This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.mft File: IOI90FhJzIEyVauNG4U_ucRdhpQ.mft (raw, json) Hash identifier: 3djMiRiXii5jwea79KZkTrDLI1Ko7EYNCtGsoH4EXhQ= Subject key identifier: 98:BD:D8:B9:DC:A6:94:15:3B:21:4A:09:1D:DE:05:EB:78:53:CF:8C Authority key identifier: 20:E2:3D:D0:58:49:CC:81:32:55:AB:8D:1B:85:3F:B9:C4:5D:86:94 Certificate issuer: /CN=20e23dd05849cc813255ab8d1b853fb9c45d8694 Certificate serial: 019B5A1AE2D816F38D331BDF56F1A23833E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IOI90FhJzIEyVauNG4U_ucRdhpQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.mft Manifest number: 0195 Signing time: Fri 26 Dec 2025 10:01:09 +0000 Manifest this update: Fri 26 Dec 2025 10:01:09 +0000 Manifest next update: Sat 27 Dec 2025 10:01:09 +0000 Files and hashes: 1: 1sean_EV9gz0RRAdSjhoVX8U59c.roa (hash: 7IzX2Oje7AVG7H1WaHSKbKj4BoZgEgCyLYyC1XwAE3w=) 2: IOI90FhJzIEyVauNG4U_ucRdhpQ.crl (hash: RBnKZrUDfEK6Vh8A1RGANQPUnw+SdgHKKuppRyGzLAU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.mft rsync://rpki.ripe.net/repository/DEFAULT/IOI90FhJzIEyVauNG4U_ucRdhpQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:1a:e2:d8:16:f3:8d:33:1b:df:56:f1:a2:38:33:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20e23dd05849cc813255ab8d1b853fb9c45d8694 Validity Not Before: Dec 26 10:01:09 2025 GMT Not After : Dec 27 10:01:09 2025 GMT Subject: CN=98bdd8b9dca694153b214a091dde05eb7853cf8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1a:4b:52:c9:e6:33:83:7a:cd:8f:79:d5:f2: 5e:2b:01:f5:cb:6a:19:05:ec:39:2c:0a:ba:ae:39: d7:0d:fe:68:57:b5:16:4e:3e:8c:5d:f8:65:d5:ac: d7:e8:cc:75:93:33:c5:c1:81:4c:b7:6e:2a:7f:de: 59:dc:b9:7d:0b:cf:e0:89:e6:b6:2a:81:65:27:04: e9:31:4f:5b:e8:73:58:0e:33:f2:de:be:9b:f1:de: ca:34:e0:0b:3f:ea:6e:ce:0a:81:10:22:02:e6:be: 33:52:6b:42:bf:cb:bf:2e:e2:cd:59:d2:c3:25:6f: 82:bf:c6:9e:00:e9:41:01:9f:08:a8:d4:4d:10:85: 7d:44:68:79:d6:fd:42:a2:44:06:d3:5c:41:e8:2a: 12:5f:59:64:84:46:6f:17:4c:db:e1:9e:35:70:9a: aa:43:be:5c:31:13:d2:a2:a1:00:1c:f7:37:e1:3a: 6e:17:38:72:b8:9c:2f:85:69:c6:d7:d0:04:ff:74: 60:e6:f3:1e:c0:fc:f4:fc:d5:ab:4f:7b:61:ce:3d: 3f:9f:6a:8b:d1:16:de:4f:4c:1c:14:1d:a8:74:a7: 1d:e2:62:ce:b5:e0:40:4c:c9:44:62:6b:af:6d:ef: 90:e3:0b:d2:b1:96:de:59:24:a7:45:8e:99:e6:e1: 7a:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:BD:D8:B9:DC:A6:94:15:3B:21:4A:09:1D:DE:05:EB:78:53:CF:8C X509v3 Authority Key Identifier: keyid:20:E2:3D:D0:58:49:CC:81:32:55:AB:8D:1B:85:3F:B9:C4:5D:86:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IOI90FhJzIEyVauNG4U_ucRdhpQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:f5:db:04:90:2e:d1:c2:14:92:ee:17:73:d5:64:ab:00:af: 