This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft File: I5Vy3fyrYpHmQQzNToYO42AA5mg.mft (raw, json) Hash identifier: B6+z8pWWf6F6tLQ2oTrDn1d9j7HjNRdsru9W7A9evlM= Subject key identifier: 3D:C9:E6:FC:9B:58:9D:DD:33:BC:67:88:6D:F3:46:67:73:B4:A2:7C Authority key identifier: 23:95:72:DD:FC:AB:62:91:E6:41:0C:CD:4E:86:0E:E3:60:00:E6:68 Certificate issuer: /CN=239572ddfcab6291e6410ccd4e860ee36000e668 Certificate serial: 019B19BC3008D4DD5291992F837F35FF1CA6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I5Vy3fyrYpHmQQzNToYO42AA5mg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft Manifest number: 1778 Signing time: Sat 13 Dec 2025 22:02:02 +0000 Manifest this update: Sat 13 Dec 2025 22:02:02 +0000 Manifest next update: Sun 14 Dec 2025 22:02:02 +0000 Files and hashes: 1: I5Vy3fyrYpHmQQzNToYO42AA5mg.crl (hash: pgukG1QLpowueGzlM8Vy8Iy64pCzTPCehCzXGtfgidY=) 2: cEnlNHZ35kSVNo2T27Ex45pap18.roa (hash: q/g4pWJ8XYH4irxAQK7i5w/oElgLduGOhld/VI56BOM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft rsync://rpki.ripe.net/repository/DEFAULT/I5Vy3fyrYpHmQQzNToYO42AA5mg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:bc:30:08:d4:dd:52:91:99:2f:83:7f:35:ff:1c:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=239572ddfcab6291e6410ccd4e860ee36000e668 Validity Not Before: Dec 13 22:02:02 2025 GMT Not After : Dec 14 22:02:02 2025 GMT Subject: CN=3dc9e6fc9b589ddd33bc67886df3466773b4a27c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:de:3d:b5:8c:05:2a:7f:9a:24:03:4a:9a:a9: f5:85:d3:d4:97:d8:66:b0:ef:68:be:6c:2c:06:28: e4:f0:21:61:c4:a6:cd:e5:50:ad:43:fe:66:75:a6: ae:26:32:da:50:6b:84:0b:96:1d:4e:3d:a1:ac:4c: e6:f6:bc:15:0d:ea:ab:7c:6e:cf:aa:fe:5d:f3:73: 6a:87:af:fe:44:50:53:61:a0:45:0b:20:f4:01:a1: ae:87:3a:b5:b6:b1:56:5e:32:1f:fe:ba:29:8e:7f: 49:8f:d6:2b:65:2d:b6:44:9f:5c:91:f3:32:61:99: ce:e5:53:6d:8d:44:63:a5:5c:68:e4:ef:49:16:68: 0a:1b:11:50:63:60:4b:a0:51:f5:4d:8a:84:87:d2: 81:77:d8:12:cc:61:47:52:a9:fa:b4:3a:9d:ec:2e: 81:f3:c1:c8:e8:36:82:f1:18:3d:9f:09:d3:34:3b: 52:7e:25:3b:45:13:fc:47:9c:e5:54:1d:22:41:5b: 79:63:86:ef:c0:8c:4f:76:ce:e2:1b:92:75:8f:ec: 12:cb:51:d6:20:c1:3b:f6:7f:fe:2f:e0:a0:38:13: c9:af:00:5f:80:c9:b8:20:82:15:e7:6b:b8:cb:47: e7:6a:f5:43:14:ff:20:88:98:5d:ed:82:38:c0:0f: 9d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:C9:E6:FC:9B:58:9D:DD:33:BC:67:88:6D:F3:46:67:73:B4:A2:7C X509v3 Authority Key Identifier: keyid:23:95:72:DD:FC:AB:62:91:E6:41:0C:CD:4E:86:0E:E3:60:00:E6:68 