This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft File: IM1XQoSmAY5bA2Neml1lj99XNPA.mft (raw, json) Hash identifier: e3IF0hyLjBaoOUmtbpeBhwiH8zeduvmktFBxrgKNPNE= Subject key identifier: 44:DB:47:D4:64:99:98:04:D0:16:4A:02:E4:5F:B2:9E:47:33:88:62 Authority key identifier: 20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0 Certificate issuer: /CN=20cd574284a6018e5b03635e9a5d658fdf5734f0 Certificate serial: 019B473849BF82CA4D4CADD365C3E6EE3957 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft Manifest number: 14D3 Signing time: Mon 22 Dec 2025 18:00:29 +0000 Manifest this update: Mon 22 Dec 2025 18:00:29 +0000 Manifest next update: Tue 23 Dec 2025 18:00:29 +0000 Files and hashes: 1: IM1XQoSmAY5bA2Neml1lj99XNPA.crl (hash: z4N33XtepnkOmnrv6fxFhO8exY0+q743YCD3k787i2M=) 2: MWwIJyVW-xGM8HHmiPSGu90ysVM.roa (hash: 9euJkhmoCQb1LOfkGIPpqowd4pomSIjB0l7bFL7u4Yg=) 3: PiMCmpetvGyOad9hAP8fiU1Qa8U.roa (hash: W2k0p2aLpcmF1pGu+mKgyVPY0tAWg3LNT6+Z7BuBqqY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:47:38:49:bf:82:ca:4d:4c:ad:d3:65:c3:e6:ee:39:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20cd574284a6018e5b03635e9a5d658fdf5734f0 Validity Not Before: Dec 22 18:00:29 2025 GMT Not After : Dec 23 18:00:29 2025 GMT Subject: CN=44db47d464999804d0164a02e45fb29e47338862 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:73:78:f1:ae:90:4f:d5:76:b9:91:8b:06:48: d3:52:f6:db:e8:62:98:71:2e:bc:8b:8d:7e:93:8d: 0f:e5:75:7c:4e:40:6e:9f:92:96:fb:5f:f1:ea:95: 97:29:9b:3a:2a:83:74:15:b3:24:ec:51:7f:e1:d9: 75:fa:f0:d8:dc:17:50:7a:e6:33:b5:89:98:3a:0d: 74:49:5b:0d:12:90:85:a1:9f:28:b3:8c:76:86:53: 5c:50:ab:e9:4f:f9:b0:8d:4a:db:b6:3c:68:56:62: bb:6b:cb:16:87:4b:13:db:6f:a3:a8:41:bf:09:68: 7b:d6:26:8c:e4:04:10:5e:6a:d5:15:9e:8f:7b:cc: 19:50:72:4d:ad:ae:e7:fd:93:c2:16:68:17:2e:2d: a4:3b:e1:13:50:11:71:29:25:dd:ae:a5:e6:87:6d: 3d:ae:63:d5:48:8a:b7:51:07:b6:0e:cb:47:be:af: 2c:17:70:6d:56:ef:b0:19:91:70:5a:a7:53:22:9c: 49:50:b4:48:a7:0e:7e:19:c2:11:c6:05:4c:c9:98: ac:d9:a7:0f:a7:50:31:fa:2d:0e:24:6e:13:cc:06: 96:58:6c:37:f3:0f:3d:92:7b:b0:53:f0:b5:c9:23: a9:7f:37:45:d1:b4:cf:3b:90:bc:e4:4b:20:43:76: 31:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:DB:47:D4:64:99:98:04:D0:16:4A:02:E4:5F:B2:9E:47:33:88:62 X509v3 Authority Key Identifier: keyid:20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:51:3a:70:4b:50:03:82:06:a1:88:6a:13:ff:d0:18:3b:30: 1b:7f:6b:2a:83:b6:20:3a:3a:bc:74:d2:cc:8d:ca:ef:dc:a9: a1:19:78:4e:67:0d:32:5a:cd:4a:99:78:8d:32:d6:75:99:aa: 3d:70:5b:81:67:1f:b3:de:fd:62:8b:fe:7d:23:cd:e7:40:86: 12:43:54:16:eb:b6:94:1b:50:af:01:a3:54:62:77:42:06:6a: 64:2d:7c:9c:81:f2:c5:31:e5:2f:40:06:94:af:79:7b:ac:a7: 40:a7:d1:8b:07:02:15:d2:a6:15:b3:35:d2:41:10:17:fa:4b: 2f:f5:92:7f:d0:ac:49:4c:ba:10:18:93:98:7c:58:ee:fc:f8: 3b:be:10:d9:6b:b3:bb:15:e6:59:32:da:6b:c6:68:fc:b0:74: ad:02:f4:34:f6:d4:87:f2:8f:25:50:d9:b1:0c:a3:bb:48:16: 03:57:f4:47:ce:e4:0b:1b:ea:a8:af:8e:c3:6d:6a:77:f7:59: 4e:bd:88:db:e2:71:d1:6a:9f:b2:c0:4b:73:65:e3:42:77:2c: c5:16:de:e9:8a:fe:e5:bf:53:d1:ca:33:f5:21:f4:98:ed:1b: 92:de:28:5e:e7:0a:44:e4:ec:ef:5e:b0:af:6e:74:a2:88:df: 93:aa:73:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtHOEm/gspNTK3TZcPm7jlXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwY2Q1NzQyODRhNjAxOGU1YjAzNjM1ZTlhNWQ2NThmZGY1 NzM0ZjAwHhcNMjUxMjIyMTgwMDI5WhcNMjUxMjIzMTgwMDI5WjAzMTEwLwYDVQQD Eyg0NGRiNDdkNDY0OTk5ODA0ZDAxNjRhMDJlNDVmYjI5ZTQ3MzM4ODYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlHN48a6QT9V2uZGLBkjTUvbb6GKY cS68i41+k40P5XV8TkBun5KW+1/x6pWXKZs6KoN0FbMk7FF/4dl1+vDY3BdQeuYz tYmYOg10SVsNEpCFoZ8os4x2hlNcUKvpT/mwjUrbtjxoVmK7a8sWh0sT22+jqEG/ CWh71iaM5AQQXmrVFZ6Pe8wZUHJNra7n/ZPCFmgXLi2kO+ETUBFxKSXdrqXmh209 rmPVSIq3UQe2DstHvq8sF3BtVu+wGZFwWqdTIpxJULRIpw5+GcIRxgVMyZis2acP p1Ax+i0OJG4TzAaWWGw38w89knuwU/C1ySOpfzdF0bTPO5C85EsgQ3YxrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFETbR9RkmZgE0BZKAuRfsp5HM4hiMB8GA1UdIwQY MBaAFCDNV0KEpgGOWwNjXppdZY/fVzTwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy9jMjE2Y2EtYWE5ZC00ZDIxLTg0MWUt NDliNTY4N2ZlZTZkLzEvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy9jMjE2Y2EtYWE5ZC00ZDIxLTg0MWUtNDliNTY4N2ZlZTZk LzEvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARlE6cEtQ A4IGoYhqE//QGDswG39rKoO2IDo6vHTSzI3K79ypoRl4TmcNMlrNSpl4jTLWdZmq PXBbgWcfs979Yov+fSPN50CGEkNUFuu2lBtQrwGjVGJ3QgZqZC18nIHyxTHlL0AG lK95e6ynQKfRiwcCFdKmFbM10kEQF/pLL/WSf9CsSUy6EBiTmHxY7vz4O74Q2Wuz uxXmWTLaa8Zo/LB0rQL0NPbUh/KPJVDZsQyju0gWA1f0R87kCxvqqK+Ow21qd/dZ Tr2I2+Jx0WqfssBLc2XjQncsxRbe6Yr+5b9T0coz9SH0mO0bkt4oXucKROTs716w r250oojfk6pzqg== -----END CERTIFICATE-----Generated at Tue Dec 23 03:50:49 2025 by rpki-client