This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft File: iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft (raw, json) Hash identifier: RH4LQ7yckgJ5Qz0pZ7gRogTbU4ROd05CPEzpcu6Pmws= Subject key identifier: 33:49:DD:1D:08:A5:FF:A9:FF:BE:A3:0E:FB:A9:E0:4A:A9:37:6D:60 Authority key identifier: 88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2 Certificate issuer: /CN=885c09522f635fcafa29bcebac72c894e4ffeed2 Certificate serial: 019B35321D6606761869C41D74C7B9C4EB1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft Manifest number: 0237 Signing time: Fri 19 Dec 2025 06:00:35 +0000 Manifest this update: Fri 19 Dec 2025 06:00:35 +0000 Manifest next update: Sat 20 Dec 2025 06:00:35 +0000 Files and hashes: 1: XcIL6Sukfm7k1AWtWl445xp4QV0.roa (hash: 4UDRmx72tIl2+y56n6Ye2uGR21iaVE2WkWXR6GxV+6Y=) 2: iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl (hash: 0k0M7EMQDOF9bfVl0ebbqTcGdT5GbXwkYwe84iM+Rb4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 06:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:32:1d:66:06:76:18:69:c4:1d:74:c7:b9:c4:eb:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=885c09522f635fcafa29bcebac72c894e4ffeed2 Validity Not Before: Dec 19 06:00:35 2025 GMT Not After : Dec 20 06:00:35 2025 GMT Subject: CN=3349dd1d08a5ffa9ffbea30efba9e04aa9376d60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:30:d1:7d:25:c5:be:40:b4:e1:6e:ee:1f:6a: 97:25:0f:ee:e4:e9:db:09:53:f1:af:3a:8f:71:1c: 0b:3e:fe:ce:0e:53:e2:57:87:0c:ef:b7:ed:28:b9: 97:fd:4c:cf:61:3a:75:83:8e:03:97:61:c5:53:e6: ab:a3:d4:96:45:3e:a4:83:eb:33:49:06:88:78:1d: b7:bd:9f:b6:ce:56:de:75:39:be:01:38:5d:97:70: a7:36:7b:e0:d9:6d:95:e7:7b:7d:08:d3:30:20:90: 56:ef:f2:87:22:69:73:81:b1:aa:70:ee:81:cd:3c: 75:24:3f:c8:fa:e6:aa:7e:20:19:31:e7:69:6c:2a: 39:4d:20:1c:3e:38:d0:15:72:af:88:3b:3a:26:f8: 5a:bf:a6:29:b3:53:52:91:40:43:65:ef:36:b4:76: 6a:28:08:49:f2:1f:b6:9d:51:23:44:12:cb:3a:85: 55:4b:4e:7d:59:ab:b2:be:a7:2d:2d:63:b0:b8:64: 37:dd:c3:66:8a:ea:a6:1b:cb:c0:de:d1:23:7d:ad: 27:8e:78:c0:2b:20:1c:05:bb:59:97:ef:39:c4:fb: 3d:ea:ba:dc:db:68:a9:1b:9c:5c:aa:74:91:15:8d: c6:ec:1b:9f:41:3f:ec:d3:c5:2a:a4:5a:b1:df:33: d2:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:49:DD:1D:08:A5:FF:A9:FF:BE:A3:0E:FB:A9:E0:4A:A9:37:6D:60 X509v3 Authority Key Identifier: keyid:88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:cd:11:06:02:1b:18:81:33:62:27:a8:d1:b3:53:9c:6e:20: fc:9c:5b:ae:1c:81:b6:3a:a1:3b:2e:75:10:c2:3b:c7:03:c8: 55:80:ca:b7:a9:97:5d:b7:30:28:9b:53:7d:97:4c:1b:61:a6: 95:af:c1:9f:1e:b1:66:72:32:f6:78:e5:1e:71:e3:e9:b4:31: fe:dc:6b:c2:a1:e1:11:67:f6:89:d6:a7:bc:50:80:bf:2a:63: 3a:65:72:b6:a4:a1:60:1d:ff:42:0d:57:ae:01:5c:55:8a:1d: 49:7b:f7:3d:4c:3d:13:7a:22:b5:90:7b:38:a7:63:06:0f:f3: ea:63:eb:03:e1:00:1a:ff:d1:7c:03:a6:d2:0a:b2:58:14:2f: 15:3a:63:25:fd:a3:31:1a:05:75:5e:e7:47:50:2a:23:3a:29: 2d:a2:67:62:a3:02:de:3e:e4:de:ef:be:9f:ed:d6:a1:1f:af: 34:4f:71:b3:ff:74:8d:ff:4a:2d:68:86:79:c1:1d:51:e7:d4: 57:04:f1:a2:e9:d2:8e:3f:63:4f:5c:d4:96:e5:05:38:fe:08: 83:c9:e9:c9:cb:ad:c3:a9:9d:2f:2b:58:b2:8d:d1:cc:ba:95: 60:64:99:1f:3c:21:81:a1:28:34:d6:ce:a2:bb:af:08:c4:21: 06:9a:33:f3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1Mh1mBnYYacQddMe5xOsaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4NWMwOTUyMmY2MzVmY2FmYTI5YmNlYmFjNzJjODk0ZTRm ZmVlZDIwHhcNMjUxMjE5MDYwMDM1WhcNMjUxMjIwMDYwMDM1WjAzMTEwLwYDVQQD EygzMzQ5ZGQxZDA4YTVmZmE5ZmZiZWEzMGVmYmE5ZTA0YWE5Mzc2ZDYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqTDRfSXFvkC04W7uH2qXJQ/u5Onb CVPxrzqPcRwLPv7ODlPiV4cM77ftKLmX/UzPYTp1g44Dl2HFU+aro9SWRT6kg+sz SQaIeB23vZ+2zlbedTm+AThdl3CnNnvg2W2V53t9CNMwIJBW7/KHImlzgbGqcO6B zTx1JD/I+uaqfiAZMedpbCo5TSAcPjjQFXKviDs6Jvhav6Yps1NSkUBDZe82tHZq KAhJ8h+2nVEjRBLLOoVVS059WauyvqctLWOwuGQ33cNmiuqmG8vA3tEjfa0njnjA KyAcBbtZl+85xPs96rrc22ipG5xcqnSRFY3G7BufQT/s08UqpFqx3zPSrwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDNJ3R0Ipf+p/76jDvup4EqpN21gMB8GA1UdIwQY MBaAFIhcCVIvY1/K+im866xyyJTk/+7SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUZ3SlVpOWpYOHI2S2J6cnJITElsT1RfN3RJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hMDJjMDgtZjMxYi00OGM1LWFkNDct ZjgzYjhkMDQwODdjLzEvaUZ3SlVpOWpYOHI2S2J6cnJITElsT1RfN3RJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi9hMDJjMDgtZjMxYi00OGM1LWFkNDctZjgzYjhkMDQwODdj LzEvaUZ3SlVpOWpYOHI2S2J6cnJITElsT1RfN3RJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAs0RBgIb GIEzYieo0bNTnG4g/JxbrhyBtjqhOy51EMI7xwPIVYDKt6mXXbcwKJtTfZdMG2Gm la/Bnx6xZnIy9njlHnHj6bQx/txrwqHhEWf2idanvFCAvypjOmVytqShYB3/Qg1X rgFcVYodSXv3PUw9E3oitZB7OKdjBg/z6mPrA+EAGv/RfAOm0gqyWBQvFTpjJf2j MRoFdV7nR1AqIzopLaJnYqMC3j7k3u++n+3WoR+vNE9xs/90jf9KLWiGecEdUefU VwTxounSjj9jT1zUluUFOP4Ig8npycutw6mdLytYso3RzLqVYGSZHzwhgaEoNNbO oruvCMQhBpoz8w== -----END CERTIFICATE-----Generated at Fri Dec 19 14:27:39 2025 by rpki-client