This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft File: i5HgoQS1s93x9dCOessreeDVZvk.mft (raw, json) Hash identifier: utGiCSK4slEmtiWlBkoizEHtyl3BjmIpd8eftGwtIAA= Subject key identifier: AB:D1:4D:30:4E:74:23:D0:4F:EE:D9:65:FC:BA:D8:8B:C5:3C:FA:02 Authority key identifier: 8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9 Certificate issuer: /CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9 Certificate serial: 019B38A1E25DD7DA0A82E7CE1256AAB4BFAB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft Manifest number: 1191 Signing time: Fri 19 Dec 2025 22:01:31 +0000 Manifest this update: Fri 19 Dec 2025 22:01:31 +0000 Manifest next update: Sat 20 Dec 2025 22:01:31 +0000 Files and hashes: 1: KwomHtAHnCM0D-yGdW_0Sf3mopc.roa (hash: nJuUP0j6H239g1R7GMJyKq0zviXnK+AhK7Q4U43dyg4=) 2: ZYlcf7X6lFUqPdlZgjx7h6pY7f0.roa (hash: Z91lhusvfId6xXTKVa6gm5qmkQJNcO8M7YoIqY37LFU=) 3: i5HgoQS1s93x9dCOessreeDVZvk.crl (hash: gI3t6X686SDFt7D/GNUNiFBhx905MAnPSF/nK7OdBTc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.crl rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 22:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:38:a1:e2:5d:d7:da:0a:82:e7:ce:12:56:aa:b4:bf:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9 Validity Not Before: Dec 19 22:01:31 2025 GMT Not After : Dec 20 22:01:31 2025 GMT Subject: CN=abd14d304e7423d04feed965fcbad88bc53cfa02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:58:2c:05:a0:05:c9:cc:95:f9:1a:eb:70:84: 31:4e:44:fe:b6:af:5d:ea:f9:e8:63:9b:25:9c:6e: 98:4d:fe:9b:b4:7f:f4:45:ee:7d:6d:b1:95:ba:c1: 78:01:3b:98:b1:70:3c:0a:29:b8:10:27:35:ce:73: 92:80:0a:1f:ec:57:0b:3b:ad:96:2c:42:00:7b:3f: 92:bc:6f:04:4a:77:e0:e1:8d:c3:ba:9c:47:70:82: e1:ab:7b:98:15:b6:ce:79:9d:fc:21:83:94:44:39: 29:10:40:4a:30:b2:89:8f:7f:3e:05:af:36:15:80: 6d:52:17:67:3a:42:6f:14:88:e8:00:72:36:b4:72: 7d:e7:74:0d:69:3d:1e:95:a8:f5:82:40:12:be:c3: 98:ab:0c:b5:bc:1c:f4:52:bf:78:4c:9a:c5:dd:e2: af:07:ae:3f:fd:d5:3d:f2:28:2f:2a:d7:9f:78:05: 24:7c:cd:84:c2:21:1b:f5:a9:35:42:8f:f5:66:4d: 02:9f:46:ab:a0:8e:8d:e6:2b:7d:77:b5:f6:82:ab: d1:26:d2:43:eb:70:4b:c2:bd:92:7b:53:51:10:f1: 56:d5:34:db:da:d2:9d:7e:b2:a0:2a:0a:fd:f3:31: 27:98:2d:ba:18:1b:31:22:a8:a6:2a:c2:4e:a9:56: d0:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:D1:4D:30:4E:74:23:D0:4F:EE:D9:65:FC:BA:D8:8B:C5:3C:FA:02 X509v3 Authority Key Identifier: keyid:8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:0d:c5:bf:be:d0:8c:d4:fb:ba:62:3f:46:be:36:38:07:01: c0:16:9e:ef:a1:a2:41:f8:6a:64:f1:1b:2e:88:7a:d3:91:a8: 41:95:ad:77:2e:6d:44:36:a7:86:ef:5e:3d:b7:44:27:6e:d6: d3:b5:9a:87:47:e4:6e:29:5f:c1:c9:63:fb:b4:fd:7c:8f:56: ed:ab:35:23:54:69:98:c9:d0:dc:81:02:d6:fa:5e:16:44:5c: b9:06:2b:cd:73:bd:1c:dc:0d:12:a5:16:c1:da:8c:83:83:84: d0:61:f6:54:d8:2b:06:75:7e:86:e3:5a:e6:68:ff:9f:c1:92: 47:6c:0d:e5:f5:ee:08:a7:43:56:71:3a:c1:83:79:50:7b:87: e8:47:5c:42:e0:93:0c:20:22:03:e8:e6:53:ac:92:15:01:66: 38:29:4e:6c:c8:08:76:37:88:32:cf:69:f4:c1:f6:ba:c0:a4: 2f:3e:89:b4:f7:7b:42:ae:7d:7d:dd:82:8d:c0:0d:2a:67:dd: e7:26:12:ba:63:25:14:88:31:1b:08:5e:88:40:ee:98:dd:08: 96:a7:c9:f4:95:cc:c3:32:4f:98:4a:64:57:87:b7:1b:a8:f7: 05:65:c5:81:7d:10:35:a3:9e:f5:42:15:7c:99:42:de:47:c4: 66:10:a1:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs4oeJd19oKgufOElaqtL+rMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiOTFlMGExMDRiNWIzZGRmMWY1ZDA4ZTdhY2IyYjc5ZTBk NTY2ZjkwHhcNMjUxMjE5MjIwMTMxWhcNMjUxMjIwMjIwMTMxWjAzMTEwLwYDVQQD EyhhYmQxNGQzMDRlNzQyM2QwNGZlZWQ5NjVmY2JhZDg4YmM1M2NmYTAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvlgsBaAFycyV+RrrcIQxTkT+tq9d 6vnoY5slnG6YTf6btH/0Re59bbGVusF4ATuYsXA8Cim4ECc1znOSgAof7FcLO62W LEIAez+SvG8ESnfg4Y3DupxHcILhq3uYFbbOeZ38IYOURDkpEEBKMLKJj38+Ba82 FYBtUhdnOkJvFIjoAHI2tHJ953QNaT0elaj1gkASvsOYqwy1vBz0Ur94TJrF3eKv B64//dU98igvKtefeAUkfM2EwiEb9ak1Qo/1Zk0Cn0aroI6N5it9d7X2gqvRJtJD 63BLwr2Se1NREPFW1TTb2tKdfrKgKgr98zEnmC26GBsxIqimKsJOqVbQzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKvRTTBOdCPQT+7ZZfy62IvFPPoCMB8GA1UdIwQY MBaAFIuR4KEEtbPd8fXQjnrLK3ng1Wb5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTVIZ29RUzFzOTN4OWRDT2Vzc3JlZURWWnZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9kZmJmYzQtY2MzZi00NzdjLThkNzYt YThjNTc2MjI0YmEyLzEvaTVIZ29RUzFzOTN4OWRDT2Vzc3JlZURWWnZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My9kZmJmYzQtY2MzZi00NzdjLThkNzYtYThjNTc2MjI0YmEy LzEvaTVIZ29RUzFzOTN4OWRDT2Vzc3JlZURWWnZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdA3Fv77Q jNT7umI/Rr42OAcBwBae76GiQfhqZPEbLoh605GoQZWtdy5tRDanhu9ePbdEJ27W 07Wah0fkbilfwclj+7T9fI9W7as1I1RpmMnQ3IEC1vpeFkRcuQYrzXO9HNwNEqUW wdqMg4OE0GH2VNgrBnV+huNa5mj/n8GSR2wN5fXuCKdDVnE6wYN5UHuH6EdcQuCT DCAiA+jmU6ySFQFmOClObMgIdjeIMs9p9MH2usCkLz6JtPd7Qq59fd2CjcANKmfd 5yYSumMlFIgxGwheiEDumN0IlqfJ9JXMwzJPmEpkV4e3G6j3BWXFgX0QNaOe9UIV fJlC3kfEZhChRw== -----END CERTIFICATE-----Generated at Sat Dec 20 04:22:14 2025 by rpki-client