This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.mft File: Icc6XY7GO-1lijj1wm8ZH91035I.mft (raw, json) Hash identifier: arWnPegf4cErbTvF6IFzz/y65DBnmloZVQLDAmH001g= Subject key identifier: 54:73:6C:E9:22:DC:42:15:6E:63:43:D5:6D:D4:AB:CA:52:6B:E4:B1 Authority key identifier: 21:C7:3A:5D:8E:C6:3B:ED:65:8A:38:F5:C2:6F:19:1F:DD:74:DF:92 Certificate issuer: /CN=21c73a5d8ec63bed658a38f5c26f191fdd74df92 Certificate serial: 019B3EDACC90A0AF442AD197BD3B02A38E80 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Icc6XY7GO-1lijj1wm8ZH91035I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.mft Manifest number: 178B Signing time: Sun 21 Dec 2025 03:01:25 +0000 Manifest this update: Sun 21 Dec 2025 03:01:25 +0000 Manifest next update: Mon 22 Dec 2025 03:01:25 +0000 Files and hashes: 1: 745x39IaKKbeM9M_OPciAoFxiI4.roa (hash: rIEFd72FIecG2+TT+EkabaQ2rf6+UODC9a0hMUMdVO0=) 2: Icc6XY7GO-1lijj1wm8ZH91035I.crl (hash: mhGciGFAFlUqV5k7hbscM0f9PGzxmnTB0B/m5SWvIUk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.mft rsync://rpki.ripe.net/repository/DEFAULT/Icc6XY7GO-1lijj1wm8ZH91035I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:da:cc:90:a0:af:44:2a:d1:97:bd:3b:02:a3:8e:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21c73a5d8ec63bed658a38f5c26f191fdd74df92 Validity Not Before: Dec 21 03:01:25 2025 GMT Not After : Dec 22 03:01:25 2025 GMT Subject: CN=54736ce922dc42156e6343d56dd4abca526be4b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fa:53:74:a1:b3:86:2e:90:cc:7a:09:c7:95: 37:b3:6a:33:64:c0:14:53:d8:88:03:fb:bb:17:c5: e0:d7:ea:49:78:c4:37:d5:4f:1e:15:fb:ef:a6:5c: 87:93:65:d5:48:e6:61:37:34:4c:79:35:7c:0d:fa: db:c5:e4:98:e6:4e:0e:af:7c:53:6e:ee:1b:9e:9b: 5d:89:44:11:14:c7:d2:e4:39:34:fc:d7:eb:cc:f4: 0c:d0:39:48:85:fe:29:aa:be:13:2e:0f:51:38:23: b1:1b:94:ad:df:1d:ef:b7:b4:04:be:34:51:8f:cd: 57:55:c9:88:1d:59:4b:5b:ee:f8:27:ed:29:5c:c4: ec:e6:a5:03:6e:d7:ec:d5:9b:1f:25:f9:28:26:32: 71:af:cc:6b:1a:99:5b:ac:bf:03:8a:e6:30:c0:f3: 31:e5:7d:5f:ed:1c:f2:2e:a8:ec:b8:04:06:45:57: 47:32:a1:bb:0c:a6:24:02:75:14:b9:58:b4:ee:45: 17:d1:4c:3c:2e:14:4a:57:58:32:61:4f:2e:83:68: 6e:37:71:2f:a9:f0:10:06:73:c7:d3:fb:26:5e:32: cb:08:b7:d8:94:87:8c:94:61:b8:90:f5:02:78:68: 98:0a:a1:c5:9b:c5:e6:4e:91:cc:81:63:0d:74:a9: 9a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:73:6C:E9:22:DC:42:15:6E:63:43:D5:6D:D4:AB:CA:52:6B:E4:B1 X509v3 Authority Key Identifier: keyid:21:C7:3A:5D:8E:C6:3B:ED:65:8A:38:F5:C2:6F:19:1F:DD:74:DF:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Icc6XY7GO-1lijj1wm8ZH91035I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:30:8c:5e:d7:cf:a2:8e:e2:02:ff:9c:ed:27:54:b3:92:77: 