This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft File: IqXYQFPisMMTrx47pRAkZqX3lng.mft (raw, json) Hash identifier: e9nbiVpgECclD2JtaXyiZomf9EgPSI0QW6FOTINJM9Q= Subject key identifier: 5D:59:9A:02:83:09:04:4A:71:CF:2F:3F:69:64:1B:AF:E0:C8:E7:F6 Authority key identifier: 22:A5:D8:40:53:E2:B0:C3:13:AF:1E:3B:A5:10:24:66:A5:F7:96:78 Certificate issuer: /CN=22a5d84053e2b0c313af1e3ba5102466a5f79678 Certificate serial: 019B0F6E38F70F5CBCC7AD3AEA09AFA226D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft Manifest number: 0AA1 Signing time: Thu 11 Dec 2025 22:00:40 +0000 Manifest this update: Thu 11 Dec 2025 22:00:40 +0000 Manifest next update: Fri 12 Dec 2025 22:00:40 +0000 Files and hashes: 1: Dc1SxW96IAQ3f2snIBmens7GV0U.roa (hash: A68NloNFUVZ/1yLMaTnJ5sUcnw8LpIIqTLsAe9oPGuQ=) 2: Hclo7mgAV-Jk6Qp5sVlZMDADheQ.roa (hash: cVUhTfbeGPClCYhj8aCdhEzcQl8l864NJzclgxFTC+Y=) 3: IqXYQFPisMMTrx47pRAkZqX3lng.crl (hash: 32RLC9lNnkPcyMte9Lt/k+LlaTx6WS+E2iA45i6vTMw=) 4: Ku4DjWMj_wrBqXvp8QwLCV7LvMQ.roa (hash: MiHDGBqhLXLE6nmzkue9evydNoK6FMJwJm/pNx6ZNnQ=) 5: _bqJOppJMYlhCqHfIAJ6Sh83vHA.roa (hash: 1f0aFmNhmLx4lKQjnS1bd4RzjmzmwwV3y7zrSykmheM=) 6: ajmq5QdlQvXrCBRMjUs67yP9AmI.roa (hash: mQ5XjE5gzuzrTdkByBU3/meXRrw3VOANPbjnntSYJ74=) 7: cwh3r4eWlWrhqTwyia3Y6IkQ-I4.roa (hash: EAtSuVfxmrmE7PUep+zevWjbxh//ARj59/51XZyWbTI=) 8: iIyJKjInlinbrFoxMvyP7cHrL18.roa (hash: jppb7YCDugjMDFMLhWTY9NbjBHwSDw8mYabJJeuiwkQ=) 9: xmgEeMB7WvkvTgZR5WIp3Cku-OQ.roa (hash: DB/674zCoFtnashikqEwhqolbIZIshtp2JBUcqe8xB8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 22:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:6e:38:f7:0f:5c:bc:c7:ad:3a:ea:09:af:a2:26:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22a5d84053e2b0c313af1e3ba5102466a5f79678 Validity Not Before: Dec 11 22:00:40 2025 GMT Not After : Dec 12 22:00:40 2025 GMT Subject: CN=5d599a028309044a71cf2f3f69641bafe0c8e7f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:d2:92:a7:44:95:74:e3:ae:43:90:8a:0b:6b: f7:9c:a1:7f:9c:d5:11:a9:eb:e2:aa:bf:19:0c:d6: 24:5d:d6:4f:37:2a:92:b6:df:1b:b1:18:1c:ca:d6: 21:b1:4e:4d:87:51:12:25:0a:9c:df:28:1f:8a:2a: 24:d6:32:71:67:69:10:d6:89:02:f6:b2:7a:24:a2: 0f:b5:c7:da:6d:f5:82:24:46:d2:6c:cb:f9:7e:e8: 2f:e0:31:50:94:73:8b:79:55:9e:1d:fd:39:65:0a: 16:ab:7c:51:84:db:2e:81:cd:b7:8a:40:dc:2b:1d: 24:1e:3e:7b:0f:cf:52:11:23:22:14:fc:2c:c2:37: 42:80:30:bd:d2:35:90:30:0b:78:45:94:e5:c5:43: ef:29:d5:01:46:0b:63:00:3c:4c:12:8b:08:09:c7: 56:10:fd:e0:1c:1a:b9:08:40:0a:67:b0:3e:77:c2: f7:8a:9c:8f:55:c2:c7:f8:11:14:c1:97:6c:1f:f3: 60:cf:10:44:ca:9c:0b:35:3e:a9:a0:fe:8d:87:2f: 14:35:27:71:86:2e:fa:21:13:8e:49:a3:49:9d:d9: 8a:da:a9:2c:ff:ce:ea:95:43:8a:43:71:5c:12:4d: 95:a8:a9:d4:1d:dd:f0:ad:e4:d3:80:67:29:a6:17: 10:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:59:9A:02:83:09:04:4A:71:CF:2F:3F:69:64:1B:AF:E0:C8:E7:F6 X509v3 Authority Key Identifier: keyid:22:A5:D8:40:53:E2:B0:C3:13:AF:1E:3B:A5:10:24:66:A5:F7:96:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:67:29:62:11:f0:f6:cd:58:d7:ee:3e:7b:15:73:a7:2b:65: ac:46:a2:2c:39:4b:07:8d:20:bd:a5:c6:b5:ce:d5:f3:ec:60: f6:33:4a:f0:21:97:9f:29:57:fb:59:b7:56:87:ed:b0:a5:b4: 3f:ec:f3:e5:97:56:84:6a:8f:4b:6d:64:14:8d:00:15:45:a3: ad:a2:ad:94:14:f8:b8:af:3a:67:35:53:8f:d7:52:99:3d:68: a6:ae:78:b8:fe:6c:b5:a4:58:28:c3:b3:eb:35:c5:2b:1a:86: 48:29:35:ff:63:f8:90:2d:c1:70:93:55:ad:0f:29:5d:f7:4f: b0:44:f6:28:ed:14:60:8b:48:e2:36:7e:5a:6a:8f:cd:b2:23: 0f:d4:7b:6b:65:79:91:3a:1a:f1:3d:d6:60:65:1d:63:42:48: 50:b0:53:74:10:a0:06:86:63:55:81:fb:48:54:73:60:88:31: 4b:3b:e3:f0:91:38:58:af:06:54:06:20:dc:df:11:5e:f0:ff: 14:66:c5:00:ee:27:22:20:33:59:3f:15:fe:3a:4c:11:6f:98: 6d:5e:e3:65:c4:ff:17:de:8b:f7:30:01:4c:cf:33:e1:1b:04: fa:a9:7d:58:ad:ca:a8:d6:d5:b6:f5:f2:63:c5:5b:3b:2f:60: c3:d8:0a:e1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPbjj3D1y8x6066gmvoibZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYTVkODQwNTNlMmIwYzMxM2FmMWUzYmE1MTAyNDY2YTVm Nzk2NzgwHhcNMjUxMjExMjIwMDQwWhcNMjUxMjEyMjIwMDQwWjAzMTEwLwYDVQQD Eyg1ZDU5OWEwMjgzMDkwNDRhNzFjZjJmM2Y2OTY0MWJhZmUwYzhlN2Y2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgdKSp0SVdOOuQ5CKC2v3nKF/nNUR qeviqr8ZDNYkXdZPNyqStt8bsRgcytYhsU5Nh1ESJQqc3ygfiiok1jJxZ2kQ1okC 9rJ6JKIPtcfabfWCJEbSbMv5fugv4DFQlHOLeVWeHf05ZQoWq3xRhNsugc23ikDc Kx0kHj57D89SESMiFPwswjdCgDC90jWQMAt4RZTlxUPvKdUBRgtjADxMEosICcdW EP3gHBq5CEAKZ7A+d8L3ipyPVcLH+BEUwZdsH/NgzxBEypwLNT6poP6Nhy8UNSdx hi76IROOSaNJndmK2qks/87qlUOKQ3FcEk2VqKnUHd3wreTTgGcpphcQXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF1ZmgKDCQRKcc8vP2lkG6/gyOf2MB8GA1UdIwQY MBaAFCKl2EBT4rDDE68eO6UQJGal95Z4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXFYWVFGUGlzTU1Ucng0N3BSQWtacVgzbG5nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9lM2ZiN2QtZGQ0Yi00ZDg1LWIwOGUt NTkxY2FmNTM2ZWNjLzEvSXFYWVFGUGlzTU1Ucng0N3BSQWtacVgzbG5nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi9lM2ZiN2QtZGQ0Yi00ZDg1LWIwOGUtNTkxY2FmNTM2ZWNj LzEvSXFYWVFGUGlzTU1Ucng0N3BSQWtacVgzbG5nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUGcpYhHw 9s1Y1+4+exVzpytlrEaiLDlLB40gvaXGtc7V8+xg9jNK8CGXnylX+1m3VoftsKW0 P+zz5ZdWhGqPS21kFI0AFUWjraKtlBT4uK86ZzVTj9dSmT1opq54uP5staRYKMOz 6zXFKxqGSCk1/2P4kC3BcJNVrQ8pXfdPsET2KO0UYItI4jZ+WmqPzbIjD9R7a2V5 kToa8T3WYGUdY0JIULBTdBCgBoZjVYH7SFRzYIgxSzvj8JE4WK8GVAYg3N8RXvD/ FGbFAO4nIiAzWT8V/jpMEW+YbV7jZcT/F96L9zABTM8z4RsE+ql9WK3KqNbVtvXy Y8VbOy9gw9gK4Q== -----END CERTIFICATE-----Generated at Fri Dec 12 08:00:03 2025 by rpki-client