This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft File: Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft (raw, json) Hash identifier: MjMmd08gDVB2qbSfidqwdjSkMDrVYMHFRY9otz6g2sA= Subject key identifier: 65:40:40:A5:F5:60:B6:02:A2:CA:1B:17:03:FD:A7:7A:CE:99:AE:41 Authority key identifier: 22:0F:41:3F:B0:AF:0B:D8:FE:13:08:20:D3:04:9D:0E:71:ED:4B:B0 Certificate issuer: /CN=220f413fb0af0bd8fe130820d3049d0e71ed4bb0 Certificate serial: 019B37FCFAB22243C14FFC4FA9633E705D97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft Manifest number: 178B Signing time: Fri 19 Dec 2025 19:01:24 +0000 Manifest this update: Fri 19 Dec 2025 19:01:24 +0000 Manifest next update: Sat 20 Dec 2025 19:01:24 +0000 Files and hashes: 1: DE9IUhyQDVKAZFd3LetU9Q2xs6k.roa (hash: 4yKIJoSmqEpGXf1pIollJ7FnnZ1pkmaGTlVLtjz3pSc=) 2: H8-4BKw4Tio0v7fBDDkOvu0xYf0.roa (hash: KAd/cINuj3Zmkb8yZBl9rfV147mzpewaBmWKPtSwHrI=) 3: Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.crl (hash: WiY4/mH9i2j513+oxGlZvPQNM8qzypMsbxUrxFTLCz8=) 4: j_UhRom1_CjoZ8ktPpSsCzemlX0.roa (hash: p3RE9tXJ28D2EkcXNDeylKcBqqXVLJJQRP9qM16ttXI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.crl rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:37:fc:fa:b2:22:43:c1:4f:fc:4f:a9:63:3e:70:5d:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=220f413fb0af0bd8fe130820d3049d0e71ed4bb0 Validity Not Before: Dec 19 19:01:24 2025 GMT Not After : Dec 20 19:01:24 2025 GMT Subject: CN=654040a5f560b602a2ca1b1703fda77ace99ae41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:3e:38:a2:1e:a8:f3:37:58:5b:76:2e:60:b1: 5a:08:c9:14:89:29:b8:9d:3f:52:3a:f8:52:aa:a9: 20:67:1f:53:76:02:e2:e5:23:0e:b4:77:60:f1:73: a7:27:f7:0f:e0:bf:bc:cc:0b:bf:24:e4:42:e9:82: 9d:a7:15:d2:81:83:38:c8:eb:a0:2f:ea:46:25:fb: 8f:5f:ee:19:90:b9:8e:4b:20:35:f5:33:41:35:7c: 22:54:b2:73:4f:20:87:c9:c3:b9:31:b6:85:cb:ad: c6:37:28:02:fa:66:7b:a3:b5:4e:f2:ca:ff:c4:88: b2:6c:86:12:35:71:7f:30:1f:13:0b:fc:b1:b1:d7: ef:e1:8b:54:51:ea:7f:42:de:22:1a:9f:04:53:d6: eb:ac:53:db:36:b7:a5:58:81:f7:45:c5:08:4d:22: 1a:49:c3:bb:70:b4:11:ac:b5:6b:3f:3f:8e:21:90: 2a:24:9d:e1:b9:1b:c4:dd:d5:84:ef:53:4b:71:30: 60:af:d2:a7:47:a2:ef:43:7d:4d:7f:ea:98:a6:2c: fe:02:9e:66:74:75:84:eb:11:0a:bb:fe:34:11:18: 9e:ac:41:38:d4:e9:f3:8e:58:4a:11:3e:53:52:c2: b0:ae:b1:09:0d:11:4a:65:3e:31:22:98:25:cf:8c: 7e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:40:40:A5:F5:60:B6:02:A2:CA:1B:17:03:FD:A7:7A:CE:99:AE:41 X509v3 Authority Key Identifier: keyid:22:0F:41:3F:B0:AF:0B:D8:FE:13:08:20:D3:04:9D:0E:71:ED:4B:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:3b:e0:57:fc:52:f0:b8:1b:02:63:d8:aa:d2:32:e8:e0:40: 12:4f:96:99:25:70:ff:d3:4b:2c:8e:85:41:48:0b:dc:27:c3: 35:7a:f4:60:50:d1:d3:57:0e:26:34:cb:35:2b:3f:0e:c2:5c: 91:b8:54:e2:93:47:15:74:40:a5:80:7a:67:11:72:ab:0d:3f: ae:7c:f9:f2:aa:4a:df:0e:eb:e3:f4:c6:2e:e2:4d:13:f8:8e: ed:3d:2b:36:7a:3d:25:0b:e3:2b:37:57:9c:2e:74:94:8a:37: e0:0d:ba:c2:23:a4:45:86:78:4d:2a:0d:01:f5:bd:e4:b1:78: 00:00:85:c0:19:07:ee:7a:60:4e:e7:81:20:1d:a2:94:1c:10: 2d:48:d3:69:0b:46:47:99:d4:e1:28:a4:3e:35:84:2d:be:b3: 96:e9:b4:38:19:ae:34:9f:0e:a9:f8:8b:92:b0:80:30:91:10: 43:81:d3:83:db:e3:b0:81:8b:21:1c:77:4c:74:97:f3:75:14: 7a:83:06:e9:1b:3f:3f:26:46:4b:47:ba:06:cc:fd:9f:95:cb: fc:24:59:22:79:61:c0:48:34:25:b6:8a:cd:0e:c7:3e:46:71: 7f:3b:9c:b2:85:f8:80:af:14:3b:d7:2a:43:c2:48:61:5f:ef: 41:dc:27:5d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs3/PqyIkPBT/xPqWM+cF2XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyMGY0MTNmYjBhZjBiZDhmZTEzMDgyMGQzMDQ5ZDBlNzFl ZDRiYjAwHhcNMjUxMjE5MTkwMTI0WhcNMjUxMjIwMTkwMTI0WjAzMTEwLwYDVQQD Eyg2NTQwNDBhNWY1NjBiNjAyYTJjYTFiMTcwM2ZkYTc3YWNlOTlhZTQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAij44oh6o8zdYW3YuYLFaCMkUiSm4 nT9SOvhSqqkgZx9TdgLi5SMOtHdg8XOnJ/cP4L+8zAu/JORC6YKdpxXSgYM4yOug L+pGJfuPX+4ZkLmOSyA19TNBNXwiVLJzTyCHycO5MbaFy63GNygC+mZ7o7VO8sr/ xIiybIYSNXF/MB8TC/yxsdfv4YtUUep/Qt4iGp8EU9brrFPbNrelWIH3RcUITSIa ScO7cLQRrLVrPz+OIZAqJJ3huRvE3dWE71NLcTBgr9KnR6LvQ31Nf+qYpiz+Ap5m dHWE6xEKu/40ERierEE41OnzjlhKET5TUsKwrrEJDRFKZT4xIpglz4x+ZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGVAQKX1YLYCosobFwP9p3rOma5BMB8GA1UdIwQY MBaAFCIPQT+wrwvY/hMIINMEnQ5x7UuwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWc5QlA3Q3ZDOWotRXdnZzB3U2REbkh0UzdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjM1N2QtYjE3MC00MGE1LWE2Njkt ODJlYmEwY2IzYjBkLzEvSWc5QlA3Q3ZDOWotRXdnZzB3U2REbkh0UzdBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9kYjM1N2QtYjE3MC00MGE1LWE2NjktODJlYmEwY2IzYjBk LzEvSWc5QlA3Q3ZDOWotRXdnZzB3U2REbkh0UzdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiDvgV/xS 8LgbAmPYqtIy6OBAEk+WmSVw/9NLLI6FQUgL3CfDNXr0YFDR01cOJjTLNSs/DsJc kbhU4pNHFXRApYB6ZxFyqw0/rnz58qpK3w7r4/TGLuJNE/iO7T0rNno9JQvjKzdX nC50lIo34A26wiOkRYZ4TSoNAfW95LF4AACFwBkH7npgTueBIB2ilBwQLUjTaQtG R5nU4SikPjWELb6zlum0OBmuNJ8OqfiLkrCAMJEQQ4HTg9vjsIGLIRx3THSX83UU eoMG6Rs/PyZGS0e6Bsz9n5XL/CRZInlhwEg0JbaKzQ7HPkZxfzucsoX4gK8UO9cq Q8JIYV/vQdwnXQ== -----END CERTIFICATE-----Generated at Fri Dec 19 23:29:12 2025 by rpki-client