This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft File: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft (raw, json) Hash identifier: afTqy5GmdhUsFdXb8heDKr46SXLn2CdN26AUi1sYpso= Subject key identifier: A0:93:83:8E:C6:79:4F:4F:EE:5C:38:23:BC:CF:A0:D1:15:87:CA:B6 Authority key identifier: 23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62 Certificate issuer: /CN=23259da3b1b38ca0939f490fb9043fcd89cfd062 Certificate serial: 019B3AC68BD0FCECC87579684DACFDF5AE59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft Manifest number: 1791 Signing time: Sat 20 Dec 2025 08:00:48 +0000 Manifest this update: Sat 20 Dec 2025 08:00:48 +0000 Manifest next update: Sun 21 Dec 2025 08:00:48 +0000 Files and hashes: 1: 5AXDwMNDZZJ0p2E5YCI5vVZD8a4.roa (hash: FFW/pHdY/n3mzgFNkaOSLkOhdoLgzZsHvl8kfEiEWu8=) 2: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl (hash: /e2oFEE7HrlsA0qvlKuaNhLu0uYtI4GaYRq8ILSY4XU=) 3: J0xQ_1w-gFpYF0LKQsYsfk-VGSQ.roa (hash: BG3PKtX8/a+ywGlKRJT/ICLStEzmSbRCf01OUsYWJWQ=) 4: JqGjYzJUHlyPRNKT7Gdae1GdJUA.roa (hash: /ZlOeq2y9fIyqYcQI5TRRc+qHPMMjEQDsJbQfMP47Os=) 5: KP1-R8Ozo5sN8i5g7eaE07K0eTQ.roa (hash: mLvAtndHxWdPvRVZIiOq/nwf/VdytfBFv0z3meNar9k=) 6: Qx2_RHRctf32pDo6Ld_wrMI7fd8.roa (hash: hDrMyW+0exQk+cf4mu6FMV+aN0cWstWHfqosAD9dRy0=) 7: Rlb2tOHsLeLyjP1RSURryd9jvec.roa (hash: jecxIoKlBvw6gWyoJ8u8/wuvD6cFE1AGV7OziEZZTXs=) 8: W08HMn4p6kVqze5MDixmPqgVV3Q.roa (hash: jlOVPZJCuEAwn3iEzzJNLFkpo/PRQpHf+dW9CA2qsug=) 9: ZaM9jNyw62egtMMXYnGxszrNY3k.roa (hash: IjXCT+wQnlaMHMU5neUWgppwJ+IMB7wimw7ZMxVicdg=) 10: _zKodDelYzkycuOaCvmIVNehVaU.roa (hash: 06Jd/JDGW6Xe4+7xG76Qs6GUdZwHdMuLomnrIM9Qkbg=) 11: cf3WHfeWDYu7TWnELnXzycteCaY.roa (hash: TcxuwVKWwTiShtI0Unrv/gZ/YwHGK8T1H3ocBzBxMZk=) 12: fuo8dYdaswIRyEIz4oPsApWqGJc.roa (hash: TgHuzsK6LNwJZxHjJiXaEYIfR/pJeI5Px7YOwniHSmE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 08:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:c6:8b:d0:fc:ec:c8:75:79:68:4d:ac:fd:f5:ae:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23259da3b1b38ca0939f490fb9043fcd89cfd062 Validity Not Before: Dec 20 08:00:48 2025 GMT Not After : Dec 21 08:00:48 2025 GMT Subject: CN=a093838ec6794f4fee5c3823bccfa0d11587cab6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f8:d7:ee:d1:46:1f:d6:0c:cc:04:46:db:f5: c9:46:c3:1b:82:03:8f:be:a0:2f:3d:18:d9:05:2e: 9f:61:9e:5d:0b:cb:9e:84:bb:d1:e7:3c:3f:1d:4a: 96:f7:66:58:b4:e7:b9:fd:7c:68:99:b3:92:6e:69: c1:3c:55:f0:9b:df:c1:1f:70:66:5f:21:de:e9:02: 45:c1:b1:36:86:4d:a9:fd:b8:20:51:1d:b7:9d:4f: 99:c5:2b:77:ba:dd:f9:14:96:90:86:fd:72:5c:a7: 06:a4:15:a6:b0:94:b5:a9:94:5f:cf:cf:b5:5e:98: e8:cb:fe:98:27:cb:66:ad:7c:03:7d:8d:10:8a:43: 81:6e:54:6a:48:54:e5:ab:cc:1a:14:92:bc:2b:35: b6:f6:29:60:49:84:18:7e:c6:96:d3:12:6e:ac:48: 