This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft File: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft (raw, json) Hash identifier: t4vmyRmpG7HFpNeYEaKxpPi/g4Z1xJzZ7p6JkTHbQw8= Subject key identifier: 06:8F:11:DE:DE:E3:A7:3B:CC:0F:10:DE:FB:C8:2E:FE:7C:CB:59:8D Authority key identifier: 23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62 Certificate issuer: /CN=23259da3b1b38ca0939f490fb9043fcd89cfd062 Certificate serial: 019B104A0B208A4195ECA8918B2084EC2864 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft Manifest number: 177B Signing time: Fri 12 Dec 2025 02:00:46 +0000 Manifest this update: Fri 12 Dec 2025 02:00:46 +0000 Manifest next update: Sat 13 Dec 2025 02:00:46 +0000 Files and hashes: 1: 5AXDwMNDZZJ0p2E5YCI5vVZD8a4.roa (hash: FFW/pHdY/n3mzgFNkaOSLkOhdoLgzZsHvl8kfEiEWu8=) 2: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl (hash: tX1uGr/9qT7DG1Y2QL6sQKuc6jiolVK7oU2/0AYhyLk=) 3: J0xQ_1w-gFpYF0LKQsYsfk-VGSQ.roa (hash: BG3PKtX8/a+ywGlKRJT/ICLStEzmSbRCf01OUsYWJWQ=) 4: JqGjYzJUHlyPRNKT7Gdae1GdJUA.roa (hash: /ZlOeq2y9fIyqYcQI5TRRc+qHPMMjEQDsJbQfMP47Os=) 5: KP1-R8Ozo5sN8i5g7eaE07K0eTQ.roa (hash: mLvAtndHxWdPvRVZIiOq/nwf/VdytfBFv0z3meNar9k=) 6: Qx2_RHRctf32pDo6Ld_wrMI7fd8.roa (hash: hDrMyW+0exQk+cf4mu6FMV+aN0cWstWHfqosAD9dRy0=) 7: Rlb2tOHsLeLyjP1RSURryd9jvec.roa (hash: jecxIoKlBvw6gWyoJ8u8/wuvD6cFE1AGV7OziEZZTXs=) 8: W08HMn4p6kVqze5MDixmPqgVV3Q.roa (hash: jlOVPZJCuEAwn3iEzzJNLFkpo/PRQpHf+dW9CA2qsug=) 9: ZaM9jNyw62egtMMXYnGxszrNY3k.roa (hash: IjXCT+wQnlaMHMU5neUWgppwJ+IMB7wimw7ZMxVicdg=) 10: _zKodDelYzkycuOaCvmIVNehVaU.roa (hash: 06Jd/JDGW6Xe4+7xG76Qs6GUdZwHdMuLomnrIM9Qkbg=) 11: cf3WHfeWDYu7TWnELnXzycteCaY.roa (hash: TcxuwVKWwTiShtI0Unrv/gZ/YwHGK8T1H3ocBzBxMZk=) 12: fuo8dYdaswIRyEIz4oPsApWqGJc.roa (hash: TgHuzsK6LNwJZxHjJiXaEYIfR/pJeI5Px7YOwniHSmE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:4a:0b:20:8a:41:95:ec:a8:91:8b:20:84:ec:28:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23259da3b1b38ca0939f490fb9043fcd89cfd062 Validity Not Before: Dec 12 02:00:46 2025 GMT Not After : Dec 13 02:00:46 2025 GMT Subject: CN=068f11dedee3a73bcc0f10defbc82efe7ccb598d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ef:57:5a:02:87:71:f3:27:15:45:58:1c:e6: 1e:15:ff:9c:ae:9e:86:ae:aa:91:20:61:5e:6a:37: 9e:71:fb:ab:91:0d:16:48:d1:09:eb:d4:b2:e1:5c: 4f:be:f1:f3:c6:1d:18:8b:aa:3d:12:4b:41:25:f8: 9e:e6:1b:61:c4:f7:ea:f1:f7:65:12:ee:8b:2e:ac: 73:73:d1:2c:41:55:22:43:25:43:85:82:16:ce:c0: 1d:a3:f5:31:e4:34:62:eb:31:38:fe:3f:7c:81:62: 30:b0:69:79:f1:b6:12:cf:39:a1:eb:50:ab:de:3e: b7:17:5b:fd:6e:ff:0a:b7:85:28:0b:0f:60:9d:a7: 35:7d:48:5a:19:dd:aa:79:63:8c:e8:8c:78:ac:05: 81:a2:56:d7:46:05:71:21:3b:d2:4f:f9:67:fe:41: 