This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft File: iCGjmu2dpO46tmOdJEUI-h6NIPY.mft (raw, json) Hash identifier: Tpe8/6ByMkwDeLaOUbGtxqirXgHtOMq318owEt2+7b4= Subject key identifier: 83:C2:84:26:F3:82:96:9A:88:54:A7:B7:31:28:D6:3C:00:11:30:C3 Authority key identifier: 88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6 Certificate issuer: /CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6 Certificate serial: 019B68B1EF73E5EF3A920350B5ABEC4CDD2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft Manifest number: 14C2 Signing time: Mon 29 Dec 2025 06:00:50 +0000 Manifest this update: Mon 29 Dec 2025 06:00:50 +0000 Manifest next update: Tue 30 Dec 2025 06:00:50 +0000 Files and hashes: 1: Rtf3Ok46m4V-jUnqVqrnK78wScU.roa (hash: 5UDxCVwkQxutl6l/6ucW6O+828gQteGd8WnS/oyBd0U=) 2: WYkwsfl1LrYxcZc4hOn_dwqrnKU.roa (hash: OFI3Jc8HI7chg6jym9Pd2h5sq7FHfkNT1WJbvujMSAY=) 3: iCGjmu2dpO46tmOdJEUI-h6NIPY.crl (hash: 3VeAZ9JGdZ7Ajl82ziGnRLv8S1SYjDvR8FsBSG+Yu18=) 4: jzZ4tYbzqiuSSftAW3fppDa1Wqc.roa (hash: hnzQ/ndmvGoDKQ41tJpQwJMDQ2yQeCPQibsiuKB0+OU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:68:b1:ef:73:e5:ef:3a:92:03:50:b5:ab:ec:4c:dd:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6 Validity Not Before: Dec 29 06:00:50 2025 GMT Not After : Dec 30 06:00:50 2025 GMT Subject: CN=83c28426f382969a8854a7b73128d63c001130c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:57:df:dd:d1:b8:6c:83:af:66:0c:1e:be:5c: 43:9b:4f:dc:39:ed:a2:05:76:91:62:d5:cd:e5:7a: 50:b5:b0:c1:6c:9a:e0:0e:11:d1:a8:2e:fe:0b:0d: 74:0a:1d:44:a3:ef:dc:e4:87:b9:5b:97:88:a7:7f: 49:0c:ff:1d:fa:18:30:c1:2e:95:fe:26:c8:f6:2b: 0c:db:c5:3b:a7:5c:c9:2c:86:7b:fa:e4:f1:20:4a: 0e:cb:ad:df:f1:bf:20:2d:ed:44:6f:e6:f9:9c:9c: 59:2c:9d:68:95:ac:fe:c9:62:e6:d0:a4:be:b8:3f: 7a:7c:99:a0:d5:94:8f:1e:8c:e9:a6:d2:50:c8:a2: ac:40:60:e4:16:2f:e7:a3:39:23:7e:3a:c0:bf:95: 99:4f:39:5d:04:48:48:48:50:8a:3b:a1:32:b2:a7: 13:b6:53:de:68:dc:26:5f:a5:54:2d:39:39:c7:5d: f2:21:d5:06:39:f1:a9:90:dc:93:0b:bb:26:0c:e0: 59:e4:ec:27:28:df:8f:35:c1:1a:84:08:03:27:e9: 14:1d:5f:6d:8c:64:34:85:ac:21:78:89:c2:e3:80: c7:d0:e4:1c:ef:26:d7:5d:07:79:6e:30:c9:64:5a: a3:e4:6f:b0:45:c2:7d:1f:d3:22:03:e9:be:e9:64: 2b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:C2:84:26:F3:82:96:9A:88:54:A7:B7:31:28:D6:3C:00:11:30:C3 X509v3 Authority Key Identifier: keyid:88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:90:34:a2:af:ed:a7:6f:1a:c8:0b:02:8e:04:1e:75:45:b9: