This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/6efd9c-64c3-42b6-92fd-ab7881b0df2b/1/INaBg9YBj1BMXm-uIo4bNQxvD-8.mft File: INaBg9YBj1BMXm-uIo4bNQxvD-8.mft (raw, json) Hash identifier: FoDCtu5Oro3R0t/H9BYk2ssUwwvknSuq99FRycarjPQ= Subject key identifier: 2E:20:04:BB:32:27:74:EB:A3:FC:25:68:8F:D7:53:1F:51:B9:6E:7F Authority key identifier: 20:D6:81:83:D6:01:8F:50:4C:5E:6F:AE:22:8E:1B:35:0C:6F:0F:EF Certificate issuer: /CN=20d68183d6018f504c5e6fae228e1b350c6f0fef Certificate serial: 019B330D2A50F6A72B2574397F1617A75189 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/INaBg9YBj1BMXm-uIo4bNQxvD-8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/6efd9c-64c3-42b6-92fd-ab7881b0df2b/1/INaBg9YBj1BMXm-uIo4bNQxvD-8.mft Manifest number: 0577 Signing time: Thu 18 Dec 2025 20:00:59 +0000 Manifest this update: Thu 18 Dec 2025 20:00:59 +0000 Manifest next update: Fri 19 Dec 2025 20:00:59 +0000 Files and hashes: 1: INaBg9YBj1BMXm-uIo4bNQxvD-8.crl (hash: uS7hQeWHU0U9Q2HHBlVau87R7O61826w3/MZdtyGH7s=) 2: yC5k-Siz_Em1vt4gM_Mo1jSfCLs.roa (hash: 9BuY83r6+/eNP6qGt+jO2lNpKgIDr+s3/OtIQYi8bMU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/6efd9c-64c3-42b6-92fd-ab7881b0df2b/1/INaBg9YBj1BMXm-uIo4bNQxvD-8.crl rsync://rpki.ripe.net/repository/DEFAULT/e0/6efd9c-64c3-42b6-92fd-ab7881b0df2b/1/INaBg9YBj1BMXm-uIo4bNQxvD-8.mft rsync://rpki.ripe.net/repository/DEFAULT/INaBg9YBj1BMXm-uIo4bNQxvD-8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:0d:2a:50:f6:a7:2b:25:74:39:7f:16:17:a7:51:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20d68183d6018f504c5e6fae228e1b350c6f0fef Validity Not Before: Dec 18 20:00:59 2025 GMT Not After : Dec 19 20:00:59 2025 GMT Subject: CN=2e2004bb322774eba3fc25688fd7531f51b96e7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:77:80:47:bc:3e:e6:bd:a3:60:16:99:99:d6: 79:9e:74:69:d7:3a:47:e7:a7:c7:33:ee:93:69:07: fe:4e:17:a7:56:c2:ad:fc:81:be:b1:53:b5:6b:38: 9c:6f:7a:62:db:81:87:e8:7f:76:3f:02:dc:8d:17: 06:50:bb:ef:c9:c3:72:80:3f:17:59:59:52:66:8d: d1:45:82:39:ca:02:45:a3:d0:7b:2e:f7:f5:43:24: 52:d6:44:32:1c:9f:8d:7a:7a:0f:a1:60:c2:cf:ee: 28:44:1f:ec:45:05:07:a7:af:6c:22:02:6e:2e:54: 62:38:79:d1:c5:4b:88:af:0d:c6:28:5e:73:1b:f5: 42:61:c6:ef:c0:91:4e:fc:66:58:9d:f1:7e:09:8e: cf:b7:4b:b9:09:04:53:68:c3:3d:f0:6c:f8:c0:32: bf:2b:11:5e:08:0c:1d:c3:3d:75:31:73:e2:b9:3a: 59:1f:ae:36:18:dc:0b:3e:bd:24:42:32:ec:01:e7: 12:e9:70:25:0d:6b:05:48:82:7c:3a:58:77:28:45: 5f:27:0a:26:07:65:f1:5a:e9:35:61:a3:86:61:5a: 4a:2c:79:92:c7:15:ea:0f:58:89:79:79:1c:f0:a8: f0:ff:99:f9:2d:bd:ae:63:1d:17:5b:d2:6d:92:ba: 22:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:20:04:BB:32:27:74:EB:A3:FC:25:68:8F:D7:53:1F:51:B9:6E:7F X509v3 Authority Key Identifier: