This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft File: ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft (raw, json) Hash identifier: ke+WCB8gCKVcE++R7tvQTsnWQeLbxsJprGSEfHhN4bE= Subject key identifier: A6:E1:F9:90:74:53:EF:B8:9E:BA:EA:A0:DE:76:65:6C:CC:9B:54:9C Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca Certificate serial: 019B42EE27EB511F2CAA1626F311523CBBD1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft Manifest number: 0B73 Signing time: Sun 21 Dec 2025 22:01:02 +0000 Manifest this update: Sun 21 Dec 2025 22:01:02 +0000 Manifest next update: Mon 22 Dec 2025 22:01:02 +0000 Files and hashes: 1: RZMmAomJrqs0yCU-Sl6pSFt5lLQ.roa (hash: mHTuz89sEZswLAvVyf4aCavMINMyLcZOi1mRW8tq0vE=) 2: ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl (hash: 1HweFYhRskIoIPx8FIuuJ8P0GEckkMRDxoBjl/X2HDg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:42:ee:27:eb:51:1f:2c:aa:16:26:f3:11:52:3c:bb:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca Validity Not Before: Dec 21 22:01:02 2025 GMT Not After : Dec 22 22:01:02 2025 GMT Subject: CN=a6e1f9907453efb89ebaeaa0de76656ccc9b549c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:45:6f:e7:93:61:18:ee:8a:e0:71:ea:7f:a0: 06:23:7a:fb:25:63:0c:e2:fd:d6:12:7b:87:aa:35: 00:f3:59:30:c6:f4:65:62:a7:3d:ba:99:23:d0:9a: cc:c8:f8:a6:bb:6f:35:f2:57:79:44:69:cd:42:67: e3:e7:7f:d8:6c:39:1e:af:af:14:45:fe:dd:77:c9: 62:2d:0e:35:55:32:2c:46:93:02:c0:a7:e6:0a:c0: 08:6f:df:8a:e1:81:6c:b9:3e:56:56:21:83:b9:aa: 68:4b:9d:c2:3d:62:48:10:65:02:dd:9e:f8:b7:b2: b7:57:d4:ab:c6:30:41:3b:34:a2:a9:2d:30:74:87: 4e:3c:74:7d:57:19:38:92:85:09:f0:38:b1:17:db: 2e:51:ae:0d:71:77:ae:42:e9:f2:56:df:f2:98:93: 7d:ea:8f:ae:5c:84:ba:25:b2:82:7b:e6:27:51:34: 66:44:35:b4:ae:07:79:4f:8d:2c:cb:54:21:db:38: 73:1a:0c:a8:3e:09:7b:3f:6d:6d:b8:9b:b9:a6:5f: c7:cf:d5:59:aa:27:36:47:9b:c6:a2:c1:80:22:09: 5c:50:35:72:81:fb:22:b4:e6:63:3a:a0:29:82:1e: c0:b1:c8:39:66:26:f1:bf:ed:2c:d2:e3:33:18:42: c8:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:E1:F9:90:74:53:EF:B8:9E:BA:EA:A0:DE:76:65:6C:CC:9B:54:9C X509v3 Authority Key Identifier: keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:fe:4a:13:7f:f1:f9:94:2a:e3:ed:24:a8:32:50:cb:ae:b5: ce:24:0e:a5:6f:4a:2c:25:1b:d5:5f:a4:73:62:70:18:9d:e9: df:04:39:a6:3a:2f:2c:a6:84:40:d3:1c:46:c8:90:8b:99:d4: 