This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft File: iwUOQskY3jwnNm3vQzph8Tw7FrI.mft (raw, json) Hash identifier: D/IYPO8HhsMtHXeDP/1Sw5HDWD88oQXc6LXfnwJ2kkg= Subject key identifier: 4C:4B:E1:B7:EE:B4:73:2A:07:6F:F0:45:AC:D5:03:A0:E6:1B:78:64 Authority key identifier: 8B:05:0E:42:C9:18:DE:3C:27:36:6D:EF:43:3A:61:F1:3C:3B:16:B2 Certificate issuer: /CN=8b050e42c918de3c27366def433a61f13c3b16b2 Certificate serial: 019B19BC1781C16269EAE07163AA030A5252 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft Manifest number: 1772 Signing time: Sat 13 Dec 2025 22:01:55 +0000 Manifest this update: Sat 13 Dec 2025 22:01:55 +0000 Manifest next update: Sun 14 Dec 2025 22:01:55 +0000 Files and hashes: 1: iwUOQskY3jwnNm3vQzph8Tw7FrI.crl (hash: sAt0P5K6piaZjPGm1nAL/PGe4Qatx84O3XF5oOOHP+E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:bc:17:81:c1:62:69:ea:e0:71:63:aa:03:0a:52:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b050e42c918de3c27366def433a61f13c3b16b2 Validity Not Before: Dec 13 22:01:55 2025 GMT Not After : Dec 14 22:01:55 2025 GMT Subject: CN=4c4be1b7eeb4732a076ff045acd503a0e61b7864 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:0a:fc:cb:6a:9b:17:fa:7b:73:be:44:3c:31: 2a:c7:b2:ff:c5:f3:29:22:0a:8a:f7:d4:22:1f:0b: 9c:09:13:6f:8a:f1:f3:53:f3:40:b3:70:c3:60:58: 65:35:37:04:49:50:13:f4:12:0c:4c:fa:f5:a9:43: c0:05:c2:1e:b7:d2:d1:f5:08:2c:2e:81:30:88:f5: d1:1a:b1:1f:cf:af:05:f0:ca:d2:69:2f:c3:20:4b: b2:33:4e:c3:df:ca:ad:fe:23:34:58:16:8b:6f:45: 4d:34:e7:78:79:bf:94:d6:09:d8:31:90:61:a0:b2: b2:28:a3:34:d2:02:48:74:9e:56:13:45:e2:aa:93: a7:a4:c4:76:f3:89:31:29:ec:b2:f5:36:76:76:5a: 4a:c8:40:ba:47:00:65:34:8a:f5:36:aa:5a:05:81: d4:cf:d2:b3:dd:ec:43:68:26:17:20:1c:6b:43:fc: 20:a9:72:1b:f7:b6:d2:2e:02:04:df:0f:1f:19:90: 41:b3:3d:69:6f:a9:16:6e:f8:c3:b1:78:f3:3b:01: c7:81:13:11:a4:76:a7:78:c0:52:e9:8d:e5:25:f4: 92:0a:b8:89:15:e7:24:8f:58:75:62:3e:d2:c0:b2: 84:24:08:4d:ed:91:8c:2b:bf:35:64:95:d4:46:aa: f5:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:4B:E1:B7:EE:B4:73:2A:07:6F:F0:45:AC:D5:03:A0:E6:1B:78:64 X509v3 Authority Key Identifier: keyid:8B:05:0E:42:C9:18:DE:3C:27:36:6D:EF:43:3A:61:F1:3C:3B:16:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:d6:03:ef:61:20:d7:02:00:52:d2:64:15:8d:66:5e:24:b9: b1:fa:a4:04:51:7c:aa:bc:ac:53:e6:5c:8c:00:c6:74:56:1f: