This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft File: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft (raw, json) Hash identifier: JTo3EBHe/mJ05+LUYBmlRKkGcztq52/rWpNe7AE1Rm0= Subject key identifier: C9:50:20:45:0E:43:5F:B8:59:43:2E:22:7B:03:7D:73:70:52:29:FF Authority key identifier: 23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44 Certificate issuer: /CN=230d311fc19463fdd30adecc917b5f0298741b44 Certificate serial: 019B1B3BA0F8D0DE9251256C4835525B1B93 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft Manifest number: 1193 Signing time: Sun 14 Dec 2025 05:00:51 +0000 Manifest this update: Sun 14 Dec 2025 05:00:51 +0000 Manifest next update: Mon 15 Dec 2025 05:00:51 +0000 Files and hashes: 1: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl (hash: QWyPLmM7lpKgaazgTgMvWrm+hvebzEn9NolSWosc4uU=) 2: qaZCGy8ImKVej6couAVTC--aSzI.roa (hash: dKUZq0YlDWheyPATDjfQQ4lypZzKgD8qgqRTkln0uKk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1b:3b:a0:f8:d0:de:92:51:25:6c:48:35:52:5b:1b:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=230d311fc19463fdd30adecc917b5f0298741b44 Validity Not Before: Dec 14 05:00:51 2025 GMT Not After : Dec 15 05:00:51 2025 GMT Subject: CN=c95020450e435fb859432e227b037d73705229ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b1:00:da:15:b9:3f:15:a1:70:ff:5a:35:54: cd:59:7e:93:2f:93:d7:f2:5c:82:fa:e7:01:d0:d7: 7e:14:51:d9:93:1e:cb:65:f0:f9:09:e4:3e:54:79: fe:b5:6f:82:5c:b9:81:9d:2e:74:a6:1b:54:1a:79: 98:e6:7b:0e:7f:33:8e:e9:91:8c:45:b6:1a:52:01: 18:e7:70:93:c3:a3:21:56:95:2a:24:d7:0c:0b:a6: 48:2f:8d:bf:74:9c:90:77:e8:d5:3a:97:1b:ef:5c: a6:f7:cd:9f:ad:34:c8:ec:e2:e8:69:61:1c:44:2d: 3d:77:ca:90:b1:0e:c0:c9:ff:31:d4:53:cf:44:75: 23:06:64:c2:96:34:90:78:ab:fc:ed:b1:2a:8b:0c: f7:0c:54:af:fe:55:af:43:ee:f1:ed:12:45:61:59: f3:18:1b:60:eb:98:58:28:b3:51:96:97:44:dd:e7: ad:04:2b:00:95:56:f1:02:f7:6b:67:e3:4f:61:ae: 63:a8:61:81:a4:15:00:0d:bc:8d:c5:23:2b:67:ac: 0d:c9:c6:55:7d:33:41:81:dc:0e:54:0a:03:21:ca: ed:74:97:1d:e8:12:5d:c4:49:1f:28:28:d5:60:32: 5e:27:ed:ac:75:24:c5:72:91:30:2e:76:a6:26:f7: 59:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:50:20:45:0E:43:5F:B8:59:43:2E:22:7B:03:7D:73:70:52:29:FF X509v3 Authority Key Identifier: keyid:23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:0a:65:3d:9d:15:b5:3f:a4:b3:43:1d:16:1a:6d:c7:18:2f: fa:96:0c:8e:db:5b:cc:06:42:69:e6:7c:0e:7d:92:06:ce:3d: 23:e4:7c:58:d9:0b:27:13:65:a3:17:c0:13:c0:e4:f2:d7:1c: 93:1c:57:d0:86:70:d1:c1:58:fd:ed:07:d3:31:59:e9:d7:80: 57:8a:7f:e9:ab:d0:d0:d9:3d:4e:21:c7:b0:ac:fc:e9:ec:8b: 5e:30:95:b1:bc:8a:79:7b:b1:4a:f9:d7:72:b3:fc:3a:f4:65: 24:d6:c8:3d:a9:ed:20:6f:8a:19:a6:0a:39:c3:22:3c:f0:df: b3:37:4f:79:f3:7f:83:24:b2:65:9a:38:4c:49:1d:ed:2d:b4: df:5d:7b:14:83:ba:1d:de:7f:8c:b8:35:47:84:5d:f8:1c:55: 61:fd:e6:d1:95:02:6b:47:aa:c0:81:4f:a6:27:8e:a5:e9:7e: 24:e8:6c:bd:dd:54:2e:06:9f:fb:c0:74:e4:60:78:2b:30:cb: 4a:22:6f:d6:e8:b5:b8:fe:40:ce:fb:6a:b3:7e:d3:f7:18:dd: 69:6d:28:bc:8b:2d:a9:e3:53:9a:ba:a8:18:a5:e1:35:07:65: e9:0f:3b:3b:80:b5:60:d3:3b:fc:af:08:ee:05:fc:0f:0e:9c: 5f:65:2a:e6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsbO6D40N6SUSVsSDVSWxuTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzMGQzMTFmYzE5NDYzZmRkMzBhZGVjYzkxN2I1ZjAyOTg3 NDFiNDQwHhcNMjUxMjE0MDUwMDUxWhcNMjUxMjE1MDUwMDUxWjAzMTEwLwYDVQQD EyhjOTUwMjA0NTBlNDM1ZmI4NTk0MzJlMjI3YjAzN2Q3MzcwNTIyOWZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp7EA2hW5PxWhcP9aNVTNWX6TL5PX 8lyC+ucB0Nd+FFHZkx7LZfD5CeQ+VHn+tW+CXLmBnS50phtUGnmY5nsOfzOO6ZGM RbYaUgEY53CTw6MhVpUqJNcMC6ZIL42/dJyQd+jVOpcb71ym982frTTI7OLoaWEc RC09d8qQsQ7Ayf8x1FPPRHUjBmTCljSQeKv87bEqiwz3DFSv/lWvQ+7x7RJFYVnz GBtg65hYKLNRlpdE3eetBCsAlVbxAvdrZ+NPYa5jqGGBpBUADbyNxSMrZ6wNycZV fTNBgdwOVAoDIcrtdJcd6BJdxEkfKCjVYDJeJ+2sdSTFcpEwLnamJvdZKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMlQIEUOQ1+4WUMuInsDfXNwUin/MB8GA1UdIwQY MBaAFCMNMR/BlGP90wrezJF7XwKYdBtEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXcweEg4R1VZXzNUQ3Q3TWtYdGZBcGgwRzBRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8yODFkZmItMzI5My00YmFiLWJhMjIt MWJlY2I1ZGNkN2FhLzEvSXcweEg4R1VZXzNUQ3Q3TWtYdGZBcGgwRzBRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi8yODFkZmItMzI5My00YmFiLWJhMjItMWJlY2I1ZGNkN2Fh LzEvSXcweEg4R1VZXzNUQ3Q3TWtYdGZBcGgwRzBRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOAplPZ0V tT+ks0MdFhptxxgv+pYMjttbzAZCaeZ8Dn2SBs49I+R8WNkLJxNloxfAE8Dk8tcc kxxX0IZw0cFY/e0H0zFZ6deAV4p/6avQ0Nk9TiHHsKz86eyLXjCVsbyKeXuxSvnX crP8OvRlJNbIPantIG+KGaYKOcMiPPDfszdPefN/gySyZZo4TEkd7S203117FIO6 Hd5/jLg1R4Rd+BxVYf3m0ZUCa0eqwIFPpieOpel+JOhsvd1ULgaf+8B05GB4KzDL SiJv1ui1uP5Azvtqs37T9xjdaW0ovIstqeNTmrqoGKXhNQdl6Q87O4C1YNM7/K8I 7gX8Dw6cX2Uq5g== -----END CERTIFICATE-----Generated at Sun Dec 14 15:20:00 2025 by rpki-client