This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft File: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft (raw, json) Hash identifier: JLdbNIwAsCSQcjDsNWi39PYjm27XvTdZ9tTc8nu1IhU= Subject key identifier: FE:89:BF:59:DC:4F:C7:C5:17:E5:C0:34:B9:C7:E1:67:9A:B9:F5:7A Authority key identifier: 88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6 Certificate issuer: /CN=88678ca34c3c6365fb616a66077160a494a6e9d6 Certificate serial: 019B39EABDBBA47AA425EB5BBDF633F32735 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft Manifest number: 0783 Signing time: Sat 20 Dec 2025 04:00:43 +0000 Manifest this update: Sat 20 Dec 2025 04:00:43 +0000 Manifest next update: Sun 21 Dec 2025 04:00:43 +0000 Files and hashes: 1: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl (hash: fFdZFKpnIGiHScISAHeAXLu0KpM0RCSslS9kcgEAs+Y=) 2: jjED_o84pmfAqHGfZ4W5FzMfdgQ.roa (hash: g8fQ9HXrdjwXLWaeOVd7NIoIybhbQ6Vz//ncwHFTshk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 04:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:ea:bd:bb:a4:7a:a4:25:eb:5b:bd:f6:33:f3:27:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88678ca34c3c6365fb616a66077160a494a6e9d6 Validity Not Before: Dec 20 04:00:43 2025 GMT Not After : Dec 21 04:00:43 2025 GMT Subject: CN=fe89bf59dc4fc7c517e5c034b9c7e1679ab9f57a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:6a:73:17:bd:4b:96:2e:14:03:d6:c1:0b:7b: ac:20:76:f9:aa:c8:7c:b3:51:63:f6:b0:f9:17:8a: 58:a3:f7:9c:71:dd:6c:de:bd:b9:cf:d3:f7:b5:2b: be:62:66:a5:ce:72:7a:73:af:9a:4d:43:80:aa:e2: 6e:5c:4f:51:90:4c:2d:0d:ce:90:b0:4e:31:32:bd: ff:86:48:9e:62:52:4d:0b:5d:ab:17:70:f9:7e:10: bd:2a:ae:a1:5b:89:57:10:13:5a:9a:8f:96:1a:71: b0:87:29:11:86:ac:e5:cb:72:29:dc:5b:b8:31:07: f1:45:01:79:e6:d4:c9:61:7b:56:95:35:b2:59:29: 8b:36:33:bc:15:a1:a1:46:85:de:f7:8f:d1:de:25: b6:bd:ef:42:23:8d:49:57:cd:05:6a:70:6d:ac:d9: 50:44:90:6d:68:19:58:31:f0:18:5c:f6:aa:29:7e: aa:0e:ea:59:77:27:74:9e:24:bf:ea:a6:8b:57:20: 16:8c:1b:74:81:ad:c8:09:88:52:31:72:ec:4d:2b: 57:ba:9b:12:a9:33:7c:5f:b2:67:58:c4:a1:37:b6: d0:c9:be:bb:82:14:43:87:94:e6:2d:f6:f9:9a:82: 40:7a:93:d6:79:46:06:6c:bd:d6:16:af:9c:49:28: 7c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:89:BF:59:DC:4F:C7:C5:17:E5:C0:34:B9:C7:E1:67:9A:B9:F5:7A X509v3 Authority Key Identifier: keyid:88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:f3:3d:8d:58:59:3f:f8:a1:0a:33:e2:e8:d7:49:75:89:db: 