This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft File: iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft (raw, json) Hash identifier: 2zMj3+OsVpuTjt46dyrgjk5IctXkZPuXRV6CRBdZx6g= Subject key identifier: D7:0D:3A:DF:5E:47:5B:EF:B6:CE:7A:7C:29:D2:F1:B8:6C:C5:68:AE Authority key identifier: 8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00 Certificate issuer: /CN=8aad9c0ce5ba3905b41970a04e51976076c67e00 Certificate serial: 019B2EFA4ABCA2A716A38026CB206A650408 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft Manifest number: 0AE0 Signing time: Thu 18 Dec 2025 01:01:53 +0000 Manifest this update: Thu 18 Dec 2025 01:01:53 +0000 Manifest next update: Fri 19 Dec 2025 01:01:53 +0000 Files and hashes: 1: 2N-Ad_PjuCdbWMhOkKca0e_4aH4.roa (hash: mX5PwA+5z3mRrepVsPYas6Uu6jFtb6sejxlwArRN7qw=) 2: 9qSGcGsaAT-Orj-BviLbbFBnobc.roa (hash: KGQdMGZUYXqZM3Cup0R+gwjVZv7t7VL1nDYpfpe2mMo=) 3: C6v3z8kGbpGtAYhEGvbIA9POeJ4.roa (hash: dVnxKmSOxpULCnBph8ARAXzts2lzvI7njmrNqMweylU=) 4: Q3cz4EEEExax1nv4wtLZZPPEgSk.roa (hash: ML1oxtfPutOEqYHFMGiG3+QvRpl8345MdKNoHGmCBSQ=) 5: iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl (hash: /+t3HUeg2564xnv5IiXeoplEdmv9m/bDaVSaY+kkE90=) 6: raR6qfZ5L-9hzvpYVK9us-1wIug.roa (hash: ARfa5iwtjYV/gUtHJTALBEg3MfK/IBejlaZvsXofCl8=) 7: tBuToTypjDQ6u5RK5DBD-fEJHi4.roa (hash: iFrIeR1iIdBgXE0Q5UKDG34iIF6/jJkNwFYF+l/o72M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 01:01:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:fa:4a:bc:a2:a7:16:a3:80:26:cb:20:6a:65:04:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8aad9c0ce5ba3905b41970a04e51976076c67e00 Validity Not Before: Dec 18 01:01:53 2025 GMT Not After : Dec 19 01:01:53 2025 GMT Subject: CN=d70d3adf5e475befb6ce7a7c29d2f1b86cc568ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:f6:a0:b4:b4:ad:5d:78:e2:66:b7:1b:1c:c9: a7:fb:ca:4d:84:1e:b9:ce:f6:ce:22:eb:1e:fa:c0: 18:b0:8b:98:03:d9:3c:e5:b2:e4:90:5a:bd:eb:4a: 67:2f:a0:a3:af:5e:9f:fa:2f:b7:f8:97:88:d3:04: e2:8a:a4:03:10:71:ed:e4:90:39:ae:c8:64:d2:a9: 94:84:32:25:9b:26:1b:ff:d8:04:e8:f6:1a:b3:1e: c1:69:f8:d6:0c:15:b5:b7:9d:5a:35:fa:20:88:b2: b9:d6:35:69:0b:dc:86:73:28:4a:05:82:27:e9:cb: a7:00:07:4b:4c:1f:45:7a:d7:db:31:30:c8:60:e8: fe:08:b2:24:ba:53:a4:09:47:5e:48:72:ef:a6:72: f5:3b:7c:98:9e:33:91:60:5d:bc:ee:fb:a4:82:f0: e9:5c:c7:e9:a1:bd:db:1c:f9:c4:b1:c7:13:d5:7f: cd:cb:5f:67:d3:1c:1d:89:15:18:d1:7a:b2:d2:43: c8:c9:42:c7:4f:ac:97:de:73:81:f4:c9:c6:02:31: f6:e5:e8:76:f2:c4:51:11:aa:de:57:5e:a1:2e:ba: c0:65:0b:ee:ce:b5:87:a0:05:53:64:48:ac:83:fd: 