This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft File: I9FK_odQITwoDltovvsYhm95SX8.mft (raw, json) Hash identifier: EDGSthAdxuebl9H9BrxrM8lMu6zLph3sYRdferm3NJ0= Subject key identifier: D9:7E:6D:C9:A1:66:D6:A0:C8:01:54:DB:EC:39:BC:DA:09:6E:F3:4C Authority key identifier: 23:D1:4A:FE:87:50:21:3C:28:0E:5B:68:BE:FB:18:86:6F:79:49:7F Certificate issuer: /CN=23d14afe8750213c280e5b68befb18866f79497f Certificate serial: 019B4A03B671F9164FE5F6327E77321BD9BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft Manifest number: 0410 Signing time: Tue 23 Dec 2025 07:01:55 +0000 Manifest this update: Tue 23 Dec 2025 07:01:55 +0000 Manifest next update: Wed 24 Dec 2025 07:01:55 +0000 Files and hashes: 1: I9FK_odQITwoDltovvsYhm95SX8.crl (hash: xFp+mui3SIcIrqqi/417GOJdD4+yFvbyJm5xPK4id3E=) 2: bfd_WpvacXpVJP__dq6vej5IyyY.roa (hash: /B+pNt8vIwVV5x8COrKPeKukz7hh0c0T1g3kvtIg6Z0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.crl rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 07:01:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4a:03:b6:71:f9:16:4f:e5:f6:32:7e:77:32:1b:d9:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23d14afe8750213c280e5b68befb18866f79497f Validity Not Before: Dec 23 07:01:55 2025 GMT Not After : Dec 24 07:01:55 2025 GMT Subject: CN=d97e6dc9a166d6a0c80154dbec39bcda096ef34c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:93:10:f1:89:88:0e:39:4f:b7:c3:f2:8e:a9: 42:28:cf:ee:f4:e3:1c:73:b7:2c:e7:3f:80:ee:27: 7b:46:6c:0c:9d:01:94:11:b0:ff:f9:aa:9f:94:cf: 2a:83:45:62:3f:3d:e3:6b:bd:32:38:f2:2f:29:1d: 7c:27:53:00:05:8c:ee:82:76:3c:2d:05:5c:a4:a8: ec:2a:36:0b:45:18:24:75:88:76:6b:f7:8d:69:1f: 91:38:6e:56:bc:35:7c:49:83:3e:01:a7:64:75:ce: 8e:e9:66:98:43:e9:cb:b3:1b:bd:e6:36:33:5f:cb: b1:64:d7:d5:83:13:99:0b:f2:80:a9:1f:3a:15:fd: 45:e9:34:10:b3:ba:43:5e:9e:e1:60:11:f2:c1:00: c0:15:ce:8e:23:13:63:f7:59:41:70:6f:4d:42:70: d1:8a:7c:ad:2a:34:62:d3:ff:23:c0:c0:b4:96:9a: 16:4f:73:53:8f:93:38:f5:a7:74:3f:4b:8d:9f:a4: b3:ef:64:be:81:87:c3:44:5c:e2:e9:e2:78:2a:1b: 16:ab:63:b3:72:b1:04:5d:90:8b:8e:a3:e7:04:9d: 0b:bb:47:82:84:a3:ef:22:fc:35:9d:d3:d8:c7:86: 16:9a:a5:2e:1b:3f:69:2a:de:62:b3:a6:c2:33:c0: ce:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:7E:6D:C9:A1:66:D6:A0:C8:01:54:DB:EC:39:BC:DA:09:6E:F3:4C X509v3 Authority Key Identifier: keyid:23:D1:4A:FE:87:50:21:3C:28:0E:5B:68:BE:FB:18:86:6F:79:49:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:26:78:b6:33:a5:4d:60:47:4c:24:27:cc:0c:07:ba:8d:d6: