This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft File: iu8WONCRG6mIZOl5yEJrpPQaJy4.mft (raw, json) Hash identifier: /BbnGjzetMB7a7UKwU9yNcBzxr4f0ooiZ8uqQIjnCfk= Subject key identifier: 97:15:B0:30:2C:C8:05:CD:E5:CC:77:B1:34:1D:0C:DA:00:B6:03:5F Authority key identifier: 8A:EF:16:38:D0:91:1B:A9:88:64:E9:79:C8:42:6B:A4:F4:1A:27:2E Certificate issuer: /CN=8aef1638d0911ba98864e979c8426ba4f41a272e Certificate serial: 019B4627C5D1057C1F27979F111543B568BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iu8WONCRG6mIZOl5yEJrpPQaJy4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft Manifest number: 178E Signing time: Mon 22 Dec 2025 13:02:50 +0000 Manifest this update: Mon 22 Dec 2025 13:02:50 +0000 Manifest next update: Tue 23 Dec 2025 13:02:50 +0000 Files and hashes: 1: if3KaihHpbg1Z08V6cXxVYQmFhk.roa (hash: 4GJMU1mopT3EhZuM0ayjHedY3bbBO8iZn11kZBRbuts=) 2: iu8WONCRG6mIZOl5yEJrpPQaJy4.crl (hash: UrGdxiADSXOgQKv/UlNLcqC+H0fw5Uq3IgryRHisfzw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.crl rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft rsync://rpki.ripe.net/repository/DEFAULT/iu8WONCRG6mIZOl5yEJrpPQaJy4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 13:02:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:46:27:c5:d1:05:7c:1f:27:97:9f:11:15:43:b5:68:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8aef1638d0911ba98864e979c8426ba4f41a272e Validity Not Before: Dec 22 13:02:50 2025 GMT Not After : Dec 23 13:02:50 2025 GMT Subject: CN=9715b0302cc805cde5cc77b1341d0cda00b6035f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:1e:b2:0d:a2:78:f1:7f:f1:fe:25:aa:81:17: 00:69:fb:77:10:b2:bd:86:6c:c2:5e:fb:6f:3f:b0: 00:e5:c0:ff:e7:de:ba:09:e1:86:10:1c:7e:11:33: 82:8f:48:2d:73:a7:ac:c8:21:d1:82:3b:03:91:1c: 48:6b:0a:49:47:7b:04:95:3a:98:1b:c0:b5:a6:3e: 60:06:a6:0b:ec:9c:02:73:fa:4f:60:4b:8b:64:a2: cb:13:27:a9:a4:5d:0d:68:c9:67:27:ef:1f:ee:b8: c3:a1:48:b0:87:28:51:56:7e:17:de:06:7b:22:3f: 20:78:45:e7:29:cf:4a:a8:0b:06:13:bf:da:55:b4: f8:33:82:bb:82:e1:7b:23:44:ba:91:3e:55:24:34: 63:9a:0f:d5:5c:db:e0:af:78:77:de:55:f8:04:9d: e7:8c:8d:5e:36:4c:2f:1f:53:80:8f:8f:b2:a6:61: 62:17:d6:37:8b:e0:25:45:d4:c9:98:d6:a6:19:08: 41:09:f8:44:12:cc:33:8c:b4:6a:2e:2b:98:2e:d7: ba:4c:1a:53:45:95:3b:01:27:e8:24:83:3e:f0:0e: f2:6b:51:29:87:15:6f:d5:73:b3:07:e9:b5:b4:d6: 94:1a:9d:0d:fb:8f:ca:01:4e:86:df:71:da:4d:a4: 9b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:15:B0:30:2C:C8:05:CD:E5:CC:77:B1:34:1D:0C:DA:00:B6:03:5F X509v3 Authority Key Identifier: