This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.mft File: I8Aq9PWPETIK8xlpRuH86dBQyQY.mft (raw, json) Hash identifier: XN4h7EsYtept9oynTPF6r7yePlJjgYqljBBxr6BTYlo= Subject key identifier: 54:45:60:FF:B1:A0:8E:A6:4B:5A:BD:AE:63:F7:8D:31:4D:39:0D:4E Authority key identifier: 23:C0:2A:F4:F5:8F:11:32:0A:F3:19:69:46:E1:FC:E9:D0:50:C9:06 Certificate issuer: /CN=23c02af4f58f11320af3196946e1fce9d050c906 Certificate serial: 019B258854693097BFCB5FCC648D393B0600 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I8Aq9PWPETIK8xlpRuH86dBQyQY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.mft Manifest number: 1779 Signing time: Tue 16 Dec 2025 05:00:49 +0000 Manifest this update: Tue 16 Dec 2025 05:00:49 +0000 Manifest next update: Wed 17 Dec 2025 05:00:49 +0000 Files and hashes: 1: I8Aq9PWPETIK8xlpRuH86dBQyQY.crl (hash: SLYVzHKVXhAE5+A7B+xYZckk+rQUE+NSMps4lvSWAYc=) 2: L1nx6g959I4u5e_n7rqsUK0vG74.roa (hash: X8LU286M1DCtu5IfhCO2jJJ+1Cy+WsVLYYIMMfE/G4I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.mft rsync://rpki.ripe.net/repository/DEFAULT/I8Aq9PWPETIK8xlpRuH86dBQyQY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 05:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:88:54:69:30:97:bf:cb:5f:cc:64:8d:39:3b:06:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23c02af4f58f11320af3196946e1fce9d050c906 Validity Not Before: Dec 16 05:00:49 2025 GMT Not After : Dec 17 05:00:49 2025 GMT Subject: CN=544560ffb1a08ea64b5abdae63f78d314d390d4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:59:22:18:e8:73:2b:a9:55:00:cc:4f:ec:a7: f6:38:81:6e:11:99:b6:47:67:da:d4:50:c0:07:55: df:5a:75:3f:69:cb:e5:59:75:0f:09:f4:e6:7b:00: 2f:54:40:4e:ea:cf:8a:3c:09:61:4d:0c:9c:3b:67: d4:68:23:60:f6:59:20:90:a0:99:d6:1a:90:54:5b: 4f:f9:03:25:f4:2b:1a:32:d3:e8:37:e2:9f:7a:c8: 54:7a:4e:f1:cf:4a:a6:ea:ce:c2:65:9c:fb:4d:f0: 1f:a2:b7:e4:d2:39:75:88:e2:bb:30:7e:4c:f2:33: 81:50:da:45:98:42:9b:ea:fc:6f:48:9a:3f:e8:1f: 9b:39:2f:f2:2a:ce:5a:e8:32:c0:39:46:66:62:7b: 4b:96:2d:94:76:21:29:bd:e4:61:7b:d5:40:e0:54: 40:e9:57:9d:ae:f1:6a:a3:31:df:f9:e8:fc:e1:eb: 67:b9:4a:a8:2a:ef:d6:4b:c3:96:4a:27:af:d2:62: 2f:20:dd:3a:5b:5a:ac:15:e7:2d:09:50:73:c7:55: 01:ce:2e:ea:39:4e:52:4e:4d:eb:f4:07:36:54:02: f4:5d:e1:34:0c:ee:a5:6b:83:d3:36:f4:85:51:76: d2:45:48:90:26:c9:4d:fc:2b:df:48:f8:64:5b:62: f6:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:45:60:FF:B1:A0:8E:A6:4B:5A:BD:AE:63:F7:8D:31:4D:39:0D:4E X509v3 Authority Key Identifier: keyid:23:C0:2A:F4:F5:8F:11:32:0A:F3:19:69:46:E1:FC:E9:D0:50:C9:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I8Aq9PWPETIK8xlpRuH86dBQyQY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:f2:28:99:d5:23:50:00:22:7f:6e:63:bf:e5:25:88:46:04: 89:f6:8d:3c:41:38:cc:87:ed:00:4a:8b:3c:c5:52:0b:28:9b: 57:f7:0c:f6:e5:7c:86:32:d3:3a:80:aa:10:d2:87:0c:9b:74: 95:ce:20:12:cd:09:15:0d:e7:68:69:18:19:3e:fc:32:0c:35: fc:5f:b2:bc:2f:22:a6:25:81:e3:e0:12:c8:28:08:a4:81:31: d1:92:d9:cc:60:b1:85:15:c5:28:1d:83:ac:3f:5f:7d:6b:ba: 9a:60:b0:81:fe:4d:4d:f5:2b:32:45:ea:18:1b:ea:87:61:2e: dd:17:dd:06:b8:c9:0d:72:b7:ab:0b:2c:64:70:e6:29:f9:79: b8:02:b9:00:13:d8:2a:b5:d3:bc:eb:25:0a:5e:c5:a6:2c:0e: cc:ca:30:ef:f9:81:e8:71:44:af:f6:48:23:a2:46:10:6e:e3: 59:92:69:7e:e0:37:40:c3:e2:10:54:89:66:10:52:39:ae:8d: 97:44:ef:2e:67:5f:dc:c6:6b:c2:de:08:27:d1:16:94:f8:47: f9:ae:5d:40:92:96:01:12:ca:5e:ca:52:86:c3:af:bf:b9:43: 6b:5c:6a:4a:cc:d1:f2:84:49:7f:76:23:be:75:c2:4d:03:3e: a2:26:4f:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsliFRpMJe/y1/MZI05OwYAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzYzAyYWY0ZjU4ZjExMzIwYWYzMTk2OTQ2ZTFmY2U5ZDA1 MGM5MDYwHhcNMjUxMjE2MDUwMDQ5WhcNMjUxMjE3MDUwMDQ5WjAzMTEwLwYDVQQD Eyg1NDQ1NjBmZmIxYTA4ZWE2NGI1YWJkYWU2M2Y3OGQzMTRkMzkwZDRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs1kiGOhzK6lVAMxP7Kf2OIFuEZm2 R2fa1FDAB1XfWnU/acvlWXUPCfTmewAvVEBO6s+KPAlhTQycO2fUaCNg9lkgkKCZ 1hqQVFtP+QMl9CsaMtPoN+KfeshUek7xz0qm6s7CZZz7TfAforfk0jl1iOK7MH5M 8jOBUNpFmEKb6vxvSJo/6B+bOS/yKs5a6DLAOUZmYntLli2UdiEpveRhe9VA4FRA 6VedrvFqozHf+ej84etnuUqoKu/WS8OWSiev0mIvIN06W1qsFectCVBzx1UBzi7q OU5STk3r9Ac2VAL0XeE0DO6la4PTNvSFUXbSRUiQJslN/CvfSPhkW2L21wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFRFYP+xoI6mS1q9rmP3jTFNOQ1OMB8GA1UdIwQY MBaAFCPAKvT1jxEyCvMZaUbh/OnQUMkGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSThBcTlQV1BFVElLOHhscFJ1SDg2ZEJReVFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy84MTA2OGMtYWVkNy00MTI3LTg4ZTQt NjJjYjhhY2E5NjE4LzEvSThBcTlQV1BFVElLOHhscFJ1SDg2ZEJReVFZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy84MTA2OGMtYWVkNy00MTI3LTg4ZTQtNjJjYjhhY2E5NjE4 LzEvSThBcTlQV1BFVElLOHhscFJ1SDg2ZEJReVFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPfIomdUj UAAif25jv+UliEYEifaNPEE4zIftAEqLPMVSCyibV/cM9uV8hjLTOoCqENKHDJt0 lc4gEs0JFQ3naGkYGT78Mgw1/F+yvC8ipiWB4+ASyCgIpIEx0ZLZzGCxhRXFKB2D rD9ffWu6mmCwgf5NTfUrMkXqGBvqh2Eu3RfdBrjJDXK3qwssZHDmKfl5uAK5ABPY KrXTvOslCl7FpiwOzMow7/mB6HFEr/ZII6JGEG7jWZJpfuA3QMPiEFSJZhBSOa6N l0TvLmdf3MZrwt4IJ9EWlPhH+a5dQJKWARLKXspShsOvv7lDa1xqSszR8oRJf3Yj vnXCTQM+oiZPzw== -----END CERTIFICATE-----Generated at Tue Dec 16 12:33:32 2025 by rpki-client