This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/b4b600-47a7-4707-9a9e-4da54471762e/1/ibmLHbxNsPvYZW0rK4pT4sPcpqs.mft File: ibmLHbxNsPvYZW0rK4pT4sPcpqs.mft (raw, json) Hash identifier: ToXGwCi5esDXIPnUl5qGjt81Qclkh9sxNlJ4f/U7KMM= Subject key identifier: C4:E2:B0:CA:DF:FA:95:60:A7:21:71:33:59:A6:30:81:74:06:80:93 Authority key identifier: 89:B9:8B:1D:BC:4D:B0:FB:D8:65:6D:2B:2B:8A:53:E2:C3:DC:A6:AB Certificate issuer: /CN=89b98b1dbc4db0fbd8656d2b2b8a53e2c3dca6ab Certificate serial: 019B52986B1463C620279B14BA792DB727DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ibmLHbxNsPvYZW0rK4pT4sPcpqs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/b4b600-47a7-4707-9a9e-4da54471762e/1/ibmLHbxNsPvYZW0rK4pT4sPcpqs.mft Manifest number: 1090 Signing time: Wed 24 Dec 2025 23:01:19 +0000 Manifest this update: Wed 24 Dec 2025 23:01:19 +0000 Manifest next update: Thu 25 Dec 2025 23:01:19 +0000 Files and hashes: 1: ibmLHbxNsPvYZW0rK4pT4sPcpqs.crl (hash: 9RplBiD+k0F6Gj41M+6gzlcgf83pKIUCbW3MCzT2SaQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/b4b600-47a7-4707-9a9e-4da54471762e/1/ibmLHbxNsPvYZW0rK4pT4sPcpqs.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/b4b600-47a7-4707-9a9e-4da54471762e/1/ibmLHbxNsPvYZW0rK4pT4sPcpqs.mft rsync://rpki.ripe.net/repository/DEFAULT/ibmLHbxNsPvYZW0rK4pT4sPcpqs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:52:98:6b:14:63:c6:20:27:9b:14:ba:79:2d:b7:27:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89b98b1dbc4db0fbd8656d2b2b8a53e2c3dca6ab Validity Not Before: Dec 24 23:01:19 2025 GMT Not After : Dec 25 23:01:19 2025 GMT Subject: CN=c4e2b0cadffa9560a721713359a6308174068093 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e7:9c:9d:3a:87:a7:05:51:bd:d8:d8:2c:04: 9f:ac:e7:d1:83:23:4d:29:25:55:9f:c5:0b:a1:96: bf:b5:1f:19:26:f7:14:6d:06:fa:23:d2:70:53:c0: ee:1d:a5:b1:74:a0:97:f6:50:d9:79:40:83:ed:55: b0:0d:e7:bc:f0:25:9c:de:67:6f:42:7a:70:54:c6: 21:21:40:aa:62:8b:07:eb:ac:5b:a3:d0:a2:64:07: 5e:42:33:07:67:43:63:5b:3d:af:15:06:a8:8b:d5: bf:0d:6f:4e:6c:dc:ad:ab:e0:d1:48:7f:56:37:c5: a1:12:ac:cf:6a:9a:7b:e3:f8:82:ad:cc:83:e7:b6: 6d:8e:ba:b8:13:a9:7f:8f:14:40:25:a3:5a:da:2c: 45:ed:70:71:2d:e0:82:10:81:1e:06:af:c7:e5:b9: 7d:a3:19:93:01:5f:d7:fd:b3:bc:8b:41:e6:bb:af: d2:15:e0:72:59:81:64:3e:6f:8d:20:82:53:1b:21: 03:d1:2d:90:28:72:f4:24:8d:eb:2d:fa:b7:9a:5e: ca:2e:d3:11:f1:32:09:95:7d:97:3e:92:d1:66:c4: d4:44:a5:9a:02:b2:21:aa:bc:83:51:66:37:87:f3: 64:a9:2d:fe:07:03:4a:eb:dc:81:60:03:c3:20:4f: e7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:E2:B0:CA:DF:FA:95:60:A7:21:71:33:59:A6:30:81:74:06:80:93 X509v3 Authority Key Identifier: