This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft File: iqtMDPIcGj1upBBoy-kIvjiORQo.mft (raw, json) Hash identifier: MR2VSWMHUJRUbzlrluIR4YTSTYm9QfVp8h/f9UTPJj0= Subject key identifier: BC:CE:B5:9D:D8:60:5A:C4:15:C1:2E:82:F8:EF:EF:38:12:03:4F:8B Authority key identifier: 8A:AB:4C:0C:F2:1C:1A:3D:6E:A4:10:68:CB:E9:08:BE:38:8E:45:0A Certificate issuer: /CN=8aab4c0cf21c1a3d6ea41068cbe908be388e450a Certificate serial: 019B34FB3DB72AE546077ACC97187E27594E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft Manifest number: 04C7 Signing time: Fri 19 Dec 2025 05:00:39 +0000 Manifest this update: Fri 19 Dec 2025 05:00:39 +0000 Manifest next update: Sat 20 Dec 2025 05:00:39 +0000 Files and hashes: 1: G350oN6xck9sDuFPco_m0pUGJ-4.roa (hash: lAZMvwW39peHPp7Gi+NQnv+PV4aVrgoRzPsjZkOfCAA=) 2: KNoplKbnalbBlNJ0HrGiOS5fwgk.roa (hash: 6g25L6YriR7F4NqmIjLUqgHXTaSIa9NMu6Z6ggsvzHE=) 3: alNy-myxrA734TUoeZ1JVeikh6c.roa (hash: OCkDLXElKJB9eMUhsdq5dMT5WhX6caAwH3DuhC8oZvM=) 4: dQ-UnjUf_zrF6QrM_x6OnxYwXrs.roa (hash: lmcAQBoAG4rGhrHwCQpsyMirWvdOFHnh3mHdkplTacE=) 5: iqtMDPIcGj1upBBoy-kIvjiORQo.crl (hash: +d27FzKK4xLWzHKRD8JqqjXWTI4gX3GaU+FwYvzgfdE=) 6: o6gIOFd94HWkz0C7qKDElB9ddLg.roa (hash: O6hiQL5dtUMOxfO7I5/Qs8GG3APxd+JEX/g4sJbBrHE=) 7: t-24rH7-JcWRQl10GG2TwvUWpfw.roa (hash: Q+PFhb4BxvMEH8mNwldbOzxcrgHXdHD5grZaE0hgfdU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 05:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:fb:3d:b7:2a:e5:46:07:7a:cc:97:18:7e:27:59:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8aab4c0cf21c1a3d6ea41068cbe908be388e450a Validity Not Before: Dec 19 05:00:39 2025 GMT Not After : Dec 20 05:00:39 2025 GMT Subject: CN=bcceb59dd8605ac415c12e82f8efef3812034f8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:01:de:8a:fd:7f:57:b5:a9:a6:d4:4d:7b:d3: 5a:c3:f3:08:64:30:d0:20:50:4d:a6:81:07:72:ab: cf:b4:f3:9b:bb:b3:9d:97:32:92:cf:52:3c:dd:2e: 6e:c1:d4:e8:a6:60:ff:8c:57:72:e3:27:0c:de:34: 57:06:90:ce:bf:b3:86:b2:33:6c:73:be:1b:e2:64: f1:9d:48:ab:e1:a2:c9:a6:ec:b0:a9:c8:9d:71:1c: e7:77:f6:8a:18:ad:9a:a1:c0:ce:1d:e8:e6:37:db: 23:61:b1:a2:c1:42:37:38:05:d6:b7:b0:4d:77:54: d6:db:e3:13:ee:00:6f:46:fa:09:20:61:6e:57:0d: c0:cc:df:d3:e8:bf:25:3a:7f:26:fe:ea:5b:57:63: 36:6d:07:41:f6:0d:3a:0c:00:26:22:8b:d2:7d:45: ed:93:c5:94:83:4e:af:a0:cd:1c:cb:c9:80:18:d1: 94:06:73:35:e9:f1:f6:0f:c7:0c:e2:43:93:2f:0c: 4f:28:e8:7a:f4:91:9e:41:60:a8:c5:d9:72:69:f8: 7c:f4:82:c1:92:e5:d4:6e:e5:b9:9b:99:f6:ff:92: 85:7e:ba:b6:c7:72:17:c4:c5:75:5b:2b:c8:6e:33: 12:a8:1e:6f:34:e0:b4:66:56:d5:16:10:2d:9a:6f: 09:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:CE:B5:9D:D8:60:5A:C4:15:C1:2E:82:F8:EF:EF:38:12:03:4F:8B X509v3 Authority Key Identifier: keyid:8A:AB:4C:0C:F2:1C:1A:3D:6E:A4:10:68:CB:E9:08:BE:38:8E:45:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:c9:0a:5a:14:e4:47:e1:f7:a9:e8:52:06:18:4d:96:4d:f1: 31:33:fb:7b:6f:8f:a7:60:0e:bd:17:bc:33:8d:ae:e8:53:c8: 2d:96:52:0c:5d:b6:73:3f:ba:77:f4:c6:38:11:05:a3:40:d2: aa:2f:72:6c:3c:bc:5e:aa:f2:d8:06:2b:08:15:c0:52:ee:c8: b9:d6:5d:eb:4b:ac:9a:35:67:ed:7a:c3:b9:94:13:dd:7f:7e: 05:d0:a8:3c:72:8a:41:fe:b5:11:83:2e:d2:9b:70:65:c9:77: 0e:14:b6:41:e1:66:64:c3:c7:90:1d:13:eb:80:e7:26:06:79: c0:28:81:2f:93:03:8f:4e:43:df:f5:7e:df:15:a8:88:25:dd: 93:03:12:6e:3c:7d:c8:4b:c6:05:ff:41:a3:e8:25:13:e2:ab: a6:22:88:b1:c3:e2:d6:4b:67:30:d9:c0:2d:b5:af:bf:52:38: 2a:8e:f9:ce:ea:80:1a:63:05:ad:36:a3:49:23:4e:56:0b:16: 84:d4:9f:01:ee:09:2d:26:c9:a0:6a:ca:7d:bd:dc:bd:99:78: 76:e0:dd:85:d4:25:02:dc:8b:6f:dd:ef:5f:e9:57:fe:51:a0: 56:02:6a:75:d6:d2:66:b4:a1:48:ec:62:51:fe:91:4e:46:1c: 24:95:bd:52 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0+z23KuVGB3rMlxh+J1lOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhYWI0YzBjZjIxYzFhM2Q2ZWE0MTA2OGNiZTkwOGJlMzg4 ZTQ1MGEwHhcNMjUxMjE5MDUwMDM5WhcNMjUxMjIwMDUwMDM5WjAzMTEwLwYDVQQD EyhiY2NlYjU5ZGQ4NjA1YWM0MTVjMTJlODJmOGVmZWYzODEyMDM0ZjhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuQHeiv1/V7WpptRNe9Naw/MIZDDQ IFBNpoEHcqvPtPObu7OdlzKSz1I83S5uwdTopmD/jFdy4ycM3jRXBpDOv7OGsjNs c74b4mTxnUir4aLJpuywqcidcRznd/aKGK2aocDOHejmN9sjYbGiwUI3OAXWt7BN d1TW2+MT7gBvRvoJIGFuVw3AzN/T6L8lOn8m/upbV2M2bQdB9g06DAAmIovSfUXt k8WUg06voM0cy8mAGNGUBnM16fH2D8cM4kOTLwxPKOh69JGeQWCoxdlyafh89ILB kuXUbuW5m5n2/5KFfrq2x3IXxMV1WyvIbjMSqB5vNOC0ZlbVFhAtmm8JKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLzOtZ3YYFrEFcEugvjv7zgSA0+LMB8GA1UdIwQY MBaAFIqrTAzyHBo9bqQQaMvpCL44jkUKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS83NDBjMWUtMWE0Yy00Y2EyLWJkNTMt NTM3YjFiNDlkZmU3LzEvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS83NDBjMWUtMWE0Yy00Y2EyLWJkNTMtNTM3YjFiNDlkZmU3 LzEvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs8kKWhTk R+H3qehSBhhNlk3xMTP7e2+Pp2AOvRe8M42u6FPILZZSDF22cz+6d/TGOBEFo0DS qi9ybDy8Xqry2AYrCBXAUu7IudZd60usmjVn7XrDuZQT3X9+BdCoPHKKQf61EYMu 0ptwZcl3DhS2QeFmZMPHkB0T64DnJgZ5wCiBL5MDj05D3/V+3xWoiCXdkwMSbjx9 yEvGBf9Bo+glE+KrpiKIscPi1ktnMNnALbWvv1I4Ko75zuqAGmMFrTajSSNOVgsW hNSfAe4JLSbJoGrKfb3cvZl4duDdhdQlAtyLb93vX+lX/lGgVgJqddbSZrShSOxi Uf6RTkYcJJW9Ug== -----END CERTIFICATE-----Generated at Fri Dec 19 11:17:43 2025 by rpki-client