This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft File: 1IW26difsBA2mXHtiIVyBZhdSRg.mft (raw, json) Hash identifier: /+suRxT9rlIk9aD+WNDbWk7SelJHPck0TLssKRpSEWw= Subject key identifier: 82:3E:17:14:95:27:DA:CD:44:A8:35:C0:39:F8:2D:15:36:88:CA:CC Authority key identifier: D4:85:B6:E9:D8:9F:B0:10:36:99:71:ED:88:85:72:05:98:5D:49:18 Certificate issuer: /CN=d485b6e9d89fb010369971ed88857205985d4918 Certificate serial: 019B42802EABCAB5BB930F262E8EC43DFEA0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft Manifest number: 178B Signing time: Sun 21 Dec 2025 20:00:55 +0000 Manifest this update: Sun 21 Dec 2025 20:00:55 +0000 Manifest next update: Mon 22 Dec 2025 20:00:55 +0000 Files and hashes: 1: 1IW26difsBA2mXHtiIVyBZhdSRg.crl (hash: PePAHpVAwd9eDRcsXAAYzhmhyi7iP/kSD5wOp3Neltw=) 2: kFp1ntirY-_nRj5W9JqqX1ydSnU.roa (hash: NWOTQpr3hkXHB9fkn9UXRHKGkCwc9Gafyc4Z5IuHimc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft rsync://rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:42:80:2e:ab:ca:b5:bb:93:0f:26:2e:8e:c4:3d:fe:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d485b6e9d89fb010369971ed88857205985d4918 Validity Not Before: Dec 21 20:00:55 2025 GMT Not After : Dec 22 20:00:55 2025 GMT Subject: CN=823e17149527dacd44a835c039f82d153688cacc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:77:b5:12:b9:ad:3e:39:de:a8:26:b7:27:8e: 15:8b:77:aa:ce:5d:f7:b4:1b:61:bb:f6:c1:f8:ea: 3b:d9:7d:49:19:2f:02:2c:5d:ba:18:c0:2c:44:3d: 96:96:26:cd:04:b1:d2:c8:30:c3:e3:b0:b9:c9:91: ce:a0:24:64:61:c9:df:c5:b2:14:11:50:fb:cb:03: c7:4b:48:31:dc:3e:2c:e4:b2:dc:aa:07:50:87:98: 00:1f:56:b0:8d:43:3d:29:ed:14:33:f2:8e:e7:45: 6d:f2:af:c0:fa:f0:ff:55:3b:e9:fb:9a:48:e8:cf: 4e:96:2a:4d:7c:ea:a3:c0:ef:2a:6c:76:50:36:97: 9a:28:42:a4:4e:57:47:93:6b:21:25:44:5a:7c:8d: d7:98:3b:19:7a:f0:16:80:76:ad:22:b6:5a:06:b5: 5d:9b:e5:ee:45:11:6d:e1:31:57:fd:b7:85:24:30: ae:26:7c:85:03:46:c7:c1:0b:33:67:9b:2c:33:03: dd:8f:96:81:d4:2e:7c:fd:67:12:18:8d:0e:6a:62: fa:0a:16:0d:6e:49:37:72:87:41:13:c3:09:77:d9: 18:23:45:ae:b9:7d:f2:30:59:45:31:f6:2f:b9:47: f6:c1:22:57:85:cb:91:89:23:e4:ec:c0:31:ff:87: 41:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:3E:17:14:95:27:DA:CD:44:A8:35:C0:39:F8:2D:15:36:88:CA:CC X509v3 Authority Key Identifier: keyid:D4:85:B6:E9:D8:9F:B0:10:36:99:71:ED:88:85:72:05:98:5D:49:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:ac:99:78:ab:7a:27:cc:4f:c2:21:e0:83:1f:8a:55:d4:5b: eb:c0:1a:df:6d:4d:52:ae:a7:70:1f:4d:e3:af:2f:a0:d3:18: 2b:f9:7e:5d:69:5d:db:03:34:3c:40:d8:a6:2b:df:1a:8a:c6: dc:62:a2:7b:48:07:3e:5f:8a:4a:7d:05:ed:b3:d9:3f:14:ff: e1:4e:09:81:f0:6b:d0:f5:66:6e:4b:cb:9c:c8:1d:ea:4b:f0: cf:54:d3:43:2a:e6:7c:4a:11:0b:dc:ff:d6:0c:96:fd:12:b3: 58:34:78:39:cd:e7:0b:e2:9b:7a:9d:aa:41:15:a4:a4:57:53: 37:24:87:92:e9:de:89:76:a3:1c:8e:ac:e0:57:59:02:c3:4b: 1d:21:0f:11:29:b2:5e:b9:7b:49:41:c9:84:47:b5:4b:ac:ef: dc:66:e7:e3:cc:c0:ff:7e:27:ad:fb:4c:46:e3:2d:b6:9d:23: f2:2b:19:5c:39:33:a4:ba:b0:d5:ba:43:0b:cf:65:11:4f:8c: a0:a9:71:d1:76:07:90:cc:9f:f8:72:44:a4:71:f5:c8:4b:f9: 44:04:9c:7e:7e:a4:fb:c5:f9:81:ac:70:0c:4c:2e:8d:ff:02: 95:40:72:e1:37:8d:64:d4:84:1f:c3:e8:02:f7:3c:06:cf:02: 3c:1d:e7:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtCgC6ryrW7kw8mLo7EPf6gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0ODViNmU5ZDg5ZmIwMTAzNjk5NzFlZDg4ODU3MjA1OTg1 ZDQ5MTgwHhcNMjUxMjIxMjAwMDU1WhcNMjUxMjIyMjAwMDU1WjAzMTEwLwYDVQQD Eyg4MjNlMTcxNDk1MjdkYWNkNDRhODM1YzAzOWY4MmQxNTM2ODhjYWNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA23e1ErmtPjneqCa3J44Vi3eqzl33 tBthu/bB+Oo72X1JGS8CLF26GMAsRD2WlibNBLHSyDDD47C5yZHOoCRkYcnfxbIU EVD7ywPHS0gx3D4s5LLcqgdQh5gAH1awjUM9Ke0UM/KO50Vt8q/A+vD/VTvp+5pI 6M9OlipNfOqjwO8qbHZQNpeaKEKkTldHk2shJURafI3XmDsZevAWgHatIrZaBrVd m+XuRRFt4TFX/beFJDCuJnyFA0bHwQszZ5ssMwPdj5aB1C58/WcSGI0OamL6ChYN bkk3codBE8MJd9kYI0WuuX3yMFlFMfYvuUf2wSJXhcuRiSPk7MAx/4dB/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFII+FxSVJ9rNRKg1wDn4LRU2iMrMMB8GA1UdIwQY MBaAFNSFtunYn7AQNplx7YiFcgWYXUkYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUlXMjZkaWZzQkEybVhIdGlJVnlCWmhkU1JnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy84NTg5MTAtYzUwMS00NTljLWEzMTMt N2FjNjgwZWQ1ZGQ3LzEvMUlXMjZkaWZzQkEybVhIdGlJVnlCWmhkU1JnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy84NTg5MTAtYzUwMS00NTljLWEzMTMtN2FjNjgwZWQ1ZGQ3 LzEvMUlXMjZkaWZzQkEybVhIdGlJVnlCWmhkU1JnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGqyZeKt6 J8xPwiHggx+KVdRb68Aa321NUq6ncB9N468voNMYK/l+XWld2wM0PEDYpivfGorG 3GKie0gHPl+KSn0F7bPZPxT/4U4JgfBr0PVmbkvLnMgd6kvwz1TTQyrmfEoRC9z/ 1gyW/RKzWDR4Oc3nC+Kbep2qQRWkpFdTNySHkuneiXajHI6s4FdZAsNLHSEPESmy Xrl7SUHJhEe1S6zv3Gbn48zA/34nrftMRuMttp0j8isZXDkzpLqw1bpDC89lEU+M oKlx0XYHkMyf+HJEpHH1yEv5RAScfn6k+8X5gaxwDEwujf8ClUBy4TeNZNSEH8Po Avc8Bs8CPB3nNg== -----END CERTIFICATE-----Generated at Sun Dec 21 23:08:18 2025 by rpki-client