This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft File: IM1XQoSmAY5bA2Neml1lj99XNPA.mft (raw, json) Hash identifier: UGjCNDDFpW5RBIikBPAjoIaDBPp+SqCVoJAku6xA4EQ= Subject key identifier: 90:3C:5F:5F:3E:B2:89:DF:E9:82:80:F4:5C:4E:8F:66:E5:64:B6:14 Authority key identifier: 20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0 Certificate issuer: /CN=20cd574284a6018e5b03635e9a5d658fdf5734f0 Certificate serial: 019B26645B2DBD37CCA68F04BEA935F42E0D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft Manifest number: 14C2 Signing time: Tue 16 Dec 2025 09:01:09 +0000 Manifest this update: Tue 16 Dec 2025 09:01:09 +0000 Manifest next update: Wed 17 Dec 2025 09:01:09 +0000 Files and hashes: 1: IM1XQoSmAY5bA2Neml1lj99XNPA.crl (hash: vDBcVH8ZRU/NenzwoTnGjbcEb6pPaA85yhscQYg5Jk8=) 2: MWwIJyVW-xGM8HHmiPSGu90ysVM.roa (hash: 9euJkhmoCQb1LOfkGIPpqowd4pomSIjB0l7bFL7u4Yg=) 3: PiMCmpetvGyOad9hAP8fiU1Qa8U.roa (hash: W2k0p2aLpcmF1pGu+mKgyVPY0tAWg3LNT6+Z7BuBqqY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 09:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:26:64:5b:2d:bd:37:cc:a6:8f:04:be:a9:35:f4:2e:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20cd574284a6018e5b03635e9a5d658fdf5734f0 Validity Not Before: Dec 16 09:01:09 2025 GMT Not After : Dec 17 09:01:09 2025 GMT Subject: CN=903c5f5f3eb289dfe98280f45c4e8f66e564b614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:a8:81:1e:97:d2:0d:97:67:9f:9a:95:4e:b1: 70:41:73:61:1c:ac:e2:59:34:73:d9:d8:d5:e3:fc: 92:65:3a:1e:9a:22:0b:51:8d:68:ba:b9:7b:14:a6: 29:11:0d:02:40:40:50:54:dc:d5:fa:51:4e:22:48: 49:28:06:6d:4d:17:a2:55:32:e0:5e:c9:50:96:09: 2c:07:e1:5a:cc:93:a9:a5:db:c6:6d:08:c7:78:5e: 9d:a9:14:4f:01:06:9c:56:33:aa:b9:0b:cb:a9:50: 6d:a4:a9:ee:97:73:5a:c5:ac:ce:20:17:18:2b:1b: 6d:48:7b:28:72:85:ea:f4:15:11:ac:65:f9:78:ac: 67:72:0d:9a:79:f4:9d:65:0e:23:38:a9:46:f5:e7: 73:4d:af:73:5d:98:7b:0f:12:52:b8:64:4f:ea:f7: 3c:08:bb:89:87:31:9a:2d:68:cf:95:e2:00:c8:06: c4:7f:99:b9:3d:6d:15:c7:ff:ba:2d:1c:c0:e9:f0: 4e:be:7b:5c:c0:f8:9f:af:6b:8d:58:22:e9:ae:4e: 1d:6f:02:79:37:d2:e4:a1:b6:07:26:55:0a:84:4c: b9:e1:45:3b:65:4a:02:8e:ab:dd:b4:2f:27:bb:63: db:cb:09:81:03:24:03:5e:70:e0:dc:c5:93:e9:2f: b2:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:3C:5F:5F:3E:B2:89:DF:E9:82:80:F4:5C:4E:8F:66:E5:64:B6:14 X509v3 Authority Key Identifier: keyid:20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:01:e9:e0:68:2d:a6:aa:a2:1d:56:43:1d:39:12:aa:c6:2e: 4d:59:e5:9c:c1:23:43:d6:06:09:f8:19:fb:27:b6:dc:b0:58: fe:39:e0:bc:0e:2c:fb:4f:f1:52:c7:14:5e:70:3f:49:e3:3c: 17:84:66:14:af:7a:e7:70:80:44:5c:71:91:3c:ae:a4:27:10: 2b:ff:69:8d:e7:d8:9e:7f:f9:90:1c:d7:a8:98:4d:af:00:99: 79:1b:43:97:1a:d3:97:8c:4d:96:29:7e:ee:76:b9:bb:23:a0: 2c:71:97:8d:40:0d:0a:2f:16:e5:be:12:0c:5a:11:52:3a:72: 1a:78:69:33:9f:ae:d9:67:4d:fd:79:d7:1f:9d:a5:27:ae:80: 83:b3:35:9c:5e:19:cd:2c:22:2b:5f:80:a2:7a:63:81:43:8f: 82:c1:ba:e3:38:11:66:a2:82:38:9f:8a:72:43:f2:85:34:66: cb:c5:6c:cb:de:1f:c2:ad:63:e5:93:e0:1f:8a:e4:f1:5c:49: b5:7d:ea:27:f2:61:25:4c:b8:1a:71:e4:26:5c:0a:58:c3:64: 88:66:f0:d7:05:34:5a:dc:65:97:b7:ab:43:6e:58:c9:36:9e: b7:21:4d:cf:c5:35:67:7e:00:5f:75:e3:d2:6c:ce:b1:cf:ca: ce:28:02:ee -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsmZFstvTfMpo8Evqk19C4NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwY2Q1NzQyODRhNjAxOGU1YjAzNjM1ZTlhNWQ2NThmZGY1 NzM0ZjAwHhcNMjUxMjE2MDkwMTA5WhcNMjUxMjE3MDkwMTA5WjAzMTEwLwYDVQQD Eyg5MDNjNWY1ZjNlYjI4OWRmZTk4MjgwZjQ1YzRlOGY2NmU1NjRiNjE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA56iBHpfSDZdnn5qVTrFwQXNhHKzi WTRz2djV4/ySZToemiILUY1ourl7FKYpEQ0CQEBQVNzV+lFOIkhJKAZtTReiVTLg XslQlgksB+FazJOppdvGbQjHeF6dqRRPAQacVjOquQvLqVBtpKnul3NaxazOIBcY KxttSHsocoXq9BURrGX5eKxncg2aefSdZQ4jOKlG9edzTa9zXZh7DxJSuGRP6vc8 CLuJhzGaLWjPleIAyAbEf5m5PW0Vx/+6LRzA6fBOvntcwPifr2uNWCLprk4dbwJ5 N9LkobYHJlUKhEy54UU7ZUoCjqvdtC8nu2PbywmBAyQDXnDg3MWT6S+yNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJA8X18+sonf6YKA9FxOj2blZLYUMB8GA1UdIwQY MBaAFCDNV0KEpgGOWwNjXppdZY/fVzTwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy9jMjE2Y2EtYWE5ZC00ZDIxLTg0MWUt NDliNTY4N2ZlZTZkLzEvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy9jMjE2Y2EtYWE5ZC00ZDIxLTg0MWUtNDliNTY4N2ZlZTZk LzEvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnwHp4Ggt pqqiHVZDHTkSqsYuTVnlnMEjQ9YGCfgZ+ye23LBY/jngvA4s+0/xUscUXnA/SeM8 F4RmFK9653CARFxxkTyupCcQK/9pjefYnn/5kBzXqJhNrwCZeRtDlxrTl4xNlil+ 7na5uyOgLHGXjUANCi8W5b4SDFoRUjpyGnhpM5+u2WdN/XnXH52lJ66Ag7M1nF4Z zSwiK1+AonpjgUOPgsG64zgRZqKCOJ+KckPyhTRmy8Vsy94fwq1j5ZPgH4rk8VxJ tX3qJ/JhJUy4GnHkJlwKWMNkiGbw1wU0Wtxll7erQ25YyTaetyFNz8U1Z34AX3Xj 0mzOsc/KzigC7g== -----END CERTIFICATE-----Generated at Tue Dec 16 12:48:11 2025 by rpki-client