This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft File: IgTxXPMNc4SLB038rCYTgAYVatQ.mft (raw, json) Hash identifier: LPm0C6ZxszB+xRR5eKNjKncQcpYuip8h6kWA2aPagew= Subject key identifier: CC:C5:52:82:74:A0:E6:90:33:0D:9E:AF:6D:CD:6B:83:6F:03:AE:E4 Authority key identifier: 22:04:F1:5C:F3:0D:73:84:8B:07:4D:FC:AC:26:13:80:06:15:6A:D4 Certificate issuer: /CN=2204f15cf30d73848b074dfcac26138006156ad4 Certificate serial: 019AF12E2ADDB89651CA01D5C06D7E8EF7E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft Manifest number: 0E6E Signing time: Sat 06 Dec 2025 01:02:05 +0000 Manifest this update: Sat 06 Dec 2025 01:02:05 +0000 Manifest next update: Sun 07 Dec 2025 01:02:05 +0000 Files and hashes: 1: IgTxXPMNc4SLB038rCYTgAYVatQ.crl (hash: FuwTqyKb6BygBMn9aIpukd87PIlPJrH+JMBTffLwi3M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.crl rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:2a:dd:b8:96:51:ca:01:d5:c0:6d:7e:8e:f7:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2204f15cf30d73848b074dfcac26138006156ad4 Validity Not Before: Dec 6 01:02:05 2025 GMT Not After : Dec 7 01:02:05 2025 GMT Subject: CN=ccc5528274a0e690330d9eaf6dcd6b836f03aee4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:4a:29:ff:62:f1:b1:4c:9d:c2:d3:94:72:8b: 31:0e:fb:67:85:ab:e5:c1:6b:95:99:cd:66:8c:3c: 9f:48:33:92:e3:45:03:c4:42:3d:2c:b1:60:4c:fa: 9d:57:fc:2d:52:4a:fc:8a:f8:e1:54:08:a9:e3:c8: 24:d1:8d:70:a1:24:9d:bb:55:c0:b2:0b:b2:24:c8: 49:43:d2:25:be:10:b4:83:0f:d5:08:50:35:b1:20: 68:df:e4:a7:b2:28:2e:98:db:b4:eb:bc:60:d8:2c: 2f:60:86:8e:21:3a:51:06:a9:62:9b:3f:b4:bd:3e: 1c:d9:ff:93:87:4b:cb:34:71:a8:e2:97:e1:b6:70: df:3d:8c:7a:e4:d9:cf:10:5f:35:9e:aa:db:6a:dd: c0:25:59:e1:d4:cf:cd:74:05:05:d5:b0:6c:49:b8: 00:80:d8:39:fc:28:e4:e5:f0:32:7d:cb:29:5c:86: cf:eb:26:5f:53:d1:b6:d9:34:9a:ba:8f:95:5d:00: 2e:3a:89:86:aa:4c:d7:85:25:df:52:f2:2d:e4:1b: 27:bf:4f:fb:91:eb:74:6b:61:e8:dd:a6:9c:58:65: ae:4c:14:18:69:54:c3:da:0a:f1:8d:cc:8e:b6:f9: 57:bc:62:81:84:db:84:a0:5e:26:7a:f9:37:07:51: ea:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:C5:52:82:74:A0:E6:90:33:0D:9E:AF:6D:CD:6B:83:6F:03:AE:E4 X509v3 Authority Key Identifier: keyid:22:04:F1:5C:F3:0D:73:84:8B:07:4D:FC:AC:26:13:80:06:15:6A:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:07:c0:99:d6:ab:37:11:37:cf:cd:ad:ca:98:27:7b:f7:96: a4:43:23:bd:5a:45:5d:af:ce:61:c7:37:20:3d:9d:c8:07:44: 