This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft File: I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft (raw, json) Hash identifier: BsQoqjpaArli3MmTvBHFwDQ7x1eM8eqlBLGLzja6sJY= Subject key identifier: F6:B8:A0:11:53:B1:95:E2:F7:8D:C0:3E:EE:D8:E8:23:04:BC:EF:50 Authority key identifier: 23:93:FF:21:C6:F7:31:07:57:A9:DC:D7:81:DA:88:05:F2:37:94:D8 Certificate issuer: /CN=2393ff21c6f7310757a9dcd781da8805f23794d8 Certificate serial: 019B25522D4DF8E795ECBAEA3261FE0AF896 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I5P_Icb3MQdXqdzXgdqIBfI3lNg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft Manifest number: 0AC4 Signing time: Tue 16 Dec 2025 04:01:41 +0000 Manifest this update: Tue 16 Dec 2025 04:01:41 +0000 Manifest next update: Wed 17 Dec 2025 04:01:41 +0000 Files and hashes: 1: I5P_Icb3MQdXqdzXgdqIBfI3lNg.crl (hash: Qz9Pr76JydugGubNsYQhRszRxP558JH+tSiRExPtvGs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.crl rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft rsync://rpki.ripe.net/repository/DEFAULT/I5P_Icb3MQdXqdzXgdqIBfI3lNg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:52:2d:4d:f8:e7:95:ec:ba:ea:32:61:fe:0a:f8:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2393ff21c6f7310757a9dcd781da8805f23794d8 Validity Not Before: Dec 16 04:01:41 2025 GMT Not After : Dec 17 04:01:41 2025 GMT Subject: CN=f6b8a01153b195e2f78dc03eeed8e82304bcef50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:12:5e:3b:3e:79:eb:a4:af:e7:59:f1:55:5f: 0b:b2:90:24:e7:3e:f3:3e:76:8f:5d:98:d3:c5:99: aa:7b:68:50:b9:29:02:12:4a:bc:21:2c:b7:93:3f: 39:ac:54:74:32:78:e9:dd:ce:76:da:94:a4:67:2f: cd:6a:8c:aa:cd:37:a4:e7:6a:59:a5:c8:17:fa:46: 7d:e0:55:3e:15:8b:f9:e6:2a:2d:ea:09:01:9c:67: 09:82:2a:d8:66:68:cf:e6:97:ba:82:64:c9:bb:68: f6:ec:f8:b7:70:14:d9:59:30:c8:bc:59:d8:71:d7: 0c:d8:15:64:23:1f:f0:15:81:96:c5:dc:6d:22:c2: 21:bc:ba:42:26:20:65:71:fe:22:71:46:c8:06:3b: 11:e8:de:8a:77:69:a8:20:98:0d:fd:12:15:9a:de: 87:b5:d1:2a:c3:9f:5b:15:82:d9:8f:b0:c9:1b:74: 6a:b8:69:74:d0:3d:52:91:09:f9:a0:52:31:72:c9: 29:51:07:65:44:21:46:e1:68:63:67:2d:b4:e3:05: 4c:0b:cf:8a:58:7e:95:de:90:d6:97:ff:74:a4:5e: a5:58:2d:9d:54:7d:5c:d3:93:e9:e3:38:08:e7:e9: cb:6f:ab:0c:4c:fc:b8:e9:8e:13:8c:a8:0f:d1:c3: 9b:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:B8:A0:11:53:B1:95:E2:F7:8D:C0:3E:EE:D8:E8:23:04:BC:EF:50 X509v3 Authority Key Identifier: keyid:23:93:FF:21:C6:F7:31:07:57:A9:DC:D7:81:DA:88:05:F2:37:94:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I5P_Icb3MQdXqdzXgdqIBfI3lNg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:f6:d5:ec:2a:f8:e4:48:75:b0:c8:87:88:31:71:94:f3:0c: 