keyid:20:D6:81:83:D6:01:8F:50:4C:5E:6F:AE:22:8E:1B:35:0C:6F:0F:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/INaBg9YBj1BMXm-uIo4bNQxvD-8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/6efd9c-64c3-42b6-92fd-ab7881b0df2b/1/INaBg9YBj1BMXm-uIo4bNQxvD-8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/6efd9c-64c3-42b6-92fd-ab7881b0df2b/1/INaBg9YBj1BMXm-uIo4bNQxvD-8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:f5:a2:9c:c3:b4:19:d8:3f:8b:86:49:e0:fa:e4:9d:2c:58: 8a:b9:ba:c3:6c:92:59:f1:4b:42:53:15:a2:89:6b:8d:5e:2f: 4d:03:a3:28:53:07:50:41:b2:c0:42:bc:ab:5f:e5:ce:ce:c2: 9a:fa:65:be:60:7a:3f:57:70:26:ea:0f:b4:f0:69:61:f9:b9: d5:58:0e:f6:b5:c9:00:b9:1e:41:95:ff:17:bb:25:5d:b1:d0: 77:5f:10:04:5e:9f:06:01:77:2a:08:3d:41:4f:cb:26:e6:18: ed:0b:6c:5c:d8:b1:1f:07:52:3b:a8:00:7a:ad:cd:fe:1f:a5: a8:80:3c:1c:b1:96:cf:43:c2:20:9c:14:3f:4d:26:08:24:91: ff:b0:ab:35:9c:fd:fd:88:a8:92:da:4c:e8:fa:43:84:cb:1d: be:d9:1d:55:d8:4c:8d:ae:38:92:8f:2e:af:c2:c1:d3:34:58: ab:20:1a:a4:4a:39:8f:ad:74:82:53:22:b2:0d:05:71:82:99: 94:6c:fe:1b:4d:d5:77:a6:24:e7:3b:bc:bc:96:84:50:07:ef: b1:26:03:53:37:ce:da:fa:90:33:57:50:96:ee:2b:4f:97:a0: ff:90:dc:d8:6d:6e:7e:97:6a:15:f6:7b:c7:c6:f2:f2:2f:9b: 12:a1:b1:9f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszDSpQ9qcrJXQ5fxYXp1GJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwZDY4MTgzZDYwMThmNTA0YzVlNmZhZTIyOGUxYjM1MGM2 ZjBmZWYwHhcNMjUxMjE4MjAwMDU5WhcNMjUxMjE5MjAwMDU5WjAzMTEwLwYDVQQD EygyZTIwMDRiYjMyMjc3NGViYTNmYzI1Njg4ZmQ3NTMxZjUxYjk2ZTdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqneAR7w+5r2jYBaZmdZ5nnRp1zpH 56fHM+6TaQf+ThenVsKt/IG+sVO1azicb3pi24GH6H92PwLcjRcGULvvycNygD8X WVlSZo3RRYI5ygJFo9B7Lvf1QyRS1kQyHJ+NenoPoWDCz+4oRB/sRQUHp69sIgJu LlRiOHnRxUuIrw3GKF5zG/VCYcbvwJFO/GZYnfF+CY7Pt0u5CQRTaMM98Gz4wDK/ KxFeCAwdwz11MXPiuTpZH642GNwLPr0kQjLsAecS6XAlDWsFSIJ8Olh3KEVfJwom B2XxWuk1YaOGYVpKLHmSxxXqD1iJeXkc8Kjw/5n5Lb2uYx0XW9JtkroiZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC4gBLsyJ3Tro/wlaI/XUx9RuW5/MB8GA1UdIwQY MBaAFCDWgYPWAY9QTF5vriKOGzUMbw/vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU5hQmc5WUJqMUJNWG0tdUlvNGJOUXh2RC04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC82ZWZkOWMtNjRjMy00MmI2LTkyZmQt YWI3ODgxYjBkZjJiLzEvSU5hQmc5WUJqMUJNWG0tdUlvNGJOUXh2RC04Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMC82ZWZkOWMtNjRjMy00MmI2LTkyZmQtYWI3ODgxYjBkZjJi LzEvSU5hQmc5WUJqMUJNWG0tdUlvNGJOUXh2RC04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY/WinMO0 Gdg/i4ZJ4PrknSxYirm6w2ySWfFLQlMVoolrjV4vTQOjKFMHUEGywEK8q1/lzs7C mvplvmB6P1dwJuoPtPBpYfm51VgO9rXJALkeQZX/F7slXbHQd18QBF6fBgF3Kgg9 QU/LJuYY7QtsXNixHwdSO6gAeq3N/h+lqIA8HLGWz0PCIJwUP00mCCSR/7CrNZz9 /YioktpM6PpDhMsdvtkdVdhMja44ko8ur8LB0zRYqyAapEo5j610glMisg0FcYKZ lGz+G03Vd6Yk5zu8vJaEUAfvsSYDUzfO2vqQM1dQlu4rT5eg/5Dc2G1ufpdqFfZ7 x8by8i+bEqGxnw== -----END CERTIFICATE-----Generated at Fri Dec 19 04:47:57 2025 by rpki-client