This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft File: I--d4hUq7xsqYqMfsvNehZCzrYQ.mft (raw, json) Hash identifier: V5iRKrQNuL+Tn2ZoEqecmaD0+Ii8uXp/KmsTZgE66hk= Subject key identifier: 65:01:F7:B5:8E:EA:69:E4:81:E4:F7:D2:38:D7:1A:ED:F8:BA:67:94 Authority key identifier: 23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84 Certificate issuer: /CN=23ef9de2152aef1b2a62a31fb2f35e8590b3ad84 Certificate serial: 019B5A8851AF036178E27E68B15E63136EA1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft Manifest number: 07E8 Signing time: Fri 26 Dec 2025 12:00:41 +0000 Manifest this update: Fri 26 Dec 2025 12:00:41 +0000 Manifest next update: Sat 27 Dec 2025 12:00:41 +0000 Files and hashes: 1: H78piGDM9XMhN9ttfDQLjflrGw0.roa (hash: A/U1yMrz8Q8LYte4PciQEyU7L3zVOHn5gKWczBZWelo=) 2: I--d4hUq7xsqYqMfsvNehZCzrYQ.crl (hash: DkabP7nqgD1p7rtAHSt6P/b+U00RfLPIy9ur+IyVVJI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.crl rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:88:51:af:03:61:78:e2:7e:68:b1:5e:63:13:6e:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23ef9de2152aef1b2a62a31fb2f35e8590b3ad84 Validity Not Before: Dec 26 12:00:41 2025 GMT Not After : Dec 27 12:00:41 2025 GMT Subject: CN=6501f7b58eea69e481e4f7d238d71aedf8ba6794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c1:7d:ea:59:8d:1d:27:79:7c:6d:0b:5f:f4: 25:4d:73:05:58:c9:d6:9e:0c:d6:3c:f2:9a:b1:30: 00:10:3f:3f:a2:4f:bf:f7:be:3e:71:96:23:ce:32: b4:58:78:4b:2e:d3:18:48:bc:ac:e2:0a:6c:dc:69: 18:07:5a:64:b0:c0:15:23:39:d0:64:4d:d4:52:12: 94:be:9c:b2:1f:81:1b:ce:b7:3f:70:d9:cf:be:a3: 2f:bb:1c:ca:95:3b:fb:eb:e0:db:b7:76:58:f0:fe: 01:ef:40:4e:50:ed:c6:e3:9b:04:6c:dd:6e:28:41: 0b:8b:fa:ef:27:65:53:0b:bf:97:7e:ba:6d:50:ca: 1c:0f:25:c2:95:47:62:e5:12:5a:0f:ad:4b:85:fd: d1:3d:eb:38:65:67:15:a1:55:1b:ed:c9:d7:4b:33: 00:1a:2c:05:86:db:16:3c:fe:ba:18:09:7d:4f:5a: 73:17:67:13:bc:70:4f:d3:75:5c:37:99:ac:e7:df: d3:d2:48:fa:64:7a:f2:86:75:37:12:28:61:6f:d3: 87:1e:85:77:a9:3c:6c:f8:8f:c9:94:29:28:92:02: e3:4d:73:70:7c:25:75:33:d2:d1:a2:1c:9a:0d:c7: 72:03:af:44:02:44:9f:ee:27:ee:73:7b:5b:3f:e4: 54:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:01:F7:B5:8E:EA:69:E4:81:E4:F7:D2:38:D7:1A:ED:F8:BA:67:94 X509v3 Authority Key Identifier: keyid:23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:90:cc:88:9f:44:9e:e7:4c:e5:c6:f6:18:19:a2:61:93:23: 