This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft File: IMZhH8hUYvC8yscvPfTFNRvlEN4.mft (raw, json) Hash identifier: PwFId0fVFprOFangs1wJZ1iSvudAnVePr1W4MmgI2GI= Subject key identifier: 52:32:5F:A9:66:18:85:8A:B8:D7:D9:CA:10:76:B8:BC:77:C5:5B:86 Authority key identifier: 20:C6:61:1F:C8:54:62:F0:BC:CA:C7:2F:3D:F4:C5:35:1B:E5:10:DE Certificate issuer: /CN=20c6611fc85462f0bccac72f3df4c5351be510de Certificate serial: 019AF19AC2EB8BAF62C69AFC908F3C9EC683 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMZhH8hUYvC8yscvPfTFNRvlEN4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft Manifest number: 0141 Signing time: Sat 06 Dec 2025 03:00:42 +0000 Manifest this update: Sat 06 Dec 2025 03:00:42 +0000 Manifest next update: Sun 07 Dec 2025 03:00:42 +0000 Files and hashes: 1: IMZhH8hUYvC8yscvPfTFNRvlEN4.crl (hash: HZ9JSmyQY+E1nUa0zmejGlCmn1vthlBpa/D4Ot8QIvM=) 2: KGtn_CGJ9WQ0fMr4tUY-3i93MNg.roa (hash: 03IEtTQfIrx28kdxnAxm3chhufsP9RPQAiqL8u3FBkA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.crl rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft rsync://rpki.ripe.net/repository/DEFAULT/IMZhH8hUYvC8yscvPfTFNRvlEN4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:c2:eb:8b:af:62:c6:9a:fc:90:8f:3c:9e:c6:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20c6611fc85462f0bccac72f3df4c5351be510de Validity Not Before: Dec 6 03:00:42 2025 GMT Not After : Dec 7 03:00:42 2025 GMT Subject: CN=52325fa96618858ab8d7d9ca1076b8bc77c55b86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:38:29:59:d6:08:64:4f:40:9f:42:30:e0:38: 93:b1:03:64:55:37:5a:a8:96:e0:cb:13:6b:71:82: c7:d1:72:fe:55:38:4f:77:aa:75:a8:fa:a5:e1:3b: 76:59:f6:b6:3c:67:6e:45:34:1d:de:4a:30:4e:b7: be:2e:97:ec:d0:93:3e:e2:4e:b0:37:69:2f:19:cf: 2f:64:c4:25:24:fe:42:68:59:e0:29:58:80:53:ec: 30:15:de:ab:b5:ff:54:b8:30:d3:08:d8:e7:ec:77: 28:99:27:01:0e:62:b2:44:2f:3e:78:ba:01:54:c3: 45:1b:13:9e:1a:a5:d1:e2:a8:d5:8f:e8:fd:18:8e: 28:7a:b4:43:58:fd:80:8a:0a:00:4e:44:9e:b3:c9: 39:93:1f:ff:f2:41:4a:85:40:ea:03:e2:8b:6e:fe: 67:5f:3d:5e:4b:b0:4a:ea:ab:93:37:66:ae:49:1c: 40:c1:cd:92:0e:a2:75:d0:9c:8a:28:ed:0a:38:58: 0e:f0:95:db:28:db:0e:3a:f0:8e:0f:55:ff:de:da: ae:33:fb:67:37:4c:7c:13:e0:d5:4a:43:93:88:e1: c6:b0:ae:30:04:27:47:c0:30:c5:5b:b3:c3:bb:03: 00:15:72:0f:e0:26:93:10:20:1b:0f:25:9d:7b:af: b2:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:32:5F:A9:66:18:85:8A:B8:D7:D9:CA:10:76:B8:BC:77:C5:5B:86 X509v3 Authority Key Identifier: keyid:20:C6:61:1F:C8:54:62:F0:BC:CA:C7:2F:3D:F4:C5:35:1B:E5:10:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMZhH8hUYvC8yscvPfTFNRvlEN4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:50:7e:40:02:ae:dd:42:cc:a9:a3:62:32:95:6c:8a:73:9e: 17:2b:ea:93:0f:8a:cd:eb:a5:9f:97:46:9e:9e:1f:55:cf:e0: 39:83:b4:b6:96:ca:a8:99:91:de:5d:eb:e6:c7:c2:ee:dc:89: 10:78:c6:0c:16:67:96:85:e0:68:8f:52:fe:5b:fd:59:76:dc: 94:99:a9:07:57:d0:27:9d:44:c4:38:29:72:8b:89:6e:dd:5a: 92:b1:2f:1a:8d:e4:1c:65:81:a9:e6:27:28:cb:98:0e:71:3c: 05:82:1a:d0:14:9a:b0:60:6f:a8:06:7d:6c:a3:16:27:30:b0: 4a:7a:5f:79:59:04:1b:4c:a0:68:13:ac:36:ab:75:74:54:f8: 94:7d:db:9e:5d:be:cc:8b:67:80:a0:e1:15:9c:7a:2a:3b:71: 64:ec:3a:63:8a:63:2c:ac:e8:04:34:a2:63:91:5c:be:50:09: c6:34:4e:84:c9:9f:fe:33:48:69:ca:94:82:a1:20:0b:15:bd: f6:f4:4b:5c:b9:9e:3a:dc:51:52:be:fa:cd:91:de:4d:9c:12: db:e8:fe:4d:52:1d:75:77:92:da:35:38:d8:f7:f4:e1:17:41: e7:ed:36:5e:f9:0c:ad:e4:50:09:82:ee:d7:fb:7f:69:88:d3: 13:83:dc:26 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmsLri69ixpr8kI88nsaDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwYzY2MTFmYzg1NDYyZjBiY2NhYzcyZjNkZjRjNTM1MWJl NTEwZGUwHhcNMjUxMjA2MDMwMDQyWhcNMjUxMjA3MDMwMDQyWjAzMTEwLwYDVQQD Eyg1MjMyNWZhOTY2MTg4NThhYjhkN2Q5Y2ExMDc2YjhiYzc3YzU1Yjg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3DgpWdYIZE9An0Iw4DiTsQNkVTda qJbgyxNrcYLH0XL+VThPd6p1qPql4Tt2Wfa2PGduRTQd3kowTre+Lpfs0JM+4k6w N2kvGc8vZMQlJP5CaFngKViAU+wwFd6rtf9UuDDTCNjn7HcomScBDmKyRC8+eLoB VMNFGxOeGqXR4qjVj+j9GI4oerRDWP2AigoATkSes8k5kx//8kFKhUDqA+KLbv5n Xz1eS7BK6quTN2auSRxAwc2SDqJ10JyKKO0KOFgO8JXbKNsOOvCOD1X/3tquM/tn N0x8E+DVSkOTiOHGsK4wBCdHwDDFW7PDuwMAFXIP4CaTECAbDyWde6+y5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFIyX6lmGIWKuNfZyhB2uLx3xVuGMB8GA1UdIwQY MBaAFCDGYR/IVGLwvMrHLz30xTUb5RDeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU1aaEg4aFVZdkM4eXNjdlBmVEZOUnZsRU40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS8zODQxZmUtZGM0OS00YjljLWFmOWQt ZGFhMjNmZmI0Y2JmLzEvSU1aaEg4aFVZdkM4eXNjdlBmVEZOUnZsRU40Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZS8zODQxZmUtZGM0OS00YjljLWFmOWQtZGFhMjNmZmI0Y2Jm LzEvSU1aaEg4aFVZdkM4eXNjdlBmVEZOUnZsRU40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJFB+QAKu 3ULMqaNiMpVsinOeFyvqkw+Kzeuln5dGnp4fVc/gOYO0tpbKqJmR3l3r5sfC7tyJ EHjGDBZnloXgaI9S/lv9WXbclJmpB1fQJ51ExDgpcouJbt1akrEvGo3kHGWBqeYn KMuYDnE8BYIa0BSasGBvqAZ9bKMWJzCwSnpfeVkEG0ygaBOsNqt1dFT4lH3bnl2+ zItngKDhFZx6KjtxZOw6Y4pjLKzoBDSiY5FcvlAJxjROhMmf/jNIacqUgqEgCxW9 9vRLXLmeOtxRUr76zZHeTZwS2+j+TVIddXeS2jU42Pf04RdB5+02XvkMreRQCYLu 1/t/aYjTE4PcJg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:17:06 2025 by rpki-client