This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft File: ia6mmISBzqS5W2UTHMSYhPPtDj8.mft (raw, json) Hash identifier: 10LaFStMgclt6xxrah7xBXEuKn1+p8nF1+P7PeT1icc= Subject key identifier: 2C:90:1F:0E:5A:F0:6A:CA:DB:FC:12:83:ED:62:99:92:9E:62:F0:0E Authority key identifier: 89:AE:A6:98:84:81:CE:A4:B9:5B:65:13:1C:C4:98:84:F3:ED:0E:3F Certificate issuer: /CN=89aea6988481cea4b95b65131cc49884f3ed0e3f Certificate serial: 019B59ACB7BD776E3815A588E905A9CC37C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ia6mmISBzqS5W2UTHMSYhPPtDj8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft Manifest number: 1797 Signing time: Fri 26 Dec 2025 08:00:49 +0000 Manifest this update: Fri 26 Dec 2025 08:00:49 +0000 Manifest next update: Sat 27 Dec 2025 08:00:49 +0000 Files and hashes: 1: Fl6pOlPLU-YJzCc-HkB3wwedcd0.roa (hash: jlDQ+VkQoTEiq8ZQ7EeJUmtKUn70x3pUuA4q7simdPM=) 2: ia6mmISBzqS5W2UTHMSYhPPtDj8.crl (hash: Eqc1ZCI6IcBUvFu+vuakCXdkAStpFmWdW4tq/0z4+jk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft rsync://rpki.ripe.net/repository/DEFAULT/ia6mmISBzqS5W2UTHMSYhPPtDj8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:ac:b7:bd:77:6e:38:15:a5:88:e9:05:a9:cc:37:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89aea6988481cea4b95b65131cc49884f3ed0e3f Validity Not Before: Dec 26 08:00:49 2025 GMT Not After : Dec 27 08:00:49 2025 GMT Subject: CN=2c901f0e5af06acadbfc1283ed6299929e62f00e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:26:fb:63:4a:9d:3d:b1:87:33:e9:7a:ac:9a: 81:0f:1c:53:50:c8:96:e2:f7:bc:98:da:29:10:12: 8d:27:a9:8f:99:d6:1f:67:2a:7c:d4:25:48:22:48: 09:8a:ff:e4:d4:f0:b7:0c:2f:2c:9b:f4:9a:98:db: e3:0b:f2:b9:a3:f8:0f:04:9f:f5:98:10:e6:84:e9: 54:89:17:d1:51:72:e5:24:37:4b:37:2f:f2:ed:af: 5a:8e:40:15:dc:3c:5c:93:1d:71:e3:40:50:5e:de: 70:0f:e1:4b:ac:8c:7c:98:3e:43:91:8d:63:dd:e3: 30:c8:4c:02:73:1b:5d:f0:7c:37:dc:cc:64:f3:e0: 07:6a:9b:cf:dc:83:1c:57:19:49:01:a7:ec:5d:c6: 6e:cb:e7:eb:9b:05:72:27:12:e2:6a:65:3b:21:4e: 66:49:d9:72:2c:eb:76:1d:fb:32:ef:7f:18:a1:fa: 36:62:01:c8:17:43:91:96:af:62:d5:64:c2:bc:79: 3a:7b:ea:c8:65:73:d4:c7:c8:57:71:d2:34:71:6b: 27:a1:b7:d7:41:3b:61:1a:48:3d:79:0c:ba:40:c1: 71:17:fa:13:1e:30:2d:4e:d9:05:00:7d:f7:a5:d5: 3e:49:14:f1:36:21:9f:00:cc:35:7c:84:9b:56:09: 23:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:90:1F:0E:5A:F0:6A:CA:DB:FC:12:83:ED:62:99:92:9E:62:F0:0E X509v3 Authority Key Identifier: keyid:89:AE:A6:98:84:81:CE:A4:B9:5B:65:13:1C:C4:98:84:F3:ED:0E:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ia6mmISBzqS5W2UTHMSYhPPtDj8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:28:a2:6f:1e:c2:c7:28:75:92:00:8f:9d:8d:2c:00:c1:f0: 