This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft File: iTr-zXEXBcR2t4XQyG71TCEkNUw.mft (raw, json) Hash identifier: c2yofYM09BSSAiq9bZt84tomM8dhFARwd8YaVR6USxg= Subject key identifier: 13:D8:F0:17:B0:17:82:74:86:A4:6A:F2:DC:EF:52:F4:C4:F3:41:20 Authority key identifier: 89:3A:FE:CD:71:17:05:C4:76:B7:85:D0:C8:6E:F5:4C:21:24:35:4C Certificate issuer: /CN=893afecd711705c476b785d0c86ef54c2124354c Certificate serial: 019B251A527355F8C0F9A8638A91EE7D56CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft Manifest number: 177C Signing time: Tue 16 Dec 2025 03:00:40 +0000 Manifest this update: Tue 16 Dec 2025 03:00:40 +0000 Manifest next update: Wed 17 Dec 2025 03:00:40 +0000 Files and hashes: 1: I3MDgaIPk5rQhFYqlKJ88u7QcKA.roa (hash: 9W6ILnGR89GeCDK+0ZtMLah7T+7H4VrTikrakuva5SY=) 2: hdbWZzPv8mKL7ila4Mhuuk01Www.roa (hash: CfHG1SiNzylmV2mCUzoHK+y9CvaZseJUgqyvhhx1NeI=) 3: iTr-zXEXBcR2t4XQyG71TCEkNUw.crl (hash: h2rfiWu8OxjG01lcbAws5GW82fq3CiKVmZrzs9U3mC4=) 4: rO9T6t_WHUnkGmIleBFSGRnlKnY.roa (hash: wcBWF7o7prWlR7s8a04nO9bFFc8bqPRJlh3HL2eDAqI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:1a:52:73:55:f8:c0:f9:a8:63:8a:91:ee:7d:56:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=893afecd711705c476b785d0c86ef54c2124354c Validity Not Before: Dec 16 03:00:40 2025 GMT Not After : Dec 17 03:00:40 2025 GMT Subject: CN=13d8f017b017827486a46af2dcef52f4c4f34120 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e8:48:b5:4b:44:af:ce:89:81:b8:b4:5d:9d: 87:43:41:a0:f7:de:c9:28:01:46:a3:05:23:1b:5c: ab:17:8d:b7:cc:2d:81:3c:5d:27:85:cc:e6:4d:8c: 4b:82:1a:e7:cc:9c:e0:47:43:6a:a2:b6:8d:06:c3: ee:3b:0f:0e:14:68:89:73:f0:9e:9f:24:69:1f:21: a3:ad:af:c2:b5:76:5f:e0:a5:3a:ab:93:db:90:87: 83:6f:61:77:d2:ec:c7:04:b5:8d:4b:a7:9f:dc:2c: af:1b:1e:3a:45:46:03:f9:48:e0:ac:55:16:c2:07: 21:1b:67:94:46:0b:d0:3f:7f:fa:62:c6:af:5a:29: 8d:06:e7:a5:ce:ad:af:46:ee:4f:df:f4:6f:f8:6b: 93:2e:d0:e4:6a:d5:2d:8f:da:76:66:98:4b:61:a8: fe:f7:c0:f4:ee:5a:05:5b:68:51:95:c3:db:cc:bc: 18:d8:7d:e5:7e:9f:15:3a:9a:70:ff:98:e3:43:63: bb:01:39:92:10:0c:6d:84:88:56:4d:52:21:fb:71: 4b:51:a4:67:4b:eb:37:f6:df:81:35:b1:f6:b1:62: fa:24:7d:6b:b8:6f:78:06:6f:54:ef:0e:75:f9:e1: 87:37:dd:71:e3:9d:a1:82:71:48:26:a8:58:2b:9d: 05:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:D8:F0:17:B0:17:82:74:86:A4:6A:F2:DC:EF:52:F4:C4:F3:41:20 X509v3 Authority Key Identifier: keyid:89:3A:FE:CD:71:17:05:C4:76:B7:85:D0:C8:6E:F5:4C:21:24:35:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:48:60:21:07:4f:e5:f4:89:33:de:c7:c5:12:4e:8e:7a:b1: 