This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft File: 1Iml3dMALoAJmbXBhn94Z4G68T0.mft (raw, json) Hash identifier: e7oRzC2NX/CzExaHHQo9QEx+qtKbZ72PJ2iA9tp8e6M= Subject key identifier: 20:98:18:72:D1:00:CD:20:3F:89:8E:3C:FE:8D:2E:9D:71:88:34:F2 Authority key identifier: D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D Certificate issuer: /CN=d489a5ddd3002e800999b5c1867f786781baf13d Certificate serial: 019B5A51612FB919A6477A6FB190786E411F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft Manifest number: 1798 Signing time: Fri 26 Dec 2025 11:00:41 +0000 Manifest this update: Fri 26 Dec 2025 11:00:41 +0000 Manifest next update: Sat 27 Dec 2025 11:00:41 +0000 Files and hashes: 1: 1Iml3dMALoAJmbXBhn94Z4G68T0.crl (hash: j/w3bpY7j+Ah2gTMccqFIsmmqMVConyPVdRWK3YNhZw=) 2: Oic624JnJmz9lkyUCkfkxynrzXU.roa (hash: reuQNdNLE9OYq59c7HheLuUPxQ+GdUmZR0j+FA5WU8M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:51:61:2f:b9:19:a6:47:7a:6f:b1:90:78:6e:41:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d489a5ddd3002e800999b5c1867f786781baf13d Validity Not Before: Dec 26 11:00:41 2025 GMT Not After : Dec 27 11:00:41 2025 GMT Subject: CN=20981872d100cd203f898e3cfe8d2e9d718834f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:8f:bd:25:53:69:4c:ae:6c:3e:e8:df:ac:7e: c7:54:48:ff:99:42:4e:6a:d0:4a:4e:ab:40:8f:32: d6:46:30:57:54:5f:a6:87:4c:c2:91:38:20:00:1f: 7f:15:6d:2b:0a:94:33:b4:8c:46:2a:01:07:6d:94: 9e:2f:45:7f:a2:6e:f5:2b:6c:81:76:8e:22:e7:30: b7:c5:ed:d0:1f:65:c1:f6:ae:0b:54:8c:01:74:f5: 0c:ca:d3:8f:f2:c8:53:16:d6:c4:73:3b:8f:39:a2: 45:38:69:a3:2c:46:1d:bf:59:c2:86:3a:5b:49:57: 0b:37:f4:e6:fc:6b:ad:ef:81:64:fc:21:22:c8:90: b3:a7:43:6d:94:fd:7d:33:48:0f:9f:45:36:16:8b: 95:2b:73:07:ee:8c:05:6e:d6:8a:57:25:f3:ec:f3: 99:73:ca:41:e9:df:25:dc:69:a8:8f:fa:c4:51:c5: 15:73:a1:ee:9b:f3:3a:d0:8f:9c:c6:c2:e0:47:c3: 6a:a9:02:79:c3:f1:1d:a3:e1:c4:8b:2d:ff:9c:e1: 83:41:09:d4:50:79:fa:33:f2:7c:91:b6:99:40:16: 2b:e6:28:f5:bc:e1:c6:fc:0e:24:d9:09:bd:e0:ce: 55:79:6d:c7:cf:eb:c0:13:da:5c:c0:61:0b:86:60: c7:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:98:18:72:D1:00:CD:20:3F:89:8E:3C:FE:8D:2E:9D:71:88:34:F2 X509v3 Authority Key Identifier: keyid:D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:d3:93:14:19:52:d6:04:a8:51:61:16:e9:30:f3:ab:72:4c: 6a:13:9b:ac:5f:b6:3c:56:10:8b:ab:32:0a:d1:7e:0b:ea:7e: 