This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft File: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft (raw, json) Hash identifier: 5zaXsAvVkFi+/+M7adL9+ez7C6kxkFNNQ9Az/6ZZ0VI= Subject key identifier: CA:32:3F:1A:E5:47:92:91:32:5D:10:5B:6B:4A:99:8D:6A:AC:C8:AE Authority key identifier: 88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6 Certificate issuer: /CN=88678ca34c3c6365fb616a66077160a494a6e9d6 Certificate serial: 019B115CA54F4A95AAC48F2C52131E5F40D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft Manifest number: 076E Signing time: Fri 12 Dec 2025 07:00:42 +0000 Manifest this update: Fri 12 Dec 2025 07:00:42 +0000 Manifest next update: Sat 13 Dec 2025 07:00:42 +0000 Files and hashes: 1: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl (hash: iSeEhnKZUYc6hZdR/mbS+ETqx7ygdCclwEzVBXIurFg=) 2: jjED_o84pmfAqHGfZ4W5FzMfdgQ.roa (hash: g8fQ9HXrdjwXLWaeOVd7NIoIybhbQ6Vz//ncwHFTshk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 07:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:11:5c:a5:4f:4a:95:aa:c4:8f:2c:52:13:1e:5f:40:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88678ca34c3c6365fb616a66077160a494a6e9d6 Validity Not Before: Dec 12 07:00:42 2025 GMT Not After : Dec 13 07:00:42 2025 GMT Subject: CN=ca323f1ae5479291325d105b6b4a998d6aacc8ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a9:84:68:74:a4:93:c0:db:b2:58:c8:73:66: 45:4e:c9:8e:82:5e:cd:be:52:91:de:bb:12:d7:f2: d0:45:c4:ae:4b:1a:b1:f5:93:ae:ac:02:24:8a:f0: 53:19:54:d2:a9:b1:7f:6b:45:00:d5:87:82:15:f1: ef:bf:3f:09:e5:74:7d:bd:7e:ce:bf:8d:a3:d1:a8: ed:20:70:29:1a:22:d6:95:db:be:18:f3:22:5e:4e: 12:c0:5a:8c:36:27:64:3a:19:3a:56:c4:d7:80:d1: d6:37:ad:1c:95:a9:5f:be:f9:99:68:77:41:9a:f2: c8:f1:c5:c9:f9:aa:de:04:62:5d:9a:78:af:b9:74: af:ac:1a:99:59:87:0b:e6:b7:27:73:5e:96:15:05: 20:24:c6:da:46:1d:7a:65:e2:1b:dd:2f:80:65:29: f6:fb:97:00:0c:db:13:9f:e5:1a:03:32:4b:5c:7a: fd:8c:dc:95:e5:2f:48:3a:4e:d8:8b:24:a5:4c:1e: 2c:3c:7c:f4:0b:ec:91:22:bc:5f:c4:81:a0:16:c8: cf:1a:85:7e:5c:8d:8c:82:5b:e3:cf:54:48:a6:0a: ae:c3:54:e7:62:c6:30:94:13:6b:bc:46:04:d2:ba: d2:0b:8d:70:81:93:14:24:02:16:15:00:e7:43:c7: 07:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:32:3F:1A:E5:47:92:91:32:5D:10:5B:6B:4A:99:8D:6A:AC:C8:AE X509v3 Authority Key Identifier: keyid:88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:9d:a0:ef:9e:97:8e:e2:af:d8:f3:3b:c8:3f:84:9a:a1:c6: 