This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft File: iSWuMjSiyXwn9171HT_zJr4GDiw.mft (raw, json) Hash identifier: FgqmQzaCBDCEir1Qo6TbmWNDfHxLPJy154LCGwx8+7Y= Subject key identifier: 69:6A:E5:57:3F:11:F4:7A:9F:5D:07:83:A0:9D:4B:A3:DF:FB:44:E8 Authority key identifier: 89:25:AE:32:34:A2:C9:7C:27:F7:5E:F5:1D:3F:F3:26:BE:06:0E:2C Certificate issuer: /CN=8925ae3234a2c97c27f75ef51d3ff326be060e2c Certificate serial: 019B44DCA03C2FE5E0674BE703F2D77D40B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iSWuMjSiyXwn9171HT_zJr4GDiw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft Manifest number: 1788 Signing time: Mon 22 Dec 2025 07:01:08 +0000 Manifest this update: Mon 22 Dec 2025 07:01:08 +0000 Manifest next update: Tue 23 Dec 2025 07:01:08 +0000 Files and hashes: 1: iSWuMjSiyXwn9171HT_zJr4GDiw.crl (hash: ecHbBRlWRoTMde8fsocFizgDRjvFUREt9zl5Ot71RF0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft rsync://rpki.ripe.net/repository/DEFAULT/iSWuMjSiyXwn9171HT_zJr4GDiw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 07:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:44:dc:a0:3c:2f:e5:e0:67:4b:e7:03:f2:d7:7d:40:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8925ae3234a2c97c27f75ef51d3ff326be060e2c Validity Not Before: Dec 22 07:01:08 2025 GMT Not After : Dec 23 07:01:08 2025 GMT Subject: CN=696ae5573f11f47a9f5d0783a09d4ba3dffb44e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:62:8c:66:cb:18:d8:1f:87:7a:52:57:b2:f6: 6e:be:54:f5:b4:8d:d3:25:75:61:59:df:7a:9c:b4: 86:79:96:35:64:0d:e7:d5:58:86:df:95:1e:1a:d4: 65:0c:96:8c:c1:3e:9f:07:fd:30:20:d2:17:68:fd: 9d:b8:5e:d9:45:ec:58:1a:09:1d:0c:da:ef:ea:e3: 9f:93:06:30:e5:25:7d:61:ab:a2:57:3a:d6:4b:00: 65:0b:9e:38:f5:9a:e6:e4:e0:9b:6a:3d:0f:25:b6: 65:42:84:e1:2b:39:c2:41:27:6e:46:52:49:7b:9d: 8a:6e:50:bd:87:1a:9c:32:12:26:1e:e0:21:40:50: ad:d8:f4:53:26:d3:a7:1c:8e:83:4c:cd:db:0b:22: cd:7c:7c:4e:c9:3d:5e:0e:d0:e8:43:d2:9c:b7:05: 36:35:af:c7:10:ae:ab:38:93:ff:f4:1b:f3:fb:d0: 54:78:13:7d:15:15:55:74:f8:a4:ed:2c:c6:8c:27: ba:d9:03:a7:cb:51:3f:a5:68:28:3f:f3:94:90:60: 03:a2:0f:a2:03:7a:0f:b8:61:0d:2d:2f:18:53:e2: d6:58:c6:47:5d:b4:53:de:23:cc:ec:b2:5d:a6:1f: 9b:da:1c:af:7f:01:86:5f:b5:d7:63:8d:2a:21:d5: fb:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:6A:E5:57:3F:11:F4:7A:9F:5D:07:83:A0:9D:4B:A3:DF:FB:44:E8 X509v3 Authority Key Identifier: keyid:89:25:AE:32:34:A2:C9:7C:27:F7:5E:F5:1D:3F:F3:26:BE:06:0E:2C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iSWuMjSiyXwn9171HT_zJr4GDiw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:8d:cf:98:56:8d:99:11:aa:21:a0:3d:a6:b8:1a:a7:dc:71: e4:98:44:50:2e:d2:d1:cd:8c:a4:ec:e4:b3:13:b6:11:98:8e: d5:13:07:53:52:b9:e7:a5:1b:bb:01:fc:1d:99:cb:af:72:1f: 2f:67:19:ae:5e:68:80:ca:c4:3a:60:bc:09:e5:f6:30:9b:32: 46:99:01:24:46:5c:84:c9:ee:1f:a9:0c:6b:13:76:09:b4:21: 67:e1:e5:a6:64:ff:fd:d5:9b:f7:e6:a6:fa:fa:d7:6e:aa:bd: 1d:72:0e:90:ab:b9:a9:d0:40:0e:98:6c:46:5f:f0:7d:e2:fa: b1:e3:6d:27:f5:07:ba:90:f0:2a:16:bb:58:44:15:05:42:d4: 4e:52:9f:2f:7b:16:64:fd:9d:7b:96:90:d5:4b:de:b2:87:4c: ad:a7:d9:a2:97:b4:0f:19:9b:ce:4e:fb:4a:49:69:10:b4:79: 6e:1f:fa:35:50:9a:05:d7:e8:59:da:33:58:72:53:5b:cf:f5: af:5f:a6:6a:59:bc:84:3b:02:f4:9f:26:b7:62:27:45:3b:44: b9:47:65:8e:3f:90:7a:50:64:f3:64:4a:f5:ac:61:9a:9e:3a: 33:9f:2b:64:44:41:03:98:c7:bf:b9:08:1c:ca:ee:bc:25:ba: 07:02:1a:5f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtE3KA8L+XgZ0vnA/LXfUC4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5MjVhZTMyMzRhMmM5N2MyN2Y3NWVmNTFkM2ZmMzI2YmUw NjBlMmMwHhcNMjUxMjIyMDcwMTA4WhcNMjUxMjIzMDcwMTA4WjAzMTEwLwYDVQQD Eyg2OTZhZTU1NzNmMTFmNDdhOWY1ZDA3ODNhMDlkNGJhM2RmZmI0NGU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoWKMZssY2B+HelJXsvZuvlT1tI3T JXVhWd96nLSGeZY1ZA3n1ViG35UeGtRlDJaMwT6fB/0wINIXaP2duF7ZRexYGgkd DNrv6uOfkwYw5SV9YauiVzrWSwBlC5449Zrm5OCbaj0PJbZlQoThKznCQSduRlJJ e52KblC9hxqcMhImHuAhQFCt2PRTJtOnHI6DTM3bCyLNfHxOyT1eDtDoQ9KctwU2 Na/HEK6rOJP/9Bvz+9BUeBN9FRVVdPik7SzGjCe62QOny1E/pWgoP/OUkGADog+i A3oPuGENLS8YU+LWWMZHXbRT3iPM7LJdph+b2hyvfwGGX7XXY40qIdX7owIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGlq5Vc/EfR6n10Hg6CdS6Pf+0ToMB8GA1UdIwQY MBaAFIklrjI0osl8J/de9R0/8ya+Bg4sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVNXdU1qU2l5WHduOTE3MUhUX3pKcjRHRGl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9mYjYyNzAtMDM1My00NmZjLWI5ZjUt N2U4ZTZlODg4ZGFjLzEvaVNXdU1qU2l5WHduOTE3MUhUX3pKcjRHRGl3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi9mYjYyNzAtMDM1My00NmZjLWI5ZjUtN2U4ZTZlODg4ZGFj LzEvaVNXdU1qU2l5WHduOTE3MUhUX3pKcjRHRGl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhI3PmFaN mRGqIaA9prgap9xx5JhEUC7S0c2MpOzksxO2EZiO1RMHU1K556UbuwH8HZnLr3If L2cZrl5ogMrEOmC8CeX2MJsyRpkBJEZchMnuH6kMaxN2CbQhZ+HlpmT//dWb9+am +vrXbqq9HXIOkKu5qdBADphsRl/wfeL6seNtJ/UHupDwKha7WEQVBULUTlKfL3sW ZP2de5aQ1UvesodMrafZope0Dxmbzk77SklpELR5bh/6NVCaBdfoWdozWHJTW8/1 r1+malm8hDsC9J8mt2InRTtEuUdljj+QelBk82RK9axhmp46M58rZERBA5jHv7kI HMruvCW6BwIaXw== -----END CERTIFICATE-----Generated at Mon Dec 22 10:33:53 2025 by rpki-client