This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft File: IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft (raw, json) Hash identifier: BAlkVcOkN4Flf0kBN66JXl9wu0IU00nTnct2BPnq05w= Subject key identifier: 34:6E:FE:9A:A5:E2:6F:BA:3A:36:F0:90:70:81:0E:86:27:43:25:6F Authority key identifier: 21:7B:49:1D:CC:B5:63:22:16:D8:0B:48:F8:D6:28:6B:1E:FF:D8:D7 Certificate issuer: /CN=217b491dccb5632216d80b48f8d6286b1effd8d7 Certificate serial: 019B31FA3FA0FC42DA55F4FF534D9D89AC41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft Manifest number: 12D6 Signing time: Thu 18 Dec 2025 15:00:42 +0000 Manifest this update: Thu 18 Dec 2025 15:00:42 +0000 Manifest next update: Fri 19 Dec 2025 15:00:42 +0000 Files and hashes: 1: EJEuDnvuXiXSyssiuX3zmzznLmY.roa (hash: Oz6+eDgQ3iUmX8LJR3oXdjyr343hyansN3/KTvsHwJc=) 2: IXtJHcy1YyIW2AtI-NYoax7_2Nc.crl (hash: OZQZh+qi7BDDW0XyT+gIn3KzKpUljLcfw5uM4S51VUg=) 3: nrEMql0zV0P3dpHmZH6RSxKuJFg.roa (hash: 1gVFTzoG8NuAbMx8im63wNse5kBK1gIOddqrPu/oX6A=) 4: oCdnapI8_jAqvSx-q8QqfeZBfpI.roa (hash: 4dP+f2erpGi6jIqWI+u+ltnYaQjR1Rx/ox+mHYa6aIY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.crl rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:fa:3f:a0:fc:42:da:55:f4:ff:53:4d:9d:89:ac:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=217b491dccb5632216d80b48f8d6286b1effd8d7 Validity Not Before: Dec 18 15:00:42 2025 GMT Not After : Dec 19 15:00:42 2025 GMT Subject: CN=346efe9aa5e26fba3a36f09070810e862743256f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:f3:8b:a1:4c:fa:7e:0f:8a:33:d7:fc:7b:17: 9b:24:2e:04:00:d1:e1:be:e0:bc:8c:22:ba:88:49: 67:d7:00:75:14:43:50:63:e1:df:ba:b6:55:e3:55: 48:07:93:1f:39:ef:03:f4:25:e2:49:b0:fe:77:19: 23:a6:13:7f:0a:13:93:42:35:e9:28:3c:55:24:23: 6a:03:f7:ed:75:6c:3f:03:0d:0a:98:f2:a8:f1:89: 90:b2:96:7f:22:4a:e6:cb:70:cf:08:11:33:76:0c: 6c:a3:b2:7e:65:bd:a2:a1:b1:50:14:8a:db:7d:b1: 16:30:b1:d6:33:d5:d4:cb:10:e7:e0:60:1c:c3:32: 92:98:41:70:4c:64:00:69:5d:03:e0:46:40:60:62: 1e:5d:55:06:9a:e2:f2:e8:43:ce:3e:f9:10:58:49: b3:73:25:74:99:52:2f:ca:5c:70:05:e4:ed:47:55: 2c:3d:37:fa:8b:1c:83:93:90:15:ea:40:c5:46:f8: b5:34:42:ff:68:94:a6:1f:80:e2:db:4f:c3:71:df: 53:1d:c0:dc:d6:98:67:f2:ef:3e:ce:e8:03:f8:aa: dd:58:c5:40:45:ad:0a:6b:27:a4:4b:ad:12:9c:e5: 55:43:70:84:2a:bd:21:0f:9a:58:34:92:09:a1:a4: de:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:6E:FE:9A:A5:E2:6F:BA:3A:36:F0:90:70:81:0E:86:27:43:25:6F X509v3 Authority Key Identifier: keyid:21:7B:49:1D:CC:B5:63:22:16:D8:0B:48:F8:D6:28:6B:1E:FF:D8:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:d8:40:25:bd:80:d4:ad:77:c2:35:07:16:59:68:44:88:65: 83:de:e0:33:0b:d0:bc:b5:ab:3f:69:dc:f3:e9:29:34:ea:85: 9d:97:1b:5c:46:8a:45:8c:67:ca:69:fb:f4:03:f2:c3:fa:fa: 1d:e6:7c:42:27:27:fa:52:6d:ca:60:d0:b7:7f:cc:19:6c:12: 2b:0f:7f:4b:27:97:21:3c:33:89:30:08:4e:d5:36:0a:c4:ed: f1:0b:7d:de:46:5e:98:b5:7c:2e:8f:90:ef:8e:8e:a2:bc:de: 78:7a:1f:c2:de:7d:da:14:26:86:49:1b:24:57:f4:0a:52:5e: 72:a0:f4:bb:ad:81:a1:df:5d:b1:2d:8a:45:07:43:da:94:90: 0b:53:26:63:ad:0d:54:87:45:01:a9:d6:ae:54:77:03:55:50: 2f:56:e9:9c:f5:56:f7:3e:76:df:ae:13:f9:c8:cf:f2:65:63: 15:5f:53:c1:af:72:ab:ba:a3:1a:3b:e4:6f:09:6b:ca:70:8d: 08:bd:78:cc:77:93:96:2a:52:3d:95:dd:e9:f3:0b:b7:42:9a: 73:6d:50:d2:a2:ca:f7:82:a6:2d:79:41:a6:3e:e8:97:ad:c7: b3:2d:17:c5:f4:a7:87:fa:3e:b7:59:56:eb:3a:29:07:da:b2: b5:59:37:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsx+j+g/ELaVfT/U02diaxBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxN2I0OTFkY2NiNTYzMjIxNmQ4MGI0OGY4ZDYyODZiMWVm ZmQ4ZDcwHhcNMjUxMjE4MTUwMDQyWhcNMjUxMjE5MTUwMDQyWjAzMTEwLwYDVQQD EygzNDZlZmU5YWE1ZTI2ZmJhM2EzNmYwOTA3MDgxMGU4NjI3NDMyNTZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlfOLoUz6fg+KM9f8exebJC4EANHh vuC8jCK6iEln1wB1FENQY+HfurZV41VIB5MfOe8D9CXiSbD+dxkjphN/ChOTQjXp KDxVJCNqA/ftdWw/Aw0KmPKo8YmQspZ/Ikrmy3DPCBEzdgxso7J+Zb2iobFQFIrb fbEWMLHWM9XUyxDn4GAcwzKSmEFwTGQAaV0D4EZAYGIeXVUGmuLy6EPOPvkQWEmz cyV0mVIvylxwBeTtR1UsPTf6ixyDk5AV6kDFRvi1NEL/aJSmH4Di20/Dcd9THcDc 1phn8u8+zugD+KrdWMVARa0KayekS60SnOVVQ3CEKr0hD5pYNJIJoaTeewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDRu/pql4m+6OjbwkHCBDoYnQyVvMB8GA1UdIwQY MBaAFCF7SR3MtWMiFtgLSPjWKGse/9jXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVh0SkhjeTFZeUlXMkF0SS1OWW9heDdfMk5jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9lOWYyOWMtOTIzMS00NTBkLWFkYjAt NmRlMDVhMzE2MjM5LzEvSVh0SkhjeTFZeUlXMkF0SS1OWW9heDdfMk5jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9lOWYyOWMtOTIzMS00NTBkLWFkYjAtNmRlMDVhMzE2MjM5 LzEvSVh0SkhjeTFZeUlXMkF0SS1OWW9heDdfMk5jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAidhAJb2A 1K13wjUHFlloRIhlg97gMwvQvLWrP2nc8+kpNOqFnZcbXEaKRYxnymn79APyw/r6 HeZ8Qicn+lJtymDQt3/MGWwSKw9/SyeXITwziTAITtU2CsTt8Qt93kZemLV8Lo+Q 746OorzeeHofwt592hQmhkkbJFf0ClJecqD0u62Bod9dsS2KRQdD2pSQC1MmY60N VIdFAanWrlR3A1VQL1bpnPVW9z52364T+cjP8mVjFV9Twa9yq7qjGjvkbwlrynCN CL14zHeTlipSPZXd6fMLt0Kac21Q0qLK94KmLXlBpj7ol63Hsy0XxfSnh/o+t1lW 6zopB9qytVk31A== -----END CERTIFICATE-----Generated at Thu Dec 18 21:44:52 2025 by rpki-client