8d:88:21:56:51:ae:ec:64:1f:91:de:70:19:8c:26:7c:89:81: ef:6b:c8:aa:46:f3:65:99:16:8a:1a:1f:2c:3a:44:07:e9:67: d4:6f:bc:07:b9:08:97:51:fe:8f:27:14:8c:c2:7f:31:af:47: 28:89:52:36:05:58:00:59:b1:b9:31:65:6e:b7:47:d7:ca:c8: 9f:dc:ff:ed:52:64:4c:d0:47:54:fc:49:6c:59:66:54:35:b9: 8b:ab:1e:33:1c:09:6d:4b:13:41:6b:57:52:a8:0e:69:e7:c1: 70:c7:87:64:4f:f9:36:64:c1:01:b4:10:e2:68:59:d3:94:f6: dd:12:81:ea:95:05:d3:3b:69:49:35:55:26:02:f1:3c:38:40: 8b:b3:54:58:7e:cd:fc:f4:d3:d6:e2:d1:87:37:32:4b:81:61: 2d:53:63:ef:32:13:92:1d:ad:3f:89:dc:b2:01:0f:55:5d:68: 51:d3:2c:2f:53:2e:d9:60:dd:20:55:99:b6:5c:9f:1d:01:0e: 16:ae:5a:28:e0:10:dc:67:37:9c:74:aa:a1:e9:0a:2f:f9:f4: 86:a9:da:32:61:6e:db:20:a6:a3:f5:6a:9c:97:0c:fa:34:dc: 3a:b3:93:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaGuLYFvONMxvfVvGiODPoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwZTIzZGQwNTg0OWNjODEzMjU1YWI4ZDFiODUzZmI5YzQ1 ZDg2OTQwHhcNMjUxMjI2MTAwMTA5WhcNMjUxMjI3MTAwMTA5WjAzMTEwLwYDVQQD Eyg5OGJkZDhiOWRjYTY5NDE1M2IyMTRhMDkxZGRlMDVlYjc4NTNjZjhjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyBpLUsnmM4N6zY951fJeKwH1y2oZ Bew5LAq6rjnXDf5oV7UWTj6MXfhl1azX6Mx1kzPFwYFMt24qf95Z3Ll9C8/giea2 KoFlJwTpMU9b6HNYDjPy3r6b8d7KNOALP+puzgqBECIC5r4zUmtCv8u/LuLNWdLD JW+Cv8aeAOlBAZ8IqNRNEIV9RGh51v1CokQG01xB6CoSX1lkhEZvF0zb4Z41cJqq Q75cMRPSoqEAHPc34TpuFzhyuJwvhWnG19AE/3Rg5vMewPz0/NWrT3thzj0/n2qL 0RbeT0wcFB2odKcd4mLOteBATMlEYmuvbe+Q4wvSsZbeWSSnRY6Z5uF6CwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJi92LncppQVOyFKCR3eBet4U8+MMB8GA1UdIwQY MBaAFCDiPdBYScyBMlWrjRuFP7nEXYaUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU9JOTBGaEp6SUV5VmF1Tkc0VV91Y1JkaHBRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9jMTY3MTctODU1ZC00MzkxLWI3OWYt Yjg4OGEzMTI0NDU0LzEvSU9JOTBGaEp6SUV5VmF1Tkc0VV91Y1JkaHBRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9jMTY3MTctODU1ZC00MzkxLWI3OWYtYjg4OGEzMTI0NDU0 LzEvSU9JOTBGaEp6SUV5VmF1Tkc0VV91Y1JkaHBRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAifXbBJAu 0cIUku4Xc9VkqwCvjYghVlGu7GQfkd5wGYwmfImB72vIqkbzZZkWihofLDpEB+ln 1G+8B7kIl1H+jycUjMJ/Ma9HKIlSNgVYAFmxuTFlbrdH18rIn9z/7VJkTNBHVPxJ bFlmVDW5i6seMxwJbUsTQWtXUqgOaefBcMeHZE/5NmTBAbQQ4mhZ05T23RKB6pUF 0ztpSTVVJgLxPDhAi7NUWH7N/PTT1uLRhzcyS4FhLVNj7zITkh2tP4ncsgEPVV1o UdMsL1Mu2WDdIFWZtlyfHQEOFq5aKOAQ3Gc3nHSqoekKL/n0hqnaMmFu2yCmo/Vq nJcM+jTcOrOTFw== -----END CERTIFICATE-----Generated at Fri Dec 26 14:17:27 2025 by rpki-client