This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft File: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft (raw, json) Hash identifier: A7cotc0YN2bzCCFNLJGiVU/YcsPGdqrn9tCszr5qiYE= Subject key identifier: E5:EF:D2:95:79:83:87:3E:BB:EC:12:44:81:65:3D:53:6A:DA:AE:FB Authority key identifier: 23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62 Certificate issuer: /CN=23259da3b1b38ca0939f490fb9043fcd89cfd062 Certificate serial: 019B34FB3BB836677A8BC4C66A4D3368CC53 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft Manifest number: 178E Signing time: Fri 19 Dec 2025 05:00:38 +0000 Manifest this update: Fri 19 Dec 2025 05:00:38 +0000 Manifest next update: Sat 20 Dec 2025 05:00:38 +0000 Files and hashes: 1: 5AXDwMNDZZJ0p2E5YCI5vVZD8a4.roa (hash: FFW/pHdY/n3mzgFNkaOSLkOhdoLgzZsHvl8kfEiEWu8=) 2: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl (hash: Hn3O8YREsMhhx8O7DbHNpDA+Ijl2qQUP6qV1GCjDqsc=) 3: J0xQ_1w-gFpYF0LKQsYsfk-VGSQ.roa (hash: BG3PKtX8/a+ywGlKRJT/ICLStEzmSbRCf01OUsYWJWQ=) 4: JqGjYzJUHlyPRNKT7Gdae1GdJUA.roa (hash: /ZlOeq2y9fIyqYcQI5TRRc+qHPMMjEQDsJbQfMP47Os=) 5: KP1-R8Ozo5sN8i5g7eaE07K0eTQ.roa (hash: mLvAtndHxWdPvRVZIiOq/nwf/VdytfBFv0z3meNar9k=) 6: Qx2_RHRctf32pDo6Ld_wrMI7fd8.roa (hash: hDrMyW+0exQk+cf4mu6FMV+aN0cWstWHfqosAD9dRy0=) 7: Rlb2tOHsLeLyjP1RSURryd9jvec.roa (hash: jecxIoKlBvw6gWyoJ8u8/wuvD6cFE1AGV7OziEZZTXs=) 8: W08HMn4p6kVqze5MDixmPqgVV3Q.roa (hash: jlOVPZJCuEAwn3iEzzJNLFkpo/PRQpHf+dW9CA2qsug=) 9: ZaM9jNyw62egtMMXYnGxszrNY3k.roa (hash: IjXCT+wQnlaMHMU5neUWgppwJ+IMB7wimw7ZMxVicdg=) 10: _zKodDelYzkycuOaCvmIVNehVaU.roa (hash: 06Jd/JDGW6Xe4+7xG76Qs6GUdZwHdMuLomnrIM9Qkbg=) 11: cf3WHfeWDYu7TWnELnXzycteCaY.roa (hash: TcxuwVKWwTiShtI0Unrv/gZ/YwHGK8T1H3ocBzBxMZk=) 12: fuo8dYdaswIRyEIz4oPsApWqGJc.roa (hash: TgHuzsK6LNwJZxHjJiXaEYIfR/pJeI5Px7YOwniHSmE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 05:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:fb:3b:b8:36:67:7a:8b:c4:c6:6a:4d:33:68:cc:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23259da3b1b38ca0939f490fb9043fcd89cfd062 Validity Not Before: Dec 19 05:00:38 2025 GMT Not After : Dec 20 05:00:38 2025 GMT Subject: CN=e5efd2957983873ebbec124481653d536adaaefb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:82:48:36:38:b2:ed:2a:ba:1f:4e:ee:d7:64: 2e:12:14:cb:22:54:de:43:67:33:7f:23:a3:34:86: d4:df:6d:80:b8:32:05:65:f6:09:a4:26:e1:e5:4a: 8b:7f:75:cb:7a:8b:0e:bc:ea:98:9c:e6:56:55:09: cb:6b:7c:c6:f3:f8:2c:08:58:27:46:56:71:13:83: cf:ec:f8:a7:29:ac:ec:57:3a:c1:ee:7f:81:2d:09: d4:5b:82:f6:67:61:4d:d2:a0:75:4b:86:d4:41:e7: a5:e1:81:02:41:8b:b4:f6:7f:4a:8a:5a:bf:1f:aa: 19:7e:57:19:a1:48:69:30:cd:c4:e6:55:1f:5d:40: d1:30:b8:aa:45:87:6d:73:9c:4a:cc:a2:a5:46:be: f5:8e:38:e7:7c:a3:92:86:cb:e7:cb:44:4f:04:75: 