This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/b18080-e3c9-4114-a174-c3d6c7c8ba8a/1/I0AYtVE7d50uHjrBqGpZO92XTKc.mft File: I0AYtVE7d50uHjrBqGpZO92XTKc.mft (raw, json) Hash identifier: 4s+sARPhM6nYTNACtejald/PfLhnb9qB8oIiAH3ZzW0= Subject key identifier: FE:FB:E3:0C:A1:49:1F:DC:49:34:BD:F6:F1:7D:B1:FA:EA:CD:4A:7C Authority key identifier: 23:40:18:B5:51:3B:77:9D:2E:1E:3A:C1:A8:6A:59:3B:DD:97:4C:A7 Certificate issuer: /CN=234018b5513b779d2e1e3ac1a86a593bdd974ca7 Certificate serial: 019B522A91C99003B13655660FD237DAEE0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I0AYtVE7d50uHjrBqGpZO92XTKc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/b18080-e3c9-4114-a174-c3d6c7c8ba8a/1/I0AYtVE7d50uHjrBqGpZO92XTKc.mft Manifest number: 0374 Signing time: Wed 24 Dec 2025 21:01:20 +0000 Manifest this update: Wed 24 Dec 2025 21:01:20 +0000 Manifest next update: Thu 25 Dec 2025 21:01:20 +0000 Files and hashes: 1: I0AYtVE7d50uHjrBqGpZO92XTKc.crl (hash: E+YVypQ1gyWCdgjneSujRGYT4muDCnHkXM3Q9Lekpv0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/b18080-e3c9-4114-a174-c3d6c7c8ba8a/1/I0AYtVE7d50uHjrBqGpZO92XTKc.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/b18080-e3c9-4114-a174-c3d6c7c8ba8a/1/I0AYtVE7d50uHjrBqGpZO92XTKc.mft rsync://rpki.ripe.net/repository/DEFAULT/I0AYtVE7d50uHjrBqGpZO92XTKc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:52:2a:91:c9:90:03:b1:36:55:66:0f:d2:37:da:ee:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=234018b5513b779d2e1e3ac1a86a593bdd974ca7 Validity Not Before: Dec 24 21:01:20 2025 GMT Not After : Dec 25 21:01:20 2025 GMT Subject: CN=fefbe30ca1491fdc4934bdf6f17db1faeacd4a7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:35:43:94:18:c1:e9:0d:33:92:99:04:4c:c1: b5:4c:29:0a:8a:3d:b9:f9:7d:3e:f6:6d:78:e8:eb: f6:b4:0e:33:21:08:f5:d8:a5:e2:a9:ec:0b:e1:bd: 40:78:d6:07:e7:59:fc:1f:23:82:07:8f:ff:d1:96: d3:a0:6f:cf:15:be:c3:7f:6d:e9:d4:a2:11:e9:64: c0:2a:92:a9:d9:37:fe:d0:c2:8b:6d:1f:fe:5d:29: e3:11:4f:e7:bc:85:55:86:12:61:c9:0f:5d:48:73: cf:e1:1a:27:ad:c8:d1:9d:b6:e9:fd:e0:5a:7c:3b: 9a:61:e0:ff:61:6c:b6:2e:56:b9:3b:d3:77:1d:74: 08:a6:5c:11:5d:e2:68:31:0a:99:25:f4:85:b4:57: 8c:f5:28:80:2f:e9:e6:a8:f0:eb:58:5c:1a:21:1b: cb:1e:57:95:21:de:81:96:16:c4:b7:6f:da:88:01: 26:7c:b4:59:80:81:44:7c:c4:a2:3f:b1:dc:3e:2f: 76:72:80:06:92:ee:bf:57:1b:6a:00:01:c0:0c:c7: e5:8f:01:6a:39:dd:49:a0:ef:85:c3:15:fd:67:d7: e3:b8:56:a0:70:91:24:d3:8b:43:d2:44:cd:1d:53: 57:a9:3c:bb:0b:48:a1:7f:3e:fa:b8:1f:48:21:6a: c7:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:FB:E3:0C:A1:49:1F:DC:49:34:BD:F6:F1:7D:B1:FA:EA:CD:4A:7C X509v3 Authority Key Identifier: