This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.mft File: IqyN_06Z0-IomvY7FdVdJFDIQsM.mft (raw, json) Hash identifier: pqe7RHpl+J0x97xHCfX5GwqEFijeKNKEsmZenHV3BgM= Subject key identifier: 25:90:8F:F3:3A:32:3C:71:40:E4:2A:A7:15:9A:D7:2F:DE:A2:65:B5 Authority key identifier: 22:AC:8D:FF:4E:99:D3:E2:28:9A:F6:3B:15:D5:5D:24:50:C8:42:C3 Certificate issuer: /CN=22ac8dff4e99d3e2289af63b15d55d2450c842c3 Certificate serial: 019B4E84988AE405DA6DC308B62CF6148D12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqyN_06Z0-IomvY7FdVdJFDIQsM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.mft Manifest number: 06B2 Signing time: Wed 24 Dec 2025 04:01:11 +0000 Manifest this update: Wed 24 Dec 2025 04:01:11 +0000 Manifest next update: Thu 25 Dec 2025 04:01:11 +0000 Files and hashes: 1: 1YFZUWeFsFFhNH6pH-z6oTf7e1M.roa (hash: N3xo7g5jGJQoS/qFHbtXSlXVpbFrX6/YoQPrJBEqRCc=) 2: IqyN_06Z0-IomvY7FdVdJFDIQsM.crl (hash: VUEbtMksAoXAJfMG+pvN5/282EzhGpVR3rs87Od6EqM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.crl rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.mft rsync://rpki.ripe.net/repository/DEFAULT/IqyN_06Z0-IomvY7FdVdJFDIQsM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4e:84:98:8a:e4:05:da:6d:c3:08:b6:2c:f6:14:8d:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22ac8dff4e99d3e2289af63b15d55d2450c842c3 Validity Not Before: Dec 24 04:01:11 2025 GMT Not After : Dec 25 04:01:11 2025 GMT Subject: CN=25908ff33a323c7140e42aa7159ad72fdea265b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b5:1d:84:31:e2:02:f2:e3:4d:24:13:f0:6f: ed:7c:d9:ab:30:18:b5:23:38:ff:0a:a7:83:80:06: 64:dc:3c:a3:4a:f8:1e:81:38:30:0c:79:8d:10:80: 94:e2:59:4d:35:ff:d6:a5:88:39:5d:07:b1:64:8e: c7:f3:36:c3:ba:78:55:71:27:3e:65:01:25:84:75: b0:65:ca:03:e2:8e:64:2d:ac:06:a0:7a:65:f5:6e: 2a:c3:1b:72:3e:da:90:01:38:98:d9:66:97:d5:46: 28:5c:d7:84:c9:e7:7b:6a:34:c8:60:91:3a:f4:ff: f3:0a:56:34:3b:6c:13:91:94:0c:77:d7:10:3b:72: 2b:8f:48:16:5c:f4:23:3c:73:7a:2d:e5:30:5b:15: 0b:b8:fd:ff:90:7e:1f:9a:97:12:fb:90:07:e0:4d: 8b:bb:90:55:9c:c9:f6:50:03:50:f5:44:4a:e7:ae: 60:28:0c:df:5a:cf:68:14:ea:de:d1:f5:72:04:28: e6:10:af:36:c6:b7:95:87:08:96:1a:1a:ef:5e:1d: 55:81:25:69:6a:a2:72:ec:63:6b:d6:cb:fd:0e:e2: bb:d3:03:92:cf:92:e7:94:54:d7:8f:29:9d:19:30: af:95:46:f6:2d:f5:07:19:eb:4b:d4:15:07:23:83: 0b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:90:8F:F3:3A:32:3C:71:40:E4:2A:A7:15:9A:D7:2F:DE:A2:65:B5 X509v3 Authority Key Identifier: keyid:22:AC:8D:FF:4E:99:D3:E2:28:9A:F6:3B:15:D5:5D:24:50:C8:42:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqyN_06Z0-IomvY7FdVdJFDIQsM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:5f:af:06:8a:86:39:72:d2:e8:20:4e:b8:c7:8c:77:85:db: 94:0a:e2:f2:50:19:66:2a:10:63:38:e5:03:ad:f9:93:60:24: b7:0e:40:02:ec:65:19:e0:17:c3:fa:52:e8:59:c4:2e:96:cf: 46:81:96:9f:d0:19:c0:a4:82:7e:2c:0e:a3:79:74:77:16:a4: dd:43:f1:9a:c2:fd:41:82:bc:97:54:45:09:ec:90:76:2e:e7: c5:9a:d2:ee:fe:c6:f3:31:a4:93:31:ea:13:41:78:a7:23:8c: 14:ff:c8:0a:03:43:ca:a0:28:76:5c:b6:36:4f:51:fa:b6:26: eb:6c:2b:3d:8c:df:7d:64:13:6d:8d:85:23:15:f1:94:93:a5: c7:92:3b:d6:af:05:a2:19:2b:6f:e7:b8:29:c3:79:5b:68:dc: 20:53:b5:d1:e3:57:08:38:48:60:bf:30:ff:ba:bc:23:e4:41: dc:c1:88:22:5f:ef:aa:c5:9a:3f:28:aa:7f:f2:ff:e5:b2:c8: 1f:27:8c:f4:1e:6a:94:92:5d:d2:e7:7b:7f:82:ca:0d:27:a7: fb:b9:c3:e1:fc:45:16:78:e1:25:b3:38:21:12:fb:be:f8:43: 0b:b5:0f:ea:6d:a6:22:8b:1d:93:7f:d3:6b:e9:23:4e:95:dc: 5a:52:74:27 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtOhJiK5AXabcMItiz2FI0SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYWM4ZGZmNGU5OWQzZTIyODlhZjYzYjE1ZDU1ZDI0NTBj ODQyYzMwHhcNMjUxMjI0MDQwMTExWhcNMjUxMjI1MDQwMTExWjAzMTEwLwYDVQQD EygyNTkwOGZmMzNhMzIzYzcxNDBlNDJhYTcxNTlhZDcyZmRlYTI2NWI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7UdhDHiAvLjTSQT8G/tfNmrMBi1 Izj/CqeDgAZk3DyjSvgegTgwDHmNEICU4llNNf/WpYg5XQexZI7H8zbDunhVcSc+ ZQElhHWwZcoD4o5kLawGoHpl9W4qwxtyPtqQATiY2WaX1UYoXNeEyed7ajTIYJE6 9P/zClY0O2wTkZQMd9cQO3Irj0gWXPQjPHN6LeUwWxULuP3/kH4fmpcS+5AH4E2L u5BVnMn2UANQ9URK565gKAzfWs9oFOre0fVyBCjmEK82xreVhwiWGhrvXh1VgSVp aqJy7GNr1sv9DuK70wOSz5LnlFTXjymdGTCvlUb2LfUHGetL1BUHI4MLOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCWQj/M6MjxxQOQqpxWa1y/eomW1MB8GA1UdIwQY MBaAFCKsjf9OmdPiKJr2OxXVXSRQyELDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXF5Tl8wNlowLUlvbXZZN0ZkVmRKRkRJUXNNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9hNzVlMWQtNGQ4MS00OWNiLWFjYTUt ODI5OThhOTI4N2UyLzEvSXF5Tl8wNlowLUlvbXZZN0ZkVmRKRkRJUXNNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9hNzVlMWQtNGQ4MS00OWNiLWFjYTUtODI5OThhOTI4N2Uy LzEvSXF5Tl8wNlowLUlvbXZZN0ZkVmRKRkRJUXNNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaF+vBoqG OXLS6CBOuMeMd4XblAri8lAZZioQYzjlA635k2Aktw5AAuxlGeAXw/pS6FnELpbP RoGWn9AZwKSCfiwOo3l0dxak3UPxmsL9QYK8l1RFCeyQdi7nxZrS7v7G8zGkkzHq E0F4pyOMFP/ICgNDyqAodly2Nk9R+rYm62wrPYzffWQTbY2FIxXxlJOlx5I71q8F ohkrb+e4KcN5W2jcIFO10eNXCDhIYL8w/7q8I+RB3MGIIl/vqsWaPyiqf/L/5bLI HyeM9B5qlJJd0ud7f4LKDSen+7nD4fxFFnjhJbM4IRL7vvhDC7UP6m2mIosdk3/T a+kjTpXcWlJ0Jw== -----END CERTIFICATE-----Generated at Wed Dec 24 09:22:52 2025 by rpki-client