71:3a:52:a7:f4:2e:3c:36:6a:41:26:d3:94:d6:f5: 33:6b:57:ba:db:87:33:99:96:d0:cc:20:d0:3c:4c: 76:17:ec:22:cf:b2:93:1c:f8:e9:1b:0d:ff:44:bd: c1:e8:9c:ee:67:04:3d:30:a6:e7:c7:3b:1e:f2:a5: 4a:cc:6b:08:46:b3:18:e1:01:7a:a6:11:cd:96:2a: e6:df:19:32:19:fe:ac:27:b7:1c:68:e6:48:84:5f: 4c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:EF:D2:95:79:83:87:3E:BB:EC:12:44:81:65:3D:53:6A:DA:AE:FB X509v3 Authority Key Identifier: keyid:23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:ce:ef:eb:42:e3:71:af:2a:13:49:82:3c:58:4a:dc:d7:16: de:62:62:52:1c:ee:37:b3:d8:89:52:8f:1a:a6:a6:b7:03:79: bb:73:20:2f:73:b6:76:89:88:a2:04:c9:04:fd:1a:f7:94:8b: ed:69:5c:11:5a:6c:db:80:76:6c:3a:cf:d1:38:9b:e3:5c:18: a0:58:b8:73:09:53:90:a8:8e:83:9c:97:26:af:f6:c3:94:be: d1:d1:4a:d7:a8:69:2f:97:02:76:13:f0:67:38:e8:44:e0:29: 5c:4d:f0:4e:c0:e1:ad:54:25:49:9c:57:ef:7d:83:37:dd:72: e3:58:e8:ea:8f:a2:bf:3a:4c:70:94:a7:39:6b:40:5d:94:04: 39:70:32:e2:26:95:79:6b:dd:d3:89:a1:2e:6b:fb:4f:3b:7c: 87:8f:05:a2:09:82:e7:b6:42:78:34:2e:21:55:03:bb:8b:dc: e3:89:3a:e1:4e:0b:e3:09:bf:34:bf:88:60:3d:d1:ff:9b:83: de:ff:69:f8:1a:98:f6:2e:2f:cf:39:ad:82:0f:ff:d1:c7:98: bc:ae:c9:80:e2:cb:42:8c:21:a1:8e:0d:e5:d8:90:d3:8f:20: ae:3e:19:a0:0f:aa:a1:ee:55:ad:d4:78:ff:e5:7e:42:01:32: ab:be:23:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0+zu4Nmd6i8TGak0zaMxTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzMjU5ZGEzYjFiMzhjYTA5MzlmNDkwZmI5MDQzZmNkODlj ZmQwNjIwHhcNMjUxMjE5MDUwMDM4WhcNMjUxMjIwMDUwMDM4WjAzMTEwLwYDVQQD EyhlNWVmZDI5NTc5ODM4NzNlYmJlYzEyNDQ4MTY1M2Q1MzZhZGFhZWZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6YJINjiy7Sq6H07u12QuEhTLIlTe Q2czfyOjNIbU322AuDIFZfYJpCbh5UqLf3XLeosOvOqYnOZWVQnLa3zG8/gsCFgn RlZxE4PP7PinKazsVzrB7n+BLQnUW4L2Z2FN0qB1S4bUQeel4YECQYu09n9Kilq/ H6oZflcZoUhpMM3E5lUfXUDRMLiqRYdtc5xKzKKlRr71jjjnfKOShsvny0RPBHVx OlKn9C48NmpBJtOU1vUza1e624czmZbQzCDQPEx2F+wiz7KTHPjpGw3/RL3B6Jzu ZwQ9MKbnxzse8qVKzGsIRrMY4QF6phHNlirm3xkyGf6sJ7ccaOZIhF9M1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOXv0pV5g4c+u+wSRIFlPVNq2q77MB8GA1UdIwQY MBaAFCMlnaOxs4ygk59JD7kEP82Jz9BiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUt NjU0ZGQ2NDQyY2U0LzEvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUtNjU0ZGQ2NDQyY2U0 LzEvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW87v60Lj ca8qE0mCPFhK3NcW3mJiUhzuN7PYiVKPGqamtwN5u3MgL3O2domIogTJBP0a95SL 7WlcEVps24B2bDrP0Tib41wYoFi4cwlTkKiOg5yXJq/2w5S+0dFK16hpL5cCdhPw ZzjoROApXE3wTsDhrVQlSZxX732DN91y41jo6o+ivzpMcJSnOWtAXZQEOXAy4iaV eWvd04mhLmv7Tzt8h48FogmC57ZCeDQuIVUDu4vc44k64U4L4wm/NL+IYD3R/5uD 3v9p+BqY9i4vzzmtgg//0ceYvK7JgOLLQowhoY4N5diQ048grj4ZoA+qoe5VrdR4 /+V+QgEyq74jFw== -----END CERTIFICATE-----Generated at Fri Dec 19 09:19:06 2025 by rpki-client