9f:7d:27:2d:4f:12:7c:cb:cc:3c:44:f3:7c:12:f9: 5f:bd:74:8c:a2:29:2a:11:3f:10:a5:f2:74:63:5c: 0b:a3:cb:fe:2a:69:94:70:b0:83:d3:19:d6:e6:9c: 6b:d9:eb:37:4c:55:56:ba:06:4d:ec:af:0a:ff:0e: 2f:86:ce:df:24:7b:f8:45:eb:fd:e9:5f:34:74:33: f5:ec:67:e2:ec:e0:77:55:99:68:07:d5:7f:d5:50: f9:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:8F:11:DE:DE:E3:A7:3B:CC:0F:10:DE:FB:C8:2E:FE:7C:CB:59:8D X509v3 Authority Key Identifier: keyid:23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:4b:7c:89:36:8d:6a:7e:8c:4c:d5:70:19:d5:00:1a:2d:1a: cb:d4:94:e2:3d:4f:3f:db:23:08:ae:0e:90:ad:8b:f4:0c:48: bd:57:fb:a0:16:b8:f6:df:c1:e0:fa:4a:12:ca:fd:51:43:83: 9b:1b:f9:4b:83:06:5d:0a:b2:20:cf:6b:7c:7c:fa:b5:66:c3: ef:6a:3e:3c:21:21:60:fe:d9:90:83:f1:8d:f7:65:d4:f3:c1: d8:25:21:1e:a6:25:eb:9e:9d:ec:ee:3b:ba:1c:03:39:1b:e7: a1:5c:78:26:16:5c:e1:5c:e4:25:1b:a1:5e:f0:22:cf:f0:e4: 86:54:8c:aa:85:1b:df:55:36:83:32:a3:02:ce:ac:ef:14:8a: 98:3d:ba:26:66:e8:85:d3:b9:e2:a6:27:0a:81:53:df:5e:7b: b1:60:45:4a:8d:10:0b:e9:98:85:f0:13:49:8c:51:60:e3:f0: 41:fe:67:92:38:e4:f4:62:d3:b1:eb:80:fb:9a:d8:fe:4c:51: 63:00:88:78:2a:e7:a7:56:44:bb:5f:86:da:6f:56:69:37:e1: 04:4e:a0:30:3e:63:6c:8a:d3:60:35:5c:42:d5:0e:56:52:96: 61:80:25:c9:6f:8a:8a:a5:7f:ec:e8:12:fd:d8:1e:bd:ca:be: ae:b8:f6:bc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQSgsgikGV7KiRiyCE7ChkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzMjU5ZGEzYjFiMzhjYTA5MzlmNDkwZmI5MDQzZmNkODlj ZmQwNjIwHhcNMjUxMjEyMDIwMDQ2WhcNMjUxMjEzMDIwMDQ2WjAzMTEwLwYDVQQD EygwNjhmMTFkZWRlZTNhNzNiY2MwZjEwZGVmYmM4MmVmZTdjY2I1OThkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtu9XWgKHcfMnFUVYHOYeFf+crp6G rqqRIGFeajeecfurkQ0WSNEJ69Sy4VxPvvHzxh0Yi6o9EktBJfie5hthxPfq8fdl Eu6LLqxzc9EsQVUiQyVDhYIWzsAdo/Ux5DRi6zE4/j98gWIwsGl58bYSzzmh61Cr 3j63F1v9bv8Kt4UoCw9gnac1fUhaGd2qeWOM6Ix4rAWBolbXRgVxITvST/ln/kGf fSctTxJ8y8w8RPN8EvlfvXSMoikqET8QpfJ0Y1wLo8v+KmmUcLCD0xnW5pxr2es3 TFVWugZN7K8K/w4vhs7fJHv4Rev96V80dDP17Gfi7OB3VZloB9V/1VD5NQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAaPEd7e46c7zA8Q3vvILv58y1mNMB8GA1UdIwQY MBaAFCMlnaOxs4ygk59JD7kEP82Jz9BiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUt NjU0ZGQ2NDQyY2U0LzEvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUtNjU0ZGQ2NDQyY2U0 LzEvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMEt8iTaN an6MTNVwGdUAGi0ay9SU4j1PP9sjCK4OkK2L9AxIvVf7oBa49t/B4PpKEsr9UUOD mxv5S4MGXQqyIM9rfHz6tWbD72o+PCEhYP7ZkIPxjfdl1PPB2CUhHqYl656d7O47 uhwDORvnoVx4JhZc4VzkJRuhXvAiz/DkhlSMqoUb31U2gzKjAs6s7xSKmD26Jmbo hdO54qYnCoFT3157sWBFSo0QC+mYhfATSYxRYOPwQf5nkjjk9GLTseuA+5rY/kxR YwCIeCrnp1ZEu1+G2m9WaTfhBE6gMD5jbIrTYDVcQtUOVlKWYYAlyW+KiqV/7OgS /dgevcq+rrj2vA== -----END CERTIFICATE-----Generated at Fri Dec 12 07:23:33 2025 by rpki-client