This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft File: ImidD5E9Kcxj1skmy0Yssn8YRAg.mft (raw, json) Hash identifier: xnsDF/pqUWsCbPETgwB6Kn0E1fZr6POtoP2fI5rW3Bo= Subject key identifier: 59:33:20:9B:AA:3D:E3:F1:2E:E1:96:FC:9F:BC:59:24:D0:D3:90:57 Authority key identifier: 22:68:9D:0F:91:3D:29:CC:63:D6:C9:26:CB:46:2C:B2:7F:18:44:08 Certificate issuer: /CN=22689d0f913d29cc63d6c926cb462cb27f184408 Certificate serial: 019B5975AF83D4A3F1445B5F521EC15653AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft Manifest number: 1796 Signing time: Fri 26 Dec 2025 07:00:43 +0000 Manifest this update: Fri 26 Dec 2025 07:00:43 +0000 Manifest next update: Sat 27 Dec 2025 07:00:43 +0000 Files and hashes: 1: ImidD5E9Kcxj1skmy0Yssn8YRAg.crl (hash: szXmnJRlTDNTZ46LKjLgconEdqMIKrgkIBGSrdVwl/w=) 2: PnGxbbyenKRUkbRi2afvxfE-S9E.roa (hash: JW3Jf++XQ8LN1xPVRRNLBe2ZMK/kXqbkLdynsPQmUsw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:75:af:83:d4:a3:f1:44:5b:5f:52:1e:c1:56:53:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22689d0f913d29cc63d6c926cb462cb27f184408 Validity Not Before: Dec 26 07:00:43 2025 GMT Not After : Dec 27 07:00:43 2025 GMT Subject: CN=5933209baa3de3f12ee196fc9fbc5924d0d39057 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5d:52:02:7d:46:e9:78:ca:58:d9:ec:d3:ed: 03:9b:2a:dd:bb:e9:64:35:d1:84:da:ec:f7:45:03: a9:35:3a:c8:a2:5b:b4:a9:7c:36:42:70:30:9f:43: 06:cc:29:9a:18:ef:34:d7:81:1a:7f:d2:b9:50:39: d6:fa:29:20:54:6c:16:b3:d1:84:95:66:c3:a0:11: e2:98:94:5e:12:84:39:14:4d:d7:9b:14:25:03:2d: 2a:12:88:80:75:2b:14:0a:93:33:b2:01:5a:ca:73: bf:bb:ae:83:2d:77:1c:8d:62:b5:24:48:e0:e0:bc: d0:3a:a2:6b:a3:e3:30:f3:17:46:c0:4f:51:e1:da: f5:5a:1b:e2:53:b2:a5:ab:76:b6:14:56:91:3b:22: 0e:9b:68:e7:15:0b:25:35:f8:6e:3d:9f:a7:34:1a: 41:56:42:9b:bf:af:53:3e:4b:6c:6b:aa:2b:39:ea: a1:63:84:dd:f1:c6:f0:88:e0:a1:31:0b:e3:fd:ea: dd:f5:53:09:96:2f:b6:d4:d5:27:53:78:93:1d:f9: 99:b8:03:73:bb:ec:45:77:f7:02:eb:b1:22:04:20: c3:87:46:aa:23:7e:7e:76:47:cb:15:dc:13:84:a3: 5d:5f:72:b5:0e:94:a4:23:57:48:17:2e:30:98:ed: 90:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:33:20:9B:AA:3D:E3:F1:2E:E1:96:FC:9F:BC:59:24:D0:D3:90:57 X509v3 Authority Key Identifier: keyid:22:68:9D:0F:91:3D:29:CC:63:D6:C9:26:CB:46:2C:B2:7F:18:44:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:be:bd:5e:4d:7d:7d:0d:f7:f4:ed:21:4c:67:e9:01:c0:c9: e5:0b:98:9d:86:ab:d1:11:d8:39:48:c3:53:c9:c3:58:66:fb: 63:0b:d7:86:77:75:b0:17:e0:bc:a3:1d:b8:06:38:6f:79:2b: ab:e5:41:c4:a8:19:dc:79:c9:4e:21:dc:52:37:39:b3:3c:1d: c3:00:0a:e3:67:02:0b:82:bf:04:9b:95:30:b9:d2:63:55:ce: 13:a2:af:95:68:8d:96:c9:84:28:2b:d9:ab:4f:88:7a:76:26: 8e:f8:ac:4d:21:e7:53:bf:16:2f:01:01:79:55:b9:d2:f9:03: a4:86:7b:1e:54:d2:34:13:cd:d3:75:1b:fa:1e:3d:58:9c:ec: 09:d3:9f:18:38:7b:3e:d1:8e:ea:1d:95:96:fd:03:d6:3e:bf: 1a:f0:a7:34:bc:b2:eb:f3:78:eb:1a:ad:e0:54:b8:40:b0:9c: 53:dd:40:06:9c:72:a1:bd:fa:e6:91:82:0a:ea:22:a6:e8:14: 0c:cc:f7:fc:c1:cc:3d:98:07:91:68:e9:d4:b8:8e:1c:79:b9: 10:3e:49:5f:09:55:51:b0:5f:9f:61:8e:da:a1:2d:6a:c6:30: b7:9d:b4:11:f8:99:d5:49:bc:8a:2a:2e:82:c0:82:aa:2b:c2: 1a:72:75:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZda+D1KPxRFtfUh7BVlOtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyNjg5ZDBmOTEzZDI5Y2M2M2Q2YzkyNmNiNDYyY2IyN2Yx ODQ0MDgwHhcNMjUxMjI2MDcwMDQzWhcNMjUxMjI3MDcwMDQzWjAzMTEwLwYDVQQD Eyg1OTMzMjA5YmFhM2RlM2YxMmVlMTk2ZmM5ZmJjNTkyNGQwZDM5MDU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr11SAn1G6XjKWNns0+0Dmyrdu+lk NdGE2uz3RQOpNTrIolu0qXw2QnAwn0MGzCmaGO8014Eaf9K5UDnW+ikgVGwWs9GE lWbDoBHimJReEoQ5FE3XmxQlAy0qEoiAdSsUCpMzsgFaynO/u66DLXccjWK1JEjg 4LzQOqJro+Mw8xdGwE9R4dr1WhviU7Klq3a2FFaROyIOm2jnFQslNfhuPZ+nNBpB VkKbv69TPktsa6orOeqhY4Td8cbwiOChMQvj/erd9VMJli+21NUnU3iTHfmZuANz u+xFd/cC67EiBCDDh0aqI35+dkfLFdwThKNdX3K1DpSkI1dIFy4wmO2QdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFkzIJuqPePxLuGW/J+8WSTQ05BXMB8GA1UdIwQY MBaAFCJonQ+RPSnMY9bJJstGLLJ/GEQIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSW1pZEQ1RTlLY3hqMXNrbXkwWXNzbjhZUkFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC8wNDNlZWUtMzE5OS00ZjhlLWIwYTkt NGFkODUyYTEyY2Q2LzEvSW1pZEQ1RTlLY3hqMXNrbXkwWXNzbjhZUkFnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC8wNDNlZWUtMzE5OS00ZjhlLWIwYTktNGFkODUyYTEyY2Q2 LzEvSW1pZEQ1RTlLY3hqMXNrbXkwWXNzbjhZUkFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ769Xk19 fQ339O0hTGfpAcDJ5QuYnYar0RHYOUjDU8nDWGb7YwvXhnd1sBfgvKMduAY4b3kr q+VBxKgZ3HnJTiHcUjc5szwdwwAK42cCC4K/BJuVMLnSY1XOE6KvlWiNlsmEKCvZ q0+IenYmjvisTSHnU78WLwEBeVW50vkDpIZ7HlTSNBPN03Ub+h49WJzsCdOfGDh7 PtGO6h2Vlv0D1j6/GvCnNLyy6/N46xqt4FS4QLCcU91ABpxyob365pGCCuoipugU DMz3/MHMPZgHkWjp1LiOHHm5ED5JXwlVUbBfn2GO2qEtasYwt520EfiZ1Um8iiou gsCCqivCGnJ1RQ== -----END CERTIFICATE-----Generated at Fri Dec 26 16:03:27 2025 by rpki-client