91:6c:70:e5:e1:22:20:4b:23:02:a1:d5:12:3e:0a:2a:cf:14: 20:34:31:88:de:83:35:95:c9:c1:c9:80:be:79:aa:f6:52:16: 03:b9:02:46:2d:35:29:1a:44:d7:77:7e:8e:c1:e9:b3:63:85: dc:7a:41:49:b2:24:e3:07:b7:59:2d:1b:05:84:d9:26:b9:43: a2:5d:53:ff:14:e3:36:e0:80:8c:e1:79:ae:cd:16:1f:ca:17: 36:e1:d9:a3:b8:85:63:3c:f5:0b:22:17:aa:16:22:60:c6:db: 37:d1:90:13:6b:7f:47:79:e4:69:7d:31:66:c1:f8:9d:8f:e1: 98:3c:d6:6e:6d:76:5d:29:89:82:cf:66:99:1e:1a:88:5b:fe: e5:7f:a5:3e:7a:52:d0:18:90:8e:4a:c6:01:4a:0d:3f:c7:8f: 29:d3:89:3b:17:90:07:37:74:2a:90:8f:9b:5a:dd:15:22:e4: ec:e6:b1:dd:73:44:52:da:39:e2:03:43:e8:ff:9e:9a:c0:3d: 9b:65:56:5f:63:98:d1:52:74:09:09:c9:e9:d9:e7:4b:30:71: 60:8d:ec:d0:64:75:cd:10:87:ff:f6:12:00:7a:2e:d1:47:d2: 6d:2d:6b:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZslUi1N+OeV7LrqMmH+CviWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzOTNmZjIxYzZmNzMxMDc1N2E5ZGNkNzgxZGE4ODA1ZjIz Nzk0ZDgwHhcNMjUxMjE2MDQwMTQxWhcNMjUxMjE3MDQwMTQxWjAzMTEwLwYDVQQD EyhmNmI4YTAxMTUzYjE5NWUyZjc4ZGMwM2VlZWQ4ZTgyMzA0YmNlZjUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnRJeOz5566Sv51nxVV8LspAk5z7z PnaPXZjTxZmqe2hQuSkCEkq8ISy3kz85rFR0Mnjp3c522pSkZy/NaoyqzTek52pZ pcgX+kZ94FU+FYv55iot6gkBnGcJgirYZmjP5pe6gmTJu2j27Pi3cBTZWTDIvFnY cdcM2BVkIx/wFYGWxdxtIsIhvLpCJiBlcf4icUbIBjsR6N6Kd2moIJgN/RIVmt6H tdEqw59bFYLZj7DJG3RquGl00D1SkQn5oFIxcskpUQdlRCFG4WhjZy204wVMC8+K WH6V3pDWl/90pF6lWC2dVH1c05Pp4zgI5+nLb6sMTPy46Y4TjKgP0cOb+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPa4oBFTsZXi943APu7Y6CMEvO9QMB8GA1UdIwQY MBaAFCOT/yHG9zEHV6nc14HaiAXyN5TYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTVQX0ljYjNNUWRYcWR6WGdkcUlCZkkzbE5nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9iYWVkZGMtZGJmMi00NDdmLWI0MmQt NWIzMDYzOWJhYmY2LzEvSTVQX0ljYjNNUWRYcWR6WGdkcUlCZkkzbE5nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9iYWVkZGMtZGJmMi00NDdmLWI0MmQtNWIzMDYzOWJhYmY2 LzEvSTVQX0ljYjNNUWRYcWR6WGdkcUlCZkkzbE5nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAifbV7Cr4 5Eh1sMiHiDFxlPMMkWxw5eEiIEsjAqHVEj4KKs8UIDQxiN6DNZXJwcmAvnmq9lIW A7kCRi01KRpE13d+jsHps2OF3HpBSbIk4we3WS0bBYTZJrlDol1T/xTjNuCAjOF5 rs0WH8oXNuHZo7iFYzz1CyIXqhYiYMbbN9GQE2t/R3nkaX0xZsH4nY/hmDzWbm12 XSmJgs9mmR4aiFv+5X+lPnpS0BiQjkrGAUoNP8ePKdOJOxeQBzd0KpCPm1rdFSLk 7Oax3XNEUto54gND6P+emsA9m2VWX2OY0VJ0CQnJ6dnnSzBxYI3s0GR1zRCH//YS AHou0UfSbS1roQ== -----END CERTIFICATE-----Generated at Tue Dec 16 06:32:56 2025 by rpki-client