This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft File: iaBBZwABZgo3ILd9dk2DaFIZATg.mft (raw, json) Hash identifier: aZBiuvdG4TmhjVpLP5PHVhD2lNyMPCFgxXUeMgTTPIU= Subject key identifier: 12:35:D5:9E:91:20:D0:67:61:48:34:06:39:B7:E4:7E:A4:7F:33:81 Authority key identifier: 89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38 Certificate issuer: /CN=89a041670001660a3720b77d764d836852190138 Certificate serial: 019B38A17A78F2B05487DE943B750C98D8F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft Manifest number: 058D Signing time: Fri 19 Dec 2025 22:01:05 +0000 Manifest this update: Fri 19 Dec 2025 22:01:05 +0000 Manifest next update: Sat 20 Dec 2025 22:01:05 +0000 Files and hashes: 1: beRNZVAtAWiOfxZLwz9Tb3epajM.roa (hash: pv5BVmzc3/x0DZzp0BIh9wKZN12+///ave9ZheyD4wo=) 2: iaBBZwABZgo3ILd9dk2DaFIZATg.crl (hash: IJWM5rIoS0OghXoQIE4iVlUIiy+FhTyjVOZjJcUVZPY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 22:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:38:a1:7a:78:f2:b0:54:87:de:94:3b:75:0c:98:d8:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89a041670001660a3720b77d764d836852190138 Validity Not Before: Dec 19 22:01:05 2025 GMT Not After : Dec 20 22:01:05 2025 GMT Subject: CN=1235d59e9120d0676148340639b7e47ea47f3381 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d3:38:df:9c:e3:a0:45:2c:ed:d6:13:c0:e1: 62:9d:21:5d:ee:b3:28:89:7c:35:db:59:3d:fb:8c: f0:bf:22:7e:cb:5b:ad:bb:03:29:4a:6b:a8:df:9f: 56:73:ff:d1:56:83:9c:cf:fa:c3:ff:6a:95:6f:bd: a3:da:68:fb:4f:ea:05:5d:c0:ba:a1:9c:92:7a:ca: e7:20:f3:1b:b5:f0:da:b1:ef:8c:ea:4b:be:ba:82: 06:37:a9:47:85:5a:58:75:30:af:eb:e1:01:e8:d6: 23:05:53:43:12:0f:8e:04:82:ea:93:98:ba:54:fc: 33:4f:fc:bd:8e:5b:ac:60:a7:82:fc:16:72:e5:4f: 94:6f:c0:5f:f9:cc:e4:83:e4:46:0e:4b:f2:9d:56: d4:60:38:9d:cf:09:95:6e:6b:80:60:f6:ef:7d:dc: 87:ae:6d:e1:83:27:ac:0d:e5:2f:aa:f8:5c:22:9b: 8e:c9:e7:df:21:4b:4b:73:b4:22:7f:d8:88:19:bb: f3:9c:bd:50:51:ad:d4:17:fa:90:2b:91:3e:11:36: ef:d5:76:c2:bb:1a:35:1b:f4:f4:d2:71:13:63:74: 10:6b:8a:0c:43:be:6a:3c:ba:e8:66:71:8c:88:d6: 21:12:6c:9d:38:db:1c:3a:6c:23:79:dc:6e:a5:7f: 80:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:35:D5:9E:91:20:D0:67:61:48:34:06:39:B7:E4:7E:A4:7F:33:81 X509v3 Authority Key Identifier: keyid:89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:27:a0:fe:95:bd:94:f4:f2:5a:aa:7c:e8:57:af:75:48:45: 