This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft File: IM1XQoSmAY5bA2Neml1lj99XNPA.mft (raw, json) Hash identifier: 1OzZDqxnNSBBSSvVpTDXbA9nuSF+EAKgQFAhfvz6sk4= Subject key identifier: DF:7B:31:2A:04:10:E5:F8:B7:D3:99:EF:75:E9:9D:C1:84:D9:A0:3E Authority key identifier: 20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0 Certificate issuer: /CN=20cd574284a6018e5b03635e9a5d658fdf5734f0 Certificate serial: 019AF80AC7A2BBBB539853E1DF79C4C2020A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft Manifest number: 14AA Signing time: Sun 07 Dec 2025 09:00:47 +0000 Manifest this update: Sun 07 Dec 2025 09:00:47 +0000 Manifest next update: Mon 08 Dec 2025 09:00:47 +0000 Files and hashes: 1: IM1XQoSmAY5bA2Neml1lj99XNPA.crl (hash: DxqFdTiUVHvhd1Wxh1VDmzMAba9nqY28vr4vsK9qmAo=) 2: MWwIJyVW-xGM8HHmiPSGu90ysVM.roa (hash: 9euJkhmoCQb1LOfkGIPpqowd4pomSIjB0l7bFL7u4Yg=) 3: PiMCmpetvGyOad9hAP8fiU1Qa8U.roa (hash: W2k0p2aLpcmF1pGu+mKgyVPY0tAWg3LNT6+Z7BuBqqY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 08 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f8:0a:c7:a2:bb:bb:53:98:53:e1:df:79:c4:c2:02:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20cd574284a6018e5b03635e9a5d658fdf5734f0 Validity Not Before: Dec 7 09:00:47 2025 GMT Not After : Dec 8 09:00:47 2025 GMT Subject: CN=df7b312a0410e5f8b7d399ef75e99dc184d9a03e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:96:97:d1:fd:35:0e:e5:52:94:9d:ff:8f:4e: 4e:da:03:01:8f:72:60:62:de:32:2c:62:68:74:8d: 84:02:dd:01:09:69:19:1a:99:73:89:9b:ea:39:61: 67:ac:18:97:fb:41:a7:3b:4c:25:d4:52:c7:0b:6a: bb:99:3b:96:40:3f:00:cb:4f:3d:37:99:71:40:b5: c3:32:92:6b:84:33:87:bb:83:6e:9e:da:bb:9f:78: 53:f6:88:13:6a:29:30:44:98:f3:4b:f0:34:cf:98: d4:3c:9c:f5:5d:a9:a7:eb:c7:4a:56:43:ec:8f:f0: 8e:b1:c5:0e:a1:95:07:5e:c8:c3:2d:76:be:98:51: 97:e7:f0:ea:a3:47:fb:45:1b:42:b3:71:64:8e:15: 15:46:0f:63:b5:cb:e2:cd:31:26:cd:16:f5:79:a4: 28:e3:b9:c8:13:8c:8e:db:de:cd:92:3c:6f:06:0b: c5:5f:57:0a:42:b2:36:ac:67:a0:61:74:e2:19:3b: f0:c3:a0:93:f6:af:09:97:d9:bd:bb:59:06:04:bc: a1:57:a7:0b:b3:52:e9:0b:e7:45:94:53:5d:67:b1: bd:e1:eb:ca:8f:de:17:f6:dc:43:d9:cf:ed:29:75: 9a:30:b5:14:56:29:d7:7b:6f:90:05:fa:f8:fc:79: f2:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:7B:31:2A:04:10:E5:F8:B7:D3:99:EF:75:E9:9D:C1:84:D9:A0:3E X509v3 Authority Key Identifier: keyid:20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cc:c9:fc:c8:ab:15:b7:53:fb:6e:88:11:3e:8a:fd:34:09:87: 08:22:b7:e3:f6:7c:e6:5c:64:2d:6d:4f:c8:db:f1:41:bc:4c: 54:23:4c:9a:1e:c9:b8:50:ea:35:83:80:da:dd:e9:0a:42:00: 42:a2:96:d7:22:e2:24:ab:d1:98:fa:98:41:e3:7b:33:7c:43: 54:ae:a9:fe:80:97:e6:84:9f:8e:62:1e:70:90:13:23:66:be: 21:07:23:8a:35:79:91:7b:8c:03:cd:dd:c6:37:71:fb:a3:1a: d8:c4:0e:ed:d5:b3:81:06:7c:7f:b3:fc:59:a7:82:01:e1:94: ad:ab:d8:7a:ab:7a:aa:2b:5d:9c:df:d3:36:7b:f9:9f:e6:54: 9c:1d:b8:44:69:ca:38:31:4f:9c:75:8b:ce:d5:92:95:ea:0d: cc:79:d4:e0:94:c3:0d:0b:19:22:a5:cb:f6:0d:ec:04:9b:3a: 56:aa:b9:66:1d:de:d6:2e:f5:45:1b:3c:03:17:85:e6:c1:c5: 14:00:f0:f5:26:62:60:68:1b:c4:80:92:91:c0:9f:13:3e:e9: 69:49:e4:ad:7e:7e:0e:8c:f2:21:69:a4:46:c6:0a:2e:99:b5: 45:e1:dc:a0:b1:18:e9:2a:ad:97:1a:ae:f7:06:95:13:ef:9c: e2:cd:97:89 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr4Cseiu7tTmFPh33nEwgIKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwY2Q1NzQyODRhNjAxOGU1YjAzNjM1ZTlhNWQ2NThmZGY1 NzM0ZjAwHhcNMjUxMjA3MDkwMDQ3WhcNMjUxMjA4MDkwMDQ3WjAzMTEwLwYDVQQD EyhkZjdiMzEyYTA0MTBlNWY4YjdkMzk5ZWY3NWU5OWRjMTg0ZDlhMDNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0paX0f01DuVSlJ3/j05O2gMBj3Jg Yt4yLGJodI2EAt0BCWkZGplziZvqOWFnrBiX+0GnO0wl1FLHC2q7mTuWQD8Ay089 N5lxQLXDMpJrhDOHu4Nuntq7n3hT9ogTaikwRJjzS/A0z5jUPJz1Xamn68dKVkPs j/COscUOoZUHXsjDLXa+mFGX5/Dqo0f7RRtCs3FkjhUVRg9jtcvizTEmzRb1eaQo 47nIE4yO297NkjxvBgvFX1cKQrI2rGegYXTiGTvww6CT9q8Jl9m9u1kGBLyhV6cL s1LpC+dFlFNdZ7G94evKj94X9txD2c/tKXWaMLUUVinXe2+QBfr4/Hny8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN97MSoEEOX4t9OZ73XpncGE2aA+MB8GA1UdIwQY MBaAFCDNV0KEpgGOWwNjXppdZY/fVzTwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy9jMjE2Y2EtYWE5ZC00ZDIxLTg0MWUt NDliNTY4N2ZlZTZkLzEvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy9jMjE2Y2EtYWE5ZC00ZDIxLTg0MWUtNDliNTY4N2ZlZTZk LzEvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzMn8yKsV t1P7bogRPor9NAmHCCK34/Z85lxkLW1PyNvxQbxMVCNMmh7JuFDqNYOA2t3pCkIA QqKW1yLiJKvRmPqYQeN7M3xDVK6p/oCX5oSfjmIecJATI2a+IQcjijV5kXuMA83d xjdx+6Ma2MQO7dWzgQZ8f7P8WaeCAeGUravYeqt6qitdnN/TNnv5n+ZUnB24RGnK ODFPnHWLztWSleoNzHnU4JTDDQsZIqXL9g3sBJs6Vqq5Zh3e1i71RRs8AxeF5sHF FADw9SZiYGgbxICSkcCfEz7paUnkrX5+DozyIWmkRsYKLpm1ReHcoLEY6Sqtlxqu 9waVE++c4s2XiQ== -----END CERTIFICATE-----Generated at Sun Dec 7 16:39:01 2025 by rpki-client