This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft File: IY2yiCPzcIslWqEkum73QdET6vM.mft (raw, json) Hash identifier: pIB3RZ8vTxP68SzKXCO6fbIkOX217/hpaTAHcVTfTRw= Subject key identifier: 83:14:9C:65:D1:23:58:D0:87:F0:8E:ED:3F:A8:BD:CD:95:34:4F:6B Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3 Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3 Certificate serial: 019B33B22F90689D8B049C876AB8517CA5AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft Manifest number: 0F7E Signing time: Thu 18 Dec 2025 23:01:14 +0000 Manifest this update: Thu 18 Dec 2025 23:01:14 +0000 Manifest next update: Fri 19 Dec 2025 23:01:14 +0000 Files and hashes: 1: HaSDza_YVtRITzJIrQ3cs39clVI.roa (hash: MJ8iuClDZO6N2HHVvtqNHlRWHvmySc+prn9LGP/6I2Y=) 2: IY2yiCPzcIslWqEkum73QdET6vM.crl (hash: FO7FIV6I7ce7LEX5EOxaC9AklL2mUYSahRvS0wjfQTA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:b2:2f:90:68:9d:8b:04:9c:87:6a:b8:51:7c:a5:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3 Validity Not Before: Dec 18 23:01:14 2025 GMT Not After : Dec 19 23:01:14 2025 GMT Subject: CN=83149c65d12358d087f08eed3fa8bdcd95344f6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:15:e7:d3:4b:88:ec:37:e6:14:8d:8c:21:b2: 2e:fe:b2:0d:55:45:15:75:03:ee:4f:7e:e4:2b:2b: cf:ee:0f:78:b5:1f:b8:d4:ae:3b:be:2f:c3:fa:a6: 38:d4:30:59:c7:e8:7e:4e:08:d2:7a:39:4f:ae:97: 75:7c:6f:5f:5b:5b:bc:31:c7:b1:7c:f0:c3:a0:5b: bc:d9:74:47:2f:5f:60:d1:e5:fc:b4:8d:4b:c6:36: 8a:4b:de:61:d0:55:fb:e6:b2:4e:a8:e7:ed:97:4c: 13:3e:fe:db:37:1a:6b:94:9d:4b:31:21:f4:1e:01: 1d:d8:8c:ed:a7:36:23:29:67:d2:59:71:b2:4c:34: d7:47:cb:ad:aa:de:f8:87:13:b1:03:6d:db:74:c6: 50:1d:ab:d6:4d:04:e7:45:84:05:6e:b6:ea:be:a2: 91:32:cb:93:1b:46:a2:9b:aa:b2:46:78:01:07:88: 93:9e:cf:a3:51:0f:63:56:30:c4:4f:4d:1b:c7:4e: 4a:fe:68:bf:04:7c:d8:f0:f2:2f:fc:61:7c:f3:54: 0c:db:9c:a5:e3:e3:68:4c:22:eb:a0:df:9a:de:cf: 71:f9:1a:40:55:18:72:1c:b7:c4:c9:76:d3:3e:64: a0:f4:4c:21:53:92:7c:1b:d1:7a:c6:4d:f5:67:b2: d8:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:14:9C:65:D1:23:58:D0:87:F0:8E:ED:3F:A8:BD:CD:95:34:4F:6B X509v3 Authority Key Identifier: keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b1:49:8a:fc:04:80:40:55:d7:58:93:1b:ab:d3:73:c3:e9:ca: f1:62:8d:01:06:99:45:dd:f4:8e:2d:fc:73:56:ca:b2:75:8a: fd:2b:23:14:a7:13:ab:b9:af:5b:b7:a9:b1:44:62:14:e9:6d: e7:b4:40:df:d9:a1:77:13:20:80:94:11:b0:80:2e:b3:ea:2b: 92:59:b8:ac:58:4e:f1:d8:5c:95:43:d3:6a:43:a0:31:6d:2c: 3a:1c:a7:3f:b6:2a:83:4f:db:4b:8b:fe:d8:36:98:b7:10:2d: e3:bc:75:c0:42:54:fa:31:c1:d4:09:74:81:27:78:7f:ed:02: 93:43:55:31:16:5e:89:14:58:4d:09:c4:79:42:5a:e9:c9:60: 17:b4:cd:1f:66:c7:17:e4:9b:08:eb:3b:e6:d9:5e:30:36:a2: 90:67:bd:09:96:a5:ea:b7:18:88:67:d7:ed:4c:a7:b7:24:a8: d8:4f:0a:f2:93:55:dc:05:78:c5:93:9c:3f:ad:47:1d:41:08: 43:4c:d5:0e:36:fb:fe:6b:cb:b5:ae:3a:77:dc:22:a8:ba:87: 9f:82:91:f6:27:b1:0b:30:41:75:bf:25:ac:8c:57:3c:08:05: a5:ab:f1:d4:53:26:85:29:5c:80:6a:78:f9:9a:26:5d:40:ec: 01:08:07:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszsi+QaJ2LBJyHarhRfKWuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxOGRiMjg4MjNmMzcwOGIyNTVhYTEyNGJhNmVmNzQxZDEx M2VhZjMwHhcNMjUxMjE4MjMwMTE0WhcNMjUxMjE5MjMwMTE0WjAzMTEwLwYDVQQD Eyg4MzE0OWM2NWQxMjM1OGQwODdmMDhlZWQzZmE4YmRjZDk1MzQ0ZjZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5RXn00uI7DfmFI2MIbIu/rINVUUV dQPuT37kKyvP7g94tR+41K47vi/D+qY41DBZx+h+TgjSejlPrpd1fG9fW1u8Mcex fPDDoFu82XRHL19g0eX8tI1LxjaKS95h0FX75rJOqOftl0wTPv7bNxprlJ1LMSH0 HgEd2IztpzYjKWfSWXGyTDTXR8utqt74hxOxA23bdMZQHavWTQTnRYQFbrbqvqKR MsuTG0aim6qyRngBB4iTns+jUQ9jVjDET00bx05K/mi/BHzY8PIv/GF881QM25yl 4+NoTCLroN+a3s9x+RpAVRhyHLfEyXbTPmSg9EwhU5J8G9F6xk31Z7LYuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIMUnGXRI1jQh/CO7T+ovc2VNE9rMB8GA1UdIwQY MBaAFCGNsogj83CLJVqhJLpu90HRE+rzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQt NzlkYzNkMGJiZWQ4LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQtNzlkYzNkMGJiZWQ4 LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsUmK/ASA QFXXWJMbq9Nzw+nK8WKNAQaZRd30ji38c1bKsnWK/SsjFKcTq7mvW7epsURiFOlt 57RA39mhdxMggJQRsIAus+orklm4rFhO8dhclUPTakOgMW0sOhynP7Yqg0/bS4v+ 2DaYtxAt47x1wEJU+jHB1Al0gSd4f+0Ck0NVMRZeiRRYTQnEeUJa6clgF7TNH2bH F+SbCOs75tleMDaikGe9CZal6rcYiGfX7UyntySo2E8K8pNV3AV4xZOcP61HHUEI Q0zVDjb7/mvLta46d9wiqLqHn4KR9iexCzBBdb8lrIxXPAgFpavx1FMmhSlcgGp4 +ZomXUDsAQgH9w== -----END CERTIFICATE-----Generated at Fri Dec 19 00:52:58 2025 by rpki-client