This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft File: Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft (raw, json) Hash identifier: +K984Ih2iXRlXcIrmtCDL6AaXZE3LFMiMGCsJ4pMXic= Subject key identifier: 70:1D:1C:72:2A:47:C6:87:45:34:D9:32:C0:38:62:4F:3B:C4:8B:C0 Authority key identifier: 21:AA:28:DE:21:BC:91:F3:9D:BF:2D:01:2F:D5:52:D2:2D:0F:5A:AA Certificate issuer: /CN=21aa28de21bc91f39dbf2d012fd552d22d0f5aaa Certificate serial: 019B6DA141EC2D632836465DA872322A22F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft Manifest number: 17A4 Signing time: Tue 30 Dec 2025 05:00:43 +0000 Manifest this update: Tue 30 Dec 2025 05:00:43 +0000 Manifest next update: Wed 31 Dec 2025 05:00:43 +0000 Files and hashes: 1: Iaoo3iG8kfOdvy0BL9VS0i0PWqo.crl (hash: 3utMULuRbh5e0T1Rawncccxezby2TvnXFn8aEVbLUN8=) 2: ZUnY6DcgMFOkn5YPuY63h16XVew.roa (hash: j75VTgwm6ax4o8jG9UYWYEtlaoF5sYfNI7iKEcRNxJM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft rsync://rpki.ripe.net/repository/DEFAULT/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 00:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6d:a1:41:ec:2d:63:28:36:46:5d:a8:72:32:2a:22:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21aa28de21bc91f39dbf2d012fd552d22d0f5aaa Validity Not Before: Dec 30 05:00:43 2025 GMT Not After : Dec 31 05:00:43 2025 GMT Subject: CN=701d1c722a47c6874534d932c038624f3bc48bc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ae:56:77:e8:4c:9e:2c:8f:3b:6e:55:9d:3d: c5:20:eb:48:2e:41:eb:32:d8:f5:29:34:0c:5b:08: e2:87:a3:8e:17:ee:ca:ee:35:46:78:28:34:71:ac: fe:0d:ed:c1:0f:22:fd:1c:4c:13:85:b5:09:d7:ec: 1f:07:d3:1a:c6:1d:e3:81:0d:b8:99:7e:a3:22:82: 35:94:e2:7f:21:94:5e:ce:f5:a0:b6:00:e1:c6:75: 95:44:2c:b6:c5:3d:27:bd:f0:81:6c:ed:41:e6:31: 8e:db:4a:bc:56:7d:b5:cf:51:7a:4c:95:7b:86:2f: 5a:f0:43:bd:39:7d:db:37:46:c7:93:0e:15:f3:d8: 94:61:39:1c:75:b1:8b:d1:da:bf:9f:56:28:5f:be: cb:53:35:58:44:c1:c5:c4:76:91:8e:c9:24:2a:38: bb:6d:57:7e:67:9e:7e:58:0a:c6:ed:df:b7:8b:9f: 6e:2f:4a:7a:f8:a1:76:63:4a:62:98:93:8e:ed:3c: 95:56:a1:45:c9:a3:ea:79:54:77:f5:91:12:73:7a: b6:a9:82:fb:2d:44:4d:04:c4:13:15:a3:b4:a7:22: 31:17:95:4e:38:1b:f5:ce:60:84:4e:18:ff:9f:a0: 15:e7:01:9b:5a:d2:1c:e7:41:26:ef:5c:15:36:b0: 80:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:1D:1C:72:2A:47:C6:87:45:34:D9:32:C0:38:62:4F:3B:C4:8B:C0 X509v3 Authority Key Identifier: keyid:21:AA:28:DE:21:BC:91:F3:9D:BF:2D:01:2F:D5:52:D2:2D:0F:5A:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:20:42:4d:1d:a7:e0:a8:4c:43:17:4a:36:5b:ff:0c:09:8c: 