This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/c40875-061a-42df-9c6d-87a6845f66f9/1/cimwOc-KrxQdbm1hbnwWkInLyzI.mft File: cimwOc-KrxQdbm1hbnwWkInLyzI.mft (raw, json) Hash identifier: bhAleDYVcG0kNQVwzLPqNbzCy437k/EgLYhn8VHlx+0= Subject key identifier: C4:47:31:60:0F:94:DE:5A:83:01:EE:50:63:B2:CF:23:EC:5F:52:36 Authority key identifier: 72:29:B0:39:CF:8A:AF:14:1D:6E:6D:61:6E:7C:16:90:89:CB:CB:32 Certificate issuer: /CN=7229b039cf8aaf141d6e6d616e7c169089cbcb32 Certificate serial: 019AF1D21E274D647C9EC9E0002F77CA512A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cimwOc-KrxQdbm1hbnwWkInLyzI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/c40875-061a-42df-9c6d-87a6845f66f9/1/cimwOc-KrxQdbm1hbnwWkInLyzI.mft Manifest number: 0E9E Signing time: Sat 06 Dec 2025 04:01:10 +0000 Manifest this update: Sat 06 Dec 2025 04:01:10 +0000 Manifest next update: Sun 07 Dec 2025 04:01:10 +0000 Files and hashes: 1: _11c4KnryngFBZ3LrSwCjXVWAnI.roa (hash: 4suX3JVW+dbra41XqoLSgaNnHC7+X6k6GS1R8JLgxL8=) 2: cimwOc-KrxQdbm1hbnwWkInLyzI.crl (hash: 9DLNiqA8/7IF+drmKOmhvUj0S6hAIdJXspA9IZrhVqE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/c40875-061a-42df-9c6d-87a6845f66f9/1/cimwOc-KrxQdbm1hbnwWkInLyzI.crl rsync://rpki.ripe.net/repository/DEFAULT/53/c40875-061a-42df-9c6d-87a6845f66f9/1/cimwOc-KrxQdbm1hbnwWkInLyzI.mft rsync://rpki.ripe.net/repository/DEFAULT/cimwOc-KrxQdbm1hbnwWkInLyzI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:1e:27:4d:64:7c:9e:c9:e0:00:2f:77:ca:51:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7229b039cf8aaf141d6e6d616e7c169089cbcb32 Validity Not Before: Dec 6 04:01:10 2025 GMT Not After : Dec 7 04:01:10 2025 GMT Subject: CN=c44731600f94de5a8301ee5063b2cf23ec5f5236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:83:07:3f:79:e4:14:04:f4:a4:4e:91:5e:a2: 4f:64:6f:db:d5:bb:e4:2d:8e:72:34:d7:47:93:2a: c9:2b:b8:95:d6:be:54:42:01:51:8b:95:05:ce:e5: 15:36:eb:0f:b7:5f:a7:ba:e8:85:f6:f7:8a:04:c9: ec:81:71:a7:a6:72:e2:ae:d1:39:03:7b:8c:05:ac: a9:f1:c4:6d:9f:3a:d2:89:00:4b:7b:fb:15:88:f9: be:dc:77:1d:e4:74:fb:17:e3:9c:a8:60:ef:0e:9e: 6b:6f:07:aa:9a:ab:75:a9:fb:90:e4:e4:da:99:6e: a3:ab:19:1d:28:f1:b2:09:12:ba:72:cd:06:e1:bd: a3:0b:fa:22:de:11:b7:b4:83:43:de:25:f5:68:00: 0e:d4:e6:09:c9:4b:13:1d:8d:b3:e4:01:80:c6:91: d6:3c:bc:3b:6c:0b:af:ad:f4:5e:5b:68:75:a3:ba: d3:3b:fb:59:1b:96:8d:c3:a0:77:60:51:ae:64:83: 56:78:f7:d0:a0:7a:ce:bf:1e:b2:7c:84:5b:b6:25: 27:21:2c:bb:14:59:bb:49:f3:cd:61:fc:ad:dd:61: 9b:6d:fc:38:f9:f4:fb:b7:c7:28:5f:a1:37:ea:fc: 50:22:20:98:f8:8e:8f:67:31:c5:3e:ea:05:fa:bb: a5:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:47:31:60:0F:94:DE:5A:83:01:EE:50:63:B2:CF:23:EC:5F:52:36 X509v3 Authority Key Identifier: keyid:72:29:B0:39:CF:8A:AF:14:1D:6E:6D:61:6E:7C:16:90:89:CB:CB:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cimwOc-KrxQdbm1hbnwWkInLyzI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c40875-061a-42df-9c6d-87a6845f66f9/1/cimwOc-KrxQdbm1hbnwWkInLyzI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c40875-061a-42df-9c6d-87a6845f66f9/1/cimwOc-KrxQdbm1hbnwWkInLyzI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:8a:ff:07:0f:73:3d:7d:0f:21:91:1d:79:a1:0a:3b:48:a4: 11:b2:cc:62:ff:e0:4a:30:2c:37:ce:6a:f5:6b:ee:b0:ba:b8: cb:5b:b6:f8:0a:89:98:dc:89:49:89:3e:e2:9a:73:b0:72:8c: 65:c0:6a:b6:89:60:64:b4:a0:ff:be:74:17:5c:a2:29:9e:c1: 31:48:3c:03:9d:c8:b2:b4:46:cb:77:86:01:18:5b:38:05:5b: e0:1b:60:12:7f:fe:a1:8d:79:22:2b:c8:41:81:c9:ab:8a:c2: 5c:f6:4c:24:61:9f:02:a1:9a:7d:75:8d:56:60:dc:c1:8d:7e: 84:5b:8f:49:d7:b6:d9:cc:5a:79:e0:a0:22:31:11:46:6d:f5: a0:18:d6:d1:b4:73:5b:57:d6:aa:b5:a4:6e:5d:07:c5:2b:a8: b9:6c:b7:28:9b:63:53:ab:68:1a:08:bb:4c:03:a8:1e:b0:f5: 9c:e5:66:1b:4d:d7:8f:98:c6:cd:f9:61:dc:5e:8d:14:26:40: 47:d1:0a:b8:f1:b2:8e:5a:cb:21:b8:38:85:72:a3:1d:30:ec: ee:3c:45:1b:34:4b:07:a1:87:27:af:eb:ca:7b:5a:a8:ef:48: 55:e9:d5:b9:67:9b:85:20:85:e9:77:06:e7:b6:10:5a:05:e1: 6f:9d:1d:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0h4nTWR8nsngAC93ylEqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyMjliMDM5Y2Y4YWFmMTQxZDZlNmQ2MTZlN2MxNjkwODlj YmNiMzIwHhcNMjUxMjA2MDQwMTEwWhcNMjUxMjA3MDQwMTEwWjAzMTEwLwYDVQQD EyhjNDQ3MzE2MDBmOTRkZTVhODMwMWVlNTA2M2IyY2YyM2VjNWY1MjM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwoMHP3nkFAT0pE6RXqJPZG/b1bvk LY5yNNdHkyrJK7iV1r5UQgFRi5UFzuUVNusPt1+nuuiF9veKBMnsgXGnpnLirtE5 A3uMBayp8cRtnzrSiQBLe/sViPm+3Hcd5HT7F+OcqGDvDp5rbweqmqt1qfuQ5OTa mW6jqxkdKPGyCRK6cs0G4b2jC/oi3hG3tIND3iX1aAAO1OYJyUsTHY2z5AGAxpHW PLw7bAuvrfReW2h1o7rTO/tZG5aNw6B3YFGuZINWePfQoHrOvx6yfIRbtiUnISy7 FFm7SfPNYfyt3WGbbfw4+fT7t8coX6E36vxQIiCY+I6PZzHFPuoF+rulWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMRHMWAPlN5agwHuUGOyzyPsX1I2MB8GA1UdIwQY MBaAFHIpsDnPiq8UHW5tYW58FpCJy8syMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2ltd09jLUtyeFFkYm0xaGJud1drSW5MeXpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9jNDA4NzUtMDYxYS00MmRmLTljNmQt ODdhNjg0NWY2NmY5LzEvY2ltd09jLUtyeFFkYm0xaGJud1drSW5MeXpJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My9jNDA4NzUtMDYxYS00MmRmLTljNmQtODdhNjg0NWY2NmY5 LzEvY2ltd09jLUtyeFFkYm0xaGJud1drSW5MeXpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADYr/Bw9z PX0PIZEdeaEKO0ikEbLMYv/gSjAsN85q9WvusLq4y1u2+AqJmNyJSYk+4ppzsHKM ZcBqtolgZLSg/750F1yiKZ7BMUg8A53IsrRGy3eGARhbOAVb4BtgEn/+oY15IivI QYHJq4rCXPZMJGGfAqGafXWNVmDcwY1+hFuPSde22cxaeeCgIjERRm31oBjW0bRz W1fWqrWkbl0HxSuouWy3KJtjU6toGgi7TAOoHrD1nOVmG03Xj5jGzflh3F6NFCZA R9EKuPGyjlrLIbg4hXKjHTDs7jxFGzRLB6GHJ6/ryntaqO9IVenVuWebhSCF6XcG 57YQWgXhb50dig== -----END CERTIFICATE-----Generated at Sat Dec 6 11:14:18 2025 by rpki-client