This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft File: iH0wEZNRUA8lmlfi_2hQeX0bTho.mft (raw, json) Hash identifier: xzG4EC9CbLVQkQDa2KUb7EiRpuMD9n85FrrWpyXuVTQ= Subject key identifier: 24:82:F3:30:32:6E:9F:18:95:B0:AD:33:EC:59:56:27:3B:3F:26:1B Authority key identifier: 88:7D:30:11:93:51:50:0F:25:9A:57:E2:FF:68:50:79:7D:1B:4E:1A Certificate issuer: /CN=887d30119351500f259a57e2ff6850797d1b4e1a Certificate serial: 019B255243E867356549D9EA82DEF6D45862 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iH0wEZNRUA8lmlfi_2hQeX0bTho.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft Manifest number: 177E Signing time: Tue 16 Dec 2025 04:01:46 +0000 Manifest this update: Tue 16 Dec 2025 04:01:46 +0000 Manifest next update: Wed 17 Dec 2025 04:01:46 +0000 Files and hashes: 1: iH0wEZNRUA8lmlfi_2hQeX0bTho.crl (hash: yfdZVnjfOuRINskanZV63BHp8p9PDVoev4NYZE9g3ns=) 2: qABhsOLWjcCV2-NCnGtwC8QlYyU.roa (hash: md9z/89P3sn3nXo5h/larqHDUL4eXCPfvLewxfl/iTY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.crl rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft rsync://rpki.ripe.net/repository/DEFAULT/iH0wEZNRUA8lmlfi_2hQeX0bTho.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 04:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:52:43:e8:67:35:65:49:d9:ea:82:de:f6:d4:58:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=887d30119351500f259a57e2ff6850797d1b4e1a Validity Not Before: Dec 16 04:01:46 2025 GMT Not After : Dec 17 04:01:46 2025 GMT Subject: CN=2482f330326e9f1895b0ad33ec5956273b3f261b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c9:77:2e:23:f7:6f:5a:59:1f:89:bd:52:61: d8:28:a7:3d:0c:7d:15:7b:01:9f:aa:b3:1a:f3:e3: a2:21:37:73:59:a2:f1:92:49:80:eb:43:0c:99:3b: c1:85:e0:04:85:db:2d:64:a8:f3:b7:da:ee:85:93: 56:80:c0:66:d8:e4:5e:56:88:f3:41:5a:b5:f7:bf: 92:5c:ae:b7:72:e5:f8:e1:8c:36:63:1e:48:72:fe: 7b:68:df:95:1d:a4:8b:dd:db:bf:bb:db:f2:e3:e0: dc:9d:dd:b7:87:04:0e:f8:42:7b:44:f3:1a:a0:15: 53:68:fe:fb:4c:5e:c5:c0:24:49:ab:90:1d:5f:d4: 3a:91:d3:7a:ed:20:94:76:57:ac:e8:22:32:47:a2: 49:d5:a4:72:a4:50:f0:bb:a9:ed:72:a0:dd:a5:d0: 5b:11:46:c0:67:46:fb:bd:e1:bf:3e:39:1c:10:a5: 26:4c:b2:05:b5:ed:68:37:c2:e0:16:b8:b2:3c:d5: 27:df:36:f7:9a:1c:43:69:6f:8b:92:fb:4f:cc:9e: fb:ae:91:e6:1d:d4:f9:d4:36:96:73:77:6b:57:e9: e6:5e:52:37:91:cc:48:84:76:99:c6:6f:2d:c0:5d: 7b:66:f4:c9:2a:98:fa:3e:8a:c0:bf:33:d8:a4:c4: fc:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:82:F3:30:32:6E:9F:18:95:B0:AD:33:EC:59:56:27:3B:3F:26:1B X509v3 Authority Key Identifier: keyid:88:7D:30:11:93:51:50:0F:25:9A:57:E2:FF:68:50:79:7D:1B:4E:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iH0wEZNRUA8lmlfi_2hQeX0bTho.