37:dc:9f:10:d4:5e:53:6f:ef:76:5e:35:dd:7b:21:09:61:df: 6b:5a:71:cc:43:91:c0:26:93:a3:f3:6b:3e:44:0c:c8:b1:22: 2f:8a:e5:97:8a:04:43:67:54:04:fa:ac:f9:16:23:94:1a:5c: 36:90:f1:f6:dd:e0:28:09:3e:d2:93:f0:3f:22:6b:ea:99:7f: 8f:e7:a7:0e:84:55:b1:d2:b9:85:5f:ae:7e:c2:b7:93:02:6c: 77:75:85:21:17:c6:18:97:a2:15:4b:61:45:67:c7:fe:b2:c8: 5d:c8:91:88:61:52:35:22:88:1e:39:f2:36:80:09:e2:76:73: d9:f2:f9:06:29:38:fb:97:da:16:5b:05:c7:d2:10:a3:6e:ed: 06:cd:97:38:62:28:fc:8b:c4:94:03:b9:da:89:01:ff:f3:1a: d3:9d:45:b4:60:97:b4:7e:9e:24:97:a3:4a:7e:2f:c1:67:bf: 8c:99:ad:ac:be:ab:94:c5:bc:46:51:e2:60:fd:51:7a:b8:b2: 7d:b6:a9:15:d3:d3:5e:c4:0e:f4:8b:da:54:4c:7f:82:71:9d: 83:a5:13:d4:b6:ed:42:14:30:8f:5f:45:02:6d:c0:78:ef:39: 53:84:88:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs4oXp48rBUh96UO3UMmNj1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5YTA0MTY3MDAwMTY2MGEzNzIwYjc3ZDc2NGQ4MzY4NTIx OTAxMzgwHhcNMjUxMjE5MjIwMTA1WhcNMjUxMjIwMjIwMTA1WjAzMTEwLwYDVQQD EygxMjM1ZDU5ZTkxMjBkMDY3NjE0ODM0MDYzOWI3ZTQ3ZWE0N2YzMzgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNM435zjoEUs7dYTwOFinSFd7rMo iXw121k9+4zwvyJ+y1utuwMpSmuo359Wc//RVoOcz/rD/2qVb72j2mj7T+oFXcC6 oZySesrnIPMbtfDase+M6ku+uoIGN6lHhVpYdTCv6+EB6NYjBVNDEg+OBILqk5i6 VPwzT/y9jlusYKeC/BZy5U+Ub8Bf+czkg+RGDkvynVbUYDidzwmVbmuAYPbvfdyH rm3hgyesDeUvqvhcIpuOyeffIUtLc7Qif9iIGbvznL1QUa3UF/qQK5E+ETbv1XbC uxo1G/T00nETY3QQa4oMQ75qPLroZnGMiNYhEmydONscOmwjedxupX+AEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBI11Z6RINBnYUg0Bjm35H6kfzOBMB8GA1UdIwQY MBaAFImgQWcAAWYKNyC3fXZNg2hSGQE4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWFCQlp3QUJaZ28zSUxkOWRrMkRhRklaQVRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9kNDQ2OWEtMTNhOC00NzJjLWI0NmYt NGJiNDE0NjIzYTE0LzEvaWFCQlp3QUJaZ28zSUxkOWRrMkRhRklaQVRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC9kNDQ2OWEtMTNhOC00NzJjLWI0NmYtNGJiNDE0NjIzYTE0 LzEvaWFCQlp3QUJaZ28zSUxkOWRrMkRhRklaQVRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATCeg/pW9 lPTyWqp86FevdUhFN9yfENReU2/vdl413XshCWHfa1pxzEORwCaTo/NrPkQMyLEi L4rll4oEQ2dUBPqs+RYjlBpcNpDx9t3gKAk+0pPwPyJr6pl/j+enDoRVsdK5hV+u fsK3kwJsd3WFIRfGGJeiFUthRWfH/rLIXciRiGFSNSKIHjnyNoAJ4nZz2fL5Bik4 +5faFlsFx9IQo27tBs2XOGIo/IvElAO52okB//Ma051FtGCXtH6eJJejSn4vwWe/ jJmtrL6rlMW8RlHiYP1ReriyfbapFdPTXsQO9IvaVEx/gnGdg6UT1LbtQhQwj19F Am3AeO85U4SI1A== -----END CERTIFICATE-----Generated at Sat Dec 20 08:05:58 2025 by rpki-client