3d:27:99:b7:33:58:49:a6:32:21:a7:15:84:b2:a9:84:01:4e: 9d:b0:ce:3a:a3:07:3e:80:59:2a:12:b5:5b:b2:1a:a8:51:df: df:85:2a:d9:25:1d:b2:08:60:5c:73:9c:5d:f8:dd:e4:30:6b: c6:e8:f1:db:55:1c:a8:89:98:a6:2f:86:44:1b:6c:2f:65:02: 04:72:62:dd:a6:81:48:ba:be:e4:0f:93:82:d1:da:fb:bc:8e: a6:ca:2e:46:33:48:12:82:e5:e2:13:db:f7:b8:c2:73:2e:42: 45:72:0f:11:e2:0a:8b:09:1f:dd:7f:af:a6:e2:a4:58:78:ec: e9:25:25:d7:11:c5:f8:06:ba:20:1c:92:3b:a2:26:5c:63:3f: 57:ff:eb:5d:6e:86:dc:de:0f:96:cf:df:da:2e:5e:51:78:24: aa:ec:53:05:5b:db:2f:1e:e4:5b:d7:9c:05:04:cd:90:bb:7c: 7d:b5:e9:f7:52:74:97:25:3a:19:d8:4e:e1:69:f9:8c:65:4a: fe:b0:5a:05:40:59:ae:72:ec:6c:32:10:f4:e1:69:18:5f:2e: 6a:4c:21:32:cf:08:8d:85:4e:17:c6:80:a7:a9:20:38:8c:d8: fd:57:73:50 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+2syQoK9EKtGXvTsCo46AMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxYzczYTVkOGVjNjNiZWQ2NThhMzhmNWMyNmYxOTFmZGQ3 NGRmOTIwHhcNMjUxMjIxMDMwMTI1WhcNMjUxMjIyMDMwMTI1WjAzMTEwLwYDVQQD Eyg1NDczNmNlOTIyZGM0MjE1NmU2MzQzZDU2ZGQ0YWJjYTUyNmJlNGIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtPpTdKGzhi6QzHoJx5U3s2ozZMAU U9iIA/u7F8Xg1+pJeMQ31U8eFfvvplyHk2XVSOZhNzRMeTV8DfrbxeSY5k4Or3xT bu4bnptdiUQRFMfS5Dk0/NfrzPQM0DlIhf4pqr4TLg9ROCOxG5St3x3vt7QEvjRR j81XVcmIHVlLW+74J+0pXMTs5qUDbtfs1ZsfJfkoJjJxr8xrGplbrL8DiuYwwPMx 5X1f7RzyLqjsuAQGRVdHMqG7DKYkAnUUuVi07kUX0Uw8LhRKV1gyYU8ug2huN3Ev qfAQBnPH0/smXjLLCLfYlIeMlGG4kPUCeGiYCqHFm8XmTpHMgWMNdKmauQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFRzbOki3EIVbmND1W3Uq8pSa+SxMB8GA1UdIwQY MBaAFCHHOl2OxjvtZYo49cJvGR/ddN+SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWNjNlhZN0dPLTFsaWpqMXdtOFpIOTEwMzVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi9mODUwZWMtOTk1NC00ODVjLWFhMGIt ZmQxMjBjMzFkYTcyLzEvSWNjNlhZN0dPLTFsaWpqMXdtOFpIOTEwMzVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi9mODUwZWMtOTk1NC00ODVjLWFhMGItZmQxMjBjMzFkYTcy LzEvSWNjNlhZN0dPLTFsaWpqMXdtOFpIOTEwMzVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKjCMXtfP oo7iAv+c7SdUs5J3PSeZtzNYSaYyIacVhLKphAFOnbDOOqMHPoBZKhK1W7IaqFHf 34Uq2SUdsghgXHOcXfjd5DBrxujx21UcqImYpi+GRBtsL2UCBHJi3aaBSLq+5A+T gtHa+7yOpsouRjNIEoLl4hPb97jCcy5CRXIPEeIKiwkf3X+vpuKkWHjs6SUl1xHF +Aa6IBySO6ImXGM/V//rXW6G3N4Pls/f2i5eUXgkquxTBVvbLx7kW9ecBQTNkLt8 fbXp91J0lyU6GdhO4Wn5jGVK/rBaBUBZrnLsbDIQ9OFpGF8uakwhMs8IjYVOF8aA p6kgOIzY/VdzUA== -----END CERTIFICATE-----Generated at Sun Dec 21 05:52:48 2025 by rpki-client