This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft File: IuKOVQMUE4-dg6KLLWZum4dEtRA.mft (raw, json) Hash identifier: jyK/fES/jhvXCnZMGZV4tdVpgHK9xvTtNiXNXgqNdDw= Subject key identifier: 72:71:9F:1F:A2:B2:83:CA:27:84:81:1E:BF:21:39:2D:A6:75:B1:E8 Authority key identifier: 22:E2:8E:55:03:14:13:8F:9D:83:A2:8B:2D:66:6E:9B:87:44:B5:10 Certificate issuer: /CN=22e28e550314138f9d83a28b2d666e9b8744b510 Certificate serial: 019B530647F42DF6DAECA27C60A83FE60D36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft Manifest number: 1793 Signing time: Thu 25 Dec 2025 01:01:19 +0000 Manifest this update: Thu 25 Dec 2025 01:01:19 +0000 Manifest next update: Fri 26 Dec 2025 01:01:19 +0000 Files and hashes: 1: IuKOVQMUE4-dg6KLLWZum4dEtRA.crl (hash: jMV1vGAsvz/DJJlU0Kry9V6i9h9VKF8vPOQj1VJ263o=) 2: cFbXH5gO6qs06Nq1Ek6wrTAvxB0.roa (hash: c0tlMuDM/vPMybXrB0sIatVwyL/aO7RZmUvD1wZIObw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 01:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:53:06:47:f4:2d:f6:da:ec:a2:7c:60:a8:3f:e6:0d:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22e28e550314138f9d83a28b2d666e9b8744b510 Validity Not Before: Dec 25 01:01:19 2025 GMT Not After : Dec 26 01:01:19 2025 GMT Subject: CN=72719f1fa2b283ca2784811ebf21392da675b1e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:22:8f:9c:51:e0:65:fb:5b:33:5c:ec:0b:d4: 0a:b7:fc:83:42:23:c0:45:13:49:fb:20:d5:a5:42: 23:af:2f:e1:f1:25:f7:bb:54:2a:73:0a:a7:a3:36: aa:56:47:e8:70:ed:63:0a:62:58:54:3b:05:21:a6: c2:22:f1:d7:4b:4c:c4:08:da:0e:4e:69:ed:3c:85: c7:17:18:83:ff:e3:55:f0:24:6d:d2:78:c6:c1:57: b2:37:16:1e:8d:08:75:55:03:10:fe:e6:33:82:61: 08:53:b9:c5:08:1f:b3:cc:60:28:7b:6a:7c:82:d9: ba:78:78:64:9d:89:b6:51:e8:b1:7f:03:f6:72:26: f5:bc:be:60:d3:9a:25:5b:82:7d:74:d8:d9:66:4f: bf:62:46:47:93:bb:88:b9:9f:ef:ac:fc:45:c9:9b: 96:2e:20:88:3c:f5:20:f7:36:9a:51:91:20:68:7a: 6f:82:95:9a:21:d7:c4:5b:98:3f:d2:09:4c:f3:c6: bc:1c:20:95:39:fa:52:e1:40:de:cc:fa:df:45:12: d3:c8:5a:68:bb:13:93:de:34:8a:0b:e0:bb:40:60: c1:43:36:02:84:02:7b:86:7b:19:14:c2:73:13:ac: 33:65:b4:14:a3:e7:f0:8e:48:fb:20:ce:ed:e6:ba: c9:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:71:9F:1F:A2:B2:83:CA:27:84:81:1E:BF:21:39:2D:A6:75:B1:E8 X509v3 Authority Key Identifier: keyid:22:E2:8E:55:03:14:13:8F:9D:83:A2:8B:2D:66:6E:9B:87:44:B5:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:c0:dd:57:78:7d:30:8b:55:02:1b:1e:b3:00:21:7c:ee:ec: 