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I5Vy3fyrYpHmQQzNToYO42AA5mg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:0c:21:a9:79:bb:d6:e6:7a:69:43:0c:7e:41:1b:7c:30:1c: bf:e3:6a:df:11:27:05:fc:8c:84:4e:57:58:0f:02:4e:20:f7: 0a:6a:12:21:15:7d:ee:33:71:74:d8:65:97:3b:a9:29:41:92: 76:0e:42:d5:f7:81:1f:37:51:19:4d:55:56:43:31:28:ce:f4: 77:e4:1a:54:ee:51:3b:bd:56:6b:de:4c:ea:d0:0e:71:28:f5: 24:9d:e7:c1:e2:3c:1c:b3:60:c9:fc:3d:be:4b:a2:d1:96:a3: e5:50:dd:1f:28:eb:b8:4a:60:5d:b7:c8:da:85:b2:40:28:30: 79:2b:db:5c:38:43:81:c9:1e:48:a0:78:a1:4f:a5:07:a1:be: 37:46:89:e6:e9:86:14:5b:aa:6f:63:db:93:be:e0:8a:7e:d3: 3c:bf:fa:13:9e:70:ef:6a:37:30:45:e0:77:b7:c3:40:37:6f: 17:1d:bc:83:90:22:c4:14:5c:6d:8b:cf:9a:22:63:dd:34:3f: ed:5c:96:37:24:c6:4d:99:18:18:17:78:67:21:ca:59:fc:f5: b0:c1:51:83:fb:c7:8c:db:7f:fe:e4:00:7a:70:9f:9a:ee:c9: d4:02:4e:40:df:4d:80:a4:5e:0e:ec:d1:ba:9e:29:95:0c:bb: 9f:11:2a:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZvDAI1N1SkZkvg381/xymMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzOTU3MmRkZmNhYjYyOTFlNjQxMGNjZDRlODYwZWUzNjAw MGU2NjgwHhcNMjUxMjEzMjIwMjAyWhcNMjUxMjE0MjIwMjAyWjAzMTEwLwYDVQQD EygzZGM5ZTZmYzliNTg5ZGRkMzNiYzY3ODg2ZGYzNDY2NzczYjRhMjdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr949tYwFKn+aJANKmqn1hdPUl9hm sO9ovmwsBijk8CFhxKbN5VCtQ/5mdaauJjLaUGuEC5YdTj2hrEzm9rwVDeqrfG7P qv5d83Nqh6/+RFBTYaBFCyD0AaGuhzq1trFWXjIf/ropjn9Jj9YrZS22RJ9ckfMy YZnO5VNtjURjpVxo5O9JFmgKGxFQY2BLoFH1TYqEh9KBd9gSzGFHUqn6tDqd7C6B 88HI6DaC8Rg9nwnTNDtSfiU7RRP8R5zlVB0iQVt5Y4bvwIxPds7iG5J1j+wSy1HW IME79n/+L+CgOBPJrwBfgMm4IIIV52u4y0fnavVDFP8giJhd7YI4wA+dJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD3J5vybWJ3dM7xniG3zRmdztKJ8MB8GA1UdIwQY MBaAFCOVct38q2KR5kEMzU6GDuNgAOZoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTVWeTNmeXJZcEhtUVF6TlRvWU80MkFBNW1nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8xZDdmMDgtZTc3Yy00MzM4LTlhMzkt OGUxOWMwZGI4NmMyLzEvSTVWeTNmeXJZcEhtUVF6TlRvWU80MkFBNW1nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC8xZDdmMDgtZTc3Yy00MzM4LTlhMzktOGUxOWMwZGI4NmMy LzEvSTVWeTNmeXJZcEhtUVF6TlRvWU80MkFBNW1nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASwwhqXm7 1uZ6aUMMfkEbfDAcv+Nq3xEnBfyMhE5XWA8CTiD3CmoSIRV97jNxdNhllzupKUGS dg5C1feBHzdRGU1VVkMxKM70d+QaVO5RO71Wa95M6tAOcSj1JJ3nweI8HLNgyfw9 vkui0Zaj5VDdHyjruEpgXbfI2oWyQCgweSvbXDhDgckeSKB4oU+lB6G+N0aJ5umG FFuqb2Pbk77gin7TPL/6E55w72o3MEXgd7fDQDdvFx28g5AixBRcbYvPmiJj3TQ/ 7VyWNyTGTZkYGBd4ZyHKWfz1sMFRg/vHjNt//uQAenCfmu7J1AJOQN9NgKReDuzR up4plQy7nxEquw== -----END CERTIFICATE-----Generated at Sun Dec 14 01:52:17 2025 by rpki-client