This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft File: IKpgywAkMyottomT8zVxWK9gyN4.mft (raw, json) Hash identifier: yZBAVk0s5O4rEzxdZAcJtyvbeFFPIkS7vg7CmCOPIYk= Subject key identifier: 31:5D:B2:87:D0:7E:22:02:97:0C:3E:B6:6C:47:46:18:55:49:7F:2D Authority key identifier: 20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE Certificate issuer: /CN=20aa60cb0024332a2db68993f3357158af60c8de Certificate serial: 019B0FA53A6943061A06E846D8D4C2FD2D4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft Manifest number: 17A5 Signing time: Thu 11 Dec 2025 23:00:45 +0000 Manifest this update: Thu 11 Dec 2025 23:00:45 +0000 Manifest next update: Fri 12 Dec 2025 23:00:45 +0000 Files and hashes: 1: 5lfSf59AY-hC6ZBpQqdqsyBgfw4.roa (hash: hg0a1WqZnkeotSAobKNfSLW7zXmEvmKKXZqeOoYZdnY=) 2: HNhf-D_PEssdX9LVrnIMDsv0KIw.roa (hash: bVdo4uf32LEDJaY4T2QwPbWvITwhd4KcifOR3lFOhpg=) 3: IKpgywAkMyottomT8zVxWK9gyN4.crl (hash: ytFtTNFIdrEEyicgp62+yrhSOaT7Q4PNj7qCcm6jiRg=) 4: dgWxkYz27ClPX3P2Urg7lNK59jM.roa (hash: MvtqmyAEkvOlQrUInWf+whz/VlGH9I7ctl61Hj5EUxE=) 5: v7n-0r9KgIhGKTchu2jwbHB0z74.roa (hash: Uqi7ReaJs7BBVFTKxxZ3ijn7JitQR2P+yiINISqSbUc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:a5:3a:69:43:06:1a:06:e8:46:d8:d4:c2:fd:2d:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20aa60cb0024332a2db68993f3357158af60c8de Validity Not Before: Dec 11 23:00:45 2025 GMT Not After : Dec 12 23:00:45 2025 GMT Subject: CN=315db287d07e2202970c3eb66c47461855497f2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a5:cc:55:e0:fe:bc:55:a0:40:50:b0:55:1d: 39:82:36:3f:e7:f2:f0:b4:60:98:aa:b0:a5:31:92: c6:38:67:f7:22:fb:31:c0:00:3e:fc:50:2e:05:75: 6c:95:43:70:59:93:78:d2:14:9c:57:c3:ab:3d:e6: bb:76:6e:ee:0d:15:0b:ee:5b:fe:4e:d3:3d:9c:03: 27:7a:0d:81:10:96:cb:94:aa:07:c4:ef:32:e5:c1: a8:a0:19:4d:2b:79:a2:e7:d4:24:46:61:66:ec:cb: dc:53:8b:3f:28:c3:70:3b:7b:6a:5f:9e:98:84:dc: 50:75:8b:89:c6:5b:20:7d:05:2e:55:0e:d8:18:e4: 93:46:ed:43:fe:ce:82:e4:94:98:46:23:77:bc:fb: 6b:61:bf:aa:fb:93:79:3f:a9:db:9b:a9:12:3c:dd: 3a:01:31:f2:d6:91:7e:30:12:c4:03:b6:44:29:14: 5a:b9:7f:62:56:71:50:4f:b4:a3:b6:34:75:99:38: 80:d0:4d:20:76:76:54:77:e1:b3:f8:c4:55:8b:61: 33:f2:dd:61:e6:b7:c6:93:55:3f:a4:1d:83:3e:f7: bd:47:a9:5a:bf:77:6a:e9:dd:b0:71:0c:7e:ec:dd: 28:0e:a4:9e:0e:6a:68:57:cb:4a:8e:e7:78:33:1c: 82:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:5D:B2:87:D0:7E:22:02:97:0C:3E:B6:6C:47:46:18:55:49:7F:2D X509v3 Authority Key Identifier: keyid:20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:34:77:ff:cf:12:28:99:2d:7a:a9:93:4a:a9:6c:45:d6:63: 38:ab:75:19:6b:fb:86:85:72:90:b0:f9:a2:4d:2d:23:62:62: cf:0b:52:f8:41:4c:80:f1:cf:09:aa:95:da:3f:e8:01:19:7d: 8f:b7:18:04:e2:36:af:6e:50:8f:bc:fd:f8:e0:b3:96:13:ed: a3:3c:6f:fb:9b:58:58:34:2d:ba:3b:47:3b:26:2b:d5:ea:5f: 0a:6b:e8:7b:ea:6a:e0:70:6a:33:31:4a:f1:cc:88:ef:b3:37: f0:a1:16:1c:d7:a6:93:9a:84:6e:e8:01:53:d1:b1:e1:67:f1: 8d:c3:da:d5:92:96:aa:d5:13:53:b6:7a:bd:39:cc:1f:40:db: 6a:d6:6a:d3:e7:75:ff:01:d9:99:9a:90:ac:f4:7c:8e:f7:fd: 38:4d:2b:6b:8a:1c:d9:cb:fe:33:e9:6f:26:26:93:52:fd:90: fe:11:e9:8f:67:c2:c5:a2:4c:7d:dd:a0:2f:95:14:55:4a:29: 02:80:a3:5b:65:ee:60:b8:d4:9c:e7:f9:84:2d:49:73:03:ab: 25:3a:e2:24:9c:87:13:fc:0d:7c:70:04:77:18:a5:27:63:e1: b9:ea:3f:cd:47:66:73:d8:d2:53:36:fd:a6:be:a6:3f:b4:43: 5d:c4:9e:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPpTppQwYaBuhG2NTC/S1NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwYWE2MGNiMDAyNDMzMmEyZGI2ODk5M2YzMzU3MTU4YWY2 MGM4ZGUwHhcNMjUxMjExMjMwMDQ1WhcNMjUxMjEyMjMwMDQ1WjAzMTEwLwYDVQQD EygzMTVkYjI4N2QwN2UyMjAyOTcwYzNlYjY2YzQ3NDYxODU1NDk3ZjJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv6XMVeD+vFWgQFCwVR05gjY/5/Lw tGCYqrClMZLGOGf3IvsxwAA+/FAuBXVslUNwWZN40hScV8OrPea7dm7uDRUL7lv+ TtM9nAMneg2BEJbLlKoHxO8y5cGooBlNK3mi59QkRmFm7MvcU4s/KMNwO3tqX56Y hNxQdYuJxlsgfQUuVQ7YGOSTRu1D/s6C5JSYRiN3vPtrYb+q+5N5P6nbm6kSPN06 ATHy1pF+MBLEA7ZEKRRauX9iVnFQT7SjtjR1mTiA0E0gdnZUd+Gz+MRVi2Ez8t1h 5rfGk1U/pB2DPve9R6lav3dq6d2wcQx+7N0oDqSeDmpoV8tKjud4MxyCTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDFdsofQfiIClww+tmxHRhhVSX8tMB8GA1UdIwQY MBaAFCCqYMsAJDMqLbaJk/M1cVivYMjeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUtwZ3l3QWtNeW90dG9tVDh6VnhXSzlneU40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8zNTI0MzEtZTY5NC00NDEyLWE3NjYt NzNmN2QxMTBiODJhLzEvSUtwZ3l3QWtNeW90dG9tVDh6VnhXSzlneU40Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi8zNTI0MzEtZTY5NC00NDEyLWE3NjYtNzNmN2QxMTBiODJh LzEvSUtwZ3l3QWtNeW90dG9tVDh6VnhXSzlneU40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPjR3/88S KJkteqmTSqlsRdZjOKt1GWv7hoVykLD5ok0tI2JizwtS+EFMgPHPCaqV2j/oARl9 j7cYBOI2r25Qj7z9+OCzlhPtozxv+5tYWDQtujtHOyYr1epfCmvoe+pq4HBqMzFK 8cyI77M38KEWHNemk5qEbugBU9Gx4WfxjcPa1ZKWqtUTU7Z6vTnMH0DbatZq0+d1 /wHZmZqQrPR8jvf9OE0ra4oc2cv+M+lvJiaTUv2Q/hHpj2fCxaJMfd2gL5UUVUop AoCjW2XuYLjUnOf5hC1JcwOrJTriJJyHE/wNfHAEdxilJ2Phueo/zUdmc9jSUzb9 pr6mP7RDXcSe2w== -----END CERTIFICATE-----Generated at Fri Dec 12 04:10:35 2025 by rpki-client