This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft File: iLda7v6O6hrFwhnYdQXS58XzL0g.mft (raw, json) Hash identifier: qmrzWL3+YTgNaSd/q8QnS6wPJYAwvuUzApXOfs/Kdgo= Subject key identifier: 92:7C:D2:0F:5A:94:B7:3F:10:92:F9:E8:F9:97:35:9D:09:98:55:AE Authority key identifier: 88:B7:5A:EE:FE:8E:EA:1A:C5:C2:19:D8:75:05:D2:E7:C5:F3:2F:48 Certificate issuer: /CN=88b75aeefe8eea1ac5c219d87505d2e7c5f32f48 Certificate serial: 019B1BAA4BC5489415856D360A7A335105D6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft Manifest number: 1778 Signing time: Sun 14 Dec 2025 07:01:43 +0000 Manifest this update: Sun 14 Dec 2025 07:01:43 +0000 Manifest next update: Mon 15 Dec 2025 07:01:43 +0000 Files and hashes: 1: RmCRqlQnRe9rCwX7VMuUVE41d98.roa (hash: /tq1VC9HIJ7jRew5LuuwcJaQrPrPH8vbpHUg/uqU1rE=) 2: iLda7v6O6hrFwhnYdQXS58XzL0g.crl (hash: 7BoGS3V6rRN3n+x/WeTtvrnPfmHP15YGIGjo8FqA/Xo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.crl rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 07:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1b:aa:4b:c5:48:94:15:85:6d:36:0a:7a:33:51:05:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88b75aeefe8eea1ac5c219d87505d2e7c5f32f48 Validity Not Before: Dec 14 07:01:43 2025 GMT Not After : Dec 15 07:01:43 2025 GMT Subject: CN=927cd20f5a94b73f1092f9e8f997359d099855ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:d3:c9:df:fd:d2:f4:b6:39:2e:f2:74:fa:43: cd:d0:49:78:fc:a7:d9:e5:ff:cc:b2:17:1e:5b:8c: 4b:30:77:a6:64:36:f6:75:1b:08:07:d3:75:2b:a4: 32:b5:ee:1e:5c:c8:a8:88:ef:70:f2:ee:27:68:f8: 88:84:d6:78:eb:94:68:8a:14:92:61:62:8e:14:ea: 41:c1:d6:27:1f:0d:fd:21:0c:63:22:7b:cc:c6:ee: eb:19:34:22:f2:f1:28:4c:5c:85:28:fb:26:b4:ab: f8:81:2b:65:bd:18:51:96:43:44:54:c8:21:60:03: 3d:c8:30:38:3c:28:d8:ac:3b:2d:51:46:44:e8:7d: bc:4c:08:5d:d4:40:04:e6:15:46:83:34:87:7c:4e: 3c:47:1f:be:b4:fc:e9:72:5b:2c:9e:a0:f1:c4:25: ec:96:a8:76:4f:75:69:06:26:fe:5f:29:c8:cc:10: 55:a1:b7:4c:01:30:d9:c1:17:00:d2:aa:9e:95:b1: d5:31:2a:9c:70:85:7e:4e:08:31:26:72:76:55:63: b8:59:8e:8d:3e:56:aa:29:79:49:17:1c:2b:d7:12: 05:1b:3d:78:87:95:09:fc:51:63:b6:58:e2:6e:b8: 4e:a7:1d:f6:90:9a:35:92:cc:64:39:7e:27:01:63: 7a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:7C:D2:0F:5A:94:B7:3F:10:92:F9:E8:F9:97:35:9D:09:98:55:AE X509v3 Authority Key Identifier: keyid:88:B7:5A:EE:FE:8E:EA:1A:C5:C2:19:D8:75:05:D2:E7:C5:F3:2F:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:95:68:5a:7f:fb:c2:84:34:f4:47:90:22:a2:c7:5e:14:6a: