This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.mft File: 20iBY9r1DbZG3k3yTTTLrJk_RX8.mft (raw, json) Hash identifier: en5se+4aTBiuFn6TQHRi8oWw35LVVXS2JjXNwJbNv0k= Subject key identifier: B8:B5:2E:FF:DB:A7:D7:41:B4:9D:B0:61:F0:E1:69:C1:68:B6:FF:8D Authority key identifier: DB:48:81:63:DA:F5:0D:B6:46:DE:4D:F2:4D:34:CB:AC:99:3F:45:7F Certificate issuer: /CN=db488163daf50db646de4df24d34cbac993f457f Certificate serial: 019B1B053A0F8CCC2551CA5B6F7DE5AAAD78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20iBY9r1DbZG3k3yTTTLrJk_RX8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.mft Manifest number: 1775 Signing time: Sun 14 Dec 2025 04:01:25 +0000 Manifest this update: Sun 14 Dec 2025 04:01:25 +0000 Manifest next update: Mon 15 Dec 2025 04:01:25 +0000 Files and hashes: 1: 20iBY9r1DbZG3k3yTTTLrJk_RX8.crl (hash: IASmJD2k3F2jTEVQMY5zxcR20FLPD74LlNowJ6ntc/w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.mft rsync://rpki.ripe.net/repository/DEFAULT/20iBY9r1DbZG3k3yTTTLrJk_RX8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1b:05:3a:0f:8c:cc:25:51:ca:5b:6f:7d:e5:aa:ad:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db488163daf50db646de4df24d34cbac993f457f Validity Not Before: Dec 14 04:01:25 2025 GMT Not After : Dec 15 04:01:25 2025 GMT Subject: CN=b8b52effdba7d741b49db061f0e169c168b6ff8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:fd:9f:61:58:5d:67:df:0e:9c:43:58:dc:04: 7c:b1:bd:7d:13:5c:3b:6e:b6:9d:11:45:50:a3:46: 18:89:2a:5b:4e:a9:c2:66:45:39:30:67:8b:1d:66: aa:be:37:7c:ac:11:d4:c2:11:c6:17:60:b5:99:9b: 36:68:62:57:37:91:3f:f2:9f:46:26:99:8e:ed:a7: 37:f9:6d:c6:3d:eb:f9:24:05:4f:07:f4:03:d1:9d: 0f:71:43:4c:29:27:0d:cc:f2:e7:00:d7:b8:0a:be: da:11:bb:4f:9d:2b:89:9b:bb:6b:2a:bc:b5:20:41: e3:78:2b:00:5b:c7:05:04:fb:b9:f8:fb:b9:b0:32: ae:6b:dc:94:bc:dc:71:be:51:d4:cf:13:e4:cd:4c: 05:7f:f0:71:70:6f:62:ee:01:1e:21:32:dd:32:38: ce:0d:48:04:ce:d4:c4:ae:b5:54:79:db:24:9c:55: 6a:cb:7d:46:9e:a0:cd:09:cb:14:65:7a:14:ad:1b: 41:c5:28:d2:34:c3:74:cb:f9:1d:ed:38:3d:0e:85: 06:0b:8c:3e:18:ef:91:8b:4e:b3:75:56:4d:4a:f5: 8e:65:fe:93:ac:00:0f:7c:11:0e:f9:13:28:93:3a: c8:2d:fb:cc:38:d3:f3:12:ed:ed:1d:55:2b:47:f5: 36:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:B5:2E:FF:DB:A7:D7:41:B4:9D:B0:61:F0:E1:69:C1:68:B6:FF:8D X509v3 Authority Key Identifier: keyid:DB:48:81:63:DA:F5:0D:B6:46:DE:4D:F2:4D:34:CB:AC:99:3F:45:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20iBY9r1DbZG3k3yTTTLrJk_RX8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bc:a5:a9:ac:46:28:90:a3:e0:6a:46:d7:ae:b0:a1:cf:9d:a0: