This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft File: IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft (raw, json) Hash identifier: 8hZYKmqH70Z3GaLsijKsaAYxGNqcYc8Gdca6XuMG3mA= Subject key identifier: 73:BF:5D:B8:1C:99:1C:71:A4:97:A0:99:40:E4:E1:3D:36:F5:12:AB Authority key identifier: 21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35 Certificate issuer: /CN=214a0f42190944ac6b45e00a24ae41a345fdcb35 Certificate serial: 019B5B64984D617705743878E2523877BC2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft Manifest number: 1798 Signing time: Fri 26 Dec 2025 16:01:17 +0000 Manifest this update: Fri 26 Dec 2025 16:01:17 +0000 Manifest next update: Sat 27 Dec 2025 16:01:17 +0000 Files and hashes: 1: BIaGV9Zs8uGBriNQ8U7uQ0gnNfA.roa (hash: 7T5AV/yHdfgZicPaqkaiWb9Osz7vZVkyB1rTGAClRcg=) 2: IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl (hash: M5gQcXXdWpxTcIEjvou35nNxRImrxFISRgmGjZqBPBY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 11:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5b:64:98:4d:61:77:05:74:38:78:e2:52:38:77:bc:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=214a0f42190944ac6b45e00a24ae41a345fdcb35 Validity Not Before: Dec 26 16:01:17 2025 GMT Not After : Dec 27 16:01:17 2025 GMT Subject: CN=73bf5db81c991c71a497a09940e4e13d36f512ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:73:8c:60:cf:d9:01:34:6d:39:e3:d0:6d:3d: c6:bb:e5:e8:c8:1a:07:70:6b:e1:a2:e2:fd:ae:6e: cd:f7:79:d5:d5:1b:aa:ce:19:59:7d:29:36:49:be: 2e:a0:ff:87:1f:27:1f:43:50:24:f0:4d:24:d2:13: 5e:e1:81:c3:d5:dd:32:36:e6:5f:6a:7c:b0:d2:92: 4f:a9:76:e3:78:22:84:76:31:93:73:59:9b:07:db: f0:71:6a:f3:4d:e8:f0:31:e1:29:0a:d7:c7:2c:fa: f4:70:f7:86:f7:ab:25:84:11:83:90:ec:15:fb:92: 55:df:d1:1c:b3:71:53:c3:4e:e2:cb:97:1e:b9:e6: 30:bf:d4:fc:ad:49:d4:df:a1:b3:e2:a3:59:62:d7: 93:04:59:7d:02:dd:e3:29:f9:a2:7a:f2:26:62:71: 87:54:31:3f:94:55:b9:d6:33:6c:3b:d9:f2:4c:9e: 15:fe:72:29:fe:48:f5:51:f8:b0:c9:e4:84:38:3f: 84:28:7c:53:fc:8d:70:70:ae:b5:da:55:ce:5b:92: 08:d3:5c:20:97:98:fa:e6:67:e4:d2:0c:cb:66:ff: f9:e3:31:e3:5a:05:d2:81:bd:40:35:a9:3c:f6:c3: b6:23:33:0d:54:80:69:b4:e9:1f:e4:c6:1b:73:bc: ee:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:BF:5D:B8:1C:99:1C:71:A4:97:A0:99:40:E4:E1:3D:36:F5:12:AB X509v3 Authority Key Identifier: keyid:21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:1b:ce:1e:46:33:5f:83:e3:ee:e7:05:dc:24:e1:dd:2b:2b: 