This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft File: IY2yiCPzcIslWqEkum73QdET6vM.mft (raw, json) Hash identifier: 1D75YLWJF36XX1gACjrlzp2MfWrnr4aCmTKezZPIKzc= Subject key identifier: A8:D5:7D:7F:6B:6A:D9:80:3E:DB:F7:19:EF:E8:D8:B9:DC:56:F4:BF Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3 Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3 Certificate serial: 019B0F005F186B55F1A80CEE9B3362E3F594 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft Manifest number: 0F6B Signing time: Thu 11 Dec 2025 20:00:41 +0000 Manifest this update: Thu 11 Dec 2025 20:00:41 +0000 Manifest next update: Fri 12 Dec 2025 20:00:41 +0000 Files and hashes: 1: HaSDza_YVtRITzJIrQ3cs39clVI.roa (hash: MJ8iuClDZO6N2HHVvtqNHlRWHvmySc+prn9LGP/6I2Y=) 2: IY2yiCPzcIslWqEkum73QdET6vM.crl (hash: AjR3+Zm/+OcKnGAYgtwnaOx8UAPR+1gYuusDJ4oNcrw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:00:5f:18:6b:55:f1:a8:0c:ee:9b:33:62:e3:f5:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3 Validity Not Before: Dec 11 20:00:41 2025 GMT Not After : Dec 12 20:00:41 2025 GMT Subject: CN=a8d57d7f6b6ad9803edbf719efe8d8b9dc56f4bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:a0:17:f7:2c:27:7c:58:70:37:fa:05:39:ee: fb:53:03:73:89:cf:03:e4:56:bd:90:21:52:ef:a5: 36:74:eb:0a:c8:57:4a:4b:67:20:64:d2:03:8e:45: c3:ff:f0:4c:ca:c2:a3:f4:8f:be:70:c0:0e:b8:41: a4:2d:bb:42:46:a5:92:37:28:d7:a6:8d:1f:d3:f5: 5b:b7:40:dd:8e:e3:f2:81:4a:83:49:1e:a3:33:17: 54:73:db:c7:ce:fb:68:46:9d:1d:e7:f6:17:4c:02: 14:59:4b:0e:7b:0a:6d:62:ab:36:3a:01:96:f0:e0: bd:4d:e1:44:86:88:85:0f:47:5b:bb:56:a3:ad:2b: 7f:15:af:fa:b7:4d:81:c8:68:10:a7:ff:b2:82:2f: 54:8f:f1:31:ad:88:c8:80:2e:9b:a3:9c:1e:20:00: 3a:9e:e9:ec:cd:3d:26:fe:97:ec:59:5f:4c:d3:49: 18:21:b0:79:c1:db:35:73:97:2c:ed:c3:a3:33:47: 73:d2:ea:07:18:86:1c:0f:7b:1e:46:84:86:c6:1e: 88:76:a8:69:ce:bd:a8:f0:a2:1b:8d:e0:e9:22:72: d9:bd:38:96:c6:22:b1:2b:63:19:f1:de:e0:cd:10: 9f:da:49:78:f6:78:35:d9:71:ca:df:27:ed:89:99: be:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:D5:7D:7F:6B:6A:D9:80:3E:DB:F7:19:EF:E8:D8:B9:DC:56:F4:BF X509v3 Authority Key Identifier: keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:26:be:d3:6a:e0:e2:99:d6:58:19:b5:ae:a7:35:3e:fd:9b: fd:62:a8:5d:01:8e:d5:43:32:f0:62:8e:a0:8a:85:c5:e3:24: 7a:17:ba:02:46:35:4d:08:e4:4b:92:0c:44:51:ab:92:2a:32: c5:b6:a8:83:ea:a9:61:d1:0b:db:4c:2b:58:76:e9:ca:85:cf: a8:7d:d8:ab:9d:2d:6c:bd:cd:ac:c3:1d:e4:41:74:73:b5:5c: 6a:8a:a1:f0:4f:84:9e:f0:2b:34:73:49:a9:89:b4:a3:70:e0: 98:03:7c:0b:ad:13:04:a7:fb:41:a5:cd:ce:84:e8:9f:41:02: eb:69:cc:dd:93:3f:2b:46:94:19:78:69:d5:6c:fd:5d:79:eb: 0d:fd:04:14:2b:73:ae:7d:42:18:62:1b:c4:c1:07:ae:0b:2b: b5:9c:2f:99:9c:73:93:fc:f1:31:10:c2:de:17:0a:31:2d:04: 4c:65:c2:65:62:82:03:75:35:64:06:98:3f:64:e6:78:b1:3f: 88:95:aa:79:a3:87:64:b7:a5:79:da:13:c6:3f:a8:e0:91:f2: 51:37:de:45:24:85:54:cc:f7:12:0a:c5:0d:11:95:01:df:94: c4:f0:77:28:8f:76:9b:b4:e5:88:64:40:51:35:b8:57:09:65: 9a:d5:43:4a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPAF8Ya1XxqAzumzNi4/WUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxOGRiMjg4MjNmMzcwOGIyNTVhYTEyNGJhNmVmNzQxZDEx M2VhZjMwHhcNMjUxMjExMjAwMDQxWhcNMjUxMjEyMjAwMDQxWjAzMTEwLwYDVQQD EyhhOGQ1N2Q3ZjZiNmFkOTgwM2VkYmY3MTllZmU4ZDhiOWRjNTZmNGJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9qAX9ywnfFhwN/oFOe77UwNzic8D 5Fa9kCFS76U2dOsKyFdKS2cgZNIDjkXD//BMysKj9I++cMAOuEGkLbtCRqWSNyjX po0f0/Vbt0DdjuPygUqDSR6jMxdUc9vHzvtoRp0d5/YXTAIUWUsOewptYqs2OgGW 8OC9TeFEhoiFD0dbu1ajrSt/Fa/6t02ByGgQp/+ygi9Uj/ExrYjIgC6bo5weIAA6 nunszT0m/pfsWV9M00kYIbB5wds1c5cs7cOjM0dz0uoHGIYcD3seRoSGxh6Idqhp zr2o8KIbjeDpInLZvTiWxiKxK2MZ8d7gzRCf2kl49ng12XHK3yftiZm+kwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKjVfX9ratmAPtv3Ge/o2LncVvS/MB8GA1UdIwQY MBaAFCGNsogj83CLJVqhJLpu90HRE+rzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQt NzlkYzNkMGJiZWQ4LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQtNzlkYzNkMGJiZWQ4 LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkCa+02rg 4pnWWBm1rqc1Pv2b/WKoXQGO1UMy8GKOoIqFxeMkehe6AkY1TQjkS5IMRFGrkioy xbaog+qpYdEL20wrWHbpyoXPqH3Yq50tbL3NrMMd5EF0c7Vcaoqh8E+EnvArNHNJ qYm0o3DgmAN8C60TBKf7QaXNzoTon0EC62nM3ZM/K0aUGXhp1Wz9XXnrDf0EFCtz rn1CGGIbxMEHrgsrtZwvmZxzk/zxMRDC3hcKMS0ETGXCZWKCA3U1ZAaYP2TmeLE/ iJWqeaOHZLeledoTxj+o4JHyUTfeRSSFVMz3EgrFDRGVAd+UxPB3KI92m7TliGRA UTW4VwllmtVDSg== -----END CERTIFICATE-----Generated at Fri Dec 12 04:02:02 2025 by rpki-client