bd:06:d6:2f:2a:e7:65:d7:33:8f:50:66:de:39:86:e4:e2:3a: e6:52:23:02:7d:e9:3e:59:4c:1d:f2:6b:99:ab:a0:00:3f:1f: 68:3e:16:07:c7:f0:ee:fe:03:8c:10:e2:0d:56:80:71:5b:59: 3c:5f:a6:5b:1b:8b:17:85:83:48:54:0c:cf:fd:22:06:03:d9: 23:f8:93:90:6e:4a:c7:b6:9f:de:75:04:79:d9:02:ba:95:b9: ab:58:ee:78:91:c8:38:5b:43:21:c2:b4:43:0e:b6:ca:6c:e5: 7a:f6:4b:a3:02:41:fa:06:3b:e9:7e:b0:59:a9:5c:96:76:8f: eb:f2:5d:91:3d:d6:ce:4f:a1:a9:f4:e4:6f:03:44:64:93:25: 2c:f6:ea:1c:9e:dd:80:af:a1:f3:3c:db:fd:3e:c5:16:9c:b5: 5a:4a:af:4c:0f:2b:df:e0:29:eb:9b:c8:57:28:07:ee:05:8c: a0:80:fb:18:63:14:0b:2c:de:74:cb:6a:8c:24:cb:cb:22:5f: a8:3e:57:7f:e1:c1:0c:14:8d:9d:a4:cb:f6:21:df:c4:df:88: 09:f7:d1:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZvBeBwWJp6uBxY6oDClJSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiMDUwZTQyYzkxOGRlM2MyNzM2NmRlZjQzM2E2MWYxM2Mz YjE2YjIwHhcNMjUxMjEzMjIwMTU1WhcNMjUxMjE0MjIwMTU1WjAzMTEwLwYDVQQD Eyg0YzRiZTFiN2VlYjQ3MzJhMDc2ZmYwNDVhY2Q1MDNhMGU2MWI3ODY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1gr8y2qbF/p7c75EPDEqx7L/xfMp IgqK99QiHwucCRNvivHzU/NAs3DDYFhlNTcESVAT9BIMTPr1qUPABcIet9LR9Qgs LoEwiPXRGrEfz68F8MrSaS/DIEuyM07D38qt/iM0WBaLb0VNNOd4eb+U1gnYMZBh oLKyKKM00gJIdJ5WE0XiqpOnpMR284kxKeyy9TZ2dlpKyEC6RwBlNIr1NqpaBYHU z9Kz3exDaCYXIBxrQ/wgqXIb97bSLgIE3w8fGZBBsz1pb6kWbvjDsXjzOwHHgRMR pHaneMBS6Y3lJfSSCriJFeckj1h1Yj7SwLKEJAhN7ZGMK781ZJXURqr1CQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFExL4bfutHMqB2/wRazVA6DmG3hkMB8GA1UdIwQY MBaAFIsFDkLJGN48JzZt70M6YfE8OxayMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXdVT1Fza1kzanduTm0zdlF6cGg4VHc3RnJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy80YTZjNmQtYjg1NS00YjQ2LWIzMmYt Y2FjMmNmZmY2Nzc5LzEvaXdVT1Fza1kzanduTm0zdlF6cGg4VHc3RnJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy80YTZjNmQtYjg1NS00YjQ2LWIzMmYtY2FjMmNmZmY2Nzc5 LzEvaXdVT1Fza1kzanduTm0zdlF6cGg4VHc3RnJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADNYD72Eg 1wIAUtJkFY1mXiS5sfqkBFF8qrysU+ZcjADGdFYfvQbWLyrnZdczj1Bm3jmG5OI6 5lIjAn3pPllMHfJrmaugAD8faD4WB8fw7v4DjBDiDVaAcVtZPF+mWxuLF4WDSFQM z/0iBgPZI/iTkG5Kx7af3nUEedkCupW5q1jueJHIOFtDIcK0Qw62ymzlevZLowJB +gY76X6wWalclnaP6/JdkT3Wzk+hqfTkbwNEZJMlLPbqHJ7dgK+h8zzb/T7FFpy1 WkqvTA8r3+Ap65vIVygH7gWMoID7GGMUCyzedMtqjCTLyyJfqD5Xf+HBDBSNnaTL 9iHfxN+ICffRxw== -----END CERTIFICATE-----Generated at Sun Dec 14 01:50:44 2025 by rpki-client