This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft File: IONyheqmIxC8nncrST2dYrqKeTg.mft (raw, json) Hash identifier: UwiXYLO9ZBYZfwo+3Jx8cfXiq0Iu8lKLoScamCNcHnQ= Subject key identifier: 22:47:DE:0E:FF:67:92:E4:50:53:9D:7F:BB:22:30:34:2F:E1:FD:39 Authority key identifier: 20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38 Certificate issuer: /CN=20e37285eaa62310bc9e772b493d9d62ba8a7938 Certificate serial: 019B19BB4D2FADBCAD26C313C05D00EE7878 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft Manifest number: 07B2 Signing time: Sat 13 Dec 2025 22:01:03 +0000 Manifest this update: Sat 13 Dec 2025 22:01:03 +0000 Manifest next update: Sun 14 Dec 2025 22:01:03 +0000 Files and hashes: 1: IONyheqmIxC8nncrST2dYrqKeTg.crl (hash: qPi63ebR7Z9e8SBAHtHbIxua0WxjRPehE7MvLPs781k=) 2: v5LwLHwuCUZrT_0G6r3v0bfLSQs.roa (hash: +ztaiH2S/aHDtgvKfj/YkXPsW58SyJ9uS27Ej7psyFg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 22:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:bb:4d:2f:ad:bc:ad:26:c3:13:c0:5d:00:ee:78:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20e37285eaa62310bc9e772b493d9d62ba8a7938 Validity Not Before: Dec 13 22:01:03 2025 GMT Not After : Dec 14 22:01:03 2025 GMT Subject: CN=2247de0eff6792e450539d7fbb2230342fe1fd39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:3a:1b:8c:26:16:73:ce:49:7f:47:7c:7c:e6: 9f:8a:74:ea:c5:76:a4:b1:84:66:72:8f:51:3c:ee: 4e:c3:a0:97:21:ac:15:e6:8b:6f:00:f3:4d:d1:4d: 86:f7:f3:ee:0c:ff:60:fa:18:e1:cc:de:27:b6:a8: 85:ff:63:ba:74:9b:f7:23:02:30:b0:9a:d9:c6:95: 7c:d8:90:eb:dc:90:b8:27:24:7f:aa:bd:f9:91:cb: 71:14:24:54:d3:15:54:ed:4e:e7:88:a6:c1:8e:3f: 43:36:de:b8:34:fa:16:ea:57:f6:ba:b7:3d:66:4e: 6b:20:3f:e3:6e:2d:94:08:5a:3d:77:af:3f:af:c7: 25:39:df:84:5a:09:e8:82:e7:6d:00:84:0a:cd:42: ad:43:7f:5a:ce:37:5e:51:b7:bd:2f:a3:07:2d:ea: a6:7f:9a:1a:16:2d:d6:65:f9:13:fc:17:50:25:33: 77:0d:c9:07:37:4f:c8:01:2a:98:1c:51:48:d7:a5: e0:30:71:70:a5:0d:b8:de:bd:9e:a7:b8:58:9e:f2: 9e:87:08:90:74:a9:28:bf:0c:ba:00:47:ab:41:92: 4e:09:63:24:f3:9f:fc:e6:82:96:0f:f0:0c:b9:11: dc:4e:2a:49:84:6c:c7:2b:17:07:2f:c6:5e:41:19: 7b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:47:DE:0E:FF:67:92:E4:50:53:9D:7F:BB:22:30:34:2F:E1:FD:39 X509v3 Authority Key Identifier: keyid:20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:9b:9a:54:88:d2:7c:9f:61:c4:70:41:dd:ad:5c:a3:8d:b8: 