This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft File: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft (raw, json) Hash identifier: yFGwu68+sftLJKB0CPRgnnE96aHbRHscnq6jihDvx+M= Subject key identifier: 62:BE:D1:D9:DA:8F:13:9B:3F:0D:31:45:AE:BE:61:DC:4D:D5:8C:3C Authority key identifier: 88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D Certificate issuer: /CN=88a8d325f97b03713342682fc408d53368740e7d Certificate serial: 019B4280751D977C732E2A57C83E6B85B870 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft Manifest number: 1218 Signing time: Sun 21 Dec 2025 20:01:13 +0000 Manifest this update: Sun 21 Dec 2025 20:01:13 +0000 Manifest next update: Mon 22 Dec 2025 20:01:13 +0000 Files and hashes: 1: 1g597y06foQbOFcS_h93SwkhNOQ.roa (hash: TZdC67NT8fkd1drCN7n7TEHOt/q1UG1cqUfoMBev2T4=) 2: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl (hash: rLykgJBbXK0wgVmqlBHEynsCxZmyn5z/CNzKbwmSnBE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 20:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:42:80:75:1d:97:7c:73:2e:2a:57:c8:3e:6b:85:b8:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88a8d325f97b03713342682fc408d53368740e7d Validity Not Before: Dec 21 20:01:13 2025 GMT Not After : Dec 22 20:01:13 2025 GMT Subject: CN=62bed1d9da8f139b3f0d3145aebe61dc4dd58c3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:47:48:27:a1:5b:b8:24:53:fe:4a:9b:83:af: 51:d6:b0:cb:bc:c2:d0:ce:6a:8e:18:d8:71:87:de: a6:34:2c:bf:b1:c6:3d:84:58:7f:40:5b:b8:44:dc: c4:59:f9:31:65:e1:fc:0d:ed:64:5c:5f:90:a3:e4: 2e:78:8f:36:2c:71:b4:4f:9f:61:a0:fa:a5:e9:58: 80:b5:9f:cb:0f:60:d8:8d:13:a4:2e:51:86:f7:fb: 89:6b:f2:ac:4e:df:f9:80:98:51:d4:fb:c7:6f:30: a9:7d:d2:f8:ab:2f:5a:2c:cd:34:fb:04:15:5e:14: 97:2e:ca:e0:01:2b:a0:d2:a0:68:5d:8a:0e:74:33: 97:45:a9:dc:3b:8b:31:53:2f:02:87:b3:9d:74:2f: d6:24:12:82:b2:3a:e3:8d:2a:18:7b:e5:9e:fc:5c: 4b:42:96:60:35:aa:fa:8f:51:44:cf:63:cb:4f:fc: 56:9a:f9:10:d6:16:c9:b7:ef:e0:aa:16:05:e0:ab: ef:b3:31:c9:5f:69:c1:84:49:56:e8:43:92:31:8e: 18:59:85:c6:b7:30:95:4c:d0:d2:99:fc:49:71:73: 1c:72:56:86:ce:7b:3b:94:24:5e:62:3b:d0:30:46: e0:c2:6d:d6:90:5b:4e:7d:64:05:31:33:60:fd:88: c3:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:BE:D1:D9:DA:8F:13:9B:3F:0D:31:45:AE:BE:61:DC:4D:D5:8C:3C X509v3 Authority Key Identifier: keyid:88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:7e:00:f8:18:94:b4:16:9e:b7:c7:75:d6:e3:25:f8:17:c4: 