07:37:4f:99:93:55:4f:4c:8d:79:8c:f6:24:02:be:f9:17:1b: ce:95:03:d6:30:15:73:81:97:3d:7c:5a:6c:8b:9b:f3:dd:90: 7b:45:b3:fa:8b:8a:da:9d:dc:15:1f:85:83:d7:dd:e9:c2:37: 74:75:85:66:8f:90:6e:f2:5c:8d:b7:c0:ca:01:00:9d:50:b4: 4a:7d:ae:e4:d6:c8:80:4a:6c:22:8a:6b:92:12:34:a2:99:38: d2:9b:58:92:5a:37:6e:a5:8a:ca:02:2d:06:0b:06:af:be:ce: 4b:b1:1c:aa:bb:e7:de:c7:ec:1c:3e:59:2c:db:7b:a4:83:bd: 5c:ea:89:c8:c1:62:54:c9:70:8f:91:50:41:05:f8:31:81:50: 69:60:79:f1:5f:21:63:1d:a9:92:0d:f7:f2:f5:40:de:e2:64: 5e:01:1e:c2:77:7b:23:e4:95:66:75:f2:f7:cd:09:e9:05:f9: 35:55:19:7d:4b:6f:e4:08:8b:0a:d2:77:72:7b:2b:08:cf:42: 2e:fd:d8:be -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtC7ifrUR8sqhYm8xFSPLvRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhZjdmMzJkMzNmNjY0Njc3OWE1MWZiMjMyMDFjNjQ0MmQx NDUxY2EwHhcNMjUxMjIxMjIwMTAyWhcNMjUxMjIyMjIwMTAyWjAzMTEwLwYDVQQD EyhhNmUxZjk5MDc0NTNlZmI4OWViYWVhYTBkZTc2NjU2Y2NjOWI1NDljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmEVv55NhGO6K4HHqf6AGI3r7JWMM 4v3WEnuHqjUA81kwxvRlYqc9upkj0JrMyPimu2818ld5RGnNQmfj53/YbDker68U Rf7dd8liLQ41VTIsRpMCwKfmCsAIb9+K4YFsuT5WViGDuapoS53CPWJIEGUC3Z74 t7K3V9SrxjBBOzSiqS0wdIdOPHR9Vxk4koUJ8DixF9suUa4NcXeuQunyVt/ymJN9 6o+uXIS6JbKCe+YnUTRmRDW0rgd5T40sy1Qh2zhzGgyoPgl7P21tuJu5pl/Hz9VZ qic2R5vGosGAIglcUDVygfsitOZjOqApgh7Ascg5Zibxv+0s0uMzGELIJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKbh+ZB0U++4nrrqoN52ZWzMm1ScMB8GA1UdIwQY MBaAFIr38y0z9mRneaUfsjIBxkQtFFHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXZmekxUUDJaR2Q1cFIteU1nSEdSQzBVVWNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9hZmZjYmItYzFiMy00NDRhLTg3NmMt NWI3MmZiOTI3ZDFjLzEvaXZmekxUUDJaR2Q1cFIteU1nSEdSQzBVVWNvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS9hZmZjYmItYzFiMy00NDRhLTg3NmMtNWI3MmZiOTI3ZDFj LzEvaXZmekxUUDJaR2Q1cFIteU1nSEdSQzBVVWNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbP5KE3/x +ZQq4+0kqDJQy661ziQOpW9KLCUb1V+kc2JwGJ3p3wQ5pjovLKaEQNMcRsiQi5nU BzdPmZNVT0yNeYz2JAK++RcbzpUD1jAVc4GXPXxabIub892Qe0Wz+ouK2p3cFR+F g9fd6cI3dHWFZo+QbvJcjbfAygEAnVC0Sn2u5NbIgEpsIoprkhI0opk40ptYklo3 bqWKygItBgsGr77OS7Ecqrvn3sfsHD5ZLNt7pIO9XOqJyMFiVMlwj5FQQQX4MYFQ aWB58V8hYx2pkg338vVA3uJkXgEewnd7I+SVZnXy980J6QX5NVUZfUtv5AiLCtJ3 cnsrCM9CLv3Yvg== -----END CERTIFICATE-----Generated at Mon Dec 22 08:06:48 2025 by rpki-client