6e:5b:ef:6b:5b:b4:64:dc:f5:ca:fd:e9:d4:a5:20:d6:3c:fd: 40:85:f2:ee:4c:e9:70:d4:45:0f:57:3b:4a:96:72:8c:7f:2f: 2f:3e:d1:70:ab:47:64:c5:6f:d7:0e:a8:73:73:68:57:ca:32: 90:fc:06:a2:a7:04:29:ce:6f:82:f4:50:db:9a:73:a9:bb:fa: 33:db:40:77:d1:7d:c2:fe:52:5a:5d:68:59:2b:a9:40:ae:d9: dd:41:f7:01:1d:1d:65:6b:7c:e4:67:d4:25:44:3a:4c:a1:a3: a3:bb:72:58:f0:96:1f:fc:48:8e:fb:11:19:1a:d8:ff:4f:3f: b0:89:35:3c:9b:0d:2a:61:5c:d2:61:8c:32:94:ba:46:a1:f7: 27:dd:99:db:80:c4:16:a7:3c:80:07:8c:00:6f:9e:da:35:f2: 6a:75:71:b3:b8:a4:4f:20:70:4d:90:f0:b8:ef:16:2d:28:92: 23:4f:69:e4:e0:dd:81:60:4e:90:c1:2c:a5:f6:48:f8:4f:78: 54:b3:56:11:66:17:7d:ec:15:79:1a:35:e3:31:c8:a0:04:00: 60:d0:0b:be:ef:7a:d3:26:9e:94:c0:1e:41:9b:1b:9e:f1:c4: 0d:0f:40:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtTBkf0Lfba7KJ8YKg/5g02MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyZTI4ZTU1MDMxNDEzOGY5ZDgzYTI4YjJkNjY2ZTliODc0 NGI1MTAwHhcNMjUxMjI1MDEwMTE5WhcNMjUxMjI2MDEwMTE5WjAzMTEwLwYDVQQD Eyg3MjcxOWYxZmEyYjI4M2NhMjc4NDgxMWViZjIxMzkyZGE2NzViMWU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtiKPnFHgZftbM1zsC9QKt/yDQiPA RRNJ+yDVpUIjry/h8SX3u1QqcwqnozaqVkfocO1jCmJYVDsFIabCIvHXS0zECNoO TmntPIXHFxiD/+NV8CRt0njGwVeyNxYejQh1VQMQ/uYzgmEIU7nFCB+zzGAoe2p8 gtm6eHhknYm2UeixfwP2cib1vL5g05olW4J9dNjZZk+/YkZHk7uIuZ/vrPxFyZuW LiCIPPUg9zaaUZEgaHpvgpWaIdfEW5g/0glM88a8HCCVOfpS4UDezPrfRRLTyFpo uxOT3jSKC+C7QGDBQzYChAJ7hnsZFMJzE6wzZbQUo+fwjkj7IM7t5rrJIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHJxnx+isoPKJ4SBHr8hOS2mdbHoMB8GA1UdIwQY MBaAFCLijlUDFBOPnYOiiy1mbpuHRLUQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXVLT1ZRTVVFNC1kZzZLTExXWnVtNGRFdFJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS8zMzZhNmYtMmI4OS00YjMyLTg5ZjYt NGQyMDljMzI4OGFiLzEvSXVLT1ZRTVVFNC1kZzZLTExXWnVtNGRFdFJBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS8zMzZhNmYtMmI4OS00YjMyLTg5ZjYtNGQyMDljMzI4OGFi LzEvSXVLT1ZRTVVFNC1kZzZLTExXWnVtNGRFdFJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAisDdV3h9 MItVAhseswAhfO7sblvva1u0ZNz1yv3p1KUg1jz9QIXy7kzpcNRFD1c7SpZyjH8v Lz7RcKtHZMVv1w6oc3NoV8oykPwGoqcEKc5vgvRQ25pzqbv6M9tAd9F9wv5SWl1o WSupQK7Z3UH3AR0dZWt85GfUJUQ6TKGjo7tyWPCWH/xIjvsRGRrY/08/sIk1PJsN KmFc0mGMMpS6RqH3J92Z24DEFqc8gAeMAG+e2jXyanVxs7ikTyBwTZDwuO8WLSiS I09p5ODdgWBOkMEspfZI+E94VLNWEWYXfewVeRo14zHIoAQAYNALvu960yaelMAe QZsbnvHEDQ9AXA== -----END CERTIFICATE-----Generated at Thu Dec 25 06:23:26 2025 by rpki-client