50:f2:4d:0c:0a:f0:a5:a9:e3:7f:1d:16:6c:14:c1:c6:36:3b: dd:d6:8d:29:3b:db:73:4b:2e:fd:a1:a0:21:0a:ce:64:32:87: 6b:b6:49:af:39:04:10:58:6c:2d:24:8c:85:5b:ca:cd:3d:b4: fb:69:90:d7:cd:ef:af:d5:00:2f:95:20:f2:fa:e2:68:1f:ed: 67:34:37:6b:c5:9c:d6:04:2b:a9:91:40:51:7c:fe:b8:31:fe: 78:46:c3:e5:cd:b5:b0:80:88:f2:da:68:bc:36:28:b6:6c:01: 20:ac:2b:54:b2:9f:0b:a6:59:57:ae:e0:04:1d:2c:7b:0d:a0: fd:ba:91:51:7d:c5:51:93:61:fb:53:64:cc:82:38:1f:b4:77: d7:34:c3:db:56:2e:84:2c:49:2f:51:9c:77:dd:0c:79:82:58: 88:19:e3:40:49:3d:67:db:78:60:be:2f:8b:11:08:75:4b:57: 74:9d:b8:ea:52:31:ea:1e:ee:e4:96:f2:e1:73:c0:00:ae:56: 51:2e:c6:fa:95:82:91:ea:9b:9e:4e:0f:66:65:7d:cf:6e:b4: d3:a1:0a:39:3c:a5:1b:8f:61:1d:61:17:3a:88:0a:19:a8:d2: 49:b3:d3:e6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZttoUHsLWMoNkZdqHIyKiLxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxYWEyOGRlMjFiYzkxZjM5ZGJmMmQwMTJmZDU1MmQyMmQw ZjVhYWEwHhcNMjUxMjMwMDUwMDQzWhcNMjUxMjMxMDUwMDQzWjAzMTEwLwYDVQQD Eyg3MDFkMWM3MjJhNDdjNjg3NDUzNGQ5MzJjMDM4NjI0ZjNiYzQ4YmMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6a5Wd+hMniyPO25VnT3FIOtILkHr Mtj1KTQMWwjih6OOF+7K7jVGeCg0caz+De3BDyL9HEwThbUJ1+wfB9Maxh3jgQ24 mX6jIoI1lOJ/IZRezvWgtgDhxnWVRCy2xT0nvfCBbO1B5jGO20q8Vn21z1F6TJV7 hi9a8EO9OX3bN0bHkw4V89iUYTkcdbGL0dq/n1YoX77LUzVYRMHFxHaRjskkKji7 bVd+Z55+WArG7d+3i59uL0p6+KF2Y0pimJOO7TyVVqFFyaPqeVR39ZESc3q2qYL7 LURNBMQTFaO0pyIxF5VOOBv1zmCEThj/n6AV5wGbWtIc50Em71wVNrCATQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHAdHHIqR8aHRTTZMsA4Yk87xIvAMB8GA1UdIwQY MBaAFCGqKN4hvJHznb8tAS/VUtItD1qqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWFvbzNpRzhrZk9kdnkwQkw5VlMwaTBQV3FvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS82M2E1YmItMjRkMC00ZGI5LWI1MTAt Zjk5NzNjNTc2YjAzLzEvSWFvbzNpRzhrZk9kdnkwQkw5VlMwaTBQV3FvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS82M2E1YmItMjRkMC00ZGI5LWI1MTAtZjk5NzNjNTc2YjAz LzEvSWFvbzNpRzhrZk9kdnkwQkw5VlMwaTBQV3FvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAICBCTR2n 4KhMQxdKNlv/DAmMUPJNDArwpanjfx0WbBTBxjY73daNKTvbc0su/aGgIQrOZDKH a7ZJrzkEEFhsLSSMhVvKzT20+2mQ183vr9UAL5Ug8vriaB/tZzQ3a8Wc1gQrqZFA UXz+uDH+eEbD5c21sICI8tpovDYotmwBIKwrVLKfC6ZZV67gBB0sew2g/bqRUX3F UZNh+1NkzII4H7R31zTD21YuhCxJL1Gcd90MeYJYiBnjQEk9Z9t4YL4vixEIdUtX dJ246lIx6h7u5Jby4XPAAK5WUS7G+pWCkeqbnk4PZmV9z26006EKOTylG49hHWEX OogKGajSSbPT5g== -----END CERTIFICATE-----Generated at Tue Dec 30 10:34:31 2025 by rpki-client