This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft File: IQIbJSIimXv-M7fksxWsjV4GeVQ.mft (raw, json) Hash identifier: PE01jPTu9z0x5J6ZDG/pbXEv3RXn4C8OpcbxZKw8AJY= Subject key identifier: 8A:28:0B:03:B5:9D:33:56:F8:F4:2E:37:70:3D:A5:D2:D1:59:B8:BC Authority key identifier: 21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 Certificate issuer: /CN=21021b252222997bfe33b7e4b315ac8d5e067954 Certificate serial: 019B39B39F0E87EDBD48E9F6975CA05B8536 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft Manifest number: 1519 Signing time: Sat 20 Dec 2025 03:00:31 +0000 Manifest this update: Sat 20 Dec 2025 03:00:31 +0000 Manifest next update: Sun 21 Dec 2025 03:00:31 +0000 Files and hashes: 1: 3ItpN6feGjO7UN2dRcjYM0AArZ8.roa (hash: yWi2Tk1o0zmHp1TWp1hxn+lJhdrn/9G1rnKPAwuzeV0=) 2: 3MPX8Hgcgpj46XFJe7iOfP4Vx9k.roa (hash: X8ItFNiHsxzuYcCwG/t6V7CD4qgVaZVjCW5JDwwvo1k=) 3: BxuNK2XBHdo88OQyiW_5v_yfc5A.roa (hash: MFlUpzcLU82WlS9U/NlO4CgGrVyG4i0P38/lEf9NP58=) 4: FQHihBoOniwmQDmO0mdn4_kxToc.roa (hash: 8vbCj1IjkktKKef6bhqcB4alSOP8znsRoac6a6VJZpM=) 5: H0EuDKc_0qiFwD_oB8SH7IZNLKw.roa (hash: UoObSdqoM3rgoGxfUBoLZfUHgqMnC51MhumXeypBTEM=) 6: H85sOAhghTea9a0fF7V97F8PmPU.roa (hash: 2OxoGkdCVVcRfuQOFsn/tuCAYUwqPM6hV+wTzXUpbKk=) 7: HLAFzpF1dtaNSAOxEl-uHrb_wcg.roa (hash: PtoSILiXlrGyGsA1CVrSehyontCCBay4De7QPXIkVlI=) 8: IQIbJSIimXv-M7fksxWsjV4GeVQ.crl (hash: 7ww571KwNdHRf1siLWsBPjX+6jXmjDSATRsoOKDLrtM=) 9: J5ajMdCsK_xzfbhWxoAV2iRMcqc.roa (hash: i0rnl2YK8VurUbtxqh46jYu42vj9ovnjrsY7s0Ha76E=) 10: NIsfNrgr61FvPf7cYDhBUlhxHyo.roa (hash: erf8aKvQjphq5ECHQpzvwfDmeIXYw4ufNsUCtqSAry4=) 11: O0dA6ORgAzDqkWmj1R355BHaTrI.roa (hash: 296lT6a3xrMsAitqkt1Jep7cJYB5SeLJP2n68zngwhU=) 12: TiUqiJvNZIWaEqZFoVWAzcDwp3c.roa (hash: dsI2Fx3cTa4t9DKJjEFjVTeP17fVXTW2caUPc0YdPNU=) 13: VbRKF62krl-KA_0dr7N8i46qs_A.roa (hash: PCEcpmBvUl37S6P9+HKjvTq2SZP3pF9GPHCRb88sRNw=) 14: Y-71jH1TNM4y_wVXmihwEns13hA.roa (hash: DnSQFYI2TRLoxJNTaW96qWMd6x4VIBIKfyR5q+UkbwI=) 15: bappW0a76vCPpE7es6c1mZAIjsM.roa (hash: cqG7BmBZANbhw2q44YhM+SIY2oACb3Cf8jR7Of0U21w=) 16: cxQurBlwQD8hDJHQVVeiU45NqWk.roa (hash: QtyAVyz8VfvE5j6ThLPcJgfpQ0JNwulpFn47sHfnMPY=) 17: esdPy3rm8msbFZlHJQBbuaedskU.roa (hash: cVAbBucCtvsTEhKDd0tw+3bzht++bMkFBH6itODZsNY=) 