This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft File: Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft (raw, json) Hash identifier: 6gYD72HgnB81BiAnNAl/YDA0b91uWnqYe9umddtFFjU= Subject key identifier: CF:32:3C:E1:F3:DA:45:86:8C:4C:98:62:75:C8:57:C1:E8:CB:28:3C Authority key identifier: 22:FD:1B:59:D5:CA:AF:75:06:BC:0D:5C:34:F3:0C:21:59:B0:43:98 Certificate issuer: /CN=22fd1b59d5caaf7506bc0d5c34f30c2159b04398 Certificate serial: 019B2B8A4B3D170C28740368C2BCAC24B7BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft Manifest number: 0E69 Signing time: Wed 17 Dec 2025 09:00:41 +0000 Manifest this update: Wed 17 Dec 2025 09:00:41 +0000 Manifest next update: Thu 18 Dec 2025 09:00:41 +0000 Files and hashes: 1: 5h9N95WR6G3ZttKnfAaRL_2XfKs.roa (hash: Wu3zPxSXCsayNSHW7YvNoHAYtN3gQjTl9ho9qfJB69k=) 2: Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.crl (hash: W3HrObzHltcNaGwiwNGU7sspqhzURCi4gmfV3kEVSTs=) 3: mWDbGVVpCQ84rC7Zv5fGnlAS0IM.roa (hash: p+WC5acLc9Vp8ZBrdZrqWpaCEJthWpQv4NHUQY+p8+s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.crl rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 08:30:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:8a:4b:3d:17:0c:28:74:03:68:c2:bc:ac:24:b7:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22fd1b59d5caaf7506bc0d5c34f30c2159b04398 Validity Not Before: Dec 17 09:00:41 2025 GMT Not After : Dec 18 09:00:41 2025 GMT Subject: CN=cf323ce1f3da45868c4c986275c857c1e8cb283c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1e:db:a8:fd:4b:a0:ae:d2:28:8e:4f:f1:b8: 08:3e:6f:7e:59:b7:e3:8e:ba:0a:c2:16:1a:d9:21: c9:b5:b6:5c:32:1c:83:9b:5d:27:6f:8b:05:ea:50: ec:9c:72:dc:48:de:81:31:7c:89:57:81:81:65:26: cb:43:af:27:b0:15:22:a5:c8:b5:f0:1d:81:e3:8a: 71:12:f3:f3:87:65:81:06:48:5b:d6:fc:54:85:fa: 3e:87:96:1e:b5:eb:1c:6b:57:f9:d4:94:6e:c5:31: 77:f9:5a:a3:c5:eb:ca:27:d0:15:59:f9:13:88:53: 92:ca:22:d6:95:da:4f:ca:3d:e0:9d:f6:c6:11:c5: 7c:9c:3d:af:56:bc:a0:84:18:31:5b:fd:85:c8:67: 38:9e:45:6c:d9:a7:e2:b3:29:51:e4:cf:c3:33:e8: 85:47:ed:54:cd:0e:be:bf:5b:7c:6b:4c:29:74:b4: 94:cf:49:50:21:4d:47:cf:b2:e4:f7:da:6f:15:c7: 43:20:6b:84:3a:60:d7:90:0b:2b:9e:14:a1:26:60: e4:ab:04:5f:71:33:a7:7e:ef:10:39:3c:5f:3b:f4: 67:d3:d2:bf:dd:14:1a:ff:30:68:7e:b9:58:91:12: 27:af:d6:90:57:c9:34:ee:be:f0:6e:6f:9e:d2:90: 60:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:32:3C:E1:F3:DA:45:86:8C:4C:98:62:75:C8:57:C1:E8:CB:28:3C X509v3 Authority Key Identifier: keyid:22:FD:1B:59:D5:CA:AF:75:06:BC:0D:5C:34:F3:0C:21:59:B0:43:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:ac:68:20:f1:2f:83:c1:79:60:a9:be:56:6c:bb:8f:4f:99: ed:66:e3:8d:ed:2d:39:61:66:e1:cd:1d:1c:fc:e7:9c:e1:83: b5:a9:26:dd:9a:18:34:08:f8:da:9d:1d:f1:12:e3:96:71:5e: c3:47:c9:99:74:56:9d:26:28:36:1a:da:55:8f:59:cf:79:bb: 02:4b:5b:41:15:24:2b:8d:1d:a7:91:ea:da:03:b8:02:15:9b: 21:55:e3:db:22:a0:73:70:55:87:0a:53:a2:71:54:23:95:59: e1:2c:0e:5f:72:ee:40:32:c7:41:e2:f9:2c:87:f5:ef:fe:d4: 04:f3:38:1d:6e:54:2c:12:1d:a0:d0:4d:20:70:09:4c:a3:02: 09:8e:cc:57:0f:fb:bc:2b:44:20:ba:4f:42:e0:69:bf:5f:f6: 83:9a:fd:d6:35:09:35:be:8a:03:d9:f3:7d:78:05:eb:ff:db: 54:bc:18:a4:31:48:15:ff:b0:82:da:b3:67:40:1f:09:ce:c2: 2e:75:30:f6:67:47:56:86:a4:b9:7e:89:42:5f:85:dc:a0:2d: d1:05:b3:64:7d:e8:04:9f:d1:b9:a6:79:65:3b:53:48:6d:d5: 15:bb:0f:1f:1c:ce:a1:b0:c3:55:b9:e2:9a:84:ad:84:5c:a3: 14:12:bd:0c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsriks9FwwodANowrysJLe8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyZmQxYjU5ZDVjYWFmNzUwNmJjMGQ1YzM0ZjMwYzIxNTli MDQzOTgwHhcNMjUxMjE3MDkwMDQxWhcNMjUxMjE4MDkwMDQxWjAzMTEwLwYDVQQD EyhjZjMyM2NlMWYzZGE0NTg2OGM0Yzk4NjI3NWM4NTdjMWU4Y2IyODNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuR7bqP1LoK7SKI5P8bgIPm9+Wbfj jroKwhYa2SHJtbZcMhyDm10nb4sF6lDsnHLcSN6BMXyJV4GBZSbLQ68nsBUipci1 8B2B44pxEvPzh2WBBkhb1vxUhfo+h5Yetesca1f51JRuxTF3+VqjxevKJ9AVWfkT iFOSyiLWldpPyj3gnfbGEcV8nD2vVryghBgxW/2FyGc4nkVs2afisylR5M/DM+iF R+1UzQ6+v1t8a0wpdLSUz0lQIU1Hz7Lk99pvFcdDIGuEOmDXkAsrnhShJmDkqwRf cTOnfu8QOTxfO/Rn09K/3RQa/zBofrlYkRInr9aQV8k07r7wbm+e0pBgyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM8yPOHz2kWGjEyYYnXIV8Hoyyg8MB8GA1UdIwQY MBaAFCL9G1nVyq91BrwNXDTzDCFZsEOYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXYwYldkWEtyM1VHdkExY05QTU1JVm13UTVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC84NTBlOTYtMTkxZi00ZGNiLTllZGIt Y2Q1OGZhMjAxNGRkLzEvSXYwYldkWEtyM1VHdkExY05QTU1JVm13UTVnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC84NTBlOTYtMTkxZi00ZGNiLTllZGItY2Q1OGZhMjAxNGRk LzEvSXYwYldkWEtyM1VHdkExY05QTU1JVm13UTVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArKxoIPEv g8F5YKm+Vmy7j0+Z7Wbjje0tOWFm4c0dHPznnOGDtakm3ZoYNAj42p0d8RLjlnFe w0fJmXRWnSYoNhraVY9Zz3m7AktbQRUkK40dp5Hq2gO4AhWbIVXj2yKgc3BVhwpT onFUI5VZ4SwOX3LuQDLHQeL5LIf17/7UBPM4HW5ULBIdoNBNIHAJTKMCCY7MVw/7 vCtEILpPQuBpv1/2g5r91jUJNb6KA9nzfXgF6//bVLwYpDFIFf+wgtqzZ0AfCc7C LnUw9mdHVoakuX6JQl+F3KAt0QWzZH3oBJ/RuaZ5ZTtTSG3VFbsPHxzOobDDVbni moSthFyjFBK9DA== -----END CERTIFICATE-----Generated at Wed Dec 17 11:18:47 2025 by rpki-client