This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.mft File: IBBUhPGH8gh9Egytlx1oLbMVmWU.mft (raw, json) Hash identifier: yWKKOIsLp+14MFjyasC4MGz4AuG+Czzv+kFT+IcIsaQ= Subject key identifier: BC:CC:27:F2:EC:BC:8C:24:7E:C9:CD:92:4E:CB:79:B2:AF:F4:39:A3 Authority key identifier: 20:10:54:84:F1:87:F2:08:7D:12:0C:AD:97:1D:68:2D:B3:15:99:65 Certificate issuer: /CN=20105484f187f2087d120cad971d682db3159965 Certificate serial: 019B33E8B18FADEFE81EF335A471BBD9BF9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IBBUhPGH8gh9Egytlx1oLbMVmWU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.mft Manifest number: 0326 Signing time: Fri 19 Dec 2025 00:00:46 +0000 Manifest this update: Fri 19 Dec 2025 00:00:46 +0000 Manifest next update: Sat 20 Dec 2025 00:00:46 +0000 Files and hashes: 1: IBBUhPGH8gh9Egytlx1oLbMVmWU.crl (hash: nRxI8y0wDce5nLIowPrbwKBGbMAHCe4r4TdhWV2jMdY=) 2: Rh0IEx7nLGjWZjM91m5L9ROERFI.roa (hash: ueZbxYCJshLwHxcAfnLZtqfa1hKKEGpxZF9hNshflTs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.crl rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.mft rsync://rpki.ripe.net/repository/DEFAULT/IBBUhPGH8gh9Egytlx1oLbMVmWU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 00:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:e8:b1:8f:ad:ef:e8:1e:f3:35:a4:71:bb:d9:bf:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20105484f187f2087d120cad971d682db3159965 Validity Not Before: Dec 19 00:00:46 2025 GMT Not After : Dec 20 00:00:46 2025 GMT Subject: CN=bccc27f2ecbc8c247ec9cd924ecb79b2aff439a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:74:d4:36:f1:a9:cb:e6:db:86:46:56:80:17: dd:20:16:77:c5:e2:6b:60:f9:0f:2f:05:e7:05:d2: e8:37:68:83:e3:f5:25:3e:49:59:5f:8b:36:a2:ba: 57:e7:f7:d0:a0:e4:36:b3:a9:9e:06:36:3c:06:03: 1b:52:92:24:8f:6c:da:c0:80:77:53:18:5e:03:cf: ec:19:e3:d4:ca:86:91:5a:ff:d5:b8:e5:e0:a8:2f: 69:b9:be:fa:0a:af:1f:6e:ff:da:ca:e6:60:77:a8: fb:84:f0:83:6a:b5:91:39:85:8a:ff:62:d1:c8:63: f7:45:05:1e:1a:3d:6a:43:e1:4c:d1:ea:fd:89:7f: 89:4a:c0:30:99:21:87:f4:9c:06:dc:11:59:f8:f0: 53:3b:a6:86:1e:fe:86:ff:89:47:77:8e:bf:bc:9f: 82:25:f3:a9:1f:c0:22:a8:df:b0:9a:75:66:0b:e9: 48:ef:a3:4b:83:a9:e3:c5:b2:92:14:2b:30:88:5e: 54:e6:39:fe:20:58:24:7c:18:56:99:dc:80:57:e3: 77:07:b3:5d:bf:d0:1f:a0:cf:7f:3b:29:56:e1:b0: f4:01:a2:63:c6:2f:08:3e:a2:54:cf:32:2f:fe:69: a5:6d:9c:98:44:21:60:78:3e:39:c3:c4:96:d0:68: 99:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:CC:27:F2:EC:BC:8C:24:7E:C9:CD:92:4E:CB:79:B2:AF:F4:39:A3 X509v3 Authority Key Identifier: keyid:20:10:54:84:F1:87:F2:08:7D:12:0C:AD:97:1D:68:2D:B3:15:99:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IBBUhPGH8gh9Egytlx1oLbMVmWU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:29:74:6e:3c:d4:e1:7b:85:a3:c8:10:82:27:5d:6f:ab:92: 80:6c:1e:aa:62:ba:5f:dc:8e:d5:a5:23:00:a6:75:3f:00:d6: 95:6a:24:af:9c:de:4b:66:db:aa:6a:3c:d7:a4:72:cf:f1:3c: 23:f3:c5:0b:9c:bf:cf:a7:92:b5:62:ae:2e:0f:71:66:6f:02: 30:f9:1b:4e:01:aa:8a:0e:0e:6e:98:c0:06:89:c6:68:df:70: 3a:81:53:a9:a3:b6:96:75:2f:8a:58:5e:91:8d:33:37:01:f6: 8f:02:7e:f0:2f:32:44:7a:c8:de:e7:88:9e:0d:78:b4:22:31: 63:ca:e6:0a:05:d5:c6:fd:60:5a:1e:84:8f:0b:65:40:1f:e3: 51:4e:7d:c0:fa:4c:4f:00:15:2a:7f:a2:b6:27:a2:33:4b:7c: c2:7c:92:19:f9:34:d2:73:b2:a0:15:ca:96:d0:28:16:66:26: 8f:a2:54:46:45:c5:d8:40:99:4e:e9:cf:f9:72:87:9f:29:98: 51:26:e0:6c:30:e4:0e:ad:78:17:38:ca:af:6e:dd:c8:77:1f: 9e:3c:7a:22:dd:ad:44:61:20:ad:de:9c:89:26:6e:5a:09:16: 46:31:b0:d5:c5:2a:60:cb:5c:24:74:ac:af:ca:80:65:ba:bb: a1:70:ea:16 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsz6LGPre/oHvM1pHG72b+bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwMTA1NDg0ZjE4N2YyMDg3ZDEyMGNhZDk3MWQ2ODJkYjMx NTk5NjUwHhcNMjUxMjE5MDAwMDQ2WhcNMjUxMjIwMDAwMDQ2WjAzMTEwLwYDVQQD EyhiY2NjMjdmMmVjYmM4YzI0N2VjOWNkOTI0ZWNiNzliMmFmZjQzOWEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtHTUNvGpy+bbhkZWgBfdIBZ3xeJr YPkPLwXnBdLoN2iD4/UlPklZX4s2orpX5/fQoOQ2s6meBjY8BgMbUpIkj2zawIB3 UxheA8/sGePUyoaRWv/VuOXgqC9pub76Cq8fbv/ayuZgd6j7hPCDarWROYWK/2LR yGP3RQUeGj1qQ+FM0er9iX+JSsAwmSGH9JwG3BFZ+PBTO6aGHv6G/4lHd46/vJ+C JfOpH8AiqN+wmnVmC+lI76NLg6njxbKSFCswiF5U5jn+IFgkfBhWmdyAV+N3B7Nd v9AfoM9/OylW4bD0AaJjxi8IPqJUzzIv/mmlbZyYRCFgeD45w8SW0GiZTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLzMJ/LsvIwkfsnNkk7LebKv9DmjMB8GA1UdIwQY MBaAFCAQVITxh/IIfRIMrZcdaC2zFZllMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUJCVWhQR0g4Z2g5RWd5dGx4MW9MYk1WbVdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9jZWY2ZDAtZjQ4OC00ZDI1LTg2YjUt MjZhZWY4ODJmOTRmLzEvSUJCVWhQR0g4Z2g5RWd5dGx4MW9MYk1WbVdVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My9jZWY2ZDAtZjQ4OC00ZDI1LTg2YjUtMjZhZWY4ODJmOTRm LzEvSUJCVWhQR0g4Z2g5RWd5dGx4MW9MYk1WbVdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALil0bjzU 4XuFo8gQgiddb6uSgGweqmK6X9yO1aUjAKZ1PwDWlWokr5zeS2bbqmo816Ryz/E8 I/PFC5y/z6eStWKuLg9xZm8CMPkbTgGqig4ObpjABonGaN9wOoFTqaO2lnUvilhe kY0zNwH2jwJ+8C8yRHrI3ueIng14tCIxY8rmCgXVxv1gWh6EjwtlQB/jUU59wPpM TwAVKn+itieiM0t8wnySGfk00nOyoBXKltAoFmYmj6JURkXF2ECZTunP+XKHnymY USbgbDDkDq14FzjKr27dyHcfnjx6It2tRGEgrd6ciSZuWgkWRjGw1cUqYMtcJHSs r8qAZbq7oXDqFg== -----END CERTIFICATE-----Generated at Fri Dec 19 09:21:51 2025 by rpki-client