This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft File: IwqhYKbohsED2tvkSyPCd3YFc5E.mft (raw, json) Hash identifier: Vw3KfRhbGVI+eSTwJLfs5Aj/4qVQJf9I0XL6G2v+mjc= Subject key identifier: 09:6B:40:34:9D:8C:E5:37:0D:AE:A2:07:64:11:5F:C9:CF:37:3D:C7 Authority key identifier: 23:0A:A1:60:A6:E8:86:C1:03:DA:DB:E4:4B:23:C2:77:76:05:73:91 Certificate issuer: /CN=230aa160a6e886c103dadbe44b23c27776057391 Certificate serial: 019B0FA55ECFF8FDF4B13E4E1DC44619D798 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft Manifest number: 0F10 Signing time: Thu 11 Dec 2025 23:00:54 +0000 Manifest this update: Thu 11 Dec 2025 23:00:54 +0000 Manifest next update: Fri 12 Dec 2025 23:00:54 +0000 Files and hashes: 1: 1H3wr9EMEu_9kf6Zl38WrkoAkBU.roa (hash: FprWo0wu1rkhWTeCTL4oYKvIo6iA1oIZ1p0P+xAQYGs=) 2: IwqhYKbohsED2tvkSyPCd3YFc5E.crl (hash: I1qbIRpFQHB1P8vDLb0LDZhLFPRfPmVnUv37FpQn7mw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.crl rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:a5:5e:cf:f8:fd:f4:b1:3e:4e:1d:c4:46:19:d7:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=230aa160a6e886c103dadbe44b23c27776057391 Validity Not Before: Dec 11 23:00:54 2025 GMT Not After : Dec 12 23:00:54 2025 GMT Subject: CN=096b40349d8ce5370daea20764115fc9cf373dc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:b2:27:2b:22:ff:b8:41:9b:fc:b8:f7:b1:25: 7a:d1:06:c1:a8:4b:d0:dd:69:4f:4a:ee:43:80:0e: 86:3a:e6:e7:47:e3:50:7d:b1:c3:80:a6:22:f5:be: 7c:01:3e:1b:b5:a5:ff:48:29:3d:3b:8b:9e:5c:a7: 50:24:ad:23:1c:37:e4:ac:1b:8e:c3:9d:41:dd:59: 02:79:35:67:6a:ac:b5:87:7d:54:d3:20:3a:b1:32: ec:e1:a9:07:af:58:ce:02:df:1e:d7:3a:0a:b5:f3: 1c:97:e5:b4:5a:eb:f1:b9:3d:0a:4b:35:38:ae:01: 5e:f5:47:1f:ec:8b:2d:7d:de:8d:41:90:b4:2c:42: e8:52:ec:df:ae:fc:b8:0d:ff:64:9c:42:60:13:72: 53:50:e0:7d:1d:98:d8:b1:f8:2f:c7:65:4c:cd:59: df:af:c0:67:bd:f5:f6:8d:8f:2f:83:94:09:16:db: 3b:bd:6e:50:08:10:d4:e5:aa:18:ab:4d:f7:ed:af: 01:65:b7:c7:6d:d3:56:4b:5e:cb:cc:82:fc:bd:e9: 2e:da:9c:98:92:e7:8d:d6:e8:71:51:46:bb:90:07: 1d:86:d3:b1:15:3f:c1:15:ef:69:ff:ba:e8:a4:32: 82:4c:0b:c8:a8:1c:b3:f4:08:7a:78:55:c0:9b:d4: 5c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:6B:40:34:9D:8C:E5:37:0D:AE:A2:07:64:11:5F:C9:CF:37:3D:C7 X509v3 Authority Key Identifier: keyid:23:0A:A1:60:A6:E8:86:C1:03:DA:DB:E4:4B:23:C2:77:76:05:73:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:08:b5:86:da:c1:ad:7c:35:ad:bc:0f:2b:11:7b:13:e9:91: 