This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft File: i7dzgYUSSQpQCthD6irnF-8hsUw.mft (raw, json) Hash identifier: KE1wc++mPWpNwqZqEvpVL8i/taZVwpBLtVc5z7rinfU= Subject key identifier: 4C:CD:DF:0A:F5:87:BE:55:9E:55:95:F6:5E:B4:0E:50:21:7F:65:BE Authority key identifier: 8B:B7:73:81:85:12:49:0A:50:0A:D8:43:EA:2A:E7:17:EF:21:B1:4C Certificate issuer: /CN=8bb773818512490a500ad843ea2ae717ef21b14c Certificate serial: 019B3C7EA274A1FF4C7D13196464ED40BFA4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft Manifest number: 1787 Signing time: Sat 20 Dec 2025 16:01:30 +0000 Manifest this update: Sat 20 Dec 2025 16:01:30 +0000 Manifest next update: Sun 21 Dec 2025 16:01:30 +0000 Files and hashes: 1: L6BmwALeicC8VgFsadJhZLZOhdw.roa (hash: jlbIuI51ox4C1wny8/EXm0XGuTxyG7RmZ5JEvI5tNCo=) 2: i7dzgYUSSQpQCthD6irnF-8hsUw.crl (hash: 18eP+cJAPzvPBbJS0LBTMtpKB1Ponug505/1/AmvG+8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:7e:a2:74:a1:ff:4c:7d:13:19:64:64:ed:40:bf:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8bb773818512490a500ad843ea2ae717ef21b14c Validity Not Before: Dec 20 16:01:30 2025 GMT Not After : Dec 21 16:01:30 2025 GMT Subject: CN=4ccddf0af587be559e5595f65eb40e50217f65be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:40:a5:7b:ed:91:44:66:d8:39:36:1c:77:3c: 8a:db:57:94:1e:35:d7:c2:2f:c9:04:4a:81:c1:b7: 0f:09:7b:2d:16:4a:9f:22:53:58:ef:30:6b:ee:e6: 1d:36:c4:ef:79:10:36:a7:1d:73:27:be:b4:fa:e6: db:88:17:e9:3b:8e:b1:1c:bf:b5:19:07:43:98:9f: 5b:29:ca:79:79:3d:ef:4e:c7:59:2e:13:ce:0a:95: 5b:c5:18:83:25:7d:86:77:6e:91:e2:64:7d:01:11: 03:e8:da:7e:d6:b8:aa:92:85:90:94:9f:46:d4:aa: 7d:e2:87:a2:80:96:73:5b:43:72:bb:02:56:e6:f5: b8:ef:01:b7:ca:d8:27:b6:17:49:5f:66:26:66:5c: 0c:9c:9a:09:f7:7f:c7:55:fb:1a:09:9f:4c:10:87: f0:52:32:61:72:2e:5c:f1:47:3a:9a:fd:ed:5a:9e: 80:54:71:ab:c2:cc:ea:b6:97:17:4d:8b:17:b8:44: 5e:a3:f4:0c:ca:54:10:8a:c7:8c:da:6f:e4:c7:a6: a5:d1:42:58:f8:99:ee:12:12:58:f9:d1:60:e2:49: d3:92:28:8b:7c:64:58:db:e1:4e:53:49:2d:08:49: 55:67:de:da:a0:bd:9d:3f:b8:97:b3:1f:36:3a:56: 1d:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:CD:DF:0A:F5:87:BE:55:9E:55:95:F6:5E:B4:0E:50:21:7F:65:BE X509v3 Authority Key Identifier: keyid:8B:B7:73:81:85:12:49:0A:50:0A:D8:43:EA:2A:E7:17:EF:21:B1:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:c9:14:3c:17:ed:d4:64:78:29:6b:e4:20:4d:47:29:68:5a: 