This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft File: iQCNpBkicovFvtu9cIhwHFKbme0.mft (raw, json) Hash identifier: OGP33LAQ22gB3eHduQYeoagmCvTZfOp7GF6uFS4kde4= Subject key identifier: 41:88:F0:30:2F:D8:EB:C0:65:07:43:30:6A:9E:DB:61:20:F0:6B:5B Authority key identifier: 89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED Certificate issuer: /CN=89008da41922728bc5bedbbd7088701c529b99ed Certificate serial: 019B4626C9B2FB0CA7FFB5F76EFCE79A388E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft Manifest number: 0330 Signing time: Mon 22 Dec 2025 13:01:45 +0000 Manifest this update: Mon 22 Dec 2025 13:01:45 +0000 Manifest next update: Tue 23 Dec 2025 13:01:45 +0000 Files and hashes: 1: 9WCM-NfBtEzVC0bLgcXxGw_dKs0.roa (hash: +AotBLTXOYZ2qqQz68W39gfX7TdnqXgGz673AR3fS9c=) 2: iQCNpBkicovFvtu9cIhwHFKbme0.crl (hash: PwSLBfZie2Jb5xNwXoLkA269RroegavP9kabx1xmOpY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 13:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:46:26:c9:b2:fb:0c:a7:ff:b5:f7:6e:fc:e7:9a:38:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89008da41922728bc5bedbbd7088701c529b99ed Validity Not Before: Dec 22 13:01:45 2025 GMT Not After : Dec 23 13:01:45 2025 GMT Subject: CN=4188f0302fd8ebc0650743306a9edb6120f06b5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8b:cb:22:bd:19:5a:e7:82:07:44:47:46:03: d4:58:79:ea:79:f3:8e:68:f4:c9:dd:62:5b:34:88: 83:0c:70:a2:a3:3a:54:e2:d9:27:77:5a:6c:a7:3a: 91:47:77:fd:ab:24:52:68:bc:8e:fd:e3:35:85:5d: 3c:a9:8c:69:a0:2a:c9:17:b1:86:c8:2c:d6:27:9f: 3c:b3:96:b9:6c:c1:7b:a4:c9:9e:66:00:ed:c6:ea: 60:f6:17:4d:00:05:29:fd:d5:26:21:b0:a6:31:fa: 37:4e:81:1b:96:5f:af:16:5d:c2:b1:53:56:14:22: 3f:78:06:47:57:a8:fb:90:94:b0:6d:27:b9:33:14: 30:20:74:5b:ec:d9:a4:3c:f8:bf:1b:de:7a:bc:f6: ff:d0:a0:ec:03:f0:86:0c:e4:19:1c:56:25:d3:4f: 21:5f:7b:59:9f:7a:28:89:50:84:70:a9:48:06:6b: ad:3f:70:78:eb:84:17:2b:cd:d0:8b:ed:da:6e:8c: 6d:27:33:de:fa:41:48:6a:17:c5:50:06:4f:05:e9: e8:a2:41:af:74:f3:36:7e:a9:43:68:6e:8e:14:59: aa:5c:0d:06:1b:ef:15:5c:75:65:20:fd:bc:00:fa: 2d:e2:97:f0:0a:fb:6f:8a:c3:80:30:fd:b7:62:00: 9b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:88:F0:30:2F:D8:EB:C0:65:07:43:30:6A:9E:DB:61:20:F0:6B:5B X509v3 Authority Key Identifier: keyid:89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:41:28:a3:8b:cf:c2:8f:3d:0a:ec:67:0f:6a:df:c5:fe:c0: 