This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft File: i4gBVDgSBAR31HRCKUZshTfUUXE.mft (raw, json) Hash identifier: xPbW5rq/OQGN5njJPebHqiKPF8UzhRqqFPr7w5enL44= Subject key identifier: 77:6A:62:F7:12:61:2D:31:71:60:37:E5:17:CD:1E:BA:01:59:3F:6F Authority key identifier: 8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71 Certificate issuer: /CN=8b8801543812040477d4744229466c8537d45171 Certificate serial: 019B3D230CE687F050598D4E60116CC15B4F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft Manifest number: 0ED1 Signing time: Sat 20 Dec 2025 19:01:05 +0000 Manifest this update: Sat 20 Dec 2025 19:01:05 +0000 Manifest next update: Sun 21 Dec 2025 19:01:05 +0000 Files and hashes: 1: CDrnNbtJLaCL50xwnqrzUWhQ_9k.roa (hash: xkyChTjHPfmap3pEfIzmPahUIANDsQxEAOedvER2SvU=) 2: i4gBVDgSBAR31HRCKUZshTfUUXE.crl (hash: gJJ+IB72vOwex4XdKcDBKYw2APwhE/r16h0+AnmLKmE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:23:0c:e6:87:f0:50:59:8d:4e:60:11:6c:c1:5b:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b8801543812040477d4744229466c8537d45171 Validity Not Before: Dec 20 19:01:05 2025 GMT Not After : Dec 21 19:01:05 2025 GMT Subject: CN=776a62f712612d31716037e517cd1eba01593f6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c9:f1:c9:27:f2:d5:14:f5:26:a2:35:57:00: bf:53:16:61:97:68:f6:70:0f:98:b8:f3:3a:27:02: 59:7d:9b:df:ee:b0:2e:77:cc:d2:75:3a:93:82:d7: 5e:7c:b6:02:34:26:f7:0c:c0:76:2f:22:0d:6d:5b: 2a:3c:40:0f:ca:43:ef:50:ca:b3:21:45:19:05:e3: 4b:da:c5:4d:a8:c6:a9:ad:22:a4:a5:f4:75:12:56: 4d:07:be:8a:d1:e8:46:3b:1b:cc:79:67:a2:19:32: 54:09:94:8e:fb:4f:50:ed:4f:75:ce:c6:98:2b:d5: 2c:bd:1f:65:bd:0a:c5:84:11:b7:0c:80:23:d8:52: 0b:fd:37:ae:31:2c:cb:2c:e4:43:43:e0:f0:67:86: d5:c2:fd:4f:58:2a:fb:6e:2d:83:a5:f3:95:85:39: 79:c7:91:41:01:46:c2:43:c0:8d:4b:bc:79:b1:b0: a5:0e:83:40:ed:40:42:1c:2a:7b:4b:12:8c:8e:83: 8d:89:cb:49:a8:9f:80:53:9d:e0:f2:9f:9a:cc:c7: 17:ed:76:dd:db:6f:81:25:a4:4a:91:9f:26:25:b9: 2d:f6:05:58:c0:51:8f:7f:61:a3:52:20:a3:c7:5f: 56:b3:d2:a6:53:29:34:d8:af:cb:52:05:ce:02:a3: 98:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:6A:62:F7:12:61:2D:31:71:60:37:E5:17:CD:1E:BA:01:59:3F:6F X509v3 Authority Key Identifier: keyid:8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:a4:6f:3e:d6:b4:fd:81:26:87:8f:ba:d3:83:55:6d:40:6f: a0:a9:9a:fe:a7:76:16:9e:ef:2a:68:ff:2d:49:a5:2b:10:c5: c8:4c:50:f6:17:41:5d:8e:ce:cd:09:fc:0d:69:ac:de:62:8d: a7:2a:a6:26:ef:e6:d5:e9:2e:4f:4a:a7:89:86:32:59:f7:9d: ba:6f:1b:cc:a1:ca:d7:3f:ea:bf:c1:9e:59:dd:d3:b3:ca:c9: 09:44:12:1f:61:f2:3c:0d:61:76:cf:30:7e:d0:9e:ba:f2:a1: d4:f6:f6:7f:07:c2:e5:79:5e:71:35:13:c0:9c:53:38:c5:36: 15:c0:8d:24:80:d2:bd:19:42:a1:6b:65:4d:61:f1:47:86:a8: 3a:12:52:b8:b9:5c:d4:0a:8d:bf:e5:bf:29:39:2f:94:59:2b: 8a:78:22:42:01:82:08:96:10:05:f7:02:5a:fc:a3:d7:0b:c6: d2:69:54:b0:19:d8:82:a5:ee:0c:7e:f4:a1:7b:3d:e0:f3:9f: 09:50:fb:11:d8:43:4c:00:aa:a8:56:cf:25:34:be:e6:b7:ed: 88:14:72:92:ea:01:05:98:3f:3e:c9:72:d4:fe:b6:d3:2a:58: 60:71:a8:c4:ed:d0:7f:d3:a8:78:17:72:62:f9:42:84:70:08: db:c8:19:5e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9Iwzmh/BQWY1OYBFswVtPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiODgwMTU0MzgxMjA0MDQ3N2Q0NzQ0MjI5NDY2Yzg1Mzdk NDUxNzEwHhcNMjUxMjIwMTkwMTA1WhcNMjUxMjIxMTkwMTA1WjAzMTEwLwYDVQQD Eyg3NzZhNjJmNzEyNjEyZDMxNzE2MDM3ZTUxN2NkMWViYTAxNTkzZjZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu8nxySfy1RT1JqI1VwC/UxZhl2j2 cA+YuPM6JwJZfZvf7rAud8zSdTqTgtdefLYCNCb3DMB2LyINbVsqPEAPykPvUMqz IUUZBeNL2sVNqMaprSKkpfR1ElZNB76K0ehGOxvMeWeiGTJUCZSO+09Q7U91zsaY K9UsvR9lvQrFhBG3DIAj2FIL/TeuMSzLLORDQ+DwZ4bVwv1PWCr7bi2DpfOVhTl5 x5FBAUbCQ8CNS7x5sbClDoNA7UBCHCp7SxKMjoONictJqJ+AU53g8p+azMcX7Xbd 22+BJaRKkZ8mJbkt9gVYwFGPf2GjUiCjx19Ws9KmUyk02K/LUgXOAqOYeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHdqYvcSYS0xcWA35RfNHroBWT9vMB8GA1UdIwQY MBaAFIuIAVQ4EgQEd9R0QilGbIU31FFxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTRnQlZEZ1NCQVIzMUhSQ0tVWnNoVGZVVVhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS84OWJiNzEtM2ZlOS00MmQyLWE3M2It MTNhZTk4YWE3ZDMzLzEvaTRnQlZEZ1NCQVIzMUhSQ0tVWnNoVGZVVVhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS84OWJiNzEtM2ZlOS00MmQyLWE3M2ItMTNhZTk4YWE3ZDMz LzEvaTRnQlZEZ1NCQVIzMUhSQ0tVWnNoVGZVVVhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVqRvPta0 /YEmh4+604NVbUBvoKma/qd2Fp7vKmj/LUmlKxDFyExQ9hdBXY7OzQn8DWms3mKN pyqmJu/m1ekuT0qniYYyWfedum8bzKHK1z/qv8GeWd3Ts8rJCUQSH2HyPA1hds8w ftCeuvKh1Pb2fwfC5XlecTUTwJxTOMU2FcCNJIDSvRlCoWtlTWHxR4aoOhJSuLlc 1AqNv+W/KTkvlFkringiQgGCCJYQBfcCWvyj1wvG0mlUsBnYgqXuDH70oXs94POf CVD7EdhDTACqqFbPJTS+5rftiBRykuoBBZg/Psly1P620ypYYHGoxO3Qf9OoeBdy YvlChHAI28gZXg== -----END CERTIFICATE-----Generated at Sun Dec 21 03:54:19 2025 by rpki-client