72:cd:4c:30:76:d6:04:5d:ec:07:65:6e:92:0c:34:09:19:ff: 11:e7:ab:66:eb:44:5f:9a:57:8e:bb:7f:ef:50:c3:c8:75:b8: 71:a9:a3:f0:b9:20:8c:f2:07:d8:ff:3c:5f:65:e9:9a:c6:56: b8:55:88:4d:24:e6:fd:4d:16:73:3b:47:ad:d3:bd:0a:0a:5e: 1e:22:d1:80:28:04:8a:8d:50:b2:09:d9:05:a2:05:db:4a:61: d6:b2:d9:4a:8d:b3:2a:ec:13:1b:e2:16:57:06:c1:a7:23:f9: e0:fa:8e:d1:03:b0:1b:8b:7d:b0:7c:1d:5a:85:c7:d4:ae:c9: ab:43:b5:15:ec:f2:43:15:ce:24:c0:d4:1a:ae:e8:d8:01:a2: 06:83:81:8b:37:80:2b:92:a4:93:a4:3d:16:e0:f3:df:48:c0: db:28:7a:a1:31:6e:d7:54:a7:96:6c:df:d5:d4:73:4d:7a:b3: 5e:9c:52:39:d3:3f:2c:93:89:37:c9:e3:40:4b:80:8f:da:44: 63:12:94:10:ef:68:6f:d5:28:24:52:c6:26:f5:25:89:45:48: 1d:35:4f:79:00:5d:0b:b8:3e:41:b1:74:0a:f8:81:89:5d:95: 98:0d:62:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtbZJhNYXcFdDh44lI4d7wqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxNGEwZjQyMTkwOTQ0YWM2YjQ1ZTAwYTI0YWU0MWEzNDVm ZGNiMzUwHhcNMjUxMjI2MTYwMTE3WhcNMjUxMjI3MTYwMTE3WjAzMTEwLwYDVQQD Eyg3M2JmNWRiODFjOTkxYzcxYTQ5N2EwOTk0MGU0ZTEzZDM2ZjUxMmFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4HOMYM/ZATRtOePQbT3Gu+XoyBoH cGvhouL9rm7N93nV1RuqzhlZfSk2Sb4uoP+HHycfQ1Ak8E0k0hNe4YHD1d0yNuZf anyw0pJPqXbjeCKEdjGTc1mbB9vwcWrzTejwMeEpCtfHLPr0cPeG96slhBGDkOwV +5JV39Ecs3FTw07iy5ceueYwv9T8rUnU36Gz4qNZYteTBFl9At3jKfmievImYnGH VDE/lFW51jNsO9nyTJ4V/nIp/kj1UfiwyeSEOD+EKHxT/I1wcK612lXOW5II01wg l5j65mfk0gzLZv/54zHjWgXSgb1ANak89sO2IzMNVIBptOkf5MYbc7zunwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHO/XbgcmRxxpJegmUDk4T029RKrMB8GA1UdIwQY MBaAFCFKD0IZCUSsa0XgCiSuQaNF/cs1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVVvUFFoa0pSS3hyUmVBS0pLNUJvMFg5eXpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8wZDU3ZmYtNTUzMC00NjBkLThiNTMt YjY2NTZjYzFiZDU5LzEvSVVvUFFoa0pSS3hyUmVBS0pLNUJvMFg5eXpVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC8wZDU3ZmYtNTUzMC00NjBkLThiNTMtYjY2NTZjYzFiZDU5 LzEvSVVvUFFoa0pSS3hyUmVBS0pLNUJvMFg5eXpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEhvOHkYz X4Pj7ucF3CTh3Ssrcs1MMHbWBF3sB2Vukgw0CRn/EeerZutEX5pXjrt/71DDyHW4 camj8LkgjPIH2P88X2XpmsZWuFWITSTm/U0WcztHrdO9CgpeHiLRgCgEio1QsgnZ BaIF20ph1rLZSo2zKuwTG+IWVwbBpyP54PqO0QOwG4t9sHwdWoXH1K7Jq0O1Fezy QxXOJMDUGq7o2AGiBoOBizeAK5Kkk6Q9FuDz30jA2yh6oTFu11Snlmzf1dRzTXqz XpxSOdM/LJOJN8njQEuAj9pEYxKUEO9ob9UoJFLGJvUliUVIHTVPeQBdC7g+QbF0 CviBiV2VmA1iRg== -----END CERTIFICATE-----Generated at Fri Dec 26 21:05:40 2025 by rpki-client