ea:2b:27:0f:03:10:43:af:70:ac:ad:8e:32:c2:ab:41:6b:77: 24:aa:37:c9:17:a2:9e:56:d5:37:ec:6f:17:13:52:14:d6:ad: 2c:95:23:52:cc:b0:d6:f7:d2:3c:07:17:d2:a6:44:19:4c:f1: c9:2a:87:13:1e:51:bd:86:38:0b:6a:3f:85:c2:15:fd:4b:ff: 6f:26:7d:de:94:97:c3:50:49:25:81:31:a8:5f:42:1b:7a:e4: 72:82:c0:82:b2:84:fa:83:39:2c:b9:5f:c2:e8:b1:e1:b7:0b: 1f:81:39:fc:2b:7e:30:60:83:15:af:91:a2:59:07:37:a7:b4: 7f:b0:44:67:c5:93:19:f7:d5:27:52:56:14:70:00:3f:eb:18: 0c:06:a8:ae:dd:03:b5:14:dc:5b:63:8b:38:09:2b:41:30:51: 44:53:28:01:2f:71:c0:2e:f2:27:4b:84:ba:a6:4b:93:10:1d: 47:6d:46:d9:e1:fc:e3:68:02:cd:00:59:ca:4c:d0:1a:dc:e4: 81:3b:03:e9:59:82:71:a5:7f:dd:17:8d:0f:3c:fe:a0:0e:ce: af:ba:54:f7:c1:49:c1:6c:46:ad:08:92:90:d3:80:12:5d:99: 90:aa:57:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtose9z5e86kgNQtavsTN0uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4MjFhMzlhZWQ5ZGE0ZWUzYWI2NjM5ZDI0NDUwOGZhMWU4 ZDIwZjYwHhcNMjUxMjI5MDYwMDUwWhcNMjUxMjMwMDYwMDUwWjAzMTEwLwYDVQQD Eyg4M2MyODQyNmYzODI5NjlhODg1NGE3YjczMTI4ZDYzYzAwMTEzMGMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmFff3dG4bIOvZgwevlxDm0/cOe2i BXaRYtXN5XpQtbDBbJrgDhHRqC7+Cw10Ch1Eo+/c5Ie5W5eIp39JDP8d+hgwwS6V /ibI9isM28U7p1zJLIZ7+uTxIEoOy63f8b8gLe1Eb+b5nJxZLJ1olaz+yWLm0KS+ uD96fJmg1ZSPHozpptJQyKKsQGDkFi/nozkjfjrAv5WZTzldBEhISFCKO6EysqcT tlPeaNwmX6VULTk5x13yIdUGOfGpkNyTC7smDOBZ5OwnKN+PNcEahAgDJ+kUHV9t jGQ0hawheInC44DH0OQc7ybXXQd5bjDJZFqj5G+wRcJ9H9MiA+m+6WQrCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIPChCbzgpaaiFSntzEo1jwAETDDMB8GA1UdIwQY MBaAFIgho5rtnaTuOrZjnSRFCPoejSD2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUNHam11MmRwTzQ2dG1PZEpFVUktaDZOSVBZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC80OTY3NzMtNTAxOC00OGRjLWEyNDAt ZjYwZDZmNzE4MmExLzEvaUNHam11MmRwTzQ2dG1PZEpFVUktaDZOSVBZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC80OTY3NzMtNTAxOC00OGRjLWEyNDAtZjYwZDZmNzE4MmEx LzEvaUNHam11MmRwTzQ2dG1PZEpFVUktaDZOSVBZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj5A0oq/t p28ayAsCjgQedUW56isnDwMQQ69wrK2OMsKrQWt3JKo3yReinlbVN+xvFxNSFNat LJUjUsyw1vfSPAcX0qZEGUzxySqHEx5RvYY4C2o/hcIV/Uv/byZ93pSXw1BJJYEx qF9CG3rkcoLAgrKE+oM5LLlfwuix4bcLH4E5/Ct+MGCDFa+RolkHN6e0f7BEZ8WT GffVJ1JWFHAAP+sYDAaort0DtRTcW2OLOAkrQTBRRFMoAS9xwC7yJ0uEuqZLkxAd R21G2eH842gCzQBZykzQGtzkgTsD6VmCcaV/3ReNDzz+oA7Or7pU98FJwWxGrQiS kNOAEl2ZkKpXqA== -----END CERTIFICATE-----Generated at Mon Dec 29 08:51:41 2025 by rpki-client