhZSAXGpUEgsRVmMFRtqMzKo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:00:4e:21:6e:42:f1:0f:be:3d:da:26:fe:8a:73:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88a780738b853acffbabdb23914c50e36421f773 Validity Not Before: Dec 11 20:00:36 2025 GMT Not After : Dec 12 20:00:36 2025 GMT Subject: CN=2706a2e9398429f793f6087e1d754bb8aadb68a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:36:81:5a:b6:b6:ef:76:ff:4e:fb:43:14:64: e6:89:6e:a3:9f:a6:4e:c3:ed:31:fd:24:cc:15:40: fb:f1:d7:7a:ec:dc:0b:7c:68:0d:35:4d:0b:7b:c2: 28:fd:6c:5d:d7:04:04:3b:04:19:81:61:ac:06:af: f1:81:16:d2:06:bf:98:15:ad:31:b0:c1:a1:d7:6f: 90:23:c1:1d:07:52:ee:c2:68:d5:e1:b1:22:e3:04: c0:0f:13:50:10:29:b5:fb:ae:6c:b4:c8:0e:9b:bd: f3:c7:e7:22:71:f0:cb:26:a5:7a:4f:d0:84:0e:a8: 51:d9:cd:ab:4e:b1:b0:07:00:c6:87:76:c2:dc:9c: 1f:21:25:6d:8e:c0:34:55:55:e7:04:a9:44:36:c5: 67:d0:30:62:08:93:48:73:35:9f:94:08:93:20:fc: 5d:01:8a:99:11:aa:6f:0d:cf:ff:91:73:f6:f6:ac: a0:a7:5a:69:b4:ce:3e:2d:4c:c1:f3:cf:f4:27:b4: 44:44:8d:43:9e:06:35:31:c4:14:ab:01:ed:fb:15: 81:48:1d:9f:28:6b:10:97:e4:5f:cd:25:b5:54:86: 9f:3d:73:9c:0d:cd:0c:77:d1:6e:f1:a6:1b:3d:da: 09:6e:91:c4:9a:c1:45:4e:15:16:63:22:d9:32:8c: df:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:06:A2:E9:39:84:29:F7:93:F6:08:7E:1D:75:4B:B8:AA:DB:68:A6 X509v3 Authority Key Identifier: keyid:88:A7:80:73:8B:85:3A:CF:FB:AB:DB:23:91:4C:50:E3:64:21:F7:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:6c:8e:a1:7c:ca:64:41:7b:d6:0d:f9:2b:e1:31:2e:57:79: e4:37:2a:94:76:96:f6:22:2f:a1:cc:76:3d:7f:63:d4:2e:49: 3f:c6:65:da:a6:f2:53:e5:be:e7:3d:36:90:61:c7:91:c4:b5: 63:69:32:e6:fe:10:31:94:36:1f:ab:0e:a3:ca:40:2c:24:5c: 62:5c:36:95:83:c9:03:49:cb:f4:c7:0b:c4:41:ea:85:f0:a9: 39:2b:b7:94:97:bc:f6:bc:dd:21:3b:06:c8:1c:e3:5a:4f:16: a7:3d:a1:68:c7:70:b4:31:5a:6d:09:e7:49:7c:44:1b:99:6b: 9f:39:4a:0a:4a:36:80:dc:7a:1c:d0:11:43:1f:dc:41:55:83: 6f:f7:19:e3:48:94:c7:ec:b7:86:43:40:38:7f:9a:42:05:d8: b1:7f:3a:80:68:68:e5:20:7a:79:2c:84:44:32:15:f1:6a:9e: fc:a0:31:32:78:30:b8:15:d7:f4:68:c6:e5:a4:cf:f1:64:77: cb:c2:29:8d:e0:ff:4c:3c:08:7b:e7:9c:8a:22:c7:8e:73:6e: 5c:cd:aa:10:64:21:d5:8e:ea:d1:c1:0d:a8:93:51:a7:a5:c8: 88:1f:02:f9:fd:99:29:14:0a:7b:72:15:4c:40:02:24:da:5d: 4a:c2:e3:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPAE4hbkLxD7492ib+inMRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4YTc4MDczOGI4NTNhY2ZmYmFiZGIyMzkxNGM1MGUzNjQy MWY3NzMwHhcNMjUxMjExMjAwMDM2WhcNMjUxMjEyMjAwMDM2WjAzMTEwLwYDVQQD EygyNzA2YTJlOTM5ODQyOWY3OTNmNjA4N2UxZDc1NGJiOGFhZGI2OGE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzDaBWra273b/TvtDFGTmiW6jn6ZO w+0x/STMFUD78dd67NwLfGgNNU0Le8Io/Wxd1wQEOwQZgWGsBq/xgRbSBr+YFa0x sMGh12+QI8EdB1LuwmjV4bEi4wTADxNQECm1+65stMgOm73zx+cicfDLJqV6T9CE DqhR2c2rTrGwBwDGh3bC3JwfISVtjsA0VVXnBKlENsVn0DBiCJNIczWflAiTIPxd AYqZEapvDc//kXP29qygp1pptM4+LUzB88/0J7RERI1DngY1McQUqwHt+xWBSB2f KGsQl+RfzSW1VIafPXOcDc0Md9Fu8aYbPdoJbpHEmsFFThUWYyLZMozf3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCcGouk5hCn3k/YIfh11S7iq22imMB8GA1UdIwQY MBaAFIingHOLhTrP+6vbI5FMUONkIfdzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUtlQWM0dUZPc183cTlzamtVeFE0MlFoOTNNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9iODk3MDQtNGZkMi00ZTA3LWEwMzkt NjZmNTZlZjljZTI2LzEvaUtlQWM0dUZPc183cTlzamtVeFE0MlFoOTNNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9iODk3MDQtNGZkMi00ZTA3LWEwMzktNjZmNTZlZjljZTI2 LzEvaUtlQWM0dUZPc183cTlzamtVeFE0MlFoOTNNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbGyOoXzK ZEF71g35K+ExLld55DcqlHaW9iIvocx2PX9j1C5JP8Zl2qbyU+W+5z02kGHHkcS1 Y2ky5v4QMZQ2H6sOo8pALCRcYlw2lYPJA0nL9McLxEHqhfCpOSu3lJe89rzdITsG yBzjWk8Wpz2haMdwtDFabQnnSXxEG5lrnzlKCko2gNx6HNARQx/cQVWDb/cZ40iU x+y3hkNAOH+aQgXYsX86gGho5SB6eSyERDIV8Wqe/KAxMngwuBXX9GjG5aTP8WR3 y8IpjeD/TDwIe+eciiLHjnNuXM2qEGQh1Y7q0cENqJNRp6XIiB8C+f2ZKRQKe3IV TEACJNpdSsLj7Q== -----END CERTIFICATE-----Generated at Fri Dec 12 02:50:05 2025 by rpki-client