14:39:55:ef:af:58:92:76:b0:6a:a6:00:ae:b8:4a:36:16:5c: 5d:4d:ae:24:3a:94:f5:55:22:5a:16:b8:56:cb:0c:c1:5a:cb: 67:da:9f:0c:52:8c:bf:a6:c8:b9:45:4b:bf:24:25:d7:a9:47: a1:f9:6b:15:df:ac:45:3d:13:45:5b:8e:56:db:5c:85:f7:5c: dc:2c:61:80:92:b4:33:9e:4f:0c:e2:b1:ee:7b:ea:45:36:73: 77:fe:7c:d5:5c:6c:d4:7f:6d:6f:b6:90:13:c9:26:7c:34:07: b5:28:53:e0:9b:b2:0c:29:d6:4d:10:3c:5e:d4:13:90:eb:07: 0a:cf:34:92:b2:9c:25:eb:ae:a0:ab:36:c9:55:90:3d:3d:43: 6c:33:d2:33:d6:ef:dc:d4:ba:b4:06:d5:9d:ab:96:dc:86:d0: 95:7f:bc:fd:f2:4a:de:2a:48:af:68:38:03:3a:2d:d2:d6:e4: 3f:5e:10:ae:e8:c0:15:85:5f:ba:7e:6a:69:6f:d4:88:a7:6c: b3:52:c5:53:a8:67:ca:f4:90:2a:8b:7f:23:21:72:dc:05:0b: c9:1b:51:70:c5:29:79:d7:18:11:67:0c:fe:89:98:42:74:5d: 6a:9c:7b:ad -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8fqJ0of9MfRMZZGTtQL+kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiYjc3MzgxODUxMjQ5MGE1MDBhZDg0M2VhMmFlNzE3ZWYy MWIxNGMwHhcNMjUxMjIwMTYwMTMwWhcNMjUxMjIxMTYwMTMwWjAzMTEwLwYDVQQD Eyg0Y2NkZGYwYWY1ODdiZTU1OWU1NTk1ZjY1ZWI0MGU1MDIxN2Y2NWJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiECle+2RRGbYOTYcdzyK21eUHjXX wi/JBEqBwbcPCXstFkqfIlNY7zBr7uYdNsTveRA2px1zJ760+ubbiBfpO46xHL+1 GQdDmJ9bKcp5eT3vTsdZLhPOCpVbxRiDJX2Gd26R4mR9ARED6Np+1riqkoWQlJ9G 1Kp94oeigJZzW0NyuwJW5vW47wG3ytgnthdJX2YmZlwMnJoJ93/HVfsaCZ9MEIfw UjJhci5c8Uc6mv3tWp6AVHGrwszqtpcXTYsXuEReo/QMylQQiseM2m/kx6al0UJY +JnuEhJY+dFg4knTkiiLfGRY2+FOU0ktCElVZ97aoL2dP7iXsx82OlYdKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEzN3wr1h75VnlWV9l60DlAhf2W+MB8GA1UdIwQY MBaAFIu3c4GFEkkKUArYQ+oq5xfvIbFMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTdkemdZVVNTUXBRQ3RoRDZpcm5GLThoc1V3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS81ZGVkNmMtYjQ2OS00MjBjLWIxNWUt NTJiM2Y2OGRjMGMyLzEvaTdkemdZVVNTUXBRQ3RoRDZpcm5GLThoc1V3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS81ZGVkNmMtYjQ2OS00MjBjLWIxNWUtNTJiM2Y2OGRjMGMy LzEvaTdkemdZVVNTUXBRQ3RoRDZpcm5GLThoc1V3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOskUPBft 1GR4KWvkIE1HKWhaFDlV769YknawaqYArrhKNhZcXU2uJDqU9VUiWha4VssMwVrL Z9qfDFKMv6bIuUVLvyQl16lHoflrFd+sRT0TRVuOVttchfdc3CxhgJK0M55PDOKx 7nvqRTZzd/581Vxs1H9tb7aQE8kmfDQHtShT4JuyDCnWTRA8XtQTkOsHCs80krKc JeuuoKs2yVWQPT1DbDPSM9bv3NS6tAbVnauW3IbQlX+8/fJK3ipIr2g4Azot0tbk P14QrujAFYVfun5qaW/UiKdss1LFU6hnyvSQKot/IyFy3AULyRtRcMUpedcYEWcM /omYQnRdapx7rQ== -----END CERTIFICATE-----Generated at Sat Dec 20 20:25:30 2025 by rpki-client