keyid:89:B9:8B:1D:BC:4D:B0:FB:D8:65:6D:2B:2B:8A:53:E2:C3:DC:A6:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ibmLHbxNsPvYZW0rK4pT4sPcpqs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/b4b600-47a7-4707-9a9e-4da54471762e/1/ibmLHbxNsPvYZW0rK4pT4sPcpqs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/b4b600-47a7-4707-9a9e-4da54471762e/1/ibmLHbxNsPvYZW0rK4pT4sPcpqs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:87:13:60:c6:98:b9:31:f5:cf:d6:8f:6b:62:30:6f:86:6c: cd:22:1b:e9:62:e2:00:2a:1c:30:9e:e5:95:03:b4:fd:4f:cc: 41:13:d5:32:2b:94:ad:9d:35:77:7b:f6:e9:10:6b:44:d7:d8: fd:57:82:44:0d:83:ad:48:94:f3:ae:c1:77:53:53:cf:b1:33: 5e:65:d1:f8:db:36:f1:35:3b:af:cd:6f:d9:d1:36:05:f1:37: 56:dd:c2:85:63:93:26:58:68:54:26:9d:b8:29:e5:f0:06:b4: 7d:53:ee:83:92:a9:09:46:63:38:fa:ee:12:ea:cd:8d:4d:07: 83:0d:59:47:95:0b:9a:b4:24:a1:80:68:a3:65:ab:44:01:ea: da:a9:c1:5e:2b:e0:80:16:fc:01:fc:ae:db:65:af:b0:33:21: e1:34:4f:29:db:4a:91:db:36:0d:9b:3c:59:1d:97:02:1b:82: ac:40:8f:0f:79:a1:85:ab:04:b0:b4:26:e3:e8:47:c6:44:38: 81:4d:d2:24:30:d6:1b:09:4c:7b:ba:26:48:a8:ed:b9:c7:ac: ca:4d:00:89:2b:0d:fd:f3:d7:3c:e1:27:c0:78:41:56:39:ea: b9:80:ad:2a:34:ab:0b:1d:e3:4a:70:0b:d9:aa:45:ad:27:63: fd:2e:c3:a2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtSmGsUY8YgJ5sUunkttyfaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5Yjk4YjFkYmM0ZGIwZmJkODY1NmQyYjJiOGE1M2UyYzNk Y2E2YWIwHhcNMjUxMjI0MjMwMTE5WhcNMjUxMjI1MjMwMTE5WjAzMTEwLwYDVQQD EyhjNGUyYjBjYWRmZmE5NTYwYTcyMTcxMzM1OWE2MzA4MTc0MDY4MDkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyuecnTqHpwVRvdjYLASfrOfRgyNN KSVVn8ULoZa/tR8ZJvcUbQb6I9JwU8DuHaWxdKCX9lDZeUCD7VWwDee88CWc3mdv QnpwVMYhIUCqYosH66xbo9CiZAdeQjMHZ0NjWz2vFQaoi9W/DW9ObNytq+DRSH9W N8WhEqzPapp74/iCrcyD57Ztjrq4E6l/jxRAJaNa2ixF7XBxLeCCEIEeBq/H5bl9 oxmTAV/X/bO8i0Hmu6/SFeByWYFkPm+NIIJTGyED0S2QKHL0JI3rLfq3ml7KLtMR 8TIJlX2XPpLRZsTURKWaArIhqryDUWY3h/NkqS3+BwNK69yBYAPDIE/nbwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMTisMrf+pVgpyFxM1mmMIF0BoCTMB8GA1UdIwQY MBaAFIm5ix28TbD72GVtKyuKU+LD3KarMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWJtTEhieE5zUHZZWlcwcks0cFQ0c1BjcHFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9iNGI2MDAtNDdhNy00NzA3LTlhOWUt NGRhNTQ0NzE3NjJlLzEvaWJtTEhieE5zUHZZWlcwcks0cFQ0c1BjcHFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC9iNGI2MDAtNDdhNy00NzA3LTlhOWUtNGRhNTQ0NzE3NjJl LzEvaWJtTEhieE5zUHZZWlcwcks0cFQ0c1BjcHFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJocTYMaY uTH1z9aPa2Iwb4ZszSIb6WLiACocMJ7llQO0/U/MQRPVMiuUrZ01d3v26RBrRNfY /VeCRA2DrUiU867Bd1NTz7EzXmXR+Ns28TU7r81v2dE2BfE3Vt3ChWOTJlhoVCad uCnl8Aa0fVPug5KpCUZjOPruEurNjU0Hgw1ZR5ULmrQkoYBoo2WrRAHq2qnBXivg gBb8Afyu22WvsDMh4TRPKdtKkds2DZs8WR2XAhuCrECPD3mhhasEsLQm4+hHxkQ4 gU3SJDDWGwlMe7omSKjtucesyk0AiSsN/fPXPOEnwHhBVjnquYCtKjSrCx3jSnAL 2apFrSdj/S7Dog== -----END CERTIFICATE-----Generated at Thu Dec 25 03:00:20 2025 by rpki-client