This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.mft File: IMz236cJVzqCG2PEy2lWBf0maAs.mft (raw, json) Hash identifier: xVMzYhN14sKLIb467tuk0QHoo0Sj5CzbrxgyYduic5g= Subject key identifier: E9:3E:76:98:BC:00:46:53:B1:34:33:38:87:D3:31:A2:9B:E2:F3:38 Authority key identifier: 20:CC:F6:DF:A7:09:57:3A:82:1B:63:C4:CB:69:56:05:FD:26:68:0B Certificate issuer: /CN=20ccf6dfa709573a821b63c4cb695605fd26680b Certificate serial: 019AF50B1AE3B1D18C6A6E6E2C843FF6B2E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMz236cJVzqCG2PEy2lWBf0maAs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.mft Manifest number: 0469 Signing time: Sat 06 Dec 2025 19:02:16 +0000 Manifest this update: Sat 06 Dec 2025 19:02:16 +0000 Manifest next update: Sun 07 Dec 2025 19:02:16 +0000 Files and hashes: 1: HO9laPPsdq6sfNd_PR3udt1kywk.roa (hash: ySqE/9cHXiOyjfUHGzF3+AzH1p8/SUImSsDU40s2CbI=) 2: IMz236cJVzqCG2PEy2lWBf0maAs.crl (hash: cJNas1JNf9HZ9jkxl8oczH/d65rc4QXu1y08V5BSe6s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.mft rsync://rpki.ripe.net/repository/DEFAULT/IMz236cJVzqCG2PEy2lWBf0maAs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0b:1a:e3:b1:d1:8c:6a:6e:6e:2c:84:3f:f6:b2:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20ccf6dfa709573a821b63c4cb695605fd26680b Validity Not Before: Dec 6 19:02:16 2025 GMT Not After : Dec 7 19:02:16 2025 GMT Subject: CN=e93e7698bc004653b134333887d331a29be2f338 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:75:8a:7c:49:c3:98:57:66:67:41:9f:f7:c5: 32:4d:ab:79:25:80:29:e0:ca:a8:e5:87:33:cd:d8: fc:98:b6:52:5d:cc:2c:76:87:63:b3:39:09:a8:36: 3b:6e:6e:0b:ac:62:95:fa:67:99:34:ba:80:2e:55: 7d:c8:4d:e8:77:ee:d8:99:cd:6f:34:40:90:d6:61: 47:32:11:7f:9f:f0:15:69:84:de:15:1b:53:b3:0b: 70:04:5a:31:a4:aa:5b:cb:29:0a:4a:35:0b:39:5c: db:7f:7b:f1:05:07:f4:00:c5:0a:89:36:91:44:f8: a5:95:f2:8b:e7:90:7d:f5:c4:dd:89:18:f4:78:a3: 59:df:2e:0e:3b:a3:cd:65:9a:f7:50:19:f5:db:dc: 4e:2d:f0:9e:fc:39:b3:f1:1f:38:57:36:52:5c:bf: 6a:25:a0:90:08:94:2f:eb:94:a6:e4:24:7b:4e:ae: dc:b1:5d:75:43:db:5b:09:5c:6f:a2:71:c0:ae:ca: f6:0f:07:4b:54:f5:31:17:37:48:32:f3:54:cd:88: 6c:c8:99:f2:a9:6c:1d:09:1c:75:9e:4b:2e:df:af: 96:85:4d:6b:41:03:ba:d0:07:90:23:40:f1:5f:9d: 1f:8e:57:d7:d3:b6:54:15:de:b2:2c:4b:71:c6:8a: 40:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:3E:76:98:BC:00:46:53:B1:34:33:38:87:D3:31:A2:9B:E2:F3:38 X509v3 Authority Key Identifier: keyid:20:CC:F6:DF:A7:09:57:3A:82:1B:63:C4:CB:69:56:05:FD:26:68:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMz236cJVzqCG2PEy2lWBf0maAs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:a6:4c:c4:84:c8:79:78:d1:53:77:ae:e4:67:97:b1:4d:c9: 18:cd:db:12:21:b0:42:35:ae:b8:0c:ae:f8:29:16:df:95:5d: cc:1f:60:da:0c:d6:04:7d:11:38:6d:5c:df:ea:99:e6:58:41: f8:15:6a:49:d6:10:f1:c3:f4:fe:bf:2a:37:49:d5:c7:e4:cf: de:2c:f6:c5:0a:ef:fa:cf:9d:8a:80:07:47:87:03:d3:f7:ff: f7:25:50:00:4d:d7:1f:3a:ab:d0:ea:34:97:be:c4:65:5c:bb: 5c:36:c7:c6:8b:af:76:c1:51:d7:11:01:76:d1:e8:a6:46:d4: 5e:81:77:f0:db:12:f1:c0:f6:e0:42:5a:8b:ed:8d:1b:b3:5c: 9f:23:6d:05:f3:12:44:2c:73:c4:e3:46:0b:e2:d2:eb:aa:34: c2:da:ad:e0:a0:a7:aa:84:0a:95:90:7c:37:df:84:92:92:4b: 05:8b:9d:4c:c5:de:e4:a4:31:d6:31:c4:2d:44:90:d7:49:85: 73:75:93:93:8b:0c:74:46:f1:db:ae:4f:9b:fd:4e:b4:6b:ef: 9c:0c:e8:9c:7c:a4:2f:a8:14:b6:bd:55:71:a7:e6:af:f6:ff: e9:99:36:fa:4c:f4:b8:ea:68:3e:0e:6e:c7:5e:1e:52:83:8a: 47:a8:3a:60 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CxrjsdGMam5uLIQ/9rLjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwY2NmNmRmYTcwOTU3M2E4MjFiNjNjNGNiNjk1NjA1ZmQy NjY4MGIwHhcNMjUxMjA2MTkwMjE2WhcNMjUxMjA3MTkwMjE2WjAzMTEwLwYDVQQD EyhlOTNlNzY5OGJjMDA0NjUzYjEzNDMzMzg4N2QzMzFhMjliZTJmMzM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvXWKfEnDmFdmZ0Gf98UyTat5JYAp 4Mqo5Yczzdj8mLZSXcwsdodjszkJqDY7bm4LrGKV+meZNLqALlV9yE3od+7Ymc1v NECQ1mFHMhF/n/AVaYTeFRtTswtwBFoxpKpbyykKSjULOVzbf3vxBQf0AMUKiTaR RPillfKL55B99cTdiRj0eKNZ3y4OO6PNZZr3UBn129xOLfCe/Dmz8R84VzZSXL9q JaCQCJQv65Sm5CR7Tq7csV11Q9tbCVxvonHArsr2DwdLVPUxFzdIMvNUzYhsyJny qWwdCRx1nksu36+WhU1rQQO60AeQI0DxX50fjlfX07ZUFd6yLEtxxopAzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOk+dpi8AEZTsTQzOIfTMaKb4vM4MB8GA1UdIwQY MBaAFCDM9t+nCVc6ghtjxMtpVgX9JmgLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU16MjM2Y0pWenFDRzJQRXkybFdCZjBtYUFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8xOTI2OWMtOWQ1Yi00ZjA5LTk3ZWIt M2EyOGY4YTljNzA3LzEvSU16MjM2Y0pWenFDRzJQRXkybFdCZjBtYUFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi8xOTI2OWMtOWQ1Yi00ZjA5LTk3ZWItM2EyOGY4YTljNzA3 LzEvSU16MjM2Y0pWenFDRzJQRXkybFdCZjBtYUFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJKZMxITI eXjRU3eu5GeXsU3JGM3bEiGwQjWuuAyu+CkW35VdzB9g2gzWBH0ROG1c3+qZ5lhB +BVqSdYQ8cP0/r8qN0nVx+TP3iz2xQrv+s+dioAHR4cD0/f/9yVQAE3XHzqr0Oo0 l77EZVy7XDbHxouvdsFR1xEBdtHopkbUXoF38NsS8cD24EJai+2NG7NcnyNtBfMS RCxzxONGC+LS66o0wtqt4KCnqoQKlZB8N9+EkpJLBYudTMXe5KQx1jHELUSQ10mF c3WTk4sMdEbx265Pm/1OtGvvnAzonHykL6gUtr1Vcafmr/b/6Zk2+kz0uOpoPg5u x14eUoOKR6g6YA== -----END CERTIFICATE-----Generated at Sat Dec 6 23:37:46 2025 by rpki-client