This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft File: IkCgcYD88zY191fMFEng1dvU_bg.mft (raw, json) Hash identifier: vPZA+F6VWjD0DTMwcxZpXiUF0oU15jhT3lsBB4Aq3qk= Subject key identifier: D7:76:0D:9B:92:9F:30:1D:1E:A5:82:EE:AD:8E:4D:09:67:97:E3:27 Authority key identifier: 22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8 Certificate issuer: /CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8 Certificate serial: 019B18DF34F76B6FD684D0C6DEE16A789C5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft Manifest number: 035D Signing time: Sat 13 Dec 2025 18:00:39 +0000 Manifest this update: Sat 13 Dec 2025 18:00:39 +0000 Manifest next update: Sun 14 Dec 2025 18:00:39 +0000 Files and hashes: 1: IkCgcYD88zY191fMFEng1dvU_bg.crl (hash: htLpSyei0P/Gpx4/E6ahu06KBWeD1Rvati8ENNM+748=) 2: nvx0QRZQO1QzuvMN00Bva6hTGZw.roa (hash: Gw59i4bicuVuHEY8V6dHsuW9MPHvsYhnw1rq0LLdv8I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:18:df:34:f7:6b:6f:d6:84:d0:c6:de:e1:6a:78:9c:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8 Validity Not Before: Dec 13 18:00:39 2025 GMT Not After : Dec 14 18:00:39 2025 GMT Subject: CN=d7760d9b929f301d1ea582eead8e4d096797e327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:7f:9b:1d:17:f8:d7:55:f2:89:6f:0a:0e:81: ca:50:45:e7:1e:46:29:5c:43:f2:66:62:6a:04:ee: 92:76:47:c3:1f:7c:87:27:9c:9f:1d:7f:0d:a4:56: ea:c1:4e:05:1a:25:95:68:44:be:46:ab:29:83:04: 49:06:66:f2:fd:be:bb:df:c2:f4:7e:93:fe:4f:bf: fb:81:49:20:ea:9e:93:dc:1e:08:24:b1:c1:16:b3: 8e:7c:f6:e1:00:92:f6:7a:b3:d1:3a:a8:a6:a4:bf: 24:2c:66:fa:56:ae:de:20:41:c6:c8:62:9b:c3:8c: 4a:b7:3e:90:3c:25:db:3e:d7:e6:85:0d:88:6a:88: 42:fc:e2:98:d1:44:1c:c5:54:17:4d:76:05:36:53: cf:d5:ea:31:e1:38:9d:ce:f4:b9:7c:8b:7c:23:01: bb:ed:9a:b5:28:54:c8:b4:b7:3d:f5:fa:d5:62:78: a0:a8:fe:99:75:05:6e:2f:c5:1b:98:24:c2:67:fe: 18:f9:81:9d:2c:1c:52:c1:a6:13:5e:d9:82:12:50: 8b:f4:56:bb:e9:77:5f:ee:68:7d:fc:92:b9:43:43: 67:bb:62:55:bd:52:17:42:be:e8:4a:00:7f:fc:1e: 2b:9e:51:c1:ff:96:93:5f:c7:0d:f2:b6:7e:6b:86: b0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:76:0D:9B:92:9F:30:1D:1E:A5:82:EE:AD:8E:4D:09:67:97:E3:27 X509v3 Authority Key Identifier: keyid:22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:07:c3:79:9a:99:ad:4c:e0:9a:b4:26:29:b9:25:a9:3a:fd: e7:14:4b:72:bf:8d:bd:d7:9e:75:a5:cd:5f:fa:fb:12:9d:bc: 