0b:31:53:52:84:07:f6:47:01:ba:d4:a2:a6:b8:dd:e2:26:e1: 41:d1:e7:73:c8:70:4d:4a:29:4b:e4:44:c9:39:10:fc:0a:9a: de:5b:ed:27:17:b1:76:59:f0:15:cd:63:7e:80:79:75:60:84: 04:4f:de:8d:04:68:6c:02:22:71:45:8e:4c:30:5f:6d:44:4b: 34:f4:66:47:83:42:16:76:d2:72:62:e8:90:40:a6:83:0c:a3: 5b:2a:4e:b0:77:3d:ce:00:ce:b9:09:34:a2:87:46:ba:c0:96: 9a:9e:9f:65:ae:60:b5:86:9c:ec:bb:9b:5b:6f:7f:b0:f5:0c: 8d:dc:ec:38:fc:7b:8c:f2:56:f8:87:70:38:be:3a:3d:d2:59: c9:33:e6:c1:34:f0:33:81:64:3e:5a:6b:e3:bb:2f:2e:eb:f3: 22:ec:d0:2b:64:6f:30:e4:cd:96:ba:c7:0f:16:7b:f9:44:70: 94:c0:1c:2f:a0:9e:79:b4:c7:5e:ff:ce:5c:24:bb:77:2a:74: 45:06:1a:e7:5c:a6:4f:e2:9b:7c:7e:a6:96:a3:7b:a9:cd:c0: ee:f0:61:aa:f7:06:de:f0:4b:25:1e:94:ea:c5:fe:ec:bb:1b: 02:fc:33:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPpV7P+P30sT5OHcRGGdeYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzMGFhMTYwYTZlODg2YzEwM2RhZGJlNDRiMjNjMjc3NzYw NTczOTEwHhcNMjUxMjExMjMwMDU0WhcNMjUxMjEyMjMwMDU0WjAzMTEwLwYDVQQD EygwOTZiNDAzNDlkOGNlNTM3MGRhZWEyMDc2NDExNWZjOWNmMzczZGM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlbInKyL/uEGb/Lj3sSV60QbBqEvQ 3WlPSu5DgA6GOubnR+NQfbHDgKYi9b58AT4btaX/SCk9O4ueXKdQJK0jHDfkrBuO w51B3VkCeTVnaqy1h31U0yA6sTLs4akHr1jOAt8e1zoKtfMcl+W0WuvxuT0KSzU4 rgFe9Ucf7Istfd6NQZC0LELoUuzfrvy4Df9knEJgE3JTUOB9HZjYsfgvx2VMzVnf r8BnvfX2jY8vg5QJFts7vW5QCBDU5aoYq0337a8BZbfHbdNWS17LzIL8veku2pyY kueN1uhxUUa7kAcdhtOxFT/BFe9p/7ropDKCTAvIqByz9Ah6eFXAm9RcMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAlrQDSdjOU3Da6iB2QRX8nPNz3HMB8GA1UdIwQY MBaAFCMKoWCm6IbBA9rb5Esjwnd2BXORMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXdxaFlLYm9oc0VEMnR2a1N5UENkM1lGYzVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS82ZWI1NGUtZTcwOS00YjdhLWFkZTkt YTlhZWI0ODVkNTkyLzEvSXdxaFlLYm9oc0VEMnR2a1N5UENkM1lGYzVFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS82ZWI1NGUtZTcwOS00YjdhLWFkZTktYTlhZWI0ODVkNTky LzEvSXdxaFlLYm9oc0VEMnR2a1N5UENkM1lGYzVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqAi1htrB rXw1rbwPKxF7E+mRCzFTUoQH9kcButSiprjd4ibhQdHnc8hwTUopS+REyTkQ/Aqa 3lvtJxexdlnwFc1jfoB5dWCEBE/ejQRobAIicUWOTDBfbURLNPRmR4NCFnbScmLo kECmgwyjWypOsHc9zgDOuQk0oodGusCWmp6fZa5gtYac7LubW29/sPUMjdzsOPx7 jPJW+IdwOL46PdJZyTPmwTTwM4FkPlpr47svLuvzIuzQK2RvMOTNlrrHDxZ7+URw lMAcL6CeebTHXv/OXCS7dyp0RQYa51ymT+KbfH6mlqN7qc3A7vBhqvcG3vBLJR6U 6sX+7LsbAvwzqA== -----END CERTIFICATE-----Generated at Fri Dec 12 03:34:34 2025 by rpki-client