This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.mft File: IMXuAtLgWGHdkG_gazhE8E03jHM.mft (raw, json) Hash identifier: rY5qxiVhnGkr2AJNrF9yek1eMuKAiYhrjcNdoy0Ep+k= Subject key identifier: E3:EF:3F:AD:3F:5C:E4:09:AD:99:D7:13:D7:8D:F9:9D:27:D5:56:1C Authority key identifier: 20:C5:EE:02:D2:E0:58:61:DD:90:6F:E0:6B:38:44:F0:4D:37:8C:73 Certificate issuer: /CN=20c5ee02d2e05861dd906fe06b3844f04d378c73 Certificate serial: 019AF54071DC509DAFA2A533AE09A2C52D2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMXuAtLgWGHdkG_gazhE8E03jHM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.mft Manifest number: 062C Signing time: Sat 06 Dec 2025 20:00:32 +0000 Manifest this update: Sat 06 Dec 2025 20:00:32 +0000 Manifest next update: Sun 07 Dec 2025 20:00:32 +0000 Files and hashes: 1: 7xOhUPHtrbr-aDnyk2sqIXaZxmE.roa (hash: kq8yM7VvfoH1+ATjkQ5zBAmoZIPQA7DySnzjc28AM7I=) 2: EO7_sAa5INTWdb0sB8KoIZTsSpE.roa (hash: SZljpS9Me6EqFyINGEQdOy6JlEANEGEhl0H6HmWV3fM=) 3: IMXuAtLgWGHdkG_gazhE8E03jHM.crl (hash: H6NeCTn+ZMZ3i4dCqDoJ2/h2WawRTxhIem+bd/S3CxI=) 4: Wr8EOmHckxzTGd0Aamj6K9DADdU.roa (hash: OPshObN2z5FsqJnygnFeWGUMJE0uYykW0pM3DUOjmQQ=) 5: YqXOQdzyJGKEIsRRKloxLXSE6Ms.roa (hash: oxg1KeTKZ090F7XaYRFBJpN4jEk7flH1GMsXEE67BF0=) 6: wS-ZYWnE9Zk6DJUs3sCV5yBn3ak.roa (hash: 4bRb80RRs/QoIhxBs4Ime6HGYShS2787nhwQD+lr7Xw=) 7: wnHzclbUTpmI2i25YXVP3hxML5Y.roa (hash: aE81auZ0/hL8t66uhuMDoL2Ds7gb0agCHWXH7RqZEB8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.mft rsync://rpki.ripe.net/repository/DEFAULT/IMXuAtLgWGHdkG_gazhE8E03jHM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:40:71:dc:50:9d:af:a2:a5:33:ae:09:a2:c5:2d:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20c5ee02d2e05861dd906fe06b3844f04d378c73 Validity Not Before: Dec 6 20:00:32 2025 GMT Not After : Dec 7 20:00:32 2025 GMT Subject: CN=e3ef3fad3f5ce409ad99d713d78df99d27d5561c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3d:37:13:27:c8:2b:3e:78:c0:78:be:79:3c: d8:44:c3:99:ab:2a:bc:f3:ab:ce:da:78:fc:dd:e5: 5c:2f:5b:c6:d4:1c:c2:6c:8e:ee:e2:6e:b9:d8:7b: 2a:f0:2f:ca:5e:96:66:05:f3:ba:4b:42:6f:1f:9e: 8b:19:4d:b4:8f:db:c3:7a:f3:0e:be:50:e4:74:e8: 39:f3:36:dd:59:77:50:0d:98:81:58:f0:66:29:62: 24:c1:50:f2:ad:d0:6b:17:a0:6b:9f:ba:7a:fb:7f: b1:c3:17:ca:1f:f4:93:02:74:59:35:4a:64:ad:e3: bb:ee:7e:1d:60:30:48:45:42:7f:a6:f0:e8:31:df: 13:f7:c9:99:66:a2:ba:ee:90:8d:aa:34:b9:62:89: b8:9b:17:f4:e2:f1:bb:d8:ad:99:14:2e:5f:11:48: 59:49:f6:d7:38:51:0f:e4:cf:56:43:34:4d:d3:28: 46:e2:07:9d:c0:55:ea:34:b9:e3:e6:5e:9b:1f:4a: 5d:f1:9e:32:16:6c:af:b6:07:94:c8:d3:c7:6c:38: 9a:e2:3f:8c:18:ed:25:f5:2a:df:f6:7b:91:ef:b1: 3d:03:c3:3a:75:72:67:30:60:2a:f3:a7:ab:99:6d: 0a:22:0f:af:aa:5b:02:b7:7c:70:03:a4:ff:93:48: ab:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:EF:3F:AD:3F:5C:E4:09:AD:99:D7:13:D7:8D:F9:9D:27:D5:56:1C X509v3 Authority Key Identifier: keyid:20:C5:EE:02:D2:E0:58:61:DD:90:6F:E0:6B:38:44:F0:4D:37:8C:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMXuAtLgWGHdkG_gazhE8E03jHM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:0b:69:94:fd:49:79:bd:86:58:af:67:71:f4:92:6b:58:5e: 7b:18:74:84:81:8b:80:ea:07:c1:62:41:73:e9:df:c0:45:32: 95:98:a0:06:5b:fc:76:ff:08:01:a3:bb:3d:7c:fa:4b:8e:dd: e8:4d:3e:43:35:71:56:54:b3:20:7a:8f:5c:c7:8b:66:0c:8f: 8c:4c:14:f7:0f:f2:9e:79:f9:77:5d:53:3e:b4:a5:15:08:40: d3:8d:42:38:4c:06:7b:d8:32:44:13:00:fa:52:87:c1:4d:74: 42:47:74:3c:ab:8b:ff:fe:6f:71:3c:51:d8:51:ec:69:a9:bb: f3:e4:ae:11:31:3f:65:be:f3:81:b5:1f:8b:4b:6d:09:e0:c7: bd:47:94:b5:2e:c2:29:00:05:69:21:7b:bc:b8:b7:e3:aa:e7: bf:eb:7e:c9:cb:3b:00:f7:39:0e:ef:e0:78:31:ad:fa:a0:65: b3:c6:ac:89:95:78:b8:12:90:bc:af:18:7f:ac:4d:75:9f:aa: e3:16:7d:fa:75:36:c9:6c:b4:43:0c:9b:96:87:6e:57:4a:94: 5b:be:72:7f:af:90:7c:6d:ca:43:1f:bb:17:df:0b:55:75:62: 7e:bd:f0:98:7c:6d:e3:33:ef:bf:d3:19:cb:d2:f1:24:74:7d: 55:b9:46:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1QHHcUJ2voqUzrgmixS0uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwYzVlZTAyZDJlMDU4NjFkZDkwNmZlMDZiMzg0NGYwNGQz NzhjNzMwHhcNMjUxMjA2MjAwMDMyWhcNMjUxMjA3MjAwMDMyWjAzMTEwLwYDVQQD EyhlM2VmM2ZhZDNmNWNlNDA5YWQ5OWQ3MTNkNzhkZjk5ZDI3ZDU1NjFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuj03EyfIKz54wHi+eTzYRMOZqyq8 86vO2nj83eVcL1vG1BzCbI7u4m652Hsq8C/KXpZmBfO6S0JvH56LGU20j9vDevMO vlDkdOg58zbdWXdQDZiBWPBmKWIkwVDyrdBrF6Brn7p6+3+xwxfKH/STAnRZNUpk reO77n4dYDBIRUJ/pvDoMd8T98mZZqK67pCNqjS5Yom4mxf04vG72K2ZFC5fEUhZ SfbXOFEP5M9WQzRN0yhG4gedwFXqNLnj5l6bH0pd8Z4yFmyvtgeUyNPHbDia4j+M GO0l9Srf9nuR77E9A8M6dXJnMGAq86ermW0KIg+vqlsCt3xwA6T/k0ireQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOPvP60/XOQJrZnXE9eN+Z0n1VYcMB8GA1UdIwQY MBaAFCDF7gLS4Fhh3ZBv4Gs4RPBNN4xzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU1YdUF0TGdXR0hka0dfZ2F6aEU4RTAzakhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC85NzkyOTYtZWY3YS00YmFjLThjMTUt Njc3NzEzNTlhMmIzLzEvSU1YdUF0TGdXR0hka0dfZ2F6aEU4RTAzakhNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC85NzkyOTYtZWY3YS00YmFjLThjMTUtNjc3NzEzNTlhMmIz LzEvSU1YdUF0TGdXR0hka0dfZ2F6aEU4RTAzakhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJwtplP1J eb2GWK9ncfSSa1heexh0hIGLgOoHwWJBc+nfwEUylZigBlv8dv8IAaO7PXz6S47d 6E0+QzVxVlSzIHqPXMeLZgyPjEwU9w/ynnn5d11TPrSlFQhA041COEwGe9gyRBMA +lKHwU10Qkd0PKuL//5vcTxR2FHsaam78+SuETE/Zb7zgbUfi0ttCeDHvUeUtS7C KQAFaSF7vLi346rnv+t+ycs7APc5Du/geDGt+qBls8asiZV4uBKQvK8Yf6xNdZ+q 4xZ9+nU2yWy0QwybloduV0qUW75yf6+QfG3KQx+7F98LVXVifr3wmHxt4zPvv9MZ y9LxJHR9VblGoQ== -----END CERTIFICATE-----Generated at Sat Dec 6 22:47:07 2025 by rpki-client