This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/38c26f-25a2-4b20-9ecd-0e6bced00463/1/IMnySVGbH_R5NQ8xclT0Bei_yr0.mft File: IMnySVGbH_R5NQ8xclT0Bei_yr0.mft (raw, json) Hash identifier: fz5swvt1YjRXti0S7682stGBCc6UwSi7glMiu+b8lS0= Subject key identifier: 8A:88:CF:59:36:ED:A9:9D:69:24:BE:39:31:B5:81:7B:C0:FC:73:AB Authority key identifier: 20:C9:F2:49:51:9B:1F:F4:79:35:0F:31:72:54:F4:05:E8:BF:CA:BD Certificate issuer: /CN=20c9f249519b1ff479350f317254f405e8bfcabd Certificate serial: 019B2FD5A65C149D7C4A5CA2826D17542FB0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMnySVGbH_R5NQ8xclT0Bei_yr0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/38c26f-25a2-4b20-9ecd-0e6bced00463/1/IMnySVGbH_R5NQ8xclT0Bei_yr0.mft Manifest number: 1177 Signing time: Thu 18 Dec 2025 05:01:29 +0000 Manifest this update: Thu 18 Dec 2025 05:01:29 +0000 Manifest next update: Fri 19 Dec 2025 05:01:29 +0000 Files and hashes: 1: IMnySVGbH_R5NQ8xclT0Bei_yr0.crl (hash: Soqf9GEACTYBowWKei/kON4FXWRmcdybnK1OS5N0ht8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/38c26f-25a2-4b20-9ecd-0e6bced00463/1/IMnySVGbH_R5NQ8xclT0Bei_yr0.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/38c26f-25a2-4b20-9ecd-0e6bced00463/1/IMnySVGbH_R5NQ8xclT0Bei_yr0.mft rsync://rpki.ripe.net/repository/DEFAULT/IMnySVGbH_R5NQ8xclT0Bei_yr0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2f:d5:a6:5c:14:9d:7c:4a:5c:a2:82:6d:17:54:2f:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20c9f249519b1ff479350f317254f405e8bfcabd Validity Not Before: Dec 18 05:01:29 2025 GMT Not After : Dec 19 05:01:29 2025 GMT Subject: CN=8a88cf5936eda99d6924be3931b5817bc0fc73ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:11:ef:33:28:2e:b1:b8:c9:81:80:9e:20:bc: be:ac:8e:94:65:3b:86:96:ec:6d:ff:14:58:d8:90: 1e:ef:b4:46:49:2e:09:20:c1:58:c5:93:28:57:a4: c6:65:86:38:5a:c5:89:8c:2f:53:fd:ce:9a:87:c7: fb:cd:c1:c9:0d:d1:5f:79:78:3c:4d:4a:d3:d8:43: d4:3d:be:9f:89:7a:ff:8a:b8:7a:71:90:b8:22:f4: 2a:cc:09:0f:36:7e:ed:8e:a1:a0:82:69:c3:8f:23: 43:40:04:c9:d5:19:66:f2:cc:75:0f:aa:97:bc:0d: 94:a9:70:f5:8f:46:f4:6c:d3:86:fc:c5:f3:8b:5f: 39:07:9d:ce:f4:da:9a:9b:67:7a:fa:ab:7e:88:6b: 87:54:d7:48:4b:9b:7e:74:09:24:e4:8a:58:c4:63: 97:24:7d:15:01:f6:55:ea:01:28:a2:cb:21:26:6e: 25:14:2b:8e:cb:2a:b2:ce:b6:1a:68:ee:57:7a:ed: cf:35:a7:ea:e6:46:a9:3a:bc:3d:15:2d:3b:89:a7: 54:13:1e:12:d3:30:4b:b6:41:98:64:73:85:30:69: 82:89:4a:2e:5f:4a:5a:13:a3:0a:ea:7c:f1:6c:aa: 39:cd:54:97:b6:1a:f7:a2:eb:b1:4e:a9:ce:bd:8d: 79:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:88:CF:59:36:ED:A9:9D:69:24:BE:39:31:B5:81:7B:C0:FC:73:AB X509v3 Authority Key Identifier: keyid:20:C9:F2:49:51:9B:1F:F4:79:35:0F:31:72:54:F4:05:E8:BF:CA:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMnySVGbH_R5NQ8xclT0Bei_yr0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/38c26f-25a2-4b20-9ecd-0e6bced00463/1/IMnySVGbH_R5NQ8xclT0Bei_yr0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/38c26f-25a2-4b20-9ecd-0e6bced00463/1/IMnySVGbH_R5NQ8xclT0Bei_yr0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:78:3b:f0:26:00:5a:99:f2:50:4a:72:12:0a:35:f5:80:1d: bf:cc:4e:f7:71:bd:94:4d:bd:4d:19:6e:35:01:33:ee:71:60: 4d:22:f9:11:25:87:74:15:59:05:20:c3:8d:95:11:bc:db:6e: 27:4c:06:af:c5:9f:7e:57:ee:2e:81:40:43:bd:7d:d6:f2:a9: 24:99:53:e1:c5:16:85:27:0f:ec:90:40:d1:c6:d7:26:7a:67: 7f:9a:f7:e5:36:06:da:0b:5f:f3:59:70:b7:c9:14:89:9a:13: d3:15:3c:45:c6:74:a9:b9:72:77:b1:bd:bf:30:22:15:27:d3: b6:f2:0e:bc:06:2a:c6:00:2d:f9:7f:68:73:29:0c:25:98:78: 1c:c3:f1:a3:a4:c7:d5:4d:98:96:56:1c:87:99:19:9c:23:01: 30:49:97:1d:78:1e:17:07:d1:6f:47:1f:24:7d:96:eb:be:09: e8:eb:81:7f:44:25:e7:fd:dd:29:80:1d:18:8d:62:33:f7:33: f6:26:eb:11:8f:08:bc:ab:cd:28:e0:b2:e0:42:d6:6c:70:e1: 81:53:c9:6c:ac:16:07:c7:88:22:08:6f:48:68:49:d6:05:c8: 3f:44:0d:86:8a:78:39:c2:4b:0a:d7:8d:0a:24:69:05:46:f1: 03:0b:18:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsv1aZcFJ18Slyigm0XVC+wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwYzlmMjQ5NTE5YjFmZjQ3OTM1MGYzMTcyNTRmNDA1ZThi ZmNhYmQwHhcNMjUxMjE4MDUwMTI5WhcNMjUxMjE5MDUwMTI5WjAzMTEwLwYDVQQD Eyg4YTg4Y2Y1OTM2ZWRhOTlkNjkyNGJlMzkzMWI1ODE3YmMwZmM3M2FiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvBHvMygusbjJgYCeILy+rI6UZTuG luxt/xRY2JAe77RGSS4JIMFYxZMoV6TGZYY4WsWJjC9T/c6ah8f7zcHJDdFfeXg8 TUrT2EPUPb6fiXr/irh6cZC4IvQqzAkPNn7tjqGggmnDjyNDQATJ1Rlm8sx1D6qX vA2UqXD1j0b0bNOG/MXzi185B53O9Nqam2d6+qt+iGuHVNdIS5t+dAkk5IpYxGOX JH0VAfZV6gEoosshJm4lFCuOyyqyzrYaaO5Xeu3PNafq5kapOrw9FS07iadUEx4S 0zBLtkGYZHOFMGmCiUouX0paE6MK6nzxbKo5zVSXthr3ouuxTqnOvY157QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIqIz1k27amdaSS+OTG1gXvA/HOrMB8GA1UdIwQY MBaAFCDJ8klRmx/0eTUPMXJU9AXov8q9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU1ueVNWR2JIX1I1TlE4eGNsVDBCZWlfeXIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8zOGMyNmYtMjVhMi00YjIwLTllY2Qt MGU2YmNlZDAwNDYzLzEvSU1ueVNWR2JIX1I1TlE4eGNsVDBCZWlfeXIwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS8zOGMyNmYtMjVhMi00YjIwLTllY2QtMGU2YmNlZDAwNDYz LzEvSU1ueVNWR2JIX1I1TlE4eGNsVDBCZWlfeXIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmng78CYA WpnyUEpyEgo19YAdv8xO93G9lE29TRluNQEz7nFgTSL5ESWHdBVZBSDDjZURvNtu J0wGr8WfflfuLoFAQ7191vKpJJlT4cUWhScP7JBA0cbXJnpnf5r35TYG2gtf81lw t8kUiZoT0xU8RcZ0qblyd7G9vzAiFSfTtvIOvAYqxgAt+X9ocykMJZh4HMPxo6TH 1U2YllYch5kZnCMBMEmXHXgeFwfRb0cfJH2W674J6OuBf0Ql5/3dKYAdGI1iM/cz 9ibrEY8IvKvNKOCy4ELWbHDhgVPJbKwWB8eIIghvSGhJ1gXIP0QNhop4OcJLCteN CiRpBUbxAwsYMg== -----END CERTIFICATE-----Generated at Thu Dec 18 09:55:09 2025 by rpki-client