e2:0e:df:38:89:a9:b4:82:33:0c:f6:1e:46:c8:bc:ff:b1:3f: a1:7e:fd:97:4e:c1:59:cd:72:a7:58:a7:63:d5:b7:75:26:97: 62:12:5f:89:84:af:d0:40:fa:82:23:26:72:80:2a:38:21:cb: 35:d0:65:86:ec:8d:c8:9a:d3:a4:dc:8e:11:37:9f:b1:f7:55: 1d:d9:e1:09:08:ab:37:60:54:e0:b7:f1:80:bf:55:dd:66:7a: 3b:e3:08:f6:f7:52:d0:c6:de:d4:f1:d2:87:1a:1d:46:2f:3b: d3:56:6a:54:a3:50:19:9e:bc:6c:25:64:7e:47:79:1e:f8:94: 1d:ba:e6:fe:92:82:71:c2:b4:8a:af:0f:be:54:78:b6:ea:73: 6b:21:85:bc:41:d5:02:06:64:ef:eb:72:89:73:f8:64:c3:82: 92:7f:d5:98:12:db:38:b5:5a:2d:41:f9:34:b6:de:ac:39:07: b7:bf:14:0e:99:b6:d4:1d:49:fd:09:d5:df:6e:f6:4d:f4:dd: 7e:d2:b2:1c:98:18:a9:8d:f7:d6:a4:85:83:11:84:e6:ee:d4: 06:ad:19:9c:d7:a6:a9:4a:a4:3f:9e:ab:d5:60:0a:b3:d1:f5: 78:bb:15:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtKA7Zx+RZP5fYyfncyG9m8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzZDE0YWZlODc1MDIxM2MyODBlNWI2OGJlZmIxODg2NmY3 OTQ5N2YwHhcNMjUxMjIzMDcwMTU1WhcNMjUxMjI0MDcwMTU1WjAzMTEwLwYDVQQD EyhkOTdlNmRjOWExNjZkNmEwYzgwMTU0ZGJlYzM5YmNkYTA5NmVmMzRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApJMQ8YmIDjlPt8PyjqlCKM/u9OMc c7cs5z+A7id7RmwMnQGUEbD/+aqflM8qg0ViPz3ja70yOPIvKR18J1MABYzugnY8 LQVcpKjsKjYLRRgkdYh2a/eNaR+ROG5WvDV8SYM+Aadkdc6O6WaYQ+nLsxu95jYz X8uxZNfVgxOZC/KAqR86Ff1F6TQQs7pDXp7hYBHywQDAFc6OIxNj91lBcG9NQnDR inytKjRi0/8jwMC0lpoWT3NTj5M49ad0P0uNn6Sz72S+gYfDRFzi6eJ4KhsWq2Oz crEEXZCLjqPnBJ0Lu0eChKPvIvw1ndPYx4YWmqUuGz9pKt5is6bCM8DOAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNl+bcmhZtagyAFU2+w5vNoJbvNMMB8GA1UdIwQY MBaAFCPRSv6HUCE8KA5baL77GIZveUl/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTlGS19vZFFJVHdvRGx0b3Z2c1lobTk1U1g4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS84OWY4NDUtNTc2NS00YzExLTkyY2Qt ODQ3MmNhNDBmN2E3LzEvSTlGS19vZFFJVHdvRGx0b3Z2c1lobTk1U1g4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS84OWY4NDUtNTc2NS00YzExLTkyY2QtODQ3MmNhNDBmN2E3 LzEvSTlGS19vZFFJVHdvRGx0b3Z2c1lobTk1U1g4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGiZ4tjOl TWBHTCQnzAwHuo3W4g7fOImptIIzDPYeRsi8/7E/oX79l07BWc1yp1inY9W3dSaX YhJfiYSv0ED6giMmcoAqOCHLNdBlhuyNyJrTpNyOETefsfdVHdnhCQirN2BU4Lfx gL9V3WZ6O+MI9vdS0Mbe1PHShxodRi8701ZqVKNQGZ68bCVkfkd5HviUHbrm/pKC ccK0iq8PvlR4tupzayGFvEHVAgZk7+tyiXP4ZMOCkn/VmBLbOLVaLUH5NLberDkH t78UDpm21B1J/QnV3272TfTdftKyHJgYqY331qSFgxGE5u7UBq0ZnNemqUqkP56r 1WAKs9H1eLsVsg== -----END CERTIFICATE-----Generated at Tue Dec 23 12:38:48 2025 by rpki-client