82:3b:cb:f3:39:5a:71:ed:16:ec:a7:a8:df:fa:e7:17:05:4c: 96:46:2d:27:af:f5:1d:66:38:d8:ff:d5:d3:17:ec:a9:0f:1c: e4:74:ec:07:45:19:0f:16:79:e5:23:7d:69:b0:20:d5:12:6c: 73:ac:dd:f8:49:e0:3a:0f:35:37:fe:cd:63:06:c9:a9:49:ff: 5e:58:ba:4d:06:52:21:7f:e4:3d:b3:54:97:f5:9b:8d:16:e6: de:ab:e8:cb:db:0c:3d:1d:3d:eb:41:21:23:04:8b:c6:aa:2c: 57:f0:d6:e2:3a:fb:2f:f1:52:64:80:0d:82:42:b1:09:9b:2e: c4:c8:a8:6c:50:59:8c:ef:07:03:cd:f9:f4:c8:a7:59:a1:76: d5:24:94:8e:b0:06:82:0f:ed:ad:16:13:c6:b0:4d:94:97:e6: fa:00:8b:28:73:ef:9a:1a:c6:04:6b:a7:ea:13:c1:25:48:7b: 99:c3:bf:c9:7c:4a:f0:90:06:ce:a4:a3:44:4d:4b:86:7c:17: cc:1b:38:06:e7:2a:81:c8:ab:5e:0d:6d:da:88:4e:18:49:a2: 8c:ba:f5:1e:42:48:a8:84:7a:65:1f:9e:7a:6b:7b:6c:c7:32: 27:54:e4:d7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZrLe9d244FaWI6QWpzDfIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5YWVhNjk4ODQ4MWNlYTRiOTViNjUxMzFjYzQ5ODg0ZjNl ZDBlM2YwHhcNMjUxMjI2MDgwMDQ5WhcNMjUxMjI3MDgwMDQ5WjAzMTEwLwYDVQQD EygyYzkwMWYwZTVhZjA2YWNhZGJmYzEyODNlZDYyOTk5MjllNjJmMDBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCb7Y0qdPbGHM+l6rJqBDxxTUMiW 4ve8mNopEBKNJ6mPmdYfZyp81CVIIkgJiv/k1PC3DC8sm/SamNvjC/K5o/gPBJ/1 mBDmhOlUiRfRUXLlJDdLNy/y7a9ajkAV3Dxckx1x40BQXt5wD+FLrIx8mD5DkY1j 3eMwyEwCcxtd8Hw33Mxk8+AHapvP3IMcVxlJAafsXcZuy+frmwVyJxLiamU7IU5m SdlyLOt2Hfsy738Yofo2YgHIF0ORlq9i1WTCvHk6e+rIZXPUx8hXcdI0cWsnobfX QTthGkg9eQy6QMFxF/oTHjAtTtkFAH33pdU+SRTxNiGfAMw1fISbVgkjkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCyQHw5a8GrK2/wSg+1imZKeYvAOMB8GA1UdIwQY MBaAFImuppiEgc6kuVtlExzEmITz7Q4/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWE2bW1JU0J6cVM1VzJVVEhNU1loUFB0RGo4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC8yYTU1YTUtMzMwNC00MTA4LThkOTIt NGQ4ZTkwZTAzMzNiLzEvaWE2bW1JU0J6cVM1VzJVVEhNU1loUFB0RGo4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC8yYTU1YTUtMzMwNC00MTA4LThkOTItNGQ4ZTkwZTAzMzNi LzEvaWE2bW1JU0J6cVM1VzJVVEhNU1loUFB0RGo4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgSiibx7C xyh1kgCPnY0sAMHwgjvL8zlace0W7Keo3/rnFwVMlkYtJ6/1HWY42P/V0xfsqQ8c 5HTsB0UZDxZ55SN9abAg1RJsc6zd+EngOg81N/7NYwbJqUn/Xli6TQZSIX/kPbNU l/WbjRbm3qvoy9sMPR0960EhIwSLxqosV/DW4jr7L/FSZIANgkKxCZsuxMiobFBZ jO8HA8359MinWaF21SSUjrAGgg/trRYTxrBNlJfm+gCLKHPvmhrGBGun6hPBJUh7 mcO/yXxK8JAGzqSjRE1LhnwXzBs4BucqgcirXg1t2ohOGEmijLr1HkJIqIR6ZR+e emt7bMcyJ1Tk1w== -----END CERTIFICATE-----Generated at Fri Dec 26 16:01:02 2025 by rpki-client