This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft File: imgZHKtu8GsyKwsSSHhdSEpFJPM.mft (raw, json) Hash identifier: gdTwU3Hjyt5XsNFzQMvNJQVXYzeXf1wjfZQlF2QEcgc= Subject key identifier: 7E:28:D1:A6:FF:F6:FE:C7:0B:03:B1:AD:36:21:60:F2:71:E5:D6:B6 Authority key identifier: 8A:68:19:1C:AB:6E:F0:6B:32:2B:0B:12:48:78:5D:48:4A:45:24:F3 Certificate issuer: /CN=8a68191cab6ef06b322b0b1248785d484a4524f3 Certificate serial: 019B353260E791D1902FD438E8B5A2769C6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft Manifest number: 11D3 Signing time: Fri 19 Dec 2025 06:00:52 +0000 Manifest this update: Fri 19 Dec 2025 06:00:52 +0000 Manifest next update: Sat 20 Dec 2025 06:00:52 +0000 Files and hashes: 1: U8GRHKScYdSNdnB2mr1xryjNCyA.roa (hash: gCSVLFeQA2Qb3RyGGtdWNAIaM4Y9u0sDXVDglP6HH5k=) 2: imgZHKtu8GsyKwsSSHhdSEpFJPM.crl (hash: 6IJQ3mDATmY2pN84kWct3/JmA2vCVGeDkA+4fn+7oSI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.crl rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:32:60:e7:91:d1:90:2f:d4:38:e8:b5:a2:76:9c:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8a68191cab6ef06b322b0b1248785d484a4524f3 Validity Not Before: Dec 19 06:00:52 2025 GMT Not After : Dec 20 06:00:52 2025 GMT Subject: CN=7e28d1a6fff6fec70b03b1ad362160f271e5d6b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:69:27:17:d4:b8:41:41:e3:c7:2d:a8:cc:33: 1f:21:bc:e9:7e:a2:a1:85:50:98:48:af:ea:9f:68: 77:16:73:a7:15:c2:e3:b3:0d:b7:3c:2f:54:cf:8c: 78:88:72:4a:2e:05:42:06:41:c9:8e:7e:48:43:10: e4:24:3e:af:de:54:94:88:3d:40:4e:a6:99:27:85: fd:1f:7e:ff:dd:57:3f:2f:b0:8c:50:15:7f:9f:7e: 40:96:a4:19:cd:1c:28:f1:35:e9:71:13:31:94:22: ae:6c:a4:c0:27:dd:8e:ff:15:44:be:8a:af:ea:fb: e0:85:cb:3d:0f:61:4e:69:f0:7f:8d:aa:ce:f6:0a: e5:18:c3:ea:f6:c2:35:28:98:84:10:23:8f:98:1a: 74:86:7d:eb:17:ef:8b:61:93:4d:30:2e:31:df:dc: fb:03:3f:86:71:0b:56:89:43:de:87:7f:1f:5d:55: 47:97:c4:65:36:ac:43:85:19:28:b2:19:e3:b2:7b: 56:cf:74:49:1f:de:eb:49:4d:f8:1a:0a:a4:9a:d2: e3:56:41:a4:68:a2:3f:2f:9d:9e:b6:b5:f1:28:6d: 32:c3:e8:a2:27:f9:be:f7:59:ef:0d:99:bd:0c:7c: 85:88:38:05:03:fb:cb:8a:90:21:a3:d6:c2:a6:8c: 21:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:28:D1:A6:FF:F6:FE:C7:0B:03:B1:AD:36:21:60:F2:71:E5:D6:B6 X509v3 Authority Key Identifier: keyid:8A:68:19:1C:AB:6E:F0:6B:32:2B:0B:12:48:78:5D:48:4A:45:24:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption af:8a:6d:9b:19:94:e2:13:0b:e8:eb:cf:03:39:b5:1d:8d:22: 