06:4c:aa:b7:1d:88:21:05:0a:68:8e:aa:49:d8:6d:89:f5:d1: 47:1e:81:7b:11:82:c3:64:8e:7e:c5:60:09:8b:82:8c:88:1f: 23:c3:12:ee:85:af:4e:db:de:c6:37:02:c5:00:c1:98:3d:dd: 5d:25:ad:3b:49:57:7d:e8:c7:11:48:05:24:ca:0e:50:36:a8: ba:b2:7b:ff:b1:2e:ab:5c:d1:a3:16:4a:1b:3e:44:03:aa:c7: da:14:73:1f:2e:2d:6e:05:54:71:b5:9e:08:c1:19:a9:98:43: f9:db:9b:7a:21:62:28:eb:68:24:87:4f:e3:48:a1:5d:91:dd: c6:00:63:86:7c:fa:1c:09:64:a7:6b:19:04:78:40:7b:ce:e4: 52:b4:01:96:29:a2:c5:09:9a:df:14:b8:72:3b:9a:bd:ac:9c: 0e:d2:b5:82:ff:67:de:47:b3:13:21:de:04:9b:fc:ce:62:3c: b8:22:e5:16:f7:d3:96:91:a0:63:5a:7c:07:df:ed:7b:2e:bb: 81:33:1a:cb:e3:af:9e:0f:57:93:1a:1e:8d:bb:79:90:9a:0c: 36:53:e0:06:86:c0:04:8a:5b:95:7e:0e:36:4f:70:af:a7:36: 21:45:8c:2d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZslGlJzVfjA+ahjipHufVbPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5M2FmZWNkNzExNzA1YzQ3NmI3ODVkMGM4NmVmNTRjMjEy NDM1NGMwHhcNMjUxMjE2MDMwMDQwWhcNMjUxMjE3MDMwMDQwWjAzMTEwLwYDVQQD EygxM2Q4ZjAxN2IwMTc4Mjc0ODZhNDZhZjJkY2VmNTJmNGM0ZjM0MTIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvuhItUtEr86Jgbi0XZ2HQ0Gg997J KAFGowUjG1yrF423zC2BPF0nhczmTYxLghrnzJzgR0NqoraNBsPuOw8OFGiJc/Ce nyRpHyGjra/CtXZf4KU6q5PbkIeDb2F30uzHBLWNS6ef3CyvGx46RUYD+UjgrFUW wgchG2eURgvQP3/6YsavWimNBuelzq2vRu5P3/Rv+GuTLtDkatUtj9p2ZphLYaj+ 98D07loFW2hRlcPbzLwY2H3lfp8VOppw/5jjQ2O7ATmSEAxthIhWTVIh+3FLUaRn S+s39t+BNbH2sWL6JH1ruG94Bm9U7w51+eGHN91x452hgnFIJqhYK50FnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBPY8BewF4J0hqRq8tzvUvTE80EgMB8GA1UdIwQY MBaAFIk6/s1xFwXEdreF0Mhu9UwhJDVMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVRyLXpYRVhCY1IydDRYUXlHNzFUQ0VrTlV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9jYTNiNWYtMDIyMS00M2FkLThhYmQt MWMxMzIwNmE4MTIzLzEvaVRyLXpYRVhCY1IydDRYUXlHNzFUQ0VrTlV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy9jYTNiNWYtMDIyMS00M2FkLThhYmQtMWMxMzIwNmE4MTIz LzEvaVRyLXpYRVhCY1IydDRYUXlHNzFUQ0VrTlV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAUhgIQdP 5fSJM97HxRJOjnqxBkyqtx2IIQUKaI6qSdhtifXRRx6BexGCw2SOfsVgCYuCjIgf I8MS7oWvTtvexjcCxQDBmD3dXSWtO0lXfejHEUgFJMoOUDaourJ7/7Euq1zRoxZK Gz5EA6rH2hRzHy4tbgVUcbWeCMEZqZhD+dubeiFiKOtoJIdP40ihXZHdxgBjhnz6 HAlkp2sZBHhAe87kUrQBlimixQma3xS4cjuavaycDtK1gv9n3kezEyHeBJv8zmI8 uCLlFvfTlpGgY1p8B9/tey67gTMay+Ovng9Xkxoejbt5kJoMNlPgBobABIpblX4O Nk9wr6c2IUWMLQ== -----END CERTIFICATE-----Generated at Tue Dec 16 06:21:40 2025 by rpki-client