This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft File: IMZhH8hUYvC8yscvPfTFNRvlEN4.mft (raw, json) Hash identifier: q7a1qzZ9Hnu1iFm/N7ZqqzBTI+FPhpsDXm7NmSt4vEE= Subject key identifier: C0:0E:90:0D:A5:71:68:B6:21:EB:CC:06:21:65:72:70:B1:46:A7:AF Authority key identifier: 20:C6:61:1F:C8:54:62:F0:BC:CA:C7:2F:3D:F4:C5:35:1B:E5:10:DE Certificate issuer: /CN=20c6611fc85462f0bccac72f3df4c5351be510de Certificate serial: 019B5BD228A1046DE63495F2111E13049912 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMZhH8hUYvC8yscvPfTFNRvlEN4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft Manifest number: 0178 Signing time: Fri 26 Dec 2025 18:00:58 +0000 Manifest this update: Fri 26 Dec 2025 18:00:58 +0000 Manifest next update: Sat 27 Dec 2025 18:00:58 +0000 Files and hashes: 1: IMZhH8hUYvC8yscvPfTFNRvlEN4.crl (hash: 5yhIMxeXA6m3vmhegB71lO6Q9SFJiyTRdmdCfavAMoc=) 2: KGtn_CGJ9WQ0fMr4tUY-3i93MNg.roa (hash: 03IEtTQfIrx28kdxnAxm3chhufsP9RPQAiqL8u3FBkA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.crl rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft rsync://rpki.ripe.net/repository/DEFAULT/IMZhH8hUYvC8yscvPfTFNRvlEN4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 15:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5b:d2:28:a1:04:6d:e6:34:95:f2:11:1e:13:04:99:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20c6611fc85462f0bccac72f3df4c5351be510de Validity Not Before: Dec 26 18:00:58 2025 GMT Not After : Dec 27 18:00:58 2025 GMT Subject: CN=c00e900da57168b621ebcc0621657270b146a7af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:62:ab:db:6e:e5:b5:00:b5:96:a5:aa:08:92: c7:ce:3d:fb:db:ef:4a:79:10:0e:f6:9d:b7:ec:37: ca:94:6f:8d:14:fc:bb:14:db:49:62:db:ac:c8:c6: 80:45:e0:9d:79:25:ce:14:54:c3:34:0e:4f:25:94: 8b:09:ec:c8:b7:cf:1e:c5:48:d8:6a:fc:a2:86:25: 2f:58:75:9a:8c:3d:8f:3e:da:00:b4:0f:35:3f:db: 4b:0f:8c:fe:8d:8f:ab:9d:32:e2:22:fe:1f:91:ec: 6a:82:ba:e3:7d:cf:27:74:fe:8b:a8:61:bb:86:6d: e9:ac:ea:67:f3:5d:e3:8f:d4:0d:4e:45:d0:b6:bb: 86:96:26:d9:dc:d5:dc:dc:f2:f6:10:82:c2:34:22: 0e:d2:49:06:3d:b2:03:11:bb:1b:a0:86:3f:38:e2: 4f:46:b7:27:13:97:dc:03:87:57:4e:d8:25:15:e7: a3:a0:9d:89:ae:53:48:3c:c8:7b:ce:26:51:1d:f6: 3b:94:3a:d7:ab:c9:9b:b1:24:1d:cb:ba:a6:a6:ff: d1:73:ef:11:e4:fb:06:13:17:29:59:9a:6a:ed:ed: 21:b6:c3:0a:64:33:05:22:5e:61:a1:2e:30:c4:12: d7:e4:2e:e5:6a:cc:16:40:b5:1c:7a:21:48:5f:b9: b2:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:0E:90:0D:A5:71:68:B6:21:EB:CC:06:21:65:72:70:B1:46:A7:AF X509v3 Authority Key Identifier: keyid:20:C6:61:1F:C8:54:62:F0:BC:CA:C7:2F:3D:F4:C5:35:1B:E5:10:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMZhH8hUYvC8yscvPfTFNRvlEN4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:28:dd:67:a2:24:98:1a:fa:f4:e3:35:6d:68:fa:99:72:4e: a2:13:a4:f1:69:59:c0:01:75:1c:e7:77:d7:c1:eb:a7:b5:c8: ca:89:73:62:9a:86:7f:c9:ed:1e:df:47:6a:ef:19:17:9a:e4: 2a:16:d2:11:39:ce:18:a9:1f:66:f0:49:71:ab:90:16:35:11: d5:bb:25:08:7b:e3:b6:dd:73:a4:76:df:f4:f7:a7:ec:fb:ba: 03:57:fe:26:34:ae:d9:a7:d8:b4:18:2d:f4:d9:8c:50:60:fd: ca:e1:5c:52:6c:73:13:33:e7:e9:7e:ca:b3:e2:8e:1a:c5:ba: 56:8c:9f:8a:af:f9:e0:bb:38:78:52:fd:f4:30:74:5c:25:2d: 57:b0:e7:f7:91:3e:fd:8a:4c:5f:38:5d:34:e7:8f:7e:d1:ed: 1c:f2:08:0e:1a:2a:c0:63:46:ba:cf:08:85:cb:58:73:04:c4: 71:48:21:2b:9e:16:90:9f:70:94:6e:46:b9:cf:e9:1a:43:a0: 14:0d:00:57:f5:1a:03:4c:ad:11:cc:96:c5:ac:81:73:88:25: 75:dd:4e:1b:9c:0f:74:17:17:2a:c6:25:b4:e9:02:df:40:32: e6:96:9b:c1:80:78:ed:50:92:8d:44:1b:9e:fd:84:15:52:b9: b8:8a:25:2c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtb0iihBG3mNJXyER4TBJkSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwYzY2MTFmYzg1NDYyZjBiY2NhYzcyZjNkZjRjNTM1MWJl NTEwZGUwHhcNMjUxMjI2MTgwMDU4WhcNMjUxMjI3MTgwMDU4WjAzMTEwLwYDVQQD EyhjMDBlOTAwZGE1NzE2OGI2MjFlYmNjMDYyMTY1NzI3MGIxNDZhN2FmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx2Kr227ltQC1lqWqCJLHzj372+9K eRAO9p237DfKlG+NFPy7FNtJYtusyMaAReCdeSXOFFTDNA5PJZSLCezIt88exUjY avyihiUvWHWajD2PPtoAtA81P9tLD4z+jY+rnTLiIv4fkexqgrrjfc8ndP6LqGG7 hm3prOpn813jj9QNTkXQtruGlibZ3NXc3PL2EILCNCIO0kkGPbIDEbsboIY/OOJP RrcnE5fcA4dXTtglFeejoJ2JrlNIPMh7ziZRHfY7lDrXq8mbsSQdy7qmpv/Rc+8R 5PsGExcpWZpq7e0htsMKZDMFIl5hoS4wxBLX5C7laswWQLUceiFIX7my4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMAOkA2lcWi2IevMBiFlcnCxRqevMB8GA1UdIwQY MBaAFCDGYR/IVGLwvMrHLz30xTUb5RDeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU1aaEg4aFVZdkM4eXNjdlBmVEZOUnZsRU40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS8zODQxZmUtZGM0OS00YjljLWFmOWQt ZGFhMjNmZmI0Y2JmLzEvSU1aaEg4aFVZdkM4eXNjdlBmVEZOUnZsRU40Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZS8zODQxZmUtZGM0OS00YjljLWFmOWQtZGFhMjNmZmI0Y2Jm LzEvSU1aaEg4aFVZdkM4eXNjdlBmVEZOUnZsRU40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGijdZ6Ik mBr69OM1bWj6mXJOohOk8WlZwAF1HOd318Hrp7XIyolzYpqGf8ntHt9Hau8ZF5rk KhbSETnOGKkfZvBJcauQFjUR1bslCHvjtt1zpHbf9Pen7Pu6A1f+JjSu2afYtBgt 9NmMUGD9yuFcUmxzEzPn6X7Ks+KOGsW6Voyfiq/54Ls4eFL99DB0XCUtV7Dn95E+ /YpMXzhdNOePftHtHPIIDhoqwGNGus8IhctYcwTEcUghK54WkJ9wlG5Guc/pGkOg FA0AV/UaA0ytEcyWxayBc4gldd1OG5wPdBcXKsYltOkC30Ay5pabwYB47VCSjUQb nv2EFVK5uIolLA== -----END CERTIFICATE-----Generated at Fri Dec 26 22:59:50 2025 by rpki-client