d8:e8:aa:af:5a:11:f5:7b:5a:75:0d:30:6c:e6:3f:81:91:9f: 7c:6f:76:f8:7e:c3:8b:9f:21:68:1a:6c:06:88:a6:2c:4b:47: f7:9e:89:54:68:37:e5:17:91:cd:69:f1:f0:69:94:fb:cf:5a: 99:85:ba:7f:81:e1:38:85:b1:c6:cf:17:59:bd:c0:e0:f7:ae: 88:42:27:1a:bf:84:f6:3d:ba:b6:6a:b8:09:ae:f2:51:af:d5: 9c:3b:c4:3e:85:0b:2a:37:9a:1c:04:d9:95:ca:ef:56:b7:16: d3:82:4d:cf:9f:0b:cf:a5:0c:63:18:be:e9:af:67:b2:ea:1a: 5e:72:d8:f1:f8:5d:73:19:0b:59:93:66:b8:16:82:62:cd:98: 68:78:55:94:f8:c8:4d:1a:45:c3:86:22:2e:20:22:09:ec:85: 8f:65:7d:9f:b4:85:46:0a:23:de:06:1d:10:25:3f:a1:9d:3e: b9:49:80:0f:9f:31:4e:f6:d9:41:4b:23:51:f8:5a:7f:40:e5: 82:d2:35:f5:b8:99:b5:90:ff:9a:15:2d:93:61:74:f5:a1:ab: 81:3f:7f:ef:58:dd:1f:96:5c:0f:b3:a2:40:94:b2:b4:42:e4: d6:ee:b0:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsbBToPjMwlUcpbb33lqq14MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiNDg4MTYzZGFmNTBkYjY0NmRlNGRmMjRkMzRjYmFjOTkz ZjQ1N2YwHhcNMjUxMjE0MDQwMTI1WhcNMjUxMjE1MDQwMTI1WjAzMTEwLwYDVQQD EyhiOGI1MmVmZmRiYTdkNzQxYjQ5ZGIwNjFmMGUxNjljMTY4YjZmZjhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3v2fYVhdZ98OnENY3AR8sb19E1w7 bradEUVQo0YYiSpbTqnCZkU5MGeLHWaqvjd8rBHUwhHGF2C1mZs2aGJXN5E/8p9G JpmO7ac3+W3GPev5JAVPB/QD0Z0PcUNMKScNzPLnANe4Cr7aEbtPnSuJm7trKry1 IEHjeCsAW8cFBPu5+Pu5sDKua9yUvNxxvlHUzxPkzUwFf/BxcG9i7gEeITLdMjjO DUgEztTErrVUedsknFVqy31GnqDNCcsUZXoUrRtBxSjSNMN0y/kd7Tg9DoUGC4w+ GO+Ri06zdVZNSvWOZf6TrAAPfBEO+RMokzrILfvMONPzEu3tHVUrR/U2cwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLi1Lv/bp9dBtJ2wYfDhacFotv+NMB8GA1UdIwQY MBaAFNtIgWPa9Q22Rt5N8k00y6yZP0V/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjBpQlk5cjFEYlpHM2szeVRUVExySmtfUlg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy80ZTVjMTAtNzFlZC00ZGViLWI0ZTAt MTlkNTdmZjFmYmQ5LzEvMjBpQlk5cjFEYlpHM2szeVRUVExySmtfUlg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy80ZTVjMTAtNzFlZC00ZGViLWI0ZTAtMTlkNTdmZjFmYmQ5 LzEvMjBpQlk5cjFEYlpHM2szeVRUVExySmtfUlg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvKWprEYo kKPgakbXrrChz52g2Oiqr1oR9XtadQ0wbOY/gZGffG92+H7Di58haBpsBoimLEtH 956JVGg35ReRzWnx8GmU+89amYW6f4HhOIWxxs8XWb3A4PeuiEInGr+E9j26tmq4 Ca7yUa/VnDvEPoULKjeaHATZlcrvVrcW04JNz58Lz6UMYxi+6a9nsuoaXnLY8fhd cxkLWZNmuBaCYs2YaHhVlPjITRpFw4YiLiAiCeyFj2V9n7SFRgoj3gYdECU/oZ0+ uUmAD58xTvbZQUsjUfhaf0DlgtI19biZtZD/mhUtk2F09aGrgT9/71jdH5ZcD7Oi QJSytELk1u6wFw== -----END CERTIFICATE-----Generated at Sun Dec 14 07:42:59 2025 by rpki-client