19:9e:dd:df:66:e1:62:00:68:a5:29:e8:70:1a:4f: 4e:7e:ae:1c:de:aa:4b:49:52:a3:55:50:ee:c9:c3: b8:db:65:84:9a:1e:e4:ce:68:e1:14:4b:87:eb:40: 5e:62:fa:d8:ee:0b:eb:83:aa:e0:c6:0d:c8:15:64: 92:ff:d4:8f:a6:5c:81:3b:02:54:f6:2e:01:06:a2: cd:e8:a2:6a:fb:96:a6:c5:5e:58:f2:9b:a4:ff:16: 0f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:93:83:8E:C6:79:4F:4F:EE:5C:38:23:BC:CF:A0:D1:15:87:CA:B6 X509v3 Authority Key Identifier: keyid:23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:8d:ab:9e:06:56:e8:6a:0a:49:72:54:77:68:45:6a:86:a3: 27:26:d9:aa:35:a2:af:44:36:45:97:da:79:ed:34:e2:f3:22: fd:f2:4b:57:ff:9a:56:cf:28:af:5e:7e:c2:ca:e2:64:39:10: 83:55:4a:0a:0d:fb:1c:58:07:64:2d:1d:96:bf:4c:13:00:ec: 68:2a:46:6d:21:89:9b:4f:db:ff:a4:29:37:95:df:8b:cc:89: f8:4a:17:34:2c:8c:93:35:d6:f8:17:09:49:d8:83:d4:eb:eb: e9:67:f9:2e:ee:b9:08:ab:60:67:68:20:1c:9b:15:29:3c:7d: 53:61:4c:67:e2:8f:ac:41:72:cd:d3:67:f2:f7:eb:1a:a4:77: fe:10:8c:91:b6:bf:7c:45:24:c3:04:08:fa:89:29:e4:dd:a7: 11:ca:23:d3:86:e6:b0:da:79:9f:7a:d6:ea:ea:e0:ce:0a:80: f6:72:3b:9b:5b:88:4a:90:0b:3c:40:16:a8:94:83:17:24:15: 7b:8a:a2:3a:b7:66:1d:4e:c0:f0:79:2a:b9:d5:7c:24:7a:ae: 74:40:69:cd:6a:b0:c6:53:c8:48:b7:bd:b4:c0:1d:c7:7e:ec: 05:82:8a:5b:bb:c9:33:02:24:b8:1d:0b:9f:87:96:2d:9e:41: de:1f:e6:1d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6xovQ/OzIdXloTaz99a5ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzMjU5ZGEzYjFiMzhjYTA5MzlmNDkwZmI5MDQzZmNkODlj ZmQwNjIwHhcNMjUxMjIwMDgwMDQ4WhcNMjUxMjIxMDgwMDQ4WjAzMTEwLwYDVQQD EyhhMDkzODM4ZWM2Nzk0ZjRmZWU1YzM4MjNiY2NmYTBkMTE1ODdjYWI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0vjX7tFGH9YMzARG2/XJRsMbggOP vqAvPRjZBS6fYZ5dC8uehLvR5zw/HUqW92ZYtOe5/XxombOSbmnBPFXwm9/BH3Bm XyHe6QJFwbE2hk2p/bggUR23nU+ZxSt3ut35FJaQhv1yXKcGpBWmsJS1qZRfz8+1 Xpjoy/6YJ8tmrXwDfY0QikOBblRqSFTlq8waFJK8KzW29ilgSYQYfsaW0xJurEgZ nt3fZuFiAGilKehwGk9Ofq4c3qpLSVKjVVDuycO422WEmh7kzmjhFEuH60BeYvrY 7gvrg6rgxg3IFWSS/9SPplyBOwJU9i4BBqLN6KJq+5amxV5Y8puk/xYPEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKCTg47GeU9P7lw4I7zPoNEVh8q2MB8GA1UdIwQY MBaAFCMlnaOxs4ygk59JD7kEP82Jz9BiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUt NjU0ZGQ2NDQyY2U0LzEvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUtNjU0ZGQ2NDQyY2U0 LzEvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbo2rngZW 6GoKSXJUd2hFaoajJybZqjWir0Q2RZfaee004vMi/fJLV/+aVs8or15+wsriZDkQ g1VKCg37HFgHZC0dlr9MEwDsaCpGbSGJm0/b/6QpN5Xfi8yJ+EoXNCyMkzXW+BcJ SdiD1Ovr6Wf5Lu65CKtgZ2ggHJsVKTx9U2FMZ+KPrEFyzdNn8vfrGqR3/hCMkba/ fEUkwwQI+okp5N2nEcoj04bmsNp5n3rW6urgzgqA9nI7m1uISpALPEAWqJSDFyQV e4qiOrdmHU7A8HkqudV8JHqudEBpzWqwxlPISLe9tMAdx37sBYKKW7vJMwIkuB0L n4eWLZ5B3h/mHQ== -----END CERTIFICATE-----Generated at Sat Dec 20 17:56:38 2025 by rpki-client