73:6d:a8:6e:35:5e:6b:1b:1c:32:84:74:c9:7b:2e:29:91:3f: 3f:2f:95:46:16:e6:a1:4d:e0:f1:57:02:10:a1:b7:e6:52:7d: 0f:4c:ea:c8:c3:8d:3e:61:e7:39:d6:53:2f:e5:df:b0:66:d0: f1:c1:1b:4c:e9:01:be:1a:e4:ef:3e:e7:f8:8c:ad:15:fd:a7: ca:16:4e:48:24:fe:91:0b:51:5c:9a:d9:ea:ae:3d:d4:f7:c5: c7:32:f3:08:e7:40:b4:91:87:f9:4e:ff:66:63:4e:70:b5:c2: 21:30:bd:b3:d4:2f:6a:91:43:d7:e2:e4:b6:33:97:f3:f6:b4: d4:a2:9b:b8:b0:db:19:8a:83:33:f9:50:ea:80:63:19:f4:c2: 01:7c:4a:7b:b2:02:e9:63:15:8e:69:be:27:d1:a8:87:72:ab: 9e:6d:5b:97:d3:d0:2e:ae:ea:fd:73:47:f2:1c:f6:3b:83:7c: a5:eb:88:8c:e0:49:5d:2c:35:e6:3a:a5:39:33:f3:37:98:10: 0d:5f:26:77:ac:62:1f:e6:3e:30:f6:01:71:1d:e0:f1:03:bb: 5c:12:d2:06:23:00:d3:39:70:4d:d3:e6:2d:42:44:65:61:4e: 23:2e:04:4f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaiFGvA2F44n5osV5jE26hMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzZWY5ZGUyMTUyYWVmMWIyYTYyYTMxZmIyZjM1ZTg1OTBi M2FkODQwHhcNMjUxMjI2MTIwMDQxWhcNMjUxMjI3MTIwMDQxWjAzMTEwLwYDVQQD Eyg2NTAxZjdiNThlZWE2OWU0ODFlNGY3ZDIzOGQ3MWFlZGY4YmE2Nzk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApcF96lmNHSd5fG0LX/QlTXMFWMnW ngzWPPKasTAAED8/ok+/974+cZYjzjK0WHhLLtMYSLys4gps3GkYB1pksMAVIznQ ZE3UUhKUvpyyH4Ebzrc/cNnPvqMvuxzKlTv76+Dbt3ZY8P4B70BOUO3G45sEbN1u KEELi/rvJ2VTC7+XfrptUMocDyXClUdi5RJaD61Lhf3RPes4ZWcVoVUb7cnXSzMA GiwFhtsWPP66GAl9T1pzF2cTvHBP03VcN5ms59/T0kj6ZHryhnU3Eihhb9OHHoV3 qTxs+I/JlCkokgLjTXNwfCV1M9LRohyaDcdyA69EAkSf7ifuc3tbP+RUkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGUB97WO6mnkgeT30jjXGu34umeUMB8GA1UdIwQY MBaAFCPvneIVKu8bKmKjH7LzXoWQs62EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSS0tZDRoVXE3eHNxWXFNZnN2TmVoWkN6cllRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9jM2YzY2MtYzU2Yi00ZDM1LWI3N2Yt M2JjNmViMGEzNDdmLzEvSS0tZDRoVXE3eHNxWXFNZnN2TmVoWkN6cllRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS9jM2YzY2MtYzU2Yi00ZDM1LWI3N2YtM2JjNmViMGEzNDdm LzEvSS0tZDRoVXE3eHNxWXFNZnN2TmVoWkN6cllRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQJDMiJ9E nudM5cb2GBmiYZMjc22objVeaxscMoR0yXsuKZE/Py+VRhbmoU3g8VcCEKG35lJ9 D0zqyMONPmHnOdZTL+XfsGbQ8cEbTOkBvhrk7z7n+IytFf2nyhZOSCT+kQtRXJrZ 6q491PfFxzLzCOdAtJGH+U7/ZmNOcLXCITC9s9QvapFD1+LktjOX8/a01KKbuLDb GYqDM/lQ6oBjGfTCAXxKe7IC6WMVjmm+J9Goh3Krnm1bl9PQLq7q/XNH8hz2O4N8 peuIjOBJXSw15jqlOTPzN5gQDV8md6xiH+Y+MPYBcR3g8QO7XBLSBiMA0zlwTdPm LUJEZWFOIy4ETw== -----END CERTIFICATE-----Generated at Fri Dec 26 16:00:57 2025 by rpki-client