8b:cb:3c:79:ec:b5:21:a1:77:59:9b:32:df:27:a8:91:7a:a5: f5:c7:16:90:de:e1:5e:ee:60:9d:44:7b:ff:46:a7:e7:71:94: 23:f4:80:cb:9d:f5:c8:df:58:12:21:f4:30:fb:53:be:a7:6f: 10:0c:63:26:c4:6f:51:be:d5:73:d7:ba:25:a6:50:4e:4e:38: 40:79:91:a9:93:22:47:66:8e:fe:6e:72:70:8d:6b:8a:16:9f: fc:2a:f5:85:f6:b6:9a:ac:ce:13:66:a6:93:af:62:01:5f:47: 7f:fb:8d:15:b4:35:c3:58:19:45:95:66:77:c0:cf:ad:e7:4d: 54:a9:6c:ef:d6:ae:e4:dc:39:75:5d:d2:98:89:59:30:5a:63: 37:5e:4e:4e:89:b1:61:61:43:c9:9a:74:78:09:bb:ff:4d:f2: 99:aa:35:7b:d1:2c:f0:c5:54:77:4b:77:6a:09:09:5d:91:31: e8:b9:ae:21:19:ec:97:0c:aa:b0:38:08:a8:be:51:8f:96:a2: 7b:eb:0b:bf:b6:e0:41:38:1e:e6:4c:84:24:91:6e:68:43:fe: 59:ab:5a:d3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsY3zT3a2/WhNDG3uFqeJxfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyNDBhMDcxODBmY2YzMzYzNWY3NTdjYzE0NDllMGQ1ZGJk NGZkYjgwHhcNMjUxMjEzMTgwMDM5WhcNMjUxMjE0MTgwMDM5WjAzMTEwLwYDVQQD EyhkNzc2MGQ5YjkyOWYzMDFkMWVhNTgyZWVhZDhlNGQwOTY3OTdlMzI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn3+bHRf411XyiW8KDoHKUEXnHkYp XEPyZmJqBO6SdkfDH3yHJ5yfHX8NpFbqwU4FGiWVaES+RqspgwRJBmby/b6738L0 fpP+T7/7gUkg6p6T3B4IJLHBFrOOfPbhAJL2erPROqimpL8kLGb6Vq7eIEHGyGKb w4xKtz6QPCXbPtfmhQ2IaohC/OKY0UQcxVQXTXYFNlPP1eox4TidzvS5fIt8IwG7 7Zq1KFTItLc99frVYnigqP6ZdQVuL8UbmCTCZ/4Y+YGdLBxSwaYTXtmCElCL9Fa7 6Xdf7mh9/JK5Q0Nnu2JVvVIXQr7oSgB//B4rnlHB/5aTX8cN8rZ+a4awPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNd2DZuSnzAdHqWC7q2OTQlnl+MnMB8GA1UdIwQY MBaAFCJAoHGA/PM2NfdXzBRJ4NXb1P24MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWtDZ2NZRDg4elkxOTFmTUZFbmcxZHZVX2JnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9hMzE0Y2MtMDY2ZS00YzA5LWEzNmEt ZDBiZDBlODAzZmQxLzEvSWtDZ2NZRDg4elkxOTFmTUZFbmcxZHZVX2JnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9hMzE0Y2MtMDY2ZS00YzA5LWEzNmEtZDBiZDBlODAzZmQx LzEvSWtDZ2NZRDg4elkxOTFmTUZFbmcxZHZVX2JnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiwfDeZqZ rUzgmrQmKbklqTr95xRLcr+NvdeedaXNX/r7Ep28i8s8eey1IaF3WZsy3yeokXql 9ccWkN7hXu5gnUR7/0an53GUI/SAy531yN9YEiH0MPtTvqdvEAxjJsRvUb7Vc9e6 JaZQTk44QHmRqZMiR2aO/m5ycI1rihaf/Cr1hfa2mqzOE2amk69iAV9Hf/uNFbQ1 w1gZRZVmd8DPredNVKls79au5Nw5dV3SmIlZMFpjN15OTomxYWFDyZp0eAm7/03y mao1e9Es8MVUd0t3agkJXZEx6LmuIRnslwyqsDgIqL5Rj5aie+sLv7bgQTge5kyE JJFuaEP+Wata0w== -----END CERTIFICATE-----Generated at Sun Dec 14 03:34:16 2025 by rpki-client