This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft File: iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft (raw, json) Hash identifier: GDkkhFKpolHdyY3WSNsP0lBYjgP6NEzuaH/BJaznMDU= Subject key identifier: F3:65:37:5D:A5:14:89:5D:33:62:0A:E1:F3:CE:B8:48:78:81:29:52 Authority key identifier: 89:73:78:12:6F:55:D9:65:19:55:3D:AA:48:E0:2E:32:82:12:16:44 Certificate issuer: /CN=897378126f55d96519553daa48e02e3282121644 Certificate serial: 019B3C7DCA3FC7A74E11ADFC005309DA1599 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iXN4Em9V2WUZVT2qSOAuMoISFkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft Manifest number: 0FE3 Signing time: Sat 20 Dec 2025 16:00:35 +0000 Manifest this update: Sat 20 Dec 2025 16:00:35 +0000 Manifest next update: Sun 21 Dec 2025 16:00:35 +0000 Files and hashes: 1: gGw6ft1sLBQmsJ-vRfx6KJXkhbk.roa (hash: S1p9cVSO3FaBQReociITznoI/L2Cqm4kk12uycY2TsA=) 2: iXN4Em9V2WUZVT2qSOAuMoISFkQ.crl (hash: SWitvuLBgU49GNH7PdnIvaxlHO60h79HUFdOM7IGeU0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/iXN4Em9V2WUZVT2qSOAuMoISFkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:7d:ca:3f:c7:a7:4e:11:ad:fc:00:53:09:da:15:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=897378126f55d96519553daa48e02e3282121644 Validity Not Before: Dec 20 16:00:35 2025 GMT Not After : Dec 21 16:00:35 2025 GMT Subject: CN=f365375da514895d33620ae1f3ceb84878812952 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4d:07:b6:6d:47:3b:86:1d:3b:fd:68:9b:6d: 17:f1:42:34:f2:ec:d7:39:cb:41:81:b2:6d:49:0a: 69:28:c6:3f:f5:d5:cd:5c:9a:03:49:7c:fd:2f:82: a1:90:e6:e7:e7:5f:0c:49:f1:28:37:d9:7f:8d:da: ea:eb:b3:21:f5:1f:03:88:88:33:bb:74:0e:00:44: c9:5c:62:65:ce:42:c6:59:39:3a:1b:30:41:29:42: 61:f5:01:bf:bb:d4:73:77:cb:dd:ee:85:bd:c7:89: b5:22:1f:2a:87:aa:f4:aa:5d:df:51:07:1d:b9:8a: 2b:5f:f3:d1:aa:f7:0b:f1:ab:82:f9:13:92:f0:0f: 86:07:c1:95:12:3d:93:63:d1:a4:86:80:11:d1:e1: 17:53:26:14:b0:6d:82:a8:28:04:01:99:82:05:91: ae:75:f8:e4:a8:76:fe:e5:79:6f:75:0e:fd:46:68: 28:cb:a7:5b:9f:3b:7c:8c:06:e0:6b:d1:5a:74:b6: 61:ae:f1:91:de:3f:e5:8a:50:78:f8:7b:1e:f9:11: 32:87:ce:e8:c6:07:d4:7c:7b:9a:62:cd:d9:53:c0: 01:83:04:b7:a6:26:3c:3d:83:b8:7e:4b:9b:76:41: 09:4d:c2:dc:b7:0b:e9:37:d9:0e:87:cd:56:5e:75: 89:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:65:37:5D:A5:14:89:5D:33:62:0A:E1:F3:CE:B8:48:78:81:29:52 X509v3 Authority Key Identifier: keyid:89:73:78:12:6F:55:D9:65:19:55:3D:AA:48:E0:2E:32:82:12:16:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iXN4Em9V2WUZVT2qSOAuMoISFkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:85:bc:b5:82:40:1f:a2:71:c6:1a:f7:28:55:42:c4:43:ad: b5:04:a0:97:f1:e7:fe:b8:85:73:25:c5:c5:cb:a5:d1:79:67: e3:30:f2:1e:bc:8d:89:bf:1d:b6:08:32:9f:95:44:0a:e1:c0: af:ad:ac:e2:4f:4a:93:bd:43:44:43:42:8a:f6:09:7a:4d:93: 73:5a:41:ff:b8:8d:f9:7d:4d:d1:ad:e1:e7:e1:5b:59:5f:ac: 9f:53:7d:5a:ee:3f:9e:60:cb:d9:fe:10:6f:55:93:f2:43:09: 89:a0:1a:80:38:82:e4:62:a4:ad:37:12:9a:90:47:27:2b:03: cc:92:35:40:ff:70:3a:5c:42:9f:f9:c7:3c:cd:a4:08:bd:c4: a2:70:92:76:d5:78:de:86:aa:ed:f6:79:07:a3:3a:ac:78:a2: 57:a0:5f:a0:50:bb:66:da:a8:29:0d:f8:f6:97:98:44:6a:29: f3:fd:31:b2:a7:cb:57:a3:f6:16:49:0d:04:a0:5e:09:d5:eb: 44:db:3c:e2:d9:78:18:2f:b1:1e:2e:e4:ea:98:19:59:54:bd: f6:e0:52:da:29:fb:80:72:bc:18:4d:00:1a:ca:c0:ad:f3:6c: 16:88:a6:9d:1a:8c:54:da:9e:fe:5a:39:3c:87:2a:63:20:f9: 9a:10:46:75 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8fco/x6dOEa38AFMJ2hWZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5NzM3ODEyNmY1NWQ5NjUxOTU1M2RhYTQ4ZTAyZTMyODIx MjE2NDQwHhcNMjUxMjIwMTYwMDM1WhcNMjUxMjIxMTYwMDM1WjAzMTEwLwYDVQQD EyhmMzY1Mzc1ZGE1MTQ4OTVkMzM2MjBhZTFmM2NlYjg0ODc4ODEyOTUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuE0Htm1HO4YdO/1om20X8UI08uzX OctBgbJtSQppKMY/9dXNXJoDSXz9L4KhkObn518MSfEoN9l/jdrq67Mh9R8DiIgz u3QOAETJXGJlzkLGWTk6GzBBKUJh9QG/u9Rzd8vd7oW9x4m1Ih8qh6r0ql3fUQcd uYorX/PRqvcL8auC+ROS8A+GB8GVEj2TY9GkhoAR0eEXUyYUsG2CqCgEAZmCBZGu dfjkqHb+5XlvdQ79Rmgoy6dbnzt8jAbga9FadLZhrvGR3j/lilB4+Hse+REyh87o xgfUfHuaYs3ZU8ABgwS3piY8PYO4fkubdkEJTcLctwvpN9kOh81WXnWJmwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPNlN12lFIldM2IK4fPOuEh4gSlSMB8GA1UdIwQY MBaAFIlzeBJvVdllGVU9qkjgLjKCEhZEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVhONEVtOVYyV1VaVlQycVNPQXVNb0lTRmtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9mMmQwY2ItYzNkNC00OWJlLWIwZjIt MzA1ZmIwOTU1NmM5LzEvaVhONEVtOVYyV1VaVlQycVNPQXVNb0lTRmtRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC9mMmQwY2ItYzNkNC00OWJlLWIwZjItMzA1ZmIwOTU1NmM5 LzEvaVhONEVtOVYyV1VaVlQycVNPQXVNb0lTRmtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg4W8tYJA H6Jxxhr3KFVCxEOttQSgl/Hn/riFcyXFxcul0Xln4zDyHryNib8dtggyn5VECuHA r62s4k9Kk71DRENCivYJek2Tc1pB/7iN+X1N0a3h5+FbWV+sn1N9Wu4/nmDL2f4Q b1WT8kMJiaAagDiC5GKkrTcSmpBHJysDzJI1QP9wOlxCn/nHPM2kCL3EonCSdtV4 3oaq7fZ5B6M6rHiiV6BfoFC7ZtqoKQ349peYRGop8/0xsqfLV6P2FkkNBKBeCdXr RNs84tl4GC+xHi7k6pgZWVS99uBS2in7gHK8GE0AGsrArfNsFoimnRqMVNqe/lo5 PIcqYyD5mhBGdQ== -----END CERTIFICATE-----Generated at Sun Dec 21 01:08:55 2025 by rpki-client