60:6e:15:06:9d:80:0e:2b:2f:79:f6:67:fc:5d:79:34:49:47: 68:2f:14:b4:d9:4f:8f:ee:fc:64:e5:14:23:16:8f:8e:84:d0: 79:3b:3f:05:44:8f:71:cc:5b:4f:d5:9a:c8:4f:d0:d0:d3:e9: 06:07:83:8c:a3:09:19:74:71:53:b2:46:3a:85:a2:e0:35:c6: ab:f0:27:3b:e0:07:5f:7f:ce:7d:9e:4e:78:5e:dc:f2:14:79: ba:17:22:33:07:26:87:10:b7:8a:28:54:29:a5:c2:de:8f:64: 3d:1e:e4:f0:d3:9e:5f:5b:f5:dd:38:8d:a3:f0:0d:7e:43:90: 2b:3f:c4:a4:10:3a:06:24:6f:9f:7b:dc:7e:c9:1f:c2:5e:13: 59:6b:20:95:68:dd:71:28:8c:df:44:92:8b:90:d9:63:74:b4: 4d:bb:bb:bb:e8:34:46:a3:b3:e0:30:35:70:8e:e3:2c:88:fc: 67:16:98:45:62:0f:80:9e:86:a5:e1:03:7b:a2:a9:32:3e:fe: 78:cb:5d:3d:24:32:f3:9e:3d:c0:fd:f5:a3:f7:37:06:88:ba: 1c:f3:1f:0d:8f:e1:6d:ba:56:44:87:7c:7f:91:0e:4e:08:63: 98:1f:fb:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtCgHUdl3xzLipXyD5rhbhwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4YThkMzI1Zjk3YjAzNzEzMzQyNjgyZmM0MDhkNTMzNjg3 NDBlN2QwHhcNMjUxMjIxMjAwMTEzWhcNMjUxMjIyMjAwMTEzWjAzMTEwLwYDVQQD Eyg2MmJlZDFkOWRhOGYxMzliM2YwZDMxNDVhZWJlNjFkYzRkZDU4YzNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2UdIJ6FbuCRT/kqbg69R1rDLvMLQ zmqOGNhxh96mNCy/scY9hFh/QFu4RNzEWfkxZeH8De1kXF+Qo+QueI82LHG0T59h oPql6ViAtZ/LD2DYjROkLlGG9/uJa/KsTt/5gJhR1PvHbzCpfdL4qy9aLM00+wQV XhSXLsrgASug0qBoXYoOdDOXRancO4sxUy8Ch7OddC/WJBKCsjrjjSoYe+We/FxL QpZgNar6j1FEz2PLT/xWmvkQ1hbJt+/gqhYF4KvvszHJX2nBhElW6EOSMY4YWYXG tzCVTNDSmfxJcXMcclaGzns7lCReYjvQMEbgwm3WkFtOfWQFMTNg/YjDKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGK+0dnajxObPw0xRa6+YdxN1Yw8MB8GA1UdIwQY MBaAFIio0yX5ewNxM0JoL8QI1TNodA59MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUtqVEpmbDdBM0V6UW1ndnhBalZNMmgwRG4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy82NDViYjItZmMzNC00MjliLWE3ZjAt Y2YwM2ZhNGNhMDgzLzEvaUtqVEpmbDdBM0V6UW1ndnhBalZNMmgwRG4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy82NDViYjItZmMzNC00MjliLWE3ZjAtY2YwM2ZhNGNhMDgz LzEvaUtqVEpmbDdBM0V6UW1ndnhBalZNMmgwRG4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf34A+BiU tBaet8d11uMl+BfEYG4VBp2ADisvefZn/F15NElHaC8UtNlPj+78ZOUUIxaPjoTQ eTs/BUSPccxbT9WayE/Q0NPpBgeDjKMJGXRxU7JGOoWi4DXGq/AnO+AHX3/OfZ5O eF7c8hR5uhciMwcmhxC3iihUKaXC3o9kPR7k8NOeX1v13TiNo/ANfkOQKz/EpBA6 BiRvn3vcfskfwl4TWWsglWjdcSiM30SSi5DZY3S0Tbu7u+g0RqOz4DA1cI7jLIj8 ZxaYRWIPgJ6GpeEDe6KpMj7+eMtdPSQy8549wP31o/c3Boi6HPMfDY/hbbpWRId8 f5EOTghjmB/7uA== -----END CERTIFICATE-----Generated at Mon Dec 22 02:09:34 2025 by rpki-client