2b:98:53:82:8a:58:5c:4e:18:ca:7d:2d:5b:77:35:2d:cc:ce: 0b:33:19:07:30:ff:fb:a7:36:a0:c6:34:2f:49:d0:ab:fb:2b: 07:4a:16:88:6a:20:e3:75:47:a9:9a:55:16:72:ce:69:9d:c7: e3:dc:65:bf:b5:b1:ce:e5:cf:b6:65:13:43:36:b8:d5:e6:be: 16:fb:9c:08:da:60:51:05:78:ba:5e:a3:6e:eb:3d:3d:b7:e1: 4e:80:07:3f:e7:c2:3a:61:8c:e8:5d:bf:55:42:82:f3:f1:da: af:59:21:94:2e:57:62:cd:f3:07:8b:ea:f9:13:6b:dc:ca:84: 9f:9d:bd:73:9d:92:c5:da:bc:ed:a3:46:bc:cb:f9:6c:2d:6e: c7:78:41:a5:b9:74:50:51:51:a0:bd:c3:0a:b0:32:35:b5:51: fc:dd:46:96:b7:d0:b3:33:aa:a7:ad:e8:cd:00:42:0a:3a:0a: 1a:ca:67:e4:f7:10:b9:2f:64:f7:79:19:b4:82:f9:27:25:f0: 4e:2e:e4:b5:ac:24:b0:21:49:4b:08:99:d0:3c:ce:a9:c1:e0: a8:61:0e:5c:45:d8:50:eb:59:38:a7:7e:f9:cf:7d:32:e2:45: 17:9c:8c:11 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs56r27pHqkJetbvfYz8yc1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4Njc4Y2EzNGMzYzYzNjVmYjYxNmE2NjA3NzE2MGE0OTRh NmU5ZDYwHhcNMjUxMjIwMDQwMDQzWhcNMjUxMjIxMDQwMDQzWjAzMTEwLwYDVQQD EyhmZTg5YmY1OWRjNGZjN2M1MTdlNWMwMzRiOWM3ZTE2NzlhYjlmNTdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlmpzF71Lli4UA9bBC3usIHb5qsh8 s1Fj9rD5F4pYo/eccd1s3r25z9P3tSu+YmalznJ6c6+aTUOAquJuXE9RkEwtDc6Q sE4xMr3/hkieYlJNC12rF3D5fhC9Kq6hW4lXEBNamo+WGnGwhykRhqzly3Ip3Fu4 MQfxRQF55tTJYXtWlTWyWSmLNjO8FaGhRoXe94/R3iW2ve9CI41JV80FanBtrNlQ RJBtaBlYMfAYXPaqKX6qDupZdyd0niS/6qaLVyAWjBt0ga3ICYhSMXLsTStXupsS qTN8X7JnWMShN7bQyb67ghRDh5TmLfb5moJAepPWeUYGbL3WFq+cSSh89QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP6Jv1ncT8fFF+XANLnH4WeaufV6MB8GA1UdIwQY MBaAFIhnjKNMPGNl+2FqZgdxYKSUpunWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUdlTW8wdzhZMlg3WVdwbUIzRmdwSlNtNmRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8zYmFhY2MtNDIwMS00OTUxLTgzNTQt Zjg1ZjcyMWZiMWI4LzEvaUdlTW8wdzhZMlg3WVdwbUIzRmdwSlNtNmRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS8zYmFhY2MtNDIwMS00OTUxLTgzNTQtZjg1ZjcyMWZiMWI4 LzEvaUdlTW8wdzhZMlg3WVdwbUIzRmdwSlNtNmRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAefM9jVhZ P/ihCjPi6NdJdYnbK5hTgopYXE4Yyn0tW3c1LczOCzMZBzD/+6c2oMY0L0nQq/sr B0oWiGog43VHqZpVFnLOaZ3H49xlv7WxzuXPtmUTQza41ea+FvucCNpgUQV4ul6j bus9PbfhToAHP+fCOmGM6F2/VUKC8/Har1khlC5XYs3zB4vq+RNr3MqEn529c52S xdq87aNGvMv5bC1ux3hBpbl0UFFRoL3DCrAyNbVR/N1GlrfQszOqp63ozQBCCjoK Gspn5PcQuS9k93kZtIL5JyXwTi7ktawksCFJSwiZ0DzOqcHgqGEOXEXYUOtZOKd+ +c99MuJFF5yMEQ== -----END CERTIFICATE-----Generated at Sat Dec 20 12:38:52 2025 by rpki-client