This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft File: 1IW26difsBA2mXHtiIVyBZhdSRg.mft (raw, json) Hash identifier: hOeUTNfQVfXO3cC4iUm/+0iLUwR5gltDxbE1/HQitEw= Subject key identifier: 18:B0:C1:86:CF:0F:3D:F3:D8:39:E1:63:C2:41:27:71:23:47:CB:BF Authority key identifier: D4:85:B6:E9:D8:9F:B0:10:36:99:71:ED:88:85:72:05:98:5D:49:18 Certificate issuer: /CN=d485b6e9d89fb010369971ed88857205985d4918 Certificate serial: 019B3EA370114608F36667D4657A35438FE5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft Manifest number: 1789 Signing time: Sun 21 Dec 2025 02:00:56 +0000 Manifest this update: Sun 21 Dec 2025 02:00:56 +0000 Manifest next update: Mon 22 Dec 2025 02:00:56 +0000 Files and hashes: 1: 1IW26difsBA2mXHtiIVyBZhdSRg.crl (hash: WJE/qx3o3zs48a8FzT5OebzVOP9WHumrWc7SyIMlEzI=) 2: kFp1ntirY-_nRj5W9JqqX1ydSnU.roa (hash: NWOTQpr3hkXHB9fkn9UXRHKGkCwc9Gafyc4Z5IuHimc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft rsync://rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:a3:70:11:46:08:f3:66:67:d4:65:7a:35:43:8f:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d485b6e9d89fb010369971ed88857205985d4918 Validity Not Before: Dec 21 02:00:56 2025 GMT Not After : Dec 22 02:00:56 2025 GMT Subject: CN=18b0c186cf0f3df3d839e163c24127712347cbbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:af:a7:59:f5:c9:c6:bc:11:0c:21:1f:73:16: 54:b0:f2:41:92:6f:37:68:a3:d7:69:72:4a:f9:45: 7f:33:6f:cc:13:83:86:cd:b1:43:4f:9f:6e:f1:e2: 7e:52:ec:97:9d:85:da:26:12:71:82:94:78:9d:4b: d1:64:9b:16:bc:8a:48:8b:c9:0d:e6:a8:cd:f1:d1: b3:95:51:5d:61:84:11:b7:09:04:9d:c7:2b:21:4b: c1:15:b8:24:78:64:82:d7:83:e3:25:d2:9c:6a:9e: 78:fc:9f:27:75:63:3b:9f:f2:29:cc:e3:db:8e:93: 55:17:29:97:da:54:39:79:d0:ee:f8:87:f9:2f:3b: 0a:f1:eb:53:98:bb:d5:32:1f:94:bb:cd:50:0c:1b: 59:b6:67:e7:6b:a8:c9:f3:5b:1b:f4:1c:ce:70:ef: 9e:22:87:2d:ec:45:43:6e:a9:25:76:ec:96:81:32: 63:16:91:dd:0f:eb:42:33:29:fd:12:9c:8e:92:6b: 21:8c:3c:88:34:1c:77:3f:16:ae:80:b0:0e:f6:32: 19:31:1f:3c:c2:91:37:70:8d:93:9b:05:f8:8c:10: 1f:4b:91:90:e0:c8:d6:9d:c8:0a:c9:85:05:36:e7: de:f0:66:03:4b:e8:04:e4:be:cc:97:ad:47:08:8d: b5:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:B0:C1:86:CF:0F:3D:F3:D8:39:E1:63:C2:41:27:71:23:47:CB:BF X509v3 Authority Key Identifier: keyid:D4:85:B6:E9:D8:9F:B0:10:36:99:71:ED:88:85:72:05:98:5D:49:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:30:10:65:e4:72:61:b3:49:70:0a:61:a7:51:b0:c1:49:0f: c9:cc:65:e3:e6:fd:42:a5:1f:e3:5c:7c:35:24:05:c4:61:4b: 5f:b2:f4:ab:61:29:b5:8b:9f:3a:a3:d9:87:9f:f8:08:e7:35: ca:12:01:72:93:1e:d1:52:82:d0:29:3d:fc:71:f5:7b:d0:5f: 09:96:73:20:f1:02:a3:95:0f:a1:03:81:da:92:56:cb:c7:50: 9c:97:4d:dc:17:6b:ec:cd:df:ec:10:2d:07:4d:2f:2b:9d:c0: a2:5d:43:3e:69:10:07:69:e3:0a:c5:79:36:17:52:fd:72:df: cd:52:0f:d2:63:65:6b:54:30:3c:89:82:2c:c7:f6:88:4f:26: 6d:bc:06:8c:72:2d:22:7a:15:67:f9:f1:ac:a2:f6:20:90:c7: a7:b2:b7:ca:df:58:8e:4b:52:67:7a:f6:c3:c5:79:a0:ec:52: 33:fe:59:b9:89:d8:59:fc:76:d3:f9:53:53:3e:7e:59:43:8f: c4:fa:43:94:0c:06:95:fd:dd:5d:8a:15:cc:aa:13:75:95:f5: d0:ac:6b:5a:cb:89:9c:85:20:00:0d:5d:ff:19:6f:23:11:e6: 0f:40:56:7a:f5:b5:da:ea:3d:91:41:fd:f3:27:66:84:95:c3: b7:07:65:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+o3ARRgjzZmfUZXo1Q4/lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0ODViNmU5ZDg5ZmIwMTAzNjk5NzFlZDg4ODU3MjA1OTg1 ZDQ5MTgwHhcNMjUxMjIxMDIwMDU2WhcNMjUxMjIyMDIwMDU2WjAzMTEwLwYDVQQD EygxOGIwYzE4NmNmMGYzZGYzZDgzOWUxNjNjMjQxMjc3MTIzNDdjYmJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx6+nWfXJxrwRDCEfcxZUsPJBkm83 aKPXaXJK+UV/M2/ME4OGzbFDT59u8eJ+UuyXnYXaJhJxgpR4nUvRZJsWvIpIi8kN 5qjN8dGzlVFdYYQRtwkEnccrIUvBFbgkeGSC14PjJdKcap54/J8ndWM7n/IpzOPb jpNVFymX2lQ5edDu+If5LzsK8etTmLvVMh+Uu81QDBtZtmfna6jJ81sb9BzOcO+e Ioct7EVDbqklduyWgTJjFpHdD+tCMyn9EpyOkmshjDyINBx3PxaugLAO9jIZMR88 wpE3cI2TmwX4jBAfS5GQ4MjWncgKyYUFNufe8GYDS+gE5L7Ml61HCI21JQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBiwwYbPDz3z2DnhY8JBJ3EjR8u/MB8GA1UdIwQY MBaAFNSFtunYn7AQNplx7YiFcgWYXUkYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUlXMjZkaWZzQkEybVhIdGlJVnlCWmhkU1JnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy84NTg5MTAtYzUwMS00NTljLWEzMTMt N2FjNjgwZWQ1ZGQ3LzEvMUlXMjZkaWZzQkEybVhIdGlJVnlCWmhkU1JnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy84NTg5MTAtYzUwMS00NTljLWEzMTMtN2FjNjgwZWQ1ZGQ3 LzEvMUlXMjZkaWZzQkEybVhIdGlJVnlCWmhkU1JnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOzAQZeRy YbNJcAphp1GwwUkPycxl4+b9QqUf41x8NSQFxGFLX7L0q2EptYufOqPZh5/4COc1 yhIBcpMe0VKC0Ck9/HH1e9BfCZZzIPECo5UPoQOB2pJWy8dQnJdN3Bdr7M3f7BAt B00vK53Aol1DPmkQB2njCsV5NhdS/XLfzVIP0mNla1QwPImCLMf2iE8mbbwGjHIt InoVZ/nxrKL2IJDHp7K3yt9YjktSZ3r2w8V5oOxSM/5ZuYnYWfx20/lTUz5+WUOP xPpDlAwGlf3dXYoVzKoTdZX10KxrWsuJnIUgAA1d/xlvIxHmD0BWevW12uo9kUH9 8ydmhJXDtwdlVQ== -----END CERTIFICATE-----Generated at Sun Dec 21 06:03:00 2025 by rpki-client