11:08:c8:9a:b2:cb:c7:4b:71:dd:66:3c:f6:cb:95:81:eb:10: 1e:ec:fa:0c:84:1d:c2:33:f4:45:47:6b:be:ae:60:03:7c:03: 6c:0a:2d:5a:f2:ed:19:ce:d2:a5:f7:eb:9c:8e:a5:48:d6:1d: 11:4d:02:b3:ce:78:ec:2d:4e:19:53:4c:84:9a:cc:99:8d:9a: 6e:98:05:3c:f6:30:86:de:53:ba:e8:47:9e:45:be:0e:71:55: 2e:1b:10:ae:3b:1e:30:c9:a5:5d:86:07:43:98:09:ea:ff:88: 8f:57:19:cb:33:dc:0e:da:21:75:65:b6:cf:12:17:3a:df:ef: 86:43:00:87:42:6e:bf:c1:d8:ad:46:9e:c7:ed:15:27:eb:a9: a0:1c:29:6f:d7:83:96:a1:e4:a2:ae:2a:e2:f0:4d:8a:f9:ba: 89:b2:c3:5b:01:6a:e5:d3:62:31:65:69:6c:75:1d:30:57:e0: 67:f9:fc:0a:71:74:8d:f8:11:75:6d:4a:db:f4:96:1f:b9:7a: ff:c1:c0:06:c9:5a:98:ad:a9:10:59:88:b6:a1:81:10:3f:4c: 6a:86:39:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLirduJZRygHVwG1+jvfnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyMDRmMTVjZjMwZDczODQ4YjA3NGRmY2FjMjYxMzgwMDYx NTZhZDQwHhcNMjUxMjA2MDEwMjA1WhcNMjUxMjA3MDEwMjA1WjAzMTEwLwYDVQQD EyhjY2M1NTI4Mjc0YTBlNjkwMzMwZDllYWY2ZGNkNmI4MzZmMDNhZWU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl0op/2LxsUydwtOUcosxDvtnhavl wWuVmc1mjDyfSDOS40UDxEI9LLFgTPqdV/wtUkr8ivjhVAip48gk0Y1woSSdu1XA sguyJMhJQ9IlvhC0gw/VCFA1sSBo3+SnsigumNu067xg2CwvYIaOITpRBqlimz+0 vT4c2f+Th0vLNHGo4pfhtnDfPYx65NnPEF81nqrbat3AJVnh1M/NdAUF1bBsSbgA gNg5/Cjk5fAyfcspXIbP6yZfU9G22TSauo+VXQAuOomGqkzXhSXfUvIt5Bsnv0/7 ket0a2Ho3aacWGWuTBQYaVTD2grxjcyOtvlXvGKBhNuEoF4mevk3B1HqlwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMzFUoJ0oOaQMw2er23Na4NvA67kMB8GA1UdIwQY MBaAFCIE8VzzDXOEiwdN/KwmE4AGFWrUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWdUeFhQTU5jNFNMQjAzOHJDWVRnQVlWYXRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS8zODcyY2YtYWE1OS00Yzk4LWI3YTMt YzFiMTAyMzlkZDU4LzEvSWdUeFhQTU5jNFNMQjAzOHJDWVRnQVlWYXRRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS8zODcyY2YtYWE1OS00Yzk4LWI3YTMtYzFiMTAyMzlkZDU4 LzEvSWdUeFhQTU5jNFNMQjAzOHJDWVRnQVlWYXRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlQfAmdar NxE3z82typgne/eWpEMjvVpFXa/OYcc3ID2dyAdEEQjImrLLx0tx3WY89suVgesQ Huz6DIQdwjP0RUdrvq5gA3wDbAotWvLtGc7SpffrnI6lSNYdEU0Cs8547C1OGVNM hJrMmY2abpgFPPYwht5TuuhHnkW+DnFVLhsQrjseMMmlXYYHQ5gJ6v+Ij1cZyzPc DtohdWW2zxIXOt/vhkMAh0Juv8HYrUaex+0VJ+upoBwpb9eDlqHkoq4q4vBNivm6 ibLDWwFq5dNiMWVpbHUdMFfgZ/n8CnF0jfgRdW1K2/SWH7l6/8HABslamK2pEFmI tqGBED9MaoY5/Q== -----END CERTIFICATE-----Generated at Sat Dec 6 08:22:11 2025 by rpki-client