18: et3srQscJDAkQCjPXkww4SZ8uao.roa (hash: POnU+c1iT5dt+MRfECmBlHFKcYFs0h6C31m71g48i80=) 19: jdBpTvCq-8MvV_8qSjTQkaTjius.roa (hash: K6cLTvXBhmw9xWXVpTfX3a6fAiT7AzPGCPpq04cBjsw=) 20: kdaSrzmnDVsM0RIoAgjgbrOtDPw.roa (hash: rqvV8WO0X2/bRdhoVD7e6+BEeyw0vjX6G9hkFrs+9Pk=) 21: rzoonpOYqtsXYM-mJZQxop7dil0.roa (hash: lIbVSUnM1Xd7KDGyRHuuckLocOUOG7DGlx7Gw/KOsHE=) 22: sInIs7xXHV1rFZ5bvtNd0WwUPpw.roa (hash: EJGW3a+HO7cOB4hx+9W+PpX32wwd64sc+89yoXDGxVA=) 23: vj_Rx3DB5-xDUqDlrBJ7IxL_21w.roa (hash: MTWWugX6ksDRRG983kctzCkaVVEPY1cdhe4ngzPqXI4=) 24: y88-XlX3iJ__DzfIGS5r5m0TLBs.roa (hash: XnV7xzm/iXlPi3I2M7gT2rIanQMocQ1jqhKZYjxglqk=) 25: yfM2MaiTfFDOsvvuc9oTKlnjCok.roa (hash: XLeVu8EohnDcMakSxmYm/IQDDAg+4NcTPBIPIC2LLwk=) 26: yq4mDy7IWiKa_jUZsF8HmOo9YAA.roa (hash: D7e3OOFi7lIh2fyesD48w9fTpDFZydPZVUW+H+QSZ9A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:b3:9f:0e:87:ed:bd:48:e9:f6:97:5c:a0:5b:85:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21021b252222997bfe33b7e4b315ac8d5e067954 Validity Not Before: Dec 20 03:00:31 2025 GMT Not After : Dec 21 03:00:31 2025 GMT Subject: CN=8a280b03b59d3356f8f42e37703da5d2d159b8bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:87:92:df:65:80:d7:5d:06:8d:8c:25:82:d5: b7:26:4e:d6:49:1a:03:4f:d7:4e:05:d9:8d:f6:1e: 9e:b4:7f:78:42:6f:66:34:da:43:56:05:26:12:08: 16:c7:a3:a0:75:70:16:48:9e:d3:6b:26:1d:5c:6d: d5:e2:0c:ad:be:d0:23:a0:2f:15:59:bc:10:38:e6: 7d:16:37:8f:e7:ff:c7:69:ab:27:8f:3c:8c:9d:32: 1c:f9:be:74:d1:1d:27:e5:95:6a:36:cc:b1:9a:a9: d3:ce:9d:5d:0c:c6:1b:80:3c:73:fc:c9:b9:5c:46: 47:64:c6:98:1a:f8:ca:23:fb:b1:95:77:ac:1a:4a: 77:70:34:34:5f:b9:34:31:16:61:b6:9d:1b:83:1f: 96:4f:27:c4:23:33:d7:11:86:2f:18:b8:93:63:45: ac:42:bd:40:b3:e2:31:b5:74:d6:f8:8d:fa:ec:dc: 07:93:b2:5f:5b:96:4c:08:a7:b4:0b:ad:95:fa:51: 65:85:fc:73:8d:10:ac:79:1f:ea:1e:97:0a:69:d5: b8:36:c0:8d:e2:53:f7:a9:4b:57:29:25:c7:18:d9: 06:7f:3f:b5:c3:95:23:5a:db:97:db:36:4c:8b:ee: 53:4d:f1:86:ad:0c:1a:d3:9d:fe:40:2c:10:4f:51: 45:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:28:0B:03:B5:9D:33:56:F8:F4:2E:37:70:3D:A5:D2:D1:59:B8:BC X509v3 Authority Key Identifier: keyid:21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:da:96:75:18:60:a6:9d:7d:77:d5:6e:0c:50:84:72:16:6d: fb:93:99:2c:55:6d:a0:88:0e:88:ef:fa:48:aa:8b:72:98:52: bb:60:5e:4e:0e:d1:c7:ec:17:54:92:b6:9a:c0:f1:3d:9c:56: 44:04:81:48:92:39:21:68:44:b4:c2:f4:f0:88:83:90:e4:aa: 7a:b2:58:30:db:e1:6d:5a:50:b5:58:10:e5:2d:3c:e9:fd:6f: 2d:99:49:b9:a1:5a:ae:f0:ef:7a:97:2d:da:a9:80:23:d6:6a: a3:f8:e2:77:5f:a2:da:be:af:9c:7a:2b:85:e1:6d:51:61:2e: f1:53:e7:b1:e1:a2:db:e2:dd:7a:bd:89:f9:82:77:3e:a2:41: 7e:c4:50:73:a6:d2:2c:6f:8a:57:88:dc:fd:a3:bc:02:4e:cd: 37:21:9e:12:29:43:3a:ff:0a:cf:ec:25:a2:a7:c7:a7:30:4e: 67:4d:9d:dc:7a:21:5d:50:34:d5:40:16:2a:36:d7:3c:da:eb: b6:c4:5b:3f:08:c3:55:0d:c5:bd:cc:48:d9:55:12:35:a8:53: e3:34:be:04:be:24:b3:b1:0d:0e:c3:e4:59:a0:7f:f1:df:c9: 69:ac:d2:02:b2:ce:7f:53:51:7b:6a:e6:5c:b6:4b:8c:c0:d7: ab:81:47:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs5s58Oh+29SOn2l1ygW4U2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMDIxYjI1MjIyMjk5N2JmZTMzYjdlNGIzMTVhYzhkNWUw Njc5NTQwHhcNMjUxMjIwMDMwMDMxWhcNMjUxMjIxMDMwMDMxWjAzMTEwLwYDVQQD Eyg4YTI4MGIwM2I1OWQzMzU2ZjhmNDJlMzc3MDNkYTVkMmQxNTliOGJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0IeS32WA110GjYwlgtW3Jk7WSRoD T9dOBdmN9h6etH94Qm9mNNpDVgUmEggWx6OgdXAWSJ7TayYdXG3V4gytvtAjoC8V WbwQOOZ9FjeP5//HaasnjzyMnTIc+b500R0n5ZVqNsyxmqnTzp1dDMYbgDxz/Mm5 XEZHZMaYGvjKI/uxlXesGkp3cDQ0X7k0MRZhtp0bgx+WTyfEIzPXEYYvGLiTY0Ws Qr1As+IxtXTW+I367NwHk7JfW5ZMCKe0C62V+lFlhfxzjRCseR/qHpcKadW4NsCN 4lP3qUtXKSXHGNkGfz+1w5UjWtuX2zZMi+5TTfGGrQwa053+QCwQT1FFXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIooCwO1nTNW+PQuN3A9pdLRWbi8MB8GA1UdIwQY MBaAFCECGyUiIpl7/jO35LMVrI1eBnlUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMt NmVhYzYyZTYwZGY3LzEvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMtNmVhYzYyZTYwZGY3 LzEvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL9qWdRhg pp19d9VuDFCEchZt+5OZLFVtoIgOiO/6SKqLcphSu2BeTg7Rx+wXVJK2msDxPZxW RASBSJI5IWhEtML08IiDkOSqerJYMNvhbVpQtVgQ5S086f1vLZlJuaFarvDvepct 2qmAI9Zqo/jid1+i2r6vnHorheFtUWEu8VPnseGi2+Lder2J+YJ3PqJBfsRQc6bS LG+KV4jc/aO8Ak7NNyGeEilDOv8Kz+wloqfHpzBOZ02d3HohXVA01UAWKjbXPNrr tsRbPwjDVQ3FvcxI2VUSNahT4zS+BL4ks7ENDsPkWaB/8d/JaazSArLOf1NRe2rm XLZLjMDXq4FH6Q== -----END CERTIFICATE-----Generated at Sat Dec 20 09:59:24 2025 by rpki-client