This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft File: iMaZNJivBRiWLl9I1chG3BddGIQ.mft (raw, json) Hash identifier: YyKiksUlofJTstUlUYlEBOI41BYSt5g1I+Gba48ORcs= Subject key identifier: F8:2F:1E:23:71:29:2B:7F:A5:23:F1:7E:D5:A5:4D:B1:5F:59:D9:49 Authority key identifier: 88:C6:99:34:98:AF:05:18:96:2E:5F:48:D5:C8:46:DC:17:5D:18:84 Certificate issuer: /CN=88c6993498af0518962e5f48d5c846dc175d1884 Certificate serial: 019B3343E3461B591069AAE49B7C74516C0E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMaZNJivBRiWLl9I1chG3BddGIQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft Manifest number: 1781 Signing time: Thu 18 Dec 2025 21:00:45 +0000 Manifest this update: Thu 18 Dec 2025 21:00:45 +0000 Manifest next update: Fri 19 Dec 2025 21:00:45 +0000 Files and hashes: 1: iMaZNJivBRiWLl9I1chG3BddGIQ.crl (hash: iMD9R57R2oTY2OskQovtOuCD8vnIlwK+LT+um5PIOWE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft rsync://rpki.ripe.net/repository/DEFAULT/iMaZNJivBRiWLl9I1chG3BddGIQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:43:e3:46:1b:59:10:69:aa:e4:9b:7c:74:51:6c:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88c6993498af0518962e5f48d5c846dc175d1884 Validity Not Before: Dec 18 21:00:45 2025 GMT Not After : Dec 19 21:00:45 2025 GMT Subject: CN=f82f1e2371292b7fa523f17ed5a54db15f59d949 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d2:e6:5c:aa:ad:b5:1a:e3:c0:d2:fe:b6:05: c6:84:8e:f6:c5:2d:46:7a:7a:b4:96:f0:50:31:22: 16:2f:6d:bc:2f:d6:71:3a:f1:48:a6:cf:9a:e4:0a: f6:27:87:10:e9:01:35:b9:35:8d:8a:69:7e:24:fe: ea:6f:90:a6:a2:e5:4d:f7:4f:53:a9:64:64:f4:94: f4:9a:8b:bb:84:f1:6f:ef:4f:49:61:f9:41:ef:5e: 48:f5:0e:cf:46:b2:30:6e:e0:04:f8:a9:44:a1:0a: 7f:8a:46:67:94:df:d4:da:10:32:01:08:a2:38:61: f8:ba:b5:6f:53:33:76:1a:45:4f:0b:ae:d6:5b:0b: e5:d3:d8:06:fa:12:a3:e6:cb:6d:5d:df:63:1f:b7: 53:a5:4c:ab:09:45:68:f2:0e:3b:40:ee:07:62:4b: 43:d0:da:de:a8:28:e6:e4:59:3c:96:1e:c0:7f:03: a4:dc:90:69:c8:90:c7:ed:9d:13:61:ba:c6:7d:06: f3:63:1e:d7:1c:74:14:17:1c:de:5a:2e:d5:25:62: 17:e9:09:26:f2:3a:ef:d0:bb:5a:17:76:b3:5b:4c: 7e:bf:fd:b1:d3:3e:3a:9d:40:e9:37:cd:23:89:16: f8:bf:ec:50:02:d0:4c:1c:7f:4c:0e:6e:15:bc:6d: b6:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:2F:1E:23:71:29:2B:7F:A5:23:F1:7E:D5:A5:4D:B1:5F:59:D9:49 X509v3 Authority Key Identifier: keyid:88:C6:99:34:98:AF:05:18:96:2E:5F:48:D5:C8:46:DC:17:5D:18:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMaZNJivBRiWLl9I1chG3BddGIQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c7:70:d5:b4:e6:cb:2c:6a:c9:55:5e:dd:68:56:58:27:d0:50: 