This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft File: iTr-zXEXBcR2t4XQyG71TCEkNUw.mft (raw, json) Hash identifier: WAFONC05BQdc3eUsGwOd6UpwBKDlXOQQuDhVkhxYdqY= Subject key identifier: 28:8D:8B:19:8A:C2:05:83:68:20:03:96:82:9C:CE:6F:62:EA:BE:B1 Authority key identifier: 89:3A:FE:CD:71:17:05:C4:76:B7:85:D0:C8:6E:F5:4C:21:24:35:4C Certificate issuer: /CN=893afecd711705c476b785d0c86ef54c2124354c Certificate serial: 019B11CA5AC9EFD27D365D049A66BF589A26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft Manifest number: 1772 Signing time: Fri 12 Dec 2025 09:00:32 +0000 Manifest this update: Fri 12 Dec 2025 09:00:32 +0000 Manifest next update: Sat 13 Dec 2025 09:00:32 +0000 Files and hashes: 1: I3MDgaIPk5rQhFYqlKJ88u7QcKA.roa (hash: 9W6ILnGR89GeCDK+0ZtMLah7T+7H4VrTikrakuva5SY=) 2: hdbWZzPv8mKL7ila4Mhuuk01Www.roa (hash: CfHG1SiNzylmV2mCUzoHK+y9CvaZseJUgqyvhhx1NeI=) 3: iTr-zXEXBcR2t4XQyG71TCEkNUw.crl (hash: 8C1gyEdCTtTtEVPkEJ2dWZnw0Ps+z+uIAaMmEKeryo8=) 4: rO9T6t_WHUnkGmIleBFSGRnlKnY.roa (hash: wcBWF7o7prWlR7s8a04nO9bFFc8bqPRJlh3HL2eDAqI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:11:ca:5a:c9:ef:d2:7d:36:5d:04:9a:66:bf:58:9a:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=893afecd711705c476b785d0c86ef54c2124354c Validity Not Before: Dec 12 09:00:32 2025 GMT Not After : Dec 13 09:00:32 2025 GMT Subject: CN=288d8b198ac2058368200396829cce6f62eabeb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:17:10:7e:a2:ec:f4:4d:79:ea:71:51:b5:9e: 4a:aa:52:ef:81:73:e5:fd:cd:26:08:8f:54:52:c9: 55:f6:e3:5d:99:67:1e:b6:34:69:de:32:5b:e1:cf: 86:e0:cb:0a:6b:e6:de:12:bb:78:2d:e2:33:77:a3: a9:3e:40:0a:b2:79:02:b0:96:46:76:81:01:b6:fa: 39:49:31:30:2d:d4:15:02:06:1b:c7:06:4d:a0:b5: f0:43:30:14:a7:af:e6:ed:2f:41:ea:39:ea:ec:78: df:00:50:3f:17:63:16:47:12:9a:51:c9:55:b9:e2: b2:03:6f:f1:39:45:b5:f6:f4:eb:ea:c0:4d:10:3a: 79:fa:69:e3:e7:74:a5:e9:c8:1d:49:3d:48:04:ed: df:94:8d:03:31:dd:9a:80:6a:ae:6d:f9:fb:88:2b: 2e:20:a7:d4:7c:6c:14:41:a7:54:a2:63:f9:87:08: 0f:22:bf:ed:8f:32:26:2d:e6:e2:ea:ce:29:63:dd: 09:1d:d7:87:87:75:cc:3d:11:64:96:94:45:7e:c8: a7:7c:2e:58:d7:5f:b0:79:a2:98:1a:00:d8:38:c6: 67:7e:02:97:c2:f6:8e:de:b9:76:33:56:1c:c5:30: d3:6c:f3:5d:7f:0d:9f:76:dc:0c:27:6e:8c:cb:b4: c1:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:8D:8B:19:8A:C2:05:83:68:20:03:96:82:9C:CE:6F:62:EA:BE:B1 X509v3 Authority Key Identifier: keyid:89:3A:FE:CD:71:17:05:C4:76:B7:85:D0:C8:6E:F5:4C:21:24:35:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:88:15:13:79:88:f9:51:2f:3f:26:4b:24:7b:ee:f7:74:ed: 