1e:f3:d2:47:ad:31:f5:5e:af:3c:de:f3:4e:00:e6:33:d4:9b: bc:10:3a:22:47:0c:76:7d:63:bd:9e:2a:a9:91:f8:a8:b6:96: 40:c8:7a:4c:88:f7:c3:93:58:98:6a:da:ed:f4:2c:14:15:0d: bd:f7:69:66:19:35:5a:fd:ca:6e:30:63:fb:45:8b:dd:90:9a: 86:82:2d:8c:48:8c:22:ce:a5:b9:28:c6:96:ca:a3:14:bf:ac: 57:37:7b:fd:5d:64:42:a4:5a:b8:f7:a5:f5:83:76:68:de:8f: 19:b7:08:5a:8b:78:29:d5:08:a0:9f:ea:8a:b0:45:1a:9b:9b: f8:23:ab:26:d3:3d:58:0a:64:33:3a:ae:4f:d9:4b:08:ce:b9: c0:20:2a:56:4c:aa:79:93:a1:23:d0:b5:84:09:de:ac:43:b4: cd:5c:52:4d:2b:e9:0e:5a:f8:62:c0:c0:4a:2b:34:ff:f5:3c: 21:d1:2a:58:d8:ea:a8:32:fd:64:75:69:eb:76:7e:1d:8c:4b: d8:95:65:0d:95:62:b0:c6:1c:ea:17:78:a8:77:b1:b8:5f:d1: f5:30:5d:fe:33:54:e4:a2:56:7c:eb:f9:79:f1:54:83:86:14: 3b:3f:2d:d2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZu00vrbytJsMTwF0A7nh4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwZTM3Mjg1ZWFhNjIzMTBiYzllNzcyYjQ5M2Q5ZDYyYmE4 YTc5MzgwHhcNMjUxMjEzMjIwMTAzWhcNMjUxMjE0MjIwMTAzWjAzMTEwLwYDVQQD EygyMjQ3ZGUwZWZmNjc5MmU0NTA1MzlkN2ZiYjIyMzAzNDJmZTFmZDM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnDobjCYWc85Jf0d8fOafinTqxXak sYRmco9RPO5Ow6CXIawV5otvAPNN0U2G9/PuDP9g+hjhzN4ntqiF/2O6dJv3IwIw sJrZxpV82JDr3JC4JyR/qr35kctxFCRU0xVU7U7niKbBjj9DNt64NPoW6lf2urc9 Zk5rID/jbi2UCFo9d68/r8clOd+EWgnogudtAIQKzUKtQ39azjdeUbe9L6MHLeqm f5oaFi3WZfkT/BdQJTN3DckHN0/IASqYHFFI16XgMHFwpQ243r2ep7hYnvKehwiQ dKkovwy6AEerQZJOCWMk85/85oKWD/AMuRHcTipJhGzHKxcHL8ZeQRl7OQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCJH3g7/Z5LkUFOdf7siMDQv4f05MB8GA1UdIwQY MBaAFCDjcoXqpiMQvJ53K0k9nWK6ink4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU9OeWhlcW1JeEM4bm5jclNUMmRZcnFLZVRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8xNzdmMWQtYWMzOS00YTlkLTk0MWQt ZmE4ZDhjYTk0OTViLzEvSU9OeWhlcW1JeEM4bm5jclNUMmRZcnFLZVRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC8xNzdmMWQtYWMzOS00YTlkLTk0MWQtZmE4ZDhjYTk0OTVi LzEvSU9OeWhlcW1JeEM4bm5jclNUMmRZcnFLZVRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACZuaVIjS fJ9hxHBB3a1co424HvPSR60x9V6vPN7zTgDmM9SbvBA6IkcMdn1jvZ4qqZH4qLaW QMh6TIj3w5NYmGra7fQsFBUNvfdpZhk1Wv3KbjBj+0WL3ZCahoItjEiMIs6luSjG lsqjFL+sVzd7/V1kQqRauPel9YN2aN6PGbcIWot4KdUIoJ/qirBFGpub+COrJtM9 WApkMzquT9lLCM65wCAqVkyqeZOhI9C1hAnerEO0zVxSTSvpDlr4YsDASis0//U8 IdEqWNjqqDL9ZHVp63Z+HYxL2JVlDZVisMYc6hd4qHexuF/R9TBd/jNU5KJWfOv5 efFUg4YUOz8t0g== -----END CERTIFICATE-----Generated at Sun Dec 14 06:23:36 2025 by rpki-client