This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft File: i70nOhRTYWFVEmDYSNdvomRGzUY.mft (raw, json) Hash identifier: jxVElvCLOnvMq/YIXil6/gQ+0Yhcivv6dJcJaoMB5fc= Subject key identifier: A3:DC:D4:71:24:E6:0C:D0:35:3F:57:22:FB:69:CE:BF:2E:72:9B:BB Authority key identifier: 8B:BD:27:3A:14:53:61:61:55:12:60:D8:48:D7:6F:A2:64:46:CD:46 Certificate issuer: /CN=8bbd273a14536161551260d848d76fa26446cd46 Certificate serial: 019B5D896BDA3F6FC2C985035A5F11A39E8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft Manifest number: 0371 Signing time: Sat 27 Dec 2025 02:00:45 +0000 Manifest this update: Sat 27 Dec 2025 02:00:45 +0000 Manifest next update: Sun 28 Dec 2025 02:00:45 +0000 Files and hashes: 1: i70nOhRTYWFVEmDYSNdvomRGzUY.crl (hash: JkeBlav9166u0Oce9qf6J+7rYXpn2NUkuefTSTduoVQ=) 2: iW3M8w8EnOfRKmq5UL0Jzk_nXrc.roa (hash: vQxUQ/gQ4diOyDGNSgt4mcIRpvqTprh0PY77byZ05KY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5d:89:6b:da:3f:6f:c2:c9:85:03:5a:5f:11:a3:9e:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8bbd273a14536161551260d848d76fa26446cd46 Validity Not Before: Dec 27 02:00:45 2025 GMT Not After : Dec 28 02:00:45 2025 GMT Subject: CN=a3dcd47124e60cd0353f5722fb69cebf2e729bbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c0:e7:65:f5:60:73:45:db:88:2f:59:3b:73: 20:90:0a:ca:c1:73:a9:4a:dd:26:ff:90:15:a1:eb: 5a:7f:36:07:be:de:e5:5c:5b:6e:6f:83:81:5c:65: d1:0a:94:5d:9a:4c:69:d5:4e:cc:29:df:17:5e:d9: fa:ee:46:27:f2:6a:b2:1a:2d:f8:09:9e:e1:6e:3f: fe:52:22:8e:1a:f9:42:b5:7b:c0:72:31:1d:6d:90: b5:3f:54:8d:41:2e:36:20:47:3a:50:da:23:d7:66: 38:50:e9:f9:53:97:b2:e5:77:41:4a:51:8a:61:ca: da:1e:27:1a:13:44:07:08:61:08:8b:2c:3f:d8:b7: cf:dc:1e:87:61:3c:01:eb:c5:15:43:0e:bb:a4:a6: 72:ce:09:92:c9:23:c4:06:14:51:d6:96:6b:6d:c8: 03:85:41:51:dd:ad:b4:e4:53:59:95:34:b7:28:e2: 09:81:29:c3:6a:97:13:8c:38:48:5c:d2:5e:d4:7b: 9e:2b:e3:0a:d3:b5:56:86:20:0d:14:1b:52:12:cc: 16:d0:9b:c7:d5:0d:71:eb:8a:36:96:31:d5:9e:e9: 9c:24:a3:9e:d3:e3:6d:74:fa:61:af:e6:11:9f:6f: f9:70:6f:9d:55:b4:0c:d0:80:12:66:c5:d2:31:80: 28:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:DC:D4:71:24:E6:0C:D0:35:3F:57:22:FB:69:CE:BF:2E:72:9B:BB X509v3 Authority Key Identifier: keyid:8B:BD:27:3A:14:53:61:61:55:12:60:D8:48:D7:6F:A2:64:46:CD:46 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:1f:8f:cb:bd:95:57:f6:43:d4:d4:40:4f:9e:a2:50:f9:68: c6:76:7c:81:eb:9c:eb:e2:d9:6f:4a:98:e2:98:8b:bd:08:94: 4d:52:a1:16:00:b4:39:8c:27:d4:e9:d2:b7:39:56:05:89:58: 0e:d8:75:f2:3a:a2:b0:80:20:c7:a9:c1:5d:90:2a:fb:3b:21: 52:80:85:47:4d:8a:9d:70:d2:98:20:33:3b:fd:34:f6:4a:f9: cc:09:c9:ca:39:ec:66:b5:d1:15:01:8c:98:cf:a7:4c:6f:89: 5a:c3:c3:ee:18:86:5e:fe:c5:3a:e4:ec:c8:5d:21:07:7f:e4: a7:1c:3b:79:80:27:3a:ba:2e:73:1a:d9:60:18:01:9f:85:df: a0:1e:0a:0f:39:07:0f:b0:ee:32:d8:9f:65:3f:75:78:10:95: fa:7a:99:c3:1e:23:9e:26:de:2d:e1:0c:ab:18:4a:c2:b5:bc: 15:6a:0a:17:4c:97:e6:72:32:55:ad:88:29:1f:38:d7:af:3e: 84:aa:9b:db:94:ff:c4:8f:73:4c:c4:5e:4a:15:ac:59:65:60: 0e:87:51:ef:57:b5:f0:29:00:02:43:b8:f3:77:fd:94:c2:5d: 75:50:0a:a1:fd:81:0a:35:88:16:ae:6d:16:52:f1:12:5d:58: 96:4a:34:77 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtdiWvaP2/CyYUDWl8Ro56NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiYmQyNzNhMTQ1MzYxNjE1NTEyNjBkODQ4ZDc2ZmEyNjQ0 NmNkNDYwHhcNMjUxMjI3MDIwMDQ1WhcNMjUxMjI4MDIwMDQ1WjAzMTEwLwYDVQQD EyhhM2RjZDQ3MTI0ZTYwY2QwMzUzZjU3MjJmYjY5Y2ViZjJlNzI5YmJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt8DnZfVgc0XbiC9ZO3MgkArKwXOp St0m/5AVoetafzYHvt7lXFtub4OBXGXRCpRdmkxp1U7MKd8XXtn67kYn8mqyGi34 CZ7hbj/+UiKOGvlCtXvAcjEdbZC1P1SNQS42IEc6UNoj12Y4UOn5U5ey5XdBSlGK YcraHicaE0QHCGEIiyw/2LfP3B6HYTwB68UVQw67pKZyzgmSySPEBhRR1pZrbcgD hUFR3a205FNZlTS3KOIJgSnDapcTjDhIXNJe1HueK+MK07VWhiANFBtSEswW0JvH 1Q1x64o2ljHVnumcJKOe0+NtdPphr+YRn2/5cG+dVbQM0IASZsXSMYAoBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKPc1HEk5gzQNT9XIvtpzr8ucpu7MB8GA1UdIwQY MBaAFIu9JzoUU2FhVRJg2EjXb6JkRs1GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTcwbk9oUlRZV0ZWRW1EWVNOZHZvbVJHelVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9hNzMzZjYtMDlhZC00ZjFhLWEzNTct ZTE2MjIwMzI5NmJiLzEvaTcwbk9oUlRZV0ZWRW1EWVNOZHZvbVJHelVZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC9hNzMzZjYtMDlhZC00ZjFhLWEzNTctZTE2MjIwMzI5NmJi LzEvaTcwbk9oUlRZV0ZWRW1EWVNOZHZvbVJHelVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADR+Py72V V/ZD1NRAT56iUPloxnZ8geuc6+LZb0qY4piLvQiUTVKhFgC0OYwn1OnStzlWBYlY Dth18jqisIAgx6nBXZAq+zshUoCFR02KnXDSmCAzO/009kr5zAnJyjnsZrXRFQGM mM+nTG+JWsPD7hiGXv7FOuTsyF0hB3/kpxw7eYAnOroucxrZYBgBn4XfoB4KDzkH D7DuMtifZT91eBCV+nqZwx4jnibeLeEMqxhKwrW8FWoKF0yX5nIyVa2IKR84168+ hKqb25T/xI9zTMReShWsWWVgDodR71e18CkAAkO483f9lMJddVAKof2BCjWIFq5t FlLxEl1Ylko0dw== -----END CERTIFICATE-----Generated at Sat Dec 27 06:14:53 2025 by rpki-client