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:39:28:f4:8e:7e:2b:71:16:1e:71:36:4f:34:0d:9f:58:4f: 8d:5e:3b:94:01:ae:a0:37:d9:0e:12:6f:fb:b6:90:c3:d2:bb: 27:5c:f8:de:6c:50:90:7c:0e:d4:ec:a1:11:63:35:ce:c5:31: c9:70:1f:3f:ca:d6:10:d5:f4:05:98:8f:b5:d2:7e:d7:22:bc: a3:3f:6c:5b:cf:89:82:93:a4:ef:e3:14:d3:34:f3:e3:c9:78: 96:93:34:73:a4:03:47:64:c7:ab:f4:64:2b:9a:5c:77:53:6b: 00:6a:96:d6:9c:9a:94:f8:1d:13:fe:37:79:75:11:df:2e:31: c3:94:3c:cf:d2:f6:99:99:df:23:44:82:a9:a4:de:77:bb:5a: 69:5d:cb:4c:34:a4:8c:3d:8d:4a:02:a0:38:d8:5c:71:c4:0b: 88:92:01:13:e5:55:21:c5:d7:b4:25:d9:cb:fc:1d:9a:85:f9: ff:5d:f1:21:cb:1d:0a:e4:7f:27:42:a0:df:a5:9f:6b:10:a9: 05:c4:bb:43:2b:fa:0c:6a:f8:78:c6:10:be:dc:e1:9b:6e:74: 2d:b6:32:fc:0c:81:1d:8f:e3:83:e2:0c:57:3f:fa:1b:5f:71: f1:e9:57:52:7d:eb:6f:44:af:93:b1:9c:6c:b7:3f:04:41:94: b3:5e:ec:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZslUkPoZzVlSdnqgt721FhiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4N2QzMDExOTM1MTUwMGYyNTlhNTdlMmZmNjg1MDc5N2Qx YjRlMWEwHhcNMjUxMjE2MDQwMTQ2WhcNMjUxMjE3MDQwMTQ2WjAzMTEwLwYDVQQD EygyNDgyZjMzMDMyNmU5ZjE4OTViMGFkMzNlYzU5NTYyNzNiM2YyNjFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx8l3LiP3b1pZH4m9UmHYKKc9DH0V ewGfqrMa8+OiITdzWaLxkkmA60MMmTvBheAEhdstZKjzt9ruhZNWgMBm2OReVojz QVq197+SXK63cuX44Yw2Yx5Icv57aN+VHaSL3du/u9vy4+Dcnd23hwQO+EJ7RPMa oBVTaP77TF7FwCRJq5AdX9Q6kdN67SCUdles6CIyR6JJ1aRypFDwu6ntcqDdpdBb EUbAZ0b7veG/PjkcEKUmTLIFte1oN8LgFriyPNUn3zb3mhxDaW+LkvtPzJ77rpHm HdT51DaWc3drV+nmXlI3kcxIhHaZxm8twF17ZvTJKpj6PorAvzPYpMT8dQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCSC8zAybp8YlbCtM+xZVic7PyYbMB8GA1UdIwQY MBaAFIh9MBGTUVAPJZpX4v9oUHl9G04aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUgwd0VaTlJVQThsbWxmaV8yaFFlWDBiVGhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC9mZWJiMmUtZjBkYS00ZDc0LWI1NDct Zjc0MDFiNGU0YjRhLzEvaUgwd0VaTlJVQThsbWxmaV8yaFFlWDBiVGhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC9mZWJiMmUtZjBkYS00ZDc0LWI1NDctZjc0MDFiNGU0YjRh LzEvaUgwd0VaTlJVQThsbWxmaV8yaFFlWDBiVGhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARjko9I5+ K3EWHnE2TzQNn1hPjV47lAGuoDfZDhJv+7aQw9K7J1z43mxQkHwO1OyhEWM1zsUx yXAfP8rWENX0BZiPtdJ+1yK8oz9sW8+JgpOk7+MU0zTz48l4lpM0c6QDR2THq/Rk K5pcd1NrAGqW1pyalPgdE/43eXUR3y4xw5Q8z9L2mZnfI0SCqaTed7taaV3LTDSk jD2NSgKgONhcccQLiJIBE+VVIcXXtCXZy/wdmoX5/13xIcsdCuR/J0Kg36WfaxCp BcS7Qyv6DGr4eMYQvtzhm250LbYy/AyBHY/jg+IMVz/6G19x8elXUn3rb0Svk7Gc bLc/BEGUs17s6g== -----END CERTIFICATE-----Generated at Tue Dec 16 13:25:57 2025 by rpki-client