40:77:54:19:02:c4:99:d0:50:e0:65:e2:f4:44:e1:8f:8b:20: e2:cc:a4:1d:60:de:24:8d:07:19:0d:57:67:37:fc:05:4e:da: 84:97:27:bb:df:3d:c8:19:f7:bd:e1:fe:cf:34:99:be:42:3e: 67:53:ee:55:dd:31:70:90:d7:65:22:04:b5:a7:22:c7:39:70: 02:42:43:0d:b9:8b:f4:19:03:cb:75:45:76:60:bf:20:2d:47: 6d:8b:2d:85:93:f2:00:bd:1f:ad:43:e0:d9:be:1e:a1:fb:37: 1a:a0:b6:6e:5a:df:44:79:59:50:06:6d:29:12:ba:9a:b2:2d: 17:fe:60:89:b9:65:bb:dc:0f:13:2e:28:20:63:38:50:06:31: 06:34:12:32:72:f5:17:e0:57:93:89:55:09:e1:79:fe:a7:8a: 73:20:09:b0:1a:6c:a8:f2:d3:3e:60:2d:95:cf:94:2b:04:d5: e2:cc:18:d3:b3:8b:65:01:cb:03:9b:f2:52:8b:a1:ca:2c:79: a1:f5:2c:91:31:76:4c:d9:0e:28:a9:ff:45:34:30:6d:28:60: 0f:56:86:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaUWEvuRmmR3pvsZB4bkEfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0ODlhNWRkZDMwMDJlODAwOTk5YjVjMTg2N2Y3ODY3ODFi YWYxM2QwHhcNMjUxMjI2MTEwMDQxWhcNMjUxMjI3MTEwMDQxWjAzMTEwLwYDVQQD EygyMDk4MTg3MmQxMDBjZDIwM2Y4OThlM2NmZThkMmU5ZDcxODgzNGYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqI+9JVNpTK5sPujfrH7HVEj/mUJO atBKTqtAjzLWRjBXVF+mh0zCkTggAB9/FW0rCpQztIxGKgEHbZSeL0V/om71K2yB do4i5zC3xe3QH2XB9q4LVIwBdPUMytOP8shTFtbEczuPOaJFOGmjLEYdv1nChjpb SVcLN/Tm/Gut74Fk/CEiyJCzp0NtlP19M0gPn0U2FouVK3MH7owFbtaKVyXz7POZ c8pB6d8l3Gmoj/rEUcUVc6Hum/M60I+cxsLgR8NqqQJ5w/Edo+HEiy3/nOGDQQnU UHn6M/J8kbaZQBYr5ij1vOHG/A4k2Qm94M5VeW3Hz+vAE9pcwGELhmDHrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCCYGHLRAM0gP4mOPP6NLp1xiDTyMB8GA1UdIwQY MBaAFNSJpd3TAC6ACZm1wYZ/eGeBuvE9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUltbDNkTUFMb0FKbWJYQmhuOTRaNEc2OFQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9iZmQyZDQtNmQ0NS00NGJiLWFlNmIt NTI1OWVlZGNhMDdjLzEvMUltbDNkTUFMb0FKbWJYQmhuOTRaNEc2OFQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS9iZmQyZDQtNmQ0NS00NGJiLWFlNmItNTI1OWVlZGNhMDdj LzEvMUltbDNkTUFMb0FKbWJYQmhuOTRaNEc2OFQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT9OTFBlS 1gSoUWEW6TDzq3JMahObrF+2PFYQi6syCtF+C+p+QHdUGQLEmdBQ4GXi9EThj4sg 4sykHWDeJI0HGQ1XZzf8BU7ahJcnu989yBn3veH+zzSZvkI+Z1PuVd0xcJDXZSIE tacixzlwAkJDDbmL9BkDy3VFdmC/IC1HbYsthZPyAL0frUPg2b4eofs3GqC2blrf RHlZUAZtKRK6mrItF/5gibllu9wPEy4oIGM4UAYxBjQSMnL1F+BXk4lVCeF5/qeK cyAJsBpsqPLTPmAtlc+UKwTV4swY07OLZQHLA5vyUouhyix5ofUskTF2TNkOKKn/ RTQwbShgD1aGSw== -----END CERTIFICATE-----Generated at Fri Dec 26 14:19:44 2025 by rpki-client