keyid:23:40:18:B5:51:3B:77:9D:2E:1E:3A:C1:A8:6A:59:3B:DD:97:4C:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I0AYtVE7d50uHjrBqGpZO92XTKc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/b18080-e3c9-4114-a174-c3d6c7c8ba8a/1/I0AYtVE7d50uHjrBqGpZO92XTKc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/b18080-e3c9-4114-a174-c3d6c7c8ba8a/1/I0AYtVE7d50uHjrBqGpZO92XTKc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:88:a1:84:8b:1b:a7:8b:3d:1c:e5:cd:90:24:e9:8d:8e:1f: 27:28:92:1b:f2:3a:e1:18:83:b0:36:fe:3d:fd:bf:88:39:ea: ac:f7:ff:19:c1:3b:f8:b9:25:ed:49:56:ae:34:d0:c8:ca:3c: 23:41:c9:e0:1e:bc:4c:46:65:1c:62:ff:f7:d1:67:53:e6:f4: e1:8b:0a:18:67:fe:19:47:a0:66:80:f1:ec:2d:6f:0f:40:dd: b3:7b:9e:e5:eb:d2:cc:c7:31:f9:23:d2:25:1f:6f:29:1b:fa: b4:65:e8:de:86:3f:68:d8:86:30:7f:fa:e5:0c:17:31:36:52: 9a:ab:7f:3c:d7:a7:41:ae:77:66:22:7e:97:c4:92:24:41:37: aa:cd:ee:ba:8d:4c:e2:99:73:5a:29:33:c0:d5:37:b9:e5:a5: 34:62:84:5a:95:d4:35:ee:ba:3d:03:16:c1:41:04:da:90:17: 3d:ec:ff:9b:14:59:3e:10:06:ca:4d:2a:2d:de:ef:73:b2:d3: 8f:fe:58:1c:d6:cb:a8:2d:2b:4a:74:6e:5b:9e:9e:38:00:32: e3:1b:da:a3:03:3d:ac:78:0f:44:60:96:0b:11:b6:9c:27:e3: 58:9b:f7:ec:06:77:c2:bf:68:4e:6c:de:6b:52:c9:6c:f0:91: 51:b4:13:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtSKpHJkAOxNlVmD9I32u4MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzNDAxOGI1NTEzYjc3OWQyZTFlM2FjMWE4NmE1OTNiZGQ5 NzRjYTcwHhcNMjUxMjI0MjEwMTIwWhcNMjUxMjI1MjEwMTIwWjAzMTEwLwYDVQQD EyhmZWZiZTMwY2ExNDkxZmRjNDkzNGJkZjZmMTdkYjFmYWVhY2Q0YTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0zVDlBjB6Q0zkpkETMG1TCkKij25 +X0+9m146Ov2tA4zIQj12KXiqewL4b1AeNYH51n8HyOCB4//0ZbToG/PFb7Df23p 1KIR6WTAKpKp2Tf+0MKLbR/+XSnjEU/nvIVVhhJhyQ9dSHPP4RonrcjRnbbp/eBa fDuaYeD/YWy2Lla5O9N3HXQIplwRXeJoMQqZJfSFtFeM9SiAL+nmqPDrWFwaIRvL HleVId6BlhbEt2/aiAEmfLRZgIFEfMSiP7HcPi92coAGku6/VxtqAAHADMfljwFq Od1JoO+FwxX9Z9fjuFagcJEk04tD0kTNHVNXqTy7C0ihfz76uB9IIWrHBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP774wyhSR/cSTS99vF9sfrqzUp8MB8GA1UdIwQY MBaAFCNAGLVRO3edLh46wahqWTvdl0ynMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTBBWXRWRTdkNTB1SGpyQnFHcFpPOTJYVEtjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS9iMTgwODAtZTNjOS00MTE0LWExNzQt YzNkNmM3YzhiYThhLzEvSTBBWXRWRTdkNTB1SGpyQnFHcFpPOTJYVEtjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS9iMTgwODAtZTNjOS00MTE0LWExNzQtYzNkNmM3YzhiYThh LzEvSTBBWXRWRTdkNTB1SGpyQnFHcFpPOTJYVEtjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANIihhIsb p4s9HOXNkCTpjY4fJyiSG/I64RiDsDb+Pf2/iDnqrPf/GcE7+Lkl7UlWrjTQyMo8 I0HJ4B68TEZlHGL/99FnU+b04YsKGGf+GUegZoDx7C1vD0Dds3ue5evSzMcx+SPS JR9vKRv6tGXo3oY/aNiGMH/65QwXMTZSmqt/PNenQa53ZiJ+l8SSJEE3qs3uuo1M 4plzWikzwNU3ueWlNGKEWpXUNe66PQMWwUEE2pAXPez/mxRZPhAGyk0qLd7vc7LT j/5YHNbLqC0rSnRuW56eOAAy4xvaowM9rHgPRGCWCxG2nCfjWJv37AZ3wr9oTmze a1LJbPCRUbQTxw== -----END CERTIFICATE-----Generated at Thu Dec 25 01:21:38 2025 by rpki-client