8d:b8:b3:05:22:85:a7:51:9e:5e:f1:1e:5a:43:4f:8a:19:8d: 85:65:7e:2b:44:3f:69:af:1a:73:4f:62:8f:9c:5c:6f:51:d5: 5e:3e:bf:ab:97:e5:28:a5:39:c6:f4:76:cf:9d:b0:3b:d9:3f: 50:57:e2:80:92:51:d1:0d:eb:ef:c6:24:ee:8d:33:d3:46:02: f4:36:c5:9b:b3:59:fc:d0:71:51:1f:4c:c9:99:23:00:63:7f: 9a:fa:11:4b:fc:63:58:31:26:60:05:f4:ea:58:90:25:03:a4: af:2c:4e:d4:06:0e:29:2e:48:53:8b:a4:76:21:b1:4e:5e:d9: 84:fb:60:8b:66:b2:4f:a1:5e:aa:49:a0:fd:cd:ed:15:b1:09: 29:09:98:9b:7a:95:28:ad:e8:bf:32:a8:47:98:ef:3c:c7:70: 1d:1c:9b:1b:1c:5f:f2:b7:18:ab:f6:d2:1d:e8:6e:90:ef:24: 7e:5c:b4:fd:57:a9:38:98:e0:2b:c7:ea:5a:e9:fc:d1:78:96: 24:16:42:91:e2:0f:36:56:5f:a8:5a:5a:2a:44:fd:c3:85:cc: cc:89:23:f2:84:bb:f3:a2:ad:b3:7b:b3:87:51:83:2b:0b:fb: 92:18:e6:86 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsRXKVPSpWqxI8sUhMeX0DUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4Njc4Y2EzNGMzYzYzNjVmYjYxNmE2NjA3NzE2MGE0OTRh NmU5ZDYwHhcNMjUxMjEyMDcwMDQyWhcNMjUxMjEzMDcwMDQyWjAzMTEwLwYDVQQD EyhjYTMyM2YxYWU1NDc5MjkxMzI1ZDEwNWI2YjRhOTk4ZDZhYWNjOGFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArKmEaHSkk8DbsljIc2ZFTsmOgl7N vlKR3rsS1/LQRcSuSxqx9ZOurAIkivBTGVTSqbF/a0UA1YeCFfHvvz8J5XR9vX7O v42j0ajtIHApGiLWldu+GPMiXk4SwFqMNidkOhk6VsTXgNHWN60clalfvvmZaHdB mvLI8cXJ+areBGJdmnivuXSvrBqZWYcL5rcnc16WFQUgJMbaRh16ZeIb3S+AZSn2 +5cADNsTn+UaAzJLXHr9jNyV5S9IOk7YiySlTB4sPHz0C+yRIrxfxIGgFsjPGoV+ XI2Mglvjz1RIpgquw1TnYsYwlBNrvEYE0rrSC41wgZMUJAIWFQDnQ8cHRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMoyPxrlR5KRMl0QW2tKmY1qrMiuMB8GA1UdIwQY MBaAFIhnjKNMPGNl+2FqZgdxYKSUpunWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUdlTW8wdzhZMlg3WVdwbUIzRmdwSlNtNmRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8zYmFhY2MtNDIwMS00OTUxLTgzNTQt Zjg1ZjcyMWZiMWI4LzEvaUdlTW8wdzhZMlg3WVdwbUIzRmdwSlNtNmRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS8zYmFhY2MtNDIwMS00OTUxLTgzNTQtZjg1ZjcyMWZiMWI4 LzEvaUdlTW8wdzhZMlg3WVdwbUIzRmdwSlNtNmRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUJ2g756X juKv2PM7yD+EmqHGjbizBSKFp1GeXvEeWkNPihmNhWV+K0Q/aa8ac09ij5xcb1HV Xj6/q5flKKU5xvR2z52wO9k/UFfigJJR0Q3r78Yk7o0z00YC9DbFm7NZ/NBxUR9M yZkjAGN/mvoRS/xjWDEmYAX06liQJQOkryxO1AYOKS5IU4ukdiGxTl7ZhPtgi2ay T6Feqkmg/c3tFbEJKQmYm3qVKK3ovzKoR5jvPMdwHRybGxxf8rcYq/bSHehukO8k fly0/VepOJjgK8fqWun80XiWJBZCkeIPNlZfqFpaKkT9w4XMzIkj8oS786Kts3uz h1GDKwv7khjmhg== -----END CERTIFICATE-----Generated at Fri Dec 12 13:01:22 2025 by rpki-client