This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft File: iawKy_23onTvNsFvWGCtoqJHBpc.mft (raw, json) Hash identifier: IicxbCWhfhuPUU6NmnSKmRGvc0WbvcjVCogp0Vq/pIo= Subject key identifier: 43:3C:B1:3D:58:40:73:7A:ED:B8:FB:7B:3E:09:31:5A:71:76:5D:65 Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97 Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697 Certificate serial: 019B0F37BFDEE5CAF57CEAAEC86F8AA67BF3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft Manifest number: 1760 Signing time: Thu 11 Dec 2025 21:01:10 +0000 Manifest this update: Thu 11 Dec 2025 21:01:10 +0000 Manifest next update: Fri 12 Dec 2025 21:01:10 +0000 Files and hashes: 1: 5WLg_OQ77v-fOT9qxALPiv6xIJU.roa (hash: Of5ILIgkLOFeAYv4HvRO9bh/m8O2gTiP63LRrjsXyCc=) 2: AbKOh9gpXgwFSloJdXfaWSLCFyg.roa (hash: Q+kVnk5rKEmbqNEXqZoiJZUiyaqs6rvEUwmrzWgFMQI=) 3: JyckXigwYGV__68AUCYD52rnXo0.roa (hash: SbkH6tPWhWrW/o78zmYE9oC7rLfxWmyocNFH2s//I5E=) 4: LZXNMAIh5rxJ27RzY3-HOC44ze8.roa (hash: a//LkQjUfY/J/vByRTwCkOeaTuhCCphW4WYvKNJGdac=) 5: NCM3clu2kUX1FywCV-rdbSiyAwg.roa (hash: lqUVwqTm2F0EVVgAq9uFKVlQ5ZkdzUvkJ/HuRhL+GWA=) 6: dJyo5maMFYG06CB60KewP8-LNEc.roa (hash: LO26kgSXxCz0IxFKcAaH1ZYq5V5rRxtBlLjShWu3YvU=) 7: iawKy_23onTvNsFvWGCtoqJHBpc.crl (hash: zpovrvsOe3gfL1d9b6W7hcs5GH0WJD0OuFSwgkr8NB8=) 8: kALeFOqdoUlsrrEA4gEeCsqdb7U.roa (hash: CGGNVlWIfGNVOdkVdR2nL+rohybhJ6hPwgX68rdZVTI=) 9: kGDG-UIYc6E6yuKmUj9Iy9r4a6I.roa (hash: 1OvwxxMvp2ezbTpQpiEO0qvhRS4iGyD5k7iDnUXEkCY=) 10: q9-vuUKVR4izeN3aoSM_0PGlTLE.roa (hash: 7uTxuawjanQAcGsc+vt8tq396KLmeaMaL6YYUmFethI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:37:bf:de:e5:ca:f5:7c:ea:ae:c8:6f:8a:a6:7b:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697 Validity Not Before: Dec 11 21:01:10 2025 GMT Not After : Dec 12 21:01:10 2025 GMT Subject: CN=433cb13d5840737aedb8fb7b3e09315a71765d65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:62:5d:79:5e:d5:3d:af:65:88:03:be:1f:77: d7:19:42:03:2a:5b:30:82:91:df:84:92:3d:d5:6d: d0:9e:5e:d8:11:8a:40:14:d8:92:a3:aa:77:82:8f: ad:7c:96:e9:f8:55:78:20:13:24:12:69:33:92:fc: e4:85:6e:75:93:3a:e3:01:16:43:1b:03:b2:2d:4c: 64:3c:e7:5a:17:34:ad:ae:39:7b:86:15:87:f2:a4: 5a:a0:02:5a:2d:59:b9:bd:4b:bf:0a:22:46:61:b0: a1:1d:fd:b1:0d:f1:1c:61:57:67:20:45:48:85:99: 31:88:c8:6b:23:97:3c:99:ae:6f:22:2e:0e:58:f0: 88:3f:c6:51:f3:ab:45:8d:3b:10:20:c6:f2:f7:ab: 22:a4:4c:7c:69:79:c5:fe:e9:2c:11:83:b2:19:0d: 1e:92:84:37:6f:9f:9e:db:13:d7:0e:19:21:97:26: 32:73:f8:0f:ad:0b:8b:a3:77:02:18:06:9a:31:4e: ee:2f:2f:9e:35:db:39:2d:ef:0e:31:2d:14:33:3c: f6:ad:cd:57:27:6f:5a:b3:6d:7b:d5:34:56:d6:92: 0e:b9:f2:8c:3d:91:9c:49:fa:0f:65:f7:55:6b:1b: fa:b5:30:3c:cb:5d:98:36:c7:da:86:e4:86:c5:7a: d2:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:3C:B1:3D:58:40:73:7A:ED:B8:FB:7B:3E:09:31:5A:71:76:5D:65 X509v3 Authority Key Identifier: keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:a5:c5:09:a6:b0:1b:71:28:d3:8d:73:53:8b:63:b8:ff:1e: 1b:ac:13:35:33:72:ff:58:fb:09:59:09:07:92:79:ff:f2:bc: 41:d2:50:de:3b:17:d6:3f:00:6b:60:6b:e5:dd:40:5f:b7:5e: 50:ad:29:75:fd:94:72:1f:a8:1c:22:59:b6:2c:a4:fa:fd:eb: e0:63:6d:2a:14:8b:d0:24:c7:42:73:6d:12:09:b1:8a:cd:92: 68:91:b4:7a:c4:51:39:b5:ca:2a:a5:0a:76:17:b7:81:29:e7: 8f:a2:a3:80:4f:d0:30:e3:81:b1:83:d6:fd:eb:79:12:8e:b3: 8a:95:7b:46:67:8a:f3:78:c6:8b:d8:85:ed:91:8f:cf:25:0c: 5a:19:47:ea:04:6b:d9:f7:8d:08:ad:8f:fd:4a:64:98:01:2c: ba:05:e4:b3:bd:82:73:93:23:a3:22:24:a6:17:32:bc:f2:e2: 5e:98:b7:b9:94:ab:cf:57:87:02:49:89:92:76:2f:74:71:0a: 68:b8:99:1b:5c:8c:8b:0f:3d:c1:78:e7:5b:71:50:89:bc:6e: d8:15:29:73:5b:62:57:a9:3d:4a:80:90:23:46:fb:90:36:b6: 6d:b6:27:06:cd:3a:b5:71:cd:70:c2:65:30:b6:2d:d1:88:55: 19:0a:f6:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPN7/e5cr1fOquyG+KpnvzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5YWMwYWNiZmRiN2EyNzRlZjM2YzE2ZjU4NjBhZGEyYTI0 NzA2OTcwHhcNMjUxMjExMjEwMTEwWhcNMjUxMjEyMjEwMTEwWjAzMTEwLwYDVQQD Eyg0MzNjYjEzZDU4NDA3MzdhZWRiOGZiN2IzZTA5MzE1YTcxNzY1ZDY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz2JdeV7VPa9liAO+H3fXGUIDKlsw gpHfhJI91W3Qnl7YEYpAFNiSo6p3go+tfJbp+FV4IBMkEmkzkvzkhW51kzrjARZD GwOyLUxkPOdaFzStrjl7hhWH8qRaoAJaLVm5vUu/CiJGYbChHf2xDfEcYVdnIEVI hZkxiMhrI5c8ma5vIi4OWPCIP8ZR86tFjTsQIMby96sipEx8aXnF/uksEYOyGQ0e koQ3b5+e2xPXDhkhlyYyc/gPrQuLo3cCGAaaMU7uLy+eNds5Le8OMS0UMzz2rc1X J29as2171TRW1pIOufKMPZGcSfoPZfdVaxv6tTA8y12YNsfahuSGxXrSnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEM8sT1YQHN67bj7ez4JMVpxdl1lMB8GA1UdIwQY MBaAFImsCsv9t6J07zbBb1hgraKiRwaXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWF3S3lfMjNvblR2TnNGdldHQ3RvcUpIQnBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS85M2E3NjgtMjY3Ny00OGQ2LTkxNGMt ZDRkYmY3MDY2ZmQzLzEvaWF3S3lfMjNvblR2TnNGdldHQ3RvcUpIQnBjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS85M2E3NjgtMjY3Ny00OGQ2LTkxNGMtZDRkYmY3MDY2ZmQz LzEvaWF3S3lfMjNvblR2TnNGdldHQ3RvcUpIQnBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQaXFCaaw G3Eo041zU4tjuP8eG6wTNTNy/1j7CVkJB5J5//K8QdJQ3jsX1j8Aa2Br5d1AX7de UK0pdf2Uch+oHCJZtiyk+v3r4GNtKhSL0CTHQnNtEgmxis2SaJG0esRRObXKKqUK dhe3gSnnj6KjgE/QMOOBsYPW/et5Eo6zipV7RmeK83jGi9iF7ZGPzyUMWhlH6gRr 2feNCK2P/UpkmAEsugXks72Cc5MjoyIkphcyvPLiXpi3uZSrz1eHAkmJknYvdHEK aLiZG1yMiw89wXjnW3FQibxu2BUpc1tiV6k9SoCQI0b7kDa2bbYnBs06tXHNcMJl MLYt0YhVGQr2yg== -----END CERTIFICATE-----Generated at Fri Dec 12 02:46:51 2025 by rpki-client