This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.mft File: IMjVw3OmvzurIpOUNguG0Alq7L0.mft (raw, json) Hash identifier: JHL2VRB6vvnGQBNEdVOoY5LGqomjDtRsT7a4jTsgRWs= Subject key identifier: AE:02:E0:4D:52:B5:B2:5C:F1:E0:24:17:0A:83:CF:88:D9:F4:FE:C4 Authority key identifier: 20:C8:D5:C3:73:A6:BF:3B:AB:22:93:94:36:0B:86:D0:09:6A:EC:BD Certificate issuer: /CN=20c8d5c373a6bf3bab229394360b86d0096aecbd Certificate serial: 019AF1642AEC83318137A16DF727E73BBFD6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMjVw3OmvzurIpOUNguG0Alq7L0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.mft Manifest number: 12FC Signing time: Sat 06 Dec 2025 02:01:04 +0000 Manifest this update: Sat 06 Dec 2025 02:01:04 +0000 Manifest next update: Sun 07 Dec 2025 02:01:04 +0000 Files and hashes: 1: IMjVw3OmvzurIpOUNguG0Alq7L0.crl (hash: Zo4lzXknV3JKmpCNhhxTpLIs4mhB/JEp3op7AR5Zc7s=) 2: eKykDDSSUelkgfwH3TO0n13mPZk.roa (hash: P9dt2Lrz0okP2zrUj3Cql2lI4c4A2LE13LjuP2FhidE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.crl rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.mft rsync://rpki.ripe.net/repository/DEFAULT/IMjVw3OmvzurIpOUNguG0Alq7L0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:2a:ec:83:31:81:37:a1:6d:f7:27:e7:3b:bf:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20c8d5c373a6bf3bab229394360b86d0096aecbd Validity Not Before: Dec 6 02:01:04 2025 GMT Not After : Dec 7 02:01:04 2025 GMT Subject: CN=ae02e04d52b5b25cf1e024170a83cf88d9f4fec4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f2:6b:f5:80:9f:5d:a3:8f:78:9c:7d:08:2e: 88:1d:62:f2:83:be:6e:42:32:ec:61:af:9d:64:2f: 27:fb:4c:48:bd:5a:8d:50:78:ad:73:99:83:a9:40: 90:7a:1b:55:fd:99:9a:cb:a8:19:8f:66:f5:31:69: fd:94:f6:f2:13:ec:8b:52:6d:a4:e9:d9:48:87:9a: c8:3d:b2:65:32:51:14:9a:c2:23:27:9a:69:21:91: 87:24:96:14:fc:5b:a4:b8:bf:86:d3:b7:9c:a4:bd: a1:33:39:cb:3a:d1:d1:58:85:54:1e:00:75:01:53: ee:3d:b2:5c:50:67:c5:b4:cd:ac:b9:67:eb:fa:1c: 4e:af:0c:ef:9d:6c:16:b9:df:ed:b5:20:91:f8:a4: ca:0e:96:b4:bc:71:5c:2e:fe:01:37:fe:7a:52:76: ec:83:7c:6b:14:5f:ac:12:24:86:fa:aa:2f:29:cb: 92:8b:7f:b0:76:20:5a:c9:3a:7a:2d:0a:81:18:2d: c8:e6:2f:cd:d8:a9:38:fc:a1:77:c6:b0:bd:ab:0c: ef:c0:18:32:ab:71:f7:31:c0:e6:f3:7f:1d:01:a2: 31:89:a1:d1:85:d3:88:e6:20:9c:e1:3a:07:a2:1e: 59:80:37:4e:82:06:41:f2:13:91:0c:97:d3:53:ae: da:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:02:E0:4D:52:B5:B2:5C:F1:E0:24:17:0A:83:CF:88:D9:F4:FE:C4 X509v3 Authority Key Identifier: keyid:20:C8:D5:C3:73:A6:BF:3B:AB:22:93:94:36:0B:86:D0:09:6A:EC:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMjVw3OmvzurIpOUNguG0Alq7L0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b6:ca:5c:c2:e9:01:d6:ff:c6:fa:91:9c:5d:70:82:99:15:c6: cb:3e:72:2d:48:ea:af:a4:fd:42:d3:1e:7a:1b:b5:0a:c1:67: 83:e2:24:d5:59:29:ab:cb:1b:7c:20:b4:36:ac:c9:55:2c:78: d0:1a:47:32:7a:8f:bd:4c:59:c7:ed:d7:d7:71:b2:14:d9:80: 48:49:cd:68:67:56:29:a5:a5:8d:58:78:75:6f:a9:2d:d3:ba: c2:4c:fd:b9:6c:a6:f8:17:b1:68:3b:28:e8:9f:17:23:b9:b5: c1:83:26:ea:4a:76:90:ab:7b:98:51:f3:dc:bf:2f:26:58:90: ea:84:6c:bc:b9:16:0c:75:b8:43:ee:27:af:fc:18:88:88:9d: 8a:49:c2:f2:22:6e:6e:21:4c:7d:68:47:14:f7:8e:30:ba:19: 29:79:a0:54:e7:21:ad:fb:8f:71:66:16:be:e7:e3:e8:c9:ba: 7b:db:95:60:2e:73:69:16:5b:56:51:30:03:64:dd:d0:04:04: 37:5a:8e:6f:9d:cf:e6:5d:bd:e3:96:10:be:23:2d:59:70:e7: ec:ac:c7:9d:a1:15:40:e4:84:a5:b7:92:5f:ee:db:80:5c:43: ce:bb:ad:ad:83:06:8d:73:63:68:bc:4e:0b:15:8e:cd:11:d4: 8b:9a:74:6c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZCrsgzGBN6Ft9yfnO7/WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwYzhkNWMzNzNhNmJmM2JhYjIyOTM5NDM2MGI4NmQwMDk2 YWVjYmQwHhcNMjUxMjA2MDIwMTA0WhcNMjUxMjA3MDIwMTA0WjAzMTEwLwYDVQQD EyhhZTAyZTA0ZDUyYjViMjVjZjFlMDI0MTcwYTgzY2Y4OGQ5ZjRmZWM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu/Jr9YCfXaOPeJx9CC6IHWLyg75u QjLsYa+dZC8n+0xIvVqNUHitc5mDqUCQehtV/Zmay6gZj2b1MWn9lPbyE+yLUm2k 6dlIh5rIPbJlMlEUmsIjJ5ppIZGHJJYU/FukuL+G07ecpL2hMznLOtHRWIVUHgB1 AVPuPbJcUGfFtM2suWfr+hxOrwzvnWwWud/ttSCR+KTKDpa0vHFcLv4BN/56Unbs g3xrFF+sEiSG+qovKcuSi3+wdiBayTp6LQqBGC3I5i/N2Kk4/KF3xrC9qwzvwBgy q3H3McDm838dAaIxiaHRhdOI5iCc4ToHoh5ZgDdOggZB8hORDJfTU67aLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK4C4E1StbJc8eAkFwqDz4jZ9P7EMB8GA1UdIwQY MBaAFCDI1cNzpr87qyKTlDYLhtAJauy9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU1qVnczT212enVySXBPVU5ndUcwQWxxN0wwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy84ZTk4NTUtNTk4OS00ODZlLTk0MzYt NTBhN2M5MjU5MWQwLzEvSU1qVnczT212enVySXBPVU5ndUcwQWxxN0wwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yy84ZTk4NTUtNTk4OS00ODZlLTk0MzYtNTBhN2M5MjU5MWQw LzEvSU1qVnczT212enVySXBPVU5ndUcwQWxxN0wwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtspcwukB 1v/G+pGcXXCCmRXGyz5yLUjqr6T9QtMeehu1CsFng+Ik1Vkpq8sbfCC0NqzJVSx4 0BpHMnqPvUxZx+3X13GyFNmASEnNaGdWKaWljVh4dW+pLdO6wkz9uWym+BexaDso 6J8XI7m1wYMm6kp2kKt7mFHz3L8vJliQ6oRsvLkWDHW4Q+4nr/wYiIidiknC8iJu biFMfWhHFPeOMLoZKXmgVOchrfuPcWYWvufj6Mm6e9uVYC5zaRZbVlEwA2Td0AQE N1qOb53P5l2945YQviMtWXDn7KzHnaEVQOSEpbeSX+7bgFxDzrutrYMGjXNjaLxO CxWOzRHUi5p0bA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:53:30 2025 by rpki-client