This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/38c26f-25a2-4b20-9ecd-0e6bced00463/1/IMnySVGbH_R5NQ8xclT0Bei_yr0.mft File: IMnySVGbH_R5NQ8xclT0Bei_yr0.mft (raw, json) Hash identifier: ZnXQHx/N5JxJSFEbK9F6QY+R7cO6uF7107mVBmOPm1k= Subject key identifier: BD:B4:34:3F:AB:E4:34:F3:05:05:F8:A9:0B:9A:C3:B3:04:40:1B:FB Authority key identifier: 20:C9:F2:49:51:9B:1F:F4:79:35:0F:31:72:54:F4:05:E8:BF:CA:BD Certificate issuer: /CN=20c9f249519b1ff479350f317254f405e8bfcabd Certificate serial: 019AF2090240F56BE44F0D7F20A47240FF4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMnySVGbH_R5NQ8xclT0Bei_yr0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/38c26f-25a2-4b20-9ecd-0e6bced00463/1/IMnySVGbH_R5NQ8xclT0Bei_yr0.mft Manifest number: 1157 Signing time: Sat 06 Dec 2025 05:01:07 +0000 Manifest this update: Sat 06 Dec 2025 05:01:07 +0000 Manifest next update: Sun 07 Dec 2025 05:01:07 +0000 Files and hashes: 1: IMnySVGbH_R5NQ8xclT0Bei_yr0.crl (hash: +jyfK4VzhDke0KGFdxvZvW6DgG2+oNmBlr70fsKqQhg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/38c26f-25a2-4b20-9ecd-0e6bced00463/1/IMnySVGbH_R5NQ8xclT0Bei_yr0.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/38c26f-25a2-4b20-9ecd-0e6bced00463/1/IMnySVGbH_R5NQ8xclT0Bei_yr0.mft rsync://rpki.ripe.net/repository/DEFAULT/IMnySVGbH_R5NQ8xclT0Bei_yr0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:02:40:f5:6b:e4:4f:0d:7f:20:a4:72:40:ff:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20c9f249519b1ff479350f317254f405e8bfcabd Validity Not Before: Dec 6 05:01:07 2025 GMT Not After : Dec 7 05:01:07 2025 GMT Subject: CN=bdb4343fabe434f30505f8a90b9ac3b304401bfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:85:2d:4f:da:7d:2d:24:a1:7e:ad:5c:61:5a: 36:97:10:b3:aa:9b:d2:8a:c2:dd:37:a6:b5:9e:d9: f6:66:88:13:06:4b:61:ca:c8:82:01:cb:4a:b7:4b: 05:dd:60:d2:eb:17:32:3b:df:52:83:b0:00:e9:b8: 2f:90:6a:91:17:61:b7:3a:b8:40:8b:d9:f6:4d:af: 26:b8:fc:62:f8:68:db:78:54:44:de:d8:dc:56:4b: f1:54:83:3b:0b:cb:82:5b:9c:a0:fa:39:f7:5c:9e: 01:dc:a1:fb:8f:2f:fb:61:bd:1b:98:19:9b:27:2f: e9:f9:a0:7f:9b:05:68:e7:0c:4f:78:b4:b6:0e:2c: ba:34:f0:51:4f:10:6b:1a:c8:0a:a0:3c:8d:b7:47: 07:4d:a7:12:ed:0b:d0:60:00:88:ea:ce:0d:08:e8: f5:80:35:ce:1d:55:c8:81:17:af:04:32:70:16:ac: 83:15:78:69:35:54:5b:b8:24:61:05:b8:d9:c3:ed: 3f:31:6c:b5:3f:ec:c5:40:57:5d:74:b0:a1:67:b3: 11:1c:33:b2:b0:e8:41:4e:f5:b6:54:64:9a:82:c4: 34:e6:97:a2:ed:2a:a8:22:0e:3d:e0:50:41:2e:df: c0:78:bc:54:b2:dd:a9:f1:1b:af:4e:f8:7e:c2:72: be:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:B4:34:3F:AB:E4:34:F3:05:05:F8:A9:0B:9A:C3:B3:04:40:1B:FB X509v3 Authority Key Identifier: keyid:20:C9:F2:49:51:9B:1F:F4:79:35:0F:31:72:54:F4:05:E8:BF:CA:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMnySVGbH_R5NQ8xclT0Bei_yr0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/38c26f-25a2-4b20-9ecd-0e6bced00463/1/IMnySVGbH_R5NQ8xclT0Bei_yr0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/38c26f-25a2-4b20-9ecd-0e6bced00463/1/IMnySVGbH_R5NQ8xclT0Bei_yr0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ba:8a:5f:9e:1e:75:92:51:8a:6c:53:30:ee:e3:34:52:7c:21: 25:30:f8:f0:87:03:59:08:be:bf:80:d2:44:96:11:c4:81:9c: dd:2b:1e:07:51:f9:5c:8b:ac:c6:bb:aa:55:62:45:20:f9:9c: ba:bd:b1:76:96:b9:92:20:41:4f:0d:5b:df:a8:3f:ad:3a:58: 1c:c2:a6:7a:5e:03:e7:a6:ed:f3:50:98:97:cb:ac:6d:38:c8: 40:4a:a3:c6:0c:67:68:8f:ba:a3:73:22:62:3d:6a:65:a3:3a: 3c:11:9e:b1:97:c1:f2:22:c7:3e:ce:1a:07:81:91:9e:e7:9d: 92:95:eb:83:15:16:d1:c7:24:b8:2e:c3:ea:f6:12:0e:84:c3: cc:f5:00:95:36:96:1b:91:d1:7f:63:37:11:ba:ec:84:2d:64: 15:9d:ce:0e:56:9b:f9:c1:c6:71:d7:17:67:18:b7:b7:2f:28: f6:da:d8:c2:9b:b2:39:84:c0:4b:91:1e:23:2c:99:0a:78:4e: d3:58:29:50:e1:3b:03:5a:f6:b0:5b:b0:e4:c9:90:e7:5e:24: 92:25:86:e5:dc:18:da:0e:cb:bd:64:b1:de:cb:21:5d:f4:16: e0:ac:56:36:2a:0f:65:4c:9d:72:6c:76:c7:fa:7f:3d:bd:5f: ec:27:34:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCQJA9WvkTw1/IKRyQP9NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwYzlmMjQ5NTE5YjFmZjQ3OTM1MGYzMTcyNTRmNDA1ZThi ZmNhYmQwHhcNMjUxMjA2MDUwMTA3WhcNMjUxMjA3MDUwMTA3WjAzMTEwLwYDVQQD EyhiZGI0MzQzZmFiZTQzNGYzMDUwNWY4YTkwYjlhYzNiMzA0NDAxYmZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyYUtT9p9LSShfq1cYVo2lxCzqpvS isLdN6a1ntn2ZogTBkthysiCActKt0sF3WDS6xcyO99Sg7AA6bgvkGqRF2G3OrhA i9n2Ta8muPxi+GjbeFRE3tjcVkvxVIM7C8uCW5yg+jn3XJ4B3KH7jy/7Yb0bmBmb Jy/p+aB/mwVo5wxPeLS2Diy6NPBRTxBrGsgKoDyNt0cHTacS7QvQYACI6s4NCOj1 gDXOHVXIgRevBDJwFqyDFXhpNVRbuCRhBbjZw+0/MWy1P+zFQFdddLChZ7MRHDOy sOhBTvW2VGSagsQ05pei7SqoIg494FBBLt/AeLxUst2p8RuvTvh+wnK+HQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL20ND+r5DTzBQX4qQuaw7MEQBv7MB8GA1UdIwQY MBaAFCDJ8klRmx/0eTUPMXJU9AXov8q9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU1ueVNWR2JIX1I1TlE4eGNsVDBCZWlfeXIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8zOGMyNmYtMjVhMi00YjIwLTllY2Qt MGU2YmNlZDAwNDYzLzEvSU1ueVNWR2JIX1I1TlE4eGNsVDBCZWlfeXIwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS8zOGMyNmYtMjVhMi00YjIwLTllY2QtMGU2YmNlZDAwNDYz LzEvSU1ueVNWR2JIX1I1TlE4eGNsVDBCZWlfeXIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuopfnh51 klGKbFMw7uM0UnwhJTD48IcDWQi+v4DSRJYRxIGc3SseB1H5XIusxruqVWJFIPmc ur2xdpa5kiBBTw1b36g/rTpYHMKmel4D56bt81CYl8usbTjIQEqjxgxnaI+6o3Mi Yj1qZaM6PBGesZfB8iLHPs4aB4GRnuedkpXrgxUW0cckuC7D6vYSDoTDzPUAlTaW G5HRf2M3EbrshC1kFZ3ODlab+cHGcdcXZxi3ty8o9trYwpuyOYTAS5EeIyyZCnhO 01gpUOE7A1r2sFuw5MmQ514kkiWG5dwY2g7LvWSx3sshXfQW4KxWNioPZUydcmx2 x/p/Pb1f7Cc0KA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:11:12 2025 by rpki-client