14:a0:28:00:d4:c8:42:14:d9:bb:e3:47:44:b8:02:5f:b0:9d: dd:7a:6b:d7:75:a9:16:df:ff:af:94:3e:48:cb:51:bc:42:ef: ef:c5:a8:d8:f8:ba:0b:e3:35:5b:8f:09:be:d3:a6:3c:2d:26: 6e:b4:d4:4d:5e:de:90:80:3c:f2:b0:f2:d1:38:29:2a:84:b6: 41:8a:df:c6:fc:04:e3:90:60:f8:94:b4:8d:9a:18:59:5c:8f: 9d:31:f7:ce:98:c0:cd:1d:0c:81:f3:4f:a3:5a:6d:2f:c6:a6: 69:45:8f:9c:9c:d2:3f:00:e8:ec:bf:b5:a6:9a:b2:5f:05:57: ec:d4:77:53:5c:49:fb:92:a0:cf:a7:3e:6b:ab:04:3e:b3:b1: 6a:1b:65:84:dc:de:03:8e:27:35:35:49:77:31:80:bb:79:b9: d6:10:b7:ec:2a:b1:6e:b0:5f:e6:f1:8b:a2:76:09:7a:cb:89: 9a:27:ed:02:7d:27:7f:64:a6:c3:12:ee:d1:26:72:58:59:3f: 66:41:f1:34:d0:38:14:45:a9:74:92:59:f8:97:71:1d:78:34: ca:42:e2:61:bc:21:a4:7b:74:98:24:43:47:fa:31:da:e7:a7: ae:1f:ee:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszQ+NGG1kQaarkm3x0UWwOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4YzY5OTM0OThhZjA1MTg5NjJlNWY0OGQ1Yzg0NmRjMTc1 ZDE4ODQwHhcNMjUxMjE4MjEwMDQ1WhcNMjUxMjE5MjEwMDQ1WjAzMTEwLwYDVQQD EyhmODJmMWUyMzcxMjkyYjdmYTUyM2YxN2VkNWE1NGRiMTVmNTlkOTQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyNLmXKqttRrjwNL+tgXGhI72xS1G enq0lvBQMSIWL228L9ZxOvFIps+a5Ar2J4cQ6QE1uTWNiml+JP7qb5CmouVN909T qWRk9JT0mou7hPFv709JYflB715I9Q7PRrIwbuAE+KlEoQp/ikZnlN/U2hAyAQii OGH4urVvUzN2GkVPC67WWwvl09gG+hKj5sttXd9jH7dTpUyrCUVo8g47QO4HYktD 0NreqCjm5Fk8lh7AfwOk3JBpyJDH7Z0TYbrGfQbzYx7XHHQUFxzeWi7VJWIX6Qkm 8jrv0LtaF3azW0x+v/2x0z46nUDpN80jiRb4v+xQAtBMHH9MDm4VvG22kQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPgvHiNxKSt/pSPxftWlTbFfWdlJMB8GA1UdIwQY MBaAFIjGmTSYrwUYli5fSNXIRtwXXRiEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaU1hWk5KaXZCUmlXTGw5STFjaEczQmRkR0lRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC84MWIwMGEtZjY4ZC00NGY0LTg4MjUt OTgyNzM2YjQ1YmRmLzEvaU1hWk5KaXZCUmlXTGw5STFjaEczQmRkR0lRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC84MWIwMGEtZjY4ZC00NGY0LTg4MjUtOTgyNzM2YjQ1YmRm LzEvaU1hWk5KaXZCUmlXTGw5STFjaEczQmRkR0lRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAx3DVtObL LGrJVV7daFZYJ9BQFKAoANTIQhTZu+NHRLgCX7Cd3Xpr13WpFt//r5Q+SMtRvELv 78Wo2Pi6C+M1W48JvtOmPC0mbrTUTV7ekIA88rDy0TgpKoS2QYrfxvwE45Bg+JS0 jZoYWVyPnTH3zpjAzR0MgfNPo1ptL8amaUWPnJzSPwDo7L+1ppqyXwVX7NR3U1xJ +5Kgz6c+a6sEPrOxahtlhNzeA44nNTVJdzGAu3m51hC37CqxbrBf5vGLonYJesuJ miftAn0nf2SmwxLu0SZyWFk/ZkHxNNA4FEWpdJJZ+JdxHXg0ykLiYbwhpHt0mCRD R/ox2uenrh/umw== -----END CERTIFICATE-----Generated at Thu Dec 18 23:26:01 2025 by rpki-client