0d:a4:04:e6:a5:1e:3c:26:4e:ed:da:4c:ea:c6:af:0f:eb:ef: 87:28:2e:7a:2a:33:18:f3:63:e4:27:33:c8:a6:0f:b1:10:20: 76:cf:a1:8f:de:9e:7e:7f:cc:e7:99:0f:8d:95:48:aa:8c:d1: b6:ad:55:17:95:e8:d0:a7:f2:d2:61:cb:83:6c:b9:8b:29:a1: 67:b7:6a:0b:2e:7f:9d:ad:0f:2b:a1:94:fd:4c:d6:d9:46:ab: d9:93:4c:30:66:e5:7e:97:d8:65:67:48:18:81:fb:28:5e:15: cc:36:88:d5:11:c1:96:5d:e9:45:94:27:6a:d7:dd:b8:38:70: 08:0b:d5:4e:98:ab:c5:19:97:e3:e1:76:ad:c9:44:e8:60:b8: 01:56:de:4f:0e:19:2a:1e:22:4e:2a:db:94:84:81:c8:43:58: b7:6e:a9:95:8d:dd:eb:c5:51:65:c3:f8:ef:87:bc:0f:28:37: a4:57:11:37:21:94:a3:d0:1e:2f:87:42:ca:c2:39:13:84:d6: 54:ce:13:5d:a2:8c:30:7c:7e:cf:17:17:0f:5c:9f:46:d4:59: 9a:1b:6e:bb:ca:be:86:62:2a:74:6a:d0:0a:4f:3e:4b:69:8b: 25:34:55:6b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtGJsmy+wyn/7X3bvznmjiOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5MDA4ZGE0MTkyMjcyOGJjNWJlZGJiZDcwODg3MDFjNTI5 Yjk5ZWQwHhcNMjUxMjIyMTMwMTQ1WhcNMjUxMjIzMTMwMTQ1WjAzMTEwLwYDVQQD Eyg0MTg4ZjAzMDJmZDhlYmMwNjUwNzQzMzA2YTllZGI2MTIwZjA2YjViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxovLIr0ZWueCB0RHRgPUWHnqefOO aPTJ3WJbNIiDDHCiozpU4tknd1pspzqRR3f9qyRSaLyO/eM1hV08qYxpoCrJF7GG yCzWJ588s5a5bMF7pMmeZgDtxupg9hdNAAUp/dUmIbCmMfo3ToEbll+vFl3CsVNW FCI/eAZHV6j7kJSwbSe5MxQwIHRb7NmkPPi/G956vPb/0KDsA/CGDOQZHFYl008h X3tZn3ooiVCEcKlIBmutP3B464QXK83Qi+3aboxtJzPe+kFIahfFUAZPBenookGv dPM2fqlDaG6OFFmqXA0GG+8VXHVlIP28APot4pfwCvtvisOAMP23YgCb9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEGI8DAv2OvAZQdDMGqe22Eg8GtbMB8GA1UdIwQY MBaAFIkAjaQZInKLxb7bvXCIcBxSm5ntMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVFDTnBCa2ljb3ZGdnR1OWNJaHdIRktibWUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9lNWIxNGItOWQ1Yi00MzQ2LThlODUt NjM3MjlmZTU4OGEyLzEvaVFDTnBCa2ljb3ZGdnR1OWNJaHdIRktibWUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC9lNWIxNGItOWQ1Yi00MzQ2LThlODUtNjM3MjlmZTU4OGEy LzEvaVFDTnBCa2ljb3ZGdnR1OWNJaHdIRktibWUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf0Eoo4vP wo89CuxnD2rfxf7ADaQE5qUePCZO7dpM6savD+vvhygueiozGPNj5CczyKYPsRAg ds+hj96efn/M55kPjZVIqozRtq1VF5Xo0Kfy0mHLg2y5iymhZ7dqCy5/na0PK6GU /UzW2Uar2ZNMMGblfpfYZWdIGIH7KF4VzDaI1RHBll3pRZQnatfduDhwCAvVTpir xRmX4+F2rclE6GC4AVbeTw4ZKh4iTirblISByENYt26plY3d68VRZcP474e8Dyg3 pFcRNyGUo9AeL4dCysI5E4TWVM4TXaKMMHx+zxcXD1yfRtRZmhtuu8q+hmIqdGrQ Ck8+S2mLJTRVaw== -----END CERTIFICATE-----Generated at Mon Dec 22 21:58:40 2025 by rpki-client