This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.mft File: ieXrHhIJiXh0XVQNypbP8N5HBNo.mft (raw, json) Hash identifier: GyeQntOdDQROI1slh42khSPK7yDgKDuzjMuR03E3wtI= Subject key identifier: CD:0C:4F:B8:E9:CE:34:E5:52:D9:B1:11:8E:DD:36:E0:57:0A:EF:EF Authority key identifier: 89:E5:EB:1E:12:09:89:78:74:5D:54:0D:CA:96:CF:F0:DE:47:04:DA Certificate issuer: /CN=89e5eb1e12098978745d540dca96cff0de4704da Certificate serial: 019B0E5BFFDC7BF10EC7E71AB30467B625B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.mft Manifest number: 0BE5 Signing time: Thu 11 Dec 2025 17:01:08 +0000 Manifest this update: Thu 11 Dec 2025 17:01:08 +0000 Manifest next update: Fri 12 Dec 2025 17:01:08 +0000 Files and hashes: 1: ieXrHhIJiXh0XVQNypbP8N5HBNo.crl (hash: Wl+UsekV4UOVP8cY4r0FmdiUhakSmEMU7HYzbx0hb8A=) 2: l-HFEGYP57VmF8aDDh7--ZbJBDw.roa (hash: z6foBKVqU7T5Yu/Dwks8ZalWU/MYlRsXoQCU7GPCUOE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.crl rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.mft rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 17:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:5b:ff:dc:7b:f1:0e:c7:e7:1a:b3:04:67:b6:25:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89e5eb1e12098978745d540dca96cff0de4704da Validity Not Before: Dec 11 17:01:08 2025 GMT Not After : Dec 12 17:01:08 2025 GMT Subject: CN=cd0c4fb8e9ce34e552d9b1118edd36e0570aefef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:49:c9:1e:6a:86:e4:8e:22:89:58:5d:a6:39: bf:ca:2b:e8:c3:dc:bc:bf:88:18:a0:6a:8e:63:cd: 6d:98:94:d9:76:0e:ed:ff:00:91:63:ae:e1:5e:64: 67:80:bf:52:ae:e5:85:94:a6:17:69:9c:54:17:0e: e7:3d:5b:8a:29:48:a7:02:f9:f5:fa:bf:6c:65:44: fd:fc:7d:ba:54:83:55:5b:93:bb:dc:0e:b4:ff:23: e8:dd:4a:8c:33:2c:b3:cf:af:60:b5:ac:29:b9:f1: 9d:f1:66:87:6d:13:d3:9f:05:58:01:6e:b6:95:40: 6b:81:ad:e3:58:e2:d0:35:30:52:91:34:67:d7:6b: 4e:4a:97:d0:60:67:84:26:ed:52:69:3d:84:47:4a: 96:39:27:a1:ef:ba:1d:82:d8:be:52:b4:ad:57:7e: fa:bd:11:44:12:2c:ee:73:31:73:43:8b:d7:2b:2a: f1:d2:cd:37:7e:8f:06:2d:39:bc:1b:bb:23:90:8b: 8a:f7:b4:9a:62:a6:82:e2:c1:49:6b:7a:29:e4:be: 70:ca:92:84:35:2b:63:44:a9:dd:05:2c:2d:a8:de: ac:5e:dd:ac:05:95:4e:46:04:ef:e4:a1:af:19:11: b2:75:3c:86:71:08:a2:99:ac:ca:63:56:46:94:81: be:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:0C:4F:B8:E9:CE:34:E5:52:D9:B1:11:8E:DD:36:E0:57:0A:EF:EF X509v3 Authority Key Identifier: keyid:89:E5:EB:1E:12:09:89:78:74:5D:54:0D:CA:96:CF:F0:DE:47:04:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:70:33:47:8f:7a:88:e7:9a:43:de:9f:17:d2:79:43:30:f7: 