9d:78:a7:d8:ce:29:d4:bc:cc:e3:5a:59:61:4b:de:68:7f:88: 4f:89:d4:ab:49:92:28:e5:8c:fc:1b:86:73:2f:2f:41:0d:9d: f7:1a:68:14:d9:78:81:4f:22:36:c9:34:ab:c9:07:ee:da:bb: e7:f8:c9:f6:18:9c:1b:43:e2:e5:8c:8f:ff:bb:d0:ca:a8:b4: 03:3b:cd:38:ca:ed:9f:91:aa:b7:b7:1e:c5:49:1e:a6:f5:a3: 76:4b:26:5c:bd:b7:86:83:cc:84:96:63:ce:b8:3a:60:50:c6: 76:c9:65:76:73:2a:1d:64:1f:2f:cd:de:d5:3a:28:b3:67:58: a0:86:ad:57:6e:5d:f4:06:54:53:3c:d4:c1:9e:4d:14:64:10: d8:50:49:8d:c4:7f:8d:fc:0c:3c:ef:b8:15:35:d3:83:52:40: 2a:ad:0f:94:58:3f:15:36:d1:c7:f6:34:99:9e:3a:ad:f7:d1: 5d:10:23:ce:29:0a:2c:4c:23:cb:84:73:13:74:4e:6e:bc:73: 80:48:35:5b:8c:b2:bb:d8:a3:30:58:5a:ff:f2:a4:f0:9e:4e: da:ef:92:eb:67:82:8c:63:25:7b:95:f9:74:e8:18:c6:6c:41: f2:59:e9:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1MmDnkdGQL9Q46LWidpxqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhNjgxOTFjYWI2ZWYwNmIzMjJiMGIxMjQ4Nzg1ZDQ4NGE0 NTI0ZjMwHhcNMjUxMjE5MDYwMDUyWhcNMjUxMjIwMDYwMDUyWjAzMTEwLwYDVQQD Eyg3ZTI4ZDFhNmZmZjZmZWM3MGIwM2IxYWQzNjIxNjBmMjcxZTVkNmI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoWknF9S4QUHjxy2ozDMfIbzpfqKh hVCYSK/qn2h3FnOnFcLjsw23PC9Uz4x4iHJKLgVCBkHJjn5IQxDkJD6v3lSUiD1A TqaZJ4X9H37/3Vc/L7CMUBV/n35AlqQZzRwo8TXpcRMxlCKubKTAJ92O/xVEvoqv 6vvghcs9D2FOafB/jarO9grlGMPq9sI1KJiEECOPmBp0hn3rF++LYZNNMC4x39z7 Az+GcQtWiUPeh38fXVVHl8RlNqxDhRkoshnjsntWz3RJH97rSU34GgqkmtLjVkGk aKI/L52etrXxKG0yw+iiJ/m+91nvDZm9DHyFiDgFA/vLipAho9bCpowhzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH4o0ab/9v7HCwOxrTYhYPJx5da2MB8GA1UdIwQY MBaAFIpoGRyrbvBrMisLEkh4XUhKRSTzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaW1nWkhLdHU4R3N5S3dzU1NIaGRTRXBGSlBNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9lM2VlOGQtZTQ1OS00ZjQ3LWI3NWQt OTcxMTdlZWI0ODkxLzEvaW1nWkhLdHU4R3N5S3dzU1NIaGRTRXBGSlBNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9lM2VlOGQtZTQ1OS00ZjQ3LWI3NWQtOTcxMTdlZWI0ODkx LzEvaW1nWkhLdHU4R3N5S3dzU1NIaGRTRXBGSlBNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAr4ptmxmU 4hML6OvPAzm1HY0inXin2M4p1LzM41pZYUveaH+IT4nUq0mSKOWM/BuGcy8vQQ2d 9xpoFNl4gU8iNsk0q8kH7tq75/jJ9hicG0Pi5YyP/7vQyqi0AzvNOMrtn5Gqt7ce xUkepvWjdksmXL23hoPMhJZjzrg6YFDGdslldnMqHWQfL83e1Toos2dYoIatV25d 9AZUUzzUwZ5NFGQQ2FBJjcR/jfwMPO+4FTXTg1JAKq0PlFg/FTbRx/Y0mZ46rffR XRAjzikKLEwjy4RzE3RObrxzgEg1W4yyu9ijMFha//Kk8J5O2u+S62eCjGMle5X5 dOgYxmxB8lnpwQ== -----END CERTIFICATE-----Generated at Fri Dec 19 08:12:02 2025 by rpki-client