This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft File: PI_isZvT639wpO7atha1MlABFSA.mft (raw, json) Hash identifier: qOgYyPZI3UbzeuYMNJVe3FNNSdwSm+l0nqQgMbp0j3Q= Subject key identifier: 77:16:26:8F:05:46:0E:37:DB:93:34:A2:A9:2C:67:4A:7E:3B:F5:22 Authority key identifier: 3C:8F:E2:B1:9B:D3:EB:7F:70:A4:EE:DA:B6:16:B5:32:50:01:15:20 Certificate issuer: /CN=3c8fe2b19bd3eb7f70a4eedab616b53250011520 Certificate serial: 019B4324F7B284937311A75D866AD0ADF541 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PI_isZvT639wpO7atha1MlABFSA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft Manifest number: 045E Signing time: Sun 21 Dec 2025 23:00:54 +0000 Manifest this update: Sun 21 Dec 2025 23:00:54 +0000 Manifest next update: Mon 22 Dec 2025 23:00:54 +0000 Files and hashes: 1: PI_isZvT639wpO7atha1MlABFSA.crl (hash: h4iipo9wpL9mStOR1IKqLIbpD36tMWzJqrQcr/PU/TA=) 2: iTxg6a45pQs6yguLKNzKJpXtu1I.roa (hash: IbbuNrBXDC3r/NQaAU8s873gXp019KR8EegJpijUcwo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.crl rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft rsync://rpki.ripe.net/repository/DEFAULT/PI_isZvT639wpO7atha1MlABFSA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:24:f7:b2:84:93:73:11:a7:5d:86:6a:d0:ad:f5:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3c8fe2b19bd3eb7f70a4eedab616b53250011520 Validity Not Before: Dec 21 23:00:54 2025 GMT Not After : Dec 22 23:00:54 2025 GMT Subject: CN=7716268f05460e37db9334a2a92c674a7e3bf522 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:15:c3:ed:30:2b:54:46:a0:2b:0a:19:cd:e0: 8d:a0:8b:c7:ff:4c:23:a7:1f:f7:2d:6d:af:94:ba: 03:b5:3e:63:cb:39:ab:ed:67:23:0f:e0:35:15:6f: b4:89:e4:91:aa:8f:ea:4e:58:27:8e:f1:cb:a5:38: a2:e7:3b:30:84:38:3a:20:69:b1:f3:ba:83:6e:9e: e2:34:af:c2:af:9b:ae:c1:ab:7d:7c:e5:bd:f2:6a: d6:c2:02:76:fe:ed:b0:66:3d:6e:e3:aa:f2:5c:4c: 25:b4:9f:66:c8:d3:f9:71:18:4b:a9:8b:d8:38:c6: 43:b5:75:f6:b3:63:7d:f4:c9:5f:de:9c:10:b7:bf: d2:f4:e1:3d:5b:fb:9b:de:a6:a6:56:17:53:ef:03: 9e:25:59:d4:a8:b4:87:54:85:93:3a:6c:16:f4:f9: 53:bb:10:fe:dc:d4:38:25:e5:24:ca:ae:2d:84:b3: a2:2d:77:1c:e5:ad:6a:eb:65:4a:31:20:c0:03:27: 28:63:c5:54:2a:b1:00:11:eb:58:52:75:98:03:e7: 3f:b3:b7:f0:04:cf:0b:db:b1:88:f2:23:c9:ae:ed: 19:3c:60:89:4e:a2:f7:02:c7:ba:6c:dc:98:49:de: f1:1e:b6:f8:5f:1d:fa:69:3d:70:db:f9:37:1b:cd: c2:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:16:26:8F:05:46:0E:37:DB:93:34:A2:A9:2C:67:4A:7E:3B:F5:22 X509v3 Authority Key Identifier: keyid:3C:8F:E2:B1:9B:D3:EB:7F:70:A4:EE:DA:B6:16:B5:32:50:01:15:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PI_isZvT639wpO7atha1MlABFSA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:4e:b3:e9:f4:8e:d4:6d:19:62:31:5c:eb:b5:53:9c:2a:e2: 0f:89:2f:08:5a:36:bf:e8:6f:9f:87:84:99:55:48:e4:c0:ed: c4:af:a6:ea:97:fc:7b:52:83:09:1d:a4:ac:67:7d:64:1a:3f: ca:09:15:e2:80:c9:e0:ab:5e:da:35:e0:75:28:91:04:88:ea: b6:21:01:de:8a:a8:16:47:de:d8:88:41:c0:59:44:6c:ae:83: c1:6e:8b:1a:ca:64:46:57:ae:0e:a0:4a:96:e7:15:9b:49:15: aa:b5:e4:46:64:94:3e:a2:9e:7f:cb:40:37:e8:13:26:95:db: a0:74:55:92:0f:62:17:21:c4:35:0b:91:47:df:6c:10:67:03: df:7b:36:89:71:76:24:4c:79:da:ad:5f:b1:d4:a1:54:c1:a7: 65:bb:68:42:0a:0c:17:bd:d9:82:9d:d8:cc:83:a1:09:c9:2d: ad:21:05:45:f2:dd:5f:fb:40:9c:fe:38:a1:cc:32:77:e2:fe: 6c:a3:78:aa:18:6a:b7:5a:b3:8f:94:a1:62:60:69:16:b0:16: 2e:75:df:6a:22:fa:f0:d9:64:15:b1:ef:74:f1:88:7b:37:fa: e5:28:ee:93:91:23:38:b6:88:a2:61:29:df:ec:9b:2b:66:7e: 8b:77:59:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtDJPeyhJNzEaddhmrQrfVBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNjOGZlMmIxOWJkM2ViN2Y3MGE0ZWVkYWI2MTZiNTMyNTAw MTE1MjAwHhcNMjUxMjIxMjMwMDU0WhcNMjUxMjIyMjMwMDU0WjAzMTEwLwYDVQQD Eyg3NzE2MjY4ZjA1NDYwZTM3ZGI5MzM0YTJhOTJjNjc0YTdlM2JmNTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7RXD7TArVEagKwoZzeCNoIvH/0wj px/3LW2vlLoDtT5jyzmr7WcjD+A1FW+0ieSRqo/qTlgnjvHLpTii5zswhDg6IGmx 87qDbp7iNK/Cr5uuwat9fOW98mrWwgJ2/u2wZj1u46ryXEwltJ9myNP5cRhLqYvY OMZDtXX2s2N99Mlf3pwQt7/S9OE9W/ub3qamVhdT7wOeJVnUqLSHVIWTOmwW9PlT uxD+3NQ4JeUkyq4thLOiLXcc5a1q62VKMSDAAycoY8VUKrEAEetYUnWYA+c/s7fw BM8L27GI8iPJru0ZPGCJTqL3Ase6bNyYSd7xHrb4Xx36aT1w2/k3G83CjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHcWJo8FRg4325M0oqksZ0p+O/UiMB8GA1UdIwQY MBaAFDyP4rGb0+t/cKTu2rYWtTJQARUgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUElfaXNadlQ2Mzl3cE83YXRoYTFNbEFCRlNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9lN2VkZDEtYzc5Zi00ODkwLWExNzUt MTJlNmE2ZWRkMTI0LzEvUElfaXNadlQ2Mzl3cE83YXRoYTFNbEFCRlNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni9lN2VkZDEtYzc5Zi00ODkwLWExNzUtMTJlNmE2ZWRkMTI0 LzEvUElfaXNadlQ2Mzl3cE83YXRoYTFNbEFCRlNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArU6z6fSO 1G0ZYjFc67VTnCriD4kvCFo2v+hvn4eEmVVI5MDtxK+m6pf8e1KDCR2krGd9ZBo/ ygkV4oDJ4Kte2jXgdSiRBIjqtiEB3oqoFkfe2IhBwFlEbK6DwW6LGspkRleuDqBK lucVm0kVqrXkRmSUPqKef8tAN+gTJpXboHRVkg9iFyHENQuRR99sEGcD33s2iXF2 JEx52q1fsdShVMGnZbtoQgoMF73Zgp3YzIOhCcktrSEFRfLdX/tAnP44ocwyd+L+ bKN4qhhqt1qzj5ShYmBpFrAWLnXfaiL68NlkFbHvdPGIezf65Sjuk5EjOLaIomEp 3+ybK2Z+i3dZHA== -----END CERTIFICATE-----Generated at Mon Dec 22 05:47:12 2025 by rpki-client