c0:f5:a8:dc:c4:70:75:de:18:13:a5:21:81:81:4b:41:cf:78: 11:ad:09:2e:85:a9:30:69:02:4b:fc:da:4e:bc:26:41:a4:fc: 59:dd:ce:e4:31:2c:e1:66:9e:b4:a7:70:02:91:e8:39:53:78: 48:eb:75:e4:fe:0c:4b:22:68:2b:88:05:56:5b:f8:16:e9:53: da:07:b8:f8:2f:5f:8e:64:d8:b1:75:40:74:1a:9c:f0:64:7c: 71:fd:83:bb:c6:aa:43:0c:6b:4c:7b:4d:88:8a:f6:2c:31:90: 20:db:08:04:97:de:5e:0e:91:95:8e:bd:51:3d:f4:19:45:41: 0c:8a:ef:a4:8a:3e:fb:b5:63:05:71:0e:70:47:26:d4:5e:30: 93:6c:a8:1a:2e:f9:fa:18:f8:6d:e6:27:0f:30:f1:ab:5b:3a: 18:ac:56:1d:f9:5b:30:e3:6c:3d:44:c6:e8:45:b1:c4:f9:ce: 34:3e:cc:1c:0e:b0:1f:54:34:27:c8:11:d5:63:b0:fa:b9:01: a1:50:1e:1d:eb:69:a4:08:3e:1c:55:cd:bd:a6:58:a3:31:f0: 7c:94:b6:0b:ba:97:45:2e:21:45:5c:c8:06:f6:26:38:c8:6f: b6:61:e6:1a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsbqkvFSJQVhW02CnozUQXWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4Yjc1YWVlZmU4ZWVhMWFjNWMyMTlkODc1MDVkMmU3YzVm MzJmNDgwHhcNMjUxMjE0MDcwMTQzWhcNMjUxMjE1MDcwMTQzWjAzMTEwLwYDVQQD Eyg5MjdjZDIwZjVhOTRiNzNmMTA5MmY5ZThmOTk3MzU5ZDA5OTg1NWFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7NPJ3/3S9LY5LvJ0+kPN0El4/KfZ 5f/MshceW4xLMHemZDb2dRsIB9N1K6Qyte4eXMioiO9w8u4naPiIhNZ465RoihSS YWKOFOpBwdYnHw39IQxjInvMxu7rGTQi8vEoTFyFKPsmtKv4gStlvRhRlkNEVMgh YAM9yDA4PCjYrDstUUZE6H28TAhd1EAE5hVGgzSHfE48Rx++tPzpclssnqDxxCXs lqh2T3VpBib+XynIzBBVobdMATDZwRcA0qqelbHVMSqccIV+TggxJnJ2VWO4WY6N PlaqKXlJFxwr1xIFGz14h5UJ/FFjtljibrhOpx32kJo1ksxkOX4nAWN6BwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJJ80g9alLc/EJL56PmXNZ0JmFWuMB8GA1UdIwQY MBaAFIi3Wu7+juoaxcIZ2HUF0ufF8y9IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUxkYTd2Nk82aHJGd2huWWRRWFM1OFh6TDBnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS80ZDI4MzEtMTJlYy00NzcwLTljZWEt OWFjMDhjM2VhYWExLzEvaUxkYTd2Nk82aHJGd2huWWRRWFM1OFh6TDBnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNS80ZDI4MzEtMTJlYy00NzcwLTljZWEtOWFjMDhjM2VhYWEx LzEvaUxkYTd2Nk82aHJGd2huWWRRWFM1OFh6TDBnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf5VoWn/7 woQ09EeQIqLHXhRqwPWo3MRwdd4YE6UhgYFLQc94Ea0JLoWpMGkCS/zaTrwmQaT8 Wd3O5DEs4WaetKdwApHoOVN4SOt15P4MSyJoK4gFVlv4FulT2ge4+C9fjmTYsXVA dBqc8GR8cf2Du8aqQwxrTHtNiIr2LDGQINsIBJfeXg6RlY69UT30GUVBDIrvpIo+ +7VjBXEOcEcm1F4wk2yoGi75+hj4beYnDzDxq1s6GKxWHflbMONsPUTG6EWxxPnO ND7MHA6wH1Q0J8gR1WOw+rkBoVAeHetppAg+HFXNvaZYozHwfJS2C7qXRS4hRVzI BvYmOMhvtmHmGg== -----END CERTIFICATE-----Generated at Sun Dec 14 17:16:17 2025 by rpki-client