57:0f:5d:d0:fe:f8:ce:e2:c8:61:7f:e1:9f:b4:c3:f4:20:96: 2d:54:67:f5:bb:12:ca:49:1e:3e:54:6f:1d:7f:56:1c:59:5c: 5e:bd:42:53:46:3c:78:a0:e4:f6:16:73:8d:f1:cf:e1:10:57: 87:fd:5d:32:98:ea:cd:91:89:84:91:71:4c:5d:ac:30:4f:2e: 61:dd:29:cf:66:19:38:7a:9b:de:56:51:b7:52:9e:f4:6d:e2: 6e:f3:b8:21:0c:59:f4:6b:81:7d:b6:24:42:22:27:d6:54:68: 55:90:5c:6b:26:79:a6:79:68:9e:08:96:b9:0e:f3:53:1e:86: 9a:00:e2:db:f8:7b:32:a3:b0:e1:30:92:c2:a5:b5:d8:85:c2: 8b:1e:f2:19:c8:c0:fa:fe:79:f4:9c:08:be:76:96:f6:ca:f5: d0:d4:9a:b9:8e:08:14:b6:7e:b9:6d:d1:3a:e0:f6:09:22:7e: 1e:2b:da:30:24:3a:38:df:97:6f:9f:61:3b:4a:e9:12:9f:be: 18:a3:f2:32:0d:8d:cf:49:3e:c5:4c:cf:b1:7c:a2:9a:34:c2: cc:3e:e0:9f:86:66:46:15:38:0d:e6:13:e9:2b:39:7f:57:0e: ce:2f:b1:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOW//ce/EOx+caswRntiWyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5ZTVlYjFlMTIwOTg5Nzg3NDVkNTQwZGNhOTZjZmYwZGU0 NzA0ZGEwHhcNMjUxMjExMTcwMTA4WhcNMjUxMjEyMTcwMTA4WjAzMTEwLwYDVQQD EyhjZDBjNGZiOGU5Y2UzNGU1NTJkOWIxMTE4ZWRkMzZlMDU3MGFlZmVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwUnJHmqG5I4iiVhdpjm/yivow9y8 v4gYoGqOY81tmJTZdg7t/wCRY67hXmRngL9SruWFlKYXaZxUFw7nPVuKKUinAvn1 +r9sZUT9/H26VINVW5O73A60/yPo3UqMMyyzz69gtawpufGd8WaHbRPTnwVYAW62 lUBrga3jWOLQNTBSkTRn12tOSpfQYGeEJu1SaT2ER0qWOSeh77odgti+UrStV376 vRFEEizuczFzQ4vXKyrx0s03fo8GLTm8G7sjkIuK97SaYqaC4sFJa3op5L5wypKE NStjRKndBSwtqN6sXt2sBZVORgTv5KGvGRGydTyGcQiimazKY1ZGlIG+5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM0MT7jpzjTlUtmxEY7dNuBXCu/vMB8GA1UdIwQY MBaAFInl6x4SCYl4dF1UDcqWz/DeRwTaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWVYckhoSUppWGgwWFZRTnlwYlA4TjVIQk5vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9lMTNiMzItMWJhOS00ZGI5LWE1Njkt NGFjYTA5NTY0ZmE4LzEvaWVYckhoSUppWGgwWFZRTnlwYlA4TjVIQk5vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC9lMTNiMzItMWJhOS00ZGI5LWE1NjktNGFjYTA5NTY0ZmE4 LzEvaWVYckhoSUppWGgwWFZRTnlwYlA4TjVIQk5vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb3AzR496 iOeaQ96fF9J5QzD3Vw9d0P74zuLIYX/hn7TD9CCWLVRn9bsSykkePlRvHX9WHFlc Xr1CU0Y8eKDk9hZzjfHP4RBXh/1dMpjqzZGJhJFxTF2sME8uYd0pz2YZOHqb3lZR t1Ke9G3ibvO4IQxZ9GuBfbYkQiIn1lRoVZBcayZ5pnlongiWuQ7zUx6GmgDi2/h7 MqOw4TCSwqW12IXCix7yGcjA+v559JwIvnaW9sr10NSauY4IFLZ+uW3ROuD2CSJ+ HivaMCQ6ON+Xb59hO0rpEp++GKPyMg2Nz0k+xUzPsXyimjTCzD7gn4ZmRhU4DeYT 6Ss5f1cOzi+xuw== -----END CERTIFICATE-----Generated at Fri Dec 12 01:33:27 2025 by rpki-client