64:b5:44:5d:64:c8:70:ab:38:49:f9:50:8f:87:ee:f3:9a:54: 04:93:45:86:46:ef:79:cf:11:7c:b2:0e:32:d2:83:e3:ba:ad: 17:e6:04:de:83:7b:ba:9c:bf:e8:7f:19:51:73:38:1d:19:f9: 28:0d:a0:c8:b8:14:7b:1c:ca:de:fb:4e:6c:ab:02:18:31:b1: 9c:d4:91:04:0c:ca:49:e4:8e:76:31:ce:b8:57:44:f2:2b:9e: 96:91:b2:5d:c6:af:98:ea:c6:6e:7f:97:99:3d:97:29:21:1a: cf:78:e5:d1:e2:7b:dc:6b:11:c3:a7:0c:c9:47:e0:90:08:2f: d6:25:10:83:92:59:09:fb:82:9e:2e:4d:81:d6:4e:fb:08:b6: c9:9f:0f:ce:f1:c6:de:20:0e:02:87:6c:7c:3d:df:64:df:06: 24:70:62:d6:37:99:9d:9c:ef:57:8d:8b:6c:f2:43:00:46:d2: 4b:23:34:97:4a:33:39:9d:04:b3:77:7e:04:90:c8:26:5e:da: 57:98:05:05:f2:e9:cb:97:ae:40:de:0e:89:8c:e8:68:13:47: 15:00:94:39:02:7b:bb:c3:4b:ba:a4:2f:13:65:ad:df:1e:ed: 85:8f:f2:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsRylrJ79J9Nl0Emma/WJomMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5M2FmZWNkNzExNzA1YzQ3NmI3ODVkMGM4NmVmNTRjMjEy NDM1NGMwHhcNMjUxMjEyMDkwMDMyWhcNMjUxMjEzMDkwMDMyWjAzMTEwLwYDVQQD EygyODhkOGIxOThhYzIwNTgzNjgyMDAzOTY4MjljY2U2ZjYyZWFiZWIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApBcQfqLs9E156nFRtZ5KqlLvgXPl /c0mCI9UUslV9uNdmWcetjRp3jJb4c+G4MsKa+beErt4LeIzd6OpPkAKsnkCsJZG doEBtvo5STEwLdQVAgYbxwZNoLXwQzAUp6/m7S9B6jnq7HjfAFA/F2MWRxKaUclV ueKyA2/xOUW19vTr6sBNEDp5+mnj53Sl6cgdST1IBO3flI0DMd2agGqubfn7iCsu IKfUfGwUQadUomP5hwgPIr/tjzImLebi6s4pY90JHdeHh3XMPRFklpRFfsinfC5Y 11+weaKYGgDYOMZnfgKXwvaO3rl2M1YcxTDTbPNdfw2fdtwMJ26My7TBRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCiNixmKwgWDaCADloKczm9i6r6xMB8GA1UdIwQY MBaAFIk6/s1xFwXEdreF0Mhu9UwhJDVMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVRyLXpYRVhCY1IydDRYUXlHNzFUQ0VrTlV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9jYTNiNWYtMDIyMS00M2FkLThhYmQt MWMxMzIwNmE4MTIzLzEvaVRyLXpYRVhCY1IydDRYUXlHNzFUQ0VrTlV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy9jYTNiNWYtMDIyMS00M2FkLThhYmQtMWMxMzIwNmE4MTIz LzEvaVRyLXpYRVhCY1IydDRYUXlHNzFUQ0VrTlV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIIgVE3mI +VEvPyZLJHvu93TtZLVEXWTIcKs4SflQj4fu85pUBJNFhkbvec8RfLIOMtKD47qt F+YE3oN7upy/6H8ZUXM4HRn5KA2gyLgUexzK3vtObKsCGDGxnNSRBAzKSeSOdjHO uFdE8iuelpGyXcavmOrGbn+XmT2XKSEaz3jl0eJ73GsRw6cMyUfgkAgv1iUQg5JZ CfuCni5NgdZO+wi2yZ8PzvHG3iAOAodsfD3fZN8GJHBi1jeZnZzvV42LbPJDAEbS SyM0l0ozOZ0Es3d+BJDIJl7aV5gFBfLpy5euQN4OiYzoaBNHFQCUOQJ7u8NLuqQv E2Wt3x7thY/yYQ== -----END CERTIFICATE-----Generated at Fri Dec 12 12:59:23 2025 by rpki-client