9d:0c:73:7a:89:d5:e3:14:67:4b:51:aa:fa:fc:09: 86:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:0D:3A:DF:5E:47:5B:EF:B6:CE:7A:7C:29:D2:F1:B8:6C:C5:68:AE X509v3 Authority Key Identifier: keyid:8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:1b:42:ae:68:9c:5f:3c:a3:4d:fd:c2:66:a7:96:0a:c3:a4: 83:b1:88:a8:5f:ec:b3:ec:18:f1:24:75:37:b2:d3:c2:50:d5: 54:d7:db:fa:76:52:ca:6a:da:08:42:50:00:6e:68:ee:8d:ff: ba:d0:86:ad:e9:31:81:99:f7:f0:08:17:33:68:95:ea:eb:d1: c7:4f:54:1e:a2:a2:2d:d6:c5:55:ee:92:f7:e8:fb:9e:3e:06: 99:61:4d:1e:ac:f1:3e:52:ad:97:51:62:c8:10:a6:5c:1a:ac: cb:f2:2c:75:9d:93:8f:43:e3:22:c1:2f:49:ae:72:5b:f9:65: 88:75:fc:6c:d0:90:1d:65:dd:7a:94:c5:59:83:db:97:18:92: ac:f0:a2:65:fc:71:a3:c1:be:f3:b8:17:44:9c:49:ce:9e:84: 9a:fc:93:66:3d:24:ff:8c:25:a3:8e:ef:a5:2e:91:86:f1:c3: 8b:b2:e9:6f:c4:12:56:71:c9:4d:b9:15:08:52:b4:43:87:67: 96:f2:1c:6c:ec:c5:0f:7b:85:54:9e:84:29:72:e5:0d:84:9d: 56:a5:c2:6a:4a:aa:ba:9f:8b:51:79:6f:24:6c:e5:a3:c4:96: 75:52:5c:e5:6e:4c:45:b0:67:71:5e:52:d9:5f:e0:d9:eb:a0: 8a:79:7c:ec -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsu+kq8oqcWo4AmyyBqZQQIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhYWQ5YzBjZTViYTM5MDViNDE5NzBhMDRlNTE5NzYwNzZj NjdlMDAwHhcNMjUxMjE4MDEwMTUzWhcNMjUxMjE5MDEwMTUzWjAzMTEwLwYDVQQD EyhkNzBkM2FkZjVlNDc1YmVmYjZjZTdhN2MyOWQyZjFiODZjYzU2OGFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9fagtLStXXjiZrcbHMmn+8pNhB65 zvbOIuse+sAYsIuYA9k85bLkkFq960pnL6Cjr16f+i+3+JeI0wTiiqQDEHHt5JA5 rshk0qmUhDIlmyYb/9gE6PYasx7BafjWDBW1t51aNfogiLK51jVpC9yGcyhKBYIn 6cunAAdLTB9FetfbMTDIYOj+CLIkulOkCUdeSHLvpnL1O3yYnjORYF287vukgvDp XMfpob3bHPnEsccT1X/Ny19n0xwdiRUY0Xqy0kPIyULHT6yX3nOB9MnGAjH25eh2 8sRREareV16hLrrAZQvuzrWHoAVTZEisg/2dDHN6idXjFGdLUar6/AmG+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNcNOt9eR1vvts56fCnS8bhsxWiuMB8GA1UdIwQY MBaAFIqtnAzlujkFtBlwoE5Rl2B2xn4AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9lNDQ1ZTQtMjZiZC00OGM5LTgzZGIt N2EwZWNlOWMwYWY4LzEvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9lNDQ1ZTQtMjZiZC00OGM5LTgzZGItN2EwZWNlOWMwYWY4 LzEvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAORtCrmic XzyjTf3CZqeWCsOkg7GIqF/ss+wY8SR1N7LTwlDVVNfb+nZSymraCEJQAG5o7o3/ utCGrekxgZn38AgXM2iV6uvRx09UHqKiLdbFVe6S9+j7nj4GmWFNHqzxPlKtl1Fi yBCmXBqsy/IsdZ2Tj0PjIsEvSa5yW/lliHX8bNCQHWXdepTFWYPblxiSrPCiZfxx o8G+87gXRJxJzp6EmvyTZj0k/4wlo47vpS6RhvHDi7Lpb8QSVnHJTbkVCFK0Q4dn lvIcbOzFD3uFVJ6EKXLlDYSdVqXCakqqup+LUXlvJGzlo8SWdVJc5W5MRbBncV5S 2V/g2euginl87A== -----END CERTIFICATE-----Generated at Thu Dec 18 11:13:56 2025 by rpki-client