keyid:8A:EF:16:38:D0:91:1B:A9:88:64:E9:79:C8:42:6B:A4:F4:1A:27:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iu8WONCRG6mIZOl5yEJrpPQaJy4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d8:28:a2:72:47:8f:d5:08:61:de:3c:78:fe:b5:dd:c9:46:17: 23:3e:ec:7e:fb:a7:41:29:40:55:60:97:cb:52:37:59:cb:eb: e6:ab:b4:0c:f4:85:3f:27:d1:b7:6e:b9:91:f7:bf:ce:be:b6: 9a:8f:7b:de:c6:ff:01:d2:f2:a3:4d:ce:ed:d2:64:29:c0:4f: 99:bb:5f:a8:d3:8a:c0:69:79:27:15:eb:24:de:5d:1e:2d:bb: 73:b1:22:09:a4:b9:19:90:10:08:cb:94:66:cb:fe:6f:4c:f9: ed:af:3f:a0:b3:71:c8:8d:7c:78:13:8e:d4:51:85:98:d3:8e: 2d:99:2f:a5:54:c5:30:5a:0e:99:a0:20:b4:23:5a:17:f4:e9: 91:b5:77:85:d4:7e:b4:5a:e2:74:56:d1:47:28:83:59:74:91: 2c:92:53:15:ff:0d:ab:3b:91:fa:ad:81:67:a7:0e:8e:7e:bd: 51:c6:54:62:56:43:dc:3f:28:a9:67:93:bd:13:a1:a2:e0:2d: a9:bc:d3:6d:57:db:0d:eb:da:a8:da:03:6b:a8:fc:d0:e6:df: ac:d4:5b:52:72:c6:df:29:9a:b7:c7:51:b9:fb:ce:d1:8c:e0: e5:8f:91:85:dc:bc:91:9b:a9:cb:4a:cd:44:e3:22:72:f8:f7: 2e:ac:dc:f0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtGJ8XRBXwfJ5efERVDtWi+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhZWYxNjM4ZDA5MTFiYTk4ODY0ZTk3OWM4NDI2YmE0ZjQx YTI3MmUwHhcNMjUxMjIyMTMwMjUwWhcNMjUxMjIzMTMwMjUwWjAzMTEwLwYDVQQD Eyg5NzE1YjAzMDJjYzgwNWNkZTVjYzc3YjEzNDFkMGNkYTAwYjYwMzVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkx6yDaJ48X/x/iWqgRcAaft3ELK9 hmzCXvtvP7AA5cD/5966CeGGEBx+ETOCj0gtc6esyCHRgjsDkRxIawpJR3sElTqY G8C1pj5gBqYL7JwCc/pPYEuLZKLLEyeppF0NaMlnJ+8f7rjDoUiwhyhRVn4X3gZ7 Ij8geEXnKc9KqAsGE7/aVbT4M4K7guF7I0S6kT5VJDRjmg/VXNvgr3h33lX4BJ3n jI1eNkwvH1OAj4+ypmFiF9Y3i+AlRdTJmNamGQhBCfhEEswzjLRqLiuYLte6TBpT RZU7ASfoJIM+8A7ya1EphxVv1XOzB+m1tNaUGp0N+4/KAU6G33HaTaSbBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJcVsDAsyAXN5cx3sTQdDNoAtgNfMB8GA1UdIwQY MBaAFIrvFjjQkRupiGTpechCa6T0GicuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXU4V09OQ1JHNm1JWk9sNXlFSnJwUFFhSnk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My8yNjU3NjktMzU0ZS00YThiLTk1NDIt OTRmOTdiM2EyY2UyLzEvaXU4V09OQ1JHNm1JWk9sNXlFSnJwUFFhSnk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My8yNjU3NjktMzU0ZS00YThiLTk1NDItOTRmOTdiM2EyY2Uy LzEvaXU4V09OQ1JHNm1JWk9sNXlFSnJwUFFhSnk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA2CiickeP 1Qhh3jx4/rXdyUYXIz7sfvunQSlAVWCXy1I3Wcvr5qu0DPSFPyfRt265kfe/zr62 mo973sb/AdLyo03O7dJkKcBPmbtfqNOKwGl5JxXrJN5dHi27c7EiCaS5GZAQCMuU Zsv+b0z57a8/oLNxyI18eBOO1FGFmNOOLZkvpVTFMFoOmaAgtCNaF/TpkbV3hdR+ tFridFbRRyiDWXSRLJJTFf8NqzuR+q2BZ6cOjn69UcZUYlZD3D8oqWeTvROhouAt qbzTbVfbDevaqNoDa6j80ObfrNRbUnLG3ymat8dRufvO0Yzg5Y+Rhdy8kZupy0rN ROMicvj3Lqzc8A== -----END CERTIFICATE-----Generated at Mon Dec 22 22:37:13 2025 by rpki-client