This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft File: IM1XQoSmAY5bA2Neml1lj99XNPA.mft (raw, json) Hash identifier: iddShqWAGneJa15J6Dmk/m5r4jXYih4VT7F1zPIFtUU= Subject key identifier: 47:E8:A6:D1:80:C3:7A:71:C2:A9:9F:7D:4B:D2:D2:17:EA:5F:7F:9E Authority key identifier: 20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0 Certificate issuer: /CN=20cd574284a6018e5b03635e9a5d658fdf5734f0 Certificate serial: 019B3BA25C1FF585300DD40597B944908413 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft Manifest number: 14CD Signing time: Sat 20 Dec 2025 12:00:54 +0000 Manifest this update: Sat 20 Dec 2025 12:00:54 +0000 Manifest next update: Sun 21 Dec 2025 12:00:54 +0000 Files and hashes: 1: IM1XQoSmAY5bA2Neml1lj99XNPA.crl (hash: U/Zf3hxvz3COv8ZJh4cgv1WUDYCzkZTVRae0IiwThVo=) 2: MWwIJyVW-xGM8HHmiPSGu90ysVM.roa (hash: 9euJkhmoCQb1LOfkGIPpqowd4pomSIjB0l7bFL7u4Yg=) 3: PiMCmpetvGyOad9hAP8fiU1Qa8U.roa (hash: W2k0p2aLpcmF1pGu+mKgyVPY0tAWg3LNT6+Z7BuBqqY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:a2:5c:1f:f5:85:30:0d:d4:05:97:b9:44:90:84:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20cd574284a6018e5b03635e9a5d658fdf5734f0 Validity Not Before: Dec 20 12:00:54 2025 GMT Not After : Dec 21 12:00:54 2025 GMT Subject: CN=47e8a6d180c37a71c2a99f7d4bd2d217ea5f7f9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:55:85:19:a4:37:25:c5:56:31:31:cd:77:4c: 79:93:73:f5:83:0b:7f:aa:64:ad:0b:96:da:c7:15: 5e:58:42:05:74:3c:fd:fc:24:0f:d1:34:1a:44:ef: 4c:38:60:f4:01:f8:7c:2e:78:e7:a0:32:25:c6:04: be:c1:4f:b6:44:49:b9:0f:53:5e:f8:60:ae:ff:98: f8:ed:57:25:a9:fe:6d:7a:4c:12:a1:50:a2:8e:75: 48:33:a0:73:50:46:82:9f:2f:e0:bd:b9:0a:66:6a: f8:f3:ad:52:50:5d:31:df:90:b0:fb:19:f0:74:1d: db:fa:5b:65:57:56:94:ec:b4:1b:26:5b:6d:f8:98: d1:a9:08:ee:59:75:79:1a:f4:4f:99:17:9a:29:1c: 10:6e:ab:91:a2:a1:55:f5:4e:b3:3e:7f:8d:03:3e: cd:a5:c2:bf:38:f1:8e:0f:24:1c:af:38:d9:e0:08: df:7e:5f:9c:d2:27:d1:d0:34:f6:37:9e:3a:0a:93: b5:db:6a:53:a1:2c:3e:60:07:24:8f:bd:99:57:bc: 3f:30:80:8f:7a:bc:3a:cf:16:75:a2:94:46:85:3c: 50:73:a9:df:ed:71:ed:9c:1e:44:c3:ed:df:19:1a: 7a:e8:b6:70:c1:67:46:04:9d:cd:5d:4b:b5:04:e1: 02:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:E8:A6:D1:80:C3:7A:71:C2:A9:9F:7D:4B:D2:D2:17:EA:5F:7F:9E X509v3 Authority Key Identifier: keyid:20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:f6:6a:f3:cc:2b:2d:17:a7:8b:9d:81:01:53:8d:13:d9:21: 1b:72:ab:2f:c1:74:bb:a0:07:86:6f:57:08:dd:fa:d4:52:bd: 0f:33:11:c7:88:70:f0:09:c6:15:7c:4b:a6:88:9f:5d:22:04: 16:c0:7f:97:bd:71:47:b0:25:53:2a:c2:f9:cc:8d:49:91:cb: 3c:be:73:e5:0c:d6:97:f0:b5:00:12:96:d5:11:ec:e0:05:ec: da:02:19:96:67:53:87:7f:1b:12:99:bb:b3:87:64:c3:aa:fb: a9:a5:73:d9:5f:6a:5c:62:fa:b1:b5:54:92:79:22:25:69:4c: 5e:5d:13:53:8b:e7:a4:6f:f0:96:94:19:84:18:30:ee:85:79: 5e:8c:4e:8e:4a:6d:99:ec:01:cf:64:0c:5d:6d:0b:d9:af:50: e8:f0:2b:28:33:68:40:d4:72:ca:b6:b4:3f:04:a4:f7:85:b6: 4f:3e:be:77:70:a4:24:95:40:6b:40:07:a7:06:0c:7e:9f:39: c1:84:73:09:bd:77:25:25:41:7d:75:ae:d2:83:42:c6:af:69: d8:d0:84:60:a5:20:1b:f5:1f:c4:1c:31:7b:a2:e0:31:81:3f: c4:22:41:bb:34:4b:03:59:35:7e:0c:82:52:5f:f8:c9:a8:7f: f0:80:dc:7b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs7olwf9YUwDdQFl7lEkIQTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwY2Q1NzQyODRhNjAxOGU1YjAzNjM1ZTlhNWQ2NThmZGY1 NzM0ZjAwHhcNMjUxMjIwMTIwMDU0WhcNMjUxMjIxMTIwMDU0WjAzMTEwLwYDVQQD Eyg0N2U4YTZkMTgwYzM3YTcxYzJhOTlmN2Q0YmQyZDIxN2VhNWY3ZjllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5FWFGaQ3JcVWMTHNd0x5k3P1gwt/ qmStC5baxxVeWEIFdDz9/CQP0TQaRO9MOGD0Afh8LnjnoDIlxgS+wU+2REm5D1Ne +GCu/5j47Vclqf5tekwSoVCijnVIM6BzUEaCny/gvbkKZmr4861SUF0x35Cw+xnw dB3b+ltlV1aU7LQbJltt+JjRqQjuWXV5GvRPmReaKRwQbquRoqFV9U6zPn+NAz7N pcK/OPGODyQcrzjZ4Ajffl+c0ifR0DT2N546CpO122pToSw+YAckj72ZV7w/MICP erw6zxZ1opRGhTxQc6nf7XHtnB5Ew+3fGRp66LZwwWdGBJ3NXUu1BOECCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEfoptGAw3pxwqmffUvS0hfqX3+eMB8GA1UdIwQY MBaAFCDNV0KEpgGOWwNjXppdZY/fVzTwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy9jMjE2Y2EtYWE5ZC00ZDIxLTg0MWUt NDliNTY4N2ZlZTZkLzEvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy9jMjE2Y2EtYWE5ZC00ZDIxLTg0MWUtNDliNTY4N2ZlZTZk LzEvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARfZq88wr LReni52BAVONE9khG3KrL8F0u6AHhm9XCN361FK9DzMRx4hw8AnGFXxLpoifXSIE FsB/l71xR7AlUyrC+cyNSZHLPL5z5QzWl/C1ABKW1RHs4AXs2gIZlmdTh38bEpm7 s4dkw6r7qaVz2V9qXGL6sbVUknkiJWlMXl0TU4vnpG/wlpQZhBgw7oV5XoxOjkpt mewBz2QMXW0L2a9Q6PArKDNoQNRyyra0PwSk94W2Tz6+d3CkJJVAa0AHpwYMfp85 wYRzCb13JSVBfXWu0oNCxq9p2NCEYKUgG/UfxBwxe6LgMYE/xCJBuzRLA1k1fgyC Ul/4yah/8IDcew== -----END CERTIFICATE-----Generated at Sat Dec 20 16:16:14 2025 by rpki-client