This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/6efd9c-64c3-42b6-92fd-ab7881b0df2b/1/INaBg9YBj1BMXm-uIo4bNQxvD-8.mft File: INaBg9YBj1BMXm-uIo4bNQxvD-8.mft (raw, json) Hash identifier: 84nt1qhsozIh1BxWGRVK1cHqd0uR4X0lcANGM0kSNL8= Subject key identifier: 0E:F1:94:87:8B:2F:EB:D6:8A:D1:A7:DB:67:18:2B:99:0F:BF:15:BB Authority key identifier: 20:D6:81:83:D6:01:8F:50:4C:5E:6F:AE:22:8E:1B:35:0C:6F:0F:EF Certificate issuer: /CN=20d68183d6018f504c5e6fae228e1b350c6f0fef Certificate serial: 019B2F3057F2D582F86113D9785B1FB06381 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/INaBg9YBj1BMXm-uIo4bNQxvD-8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/6efd9c-64c3-42b6-92fd-ab7881b0df2b/1/INaBg9YBj1BMXm-uIo4bNQxvD-8.mft Manifest number: 0575 Signing time: Thu 18 Dec 2025 02:00:55 +0000 Manifest this update: Thu 18 Dec 2025 02:00:55 +0000 Manifest next update: Fri 19 Dec 2025 02:00:55 +0000 Files and hashes: 1: INaBg9YBj1BMXm-uIo4bNQxvD-8.crl (hash: 3FxLJwqEZYXV1AMPFJIPIa0BDw7fcuL6HphZUvLIqyg=) 2: yC5k-Siz_Em1vt4gM_Mo1jSfCLs.roa (hash: 9BuY83r6+/eNP6qGt+jO2lNpKgIDr+s3/OtIQYi8bMU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/6efd9c-64c3-42b6-92fd-ab7881b0df2b/1/INaBg9YBj1BMXm-uIo4bNQxvD-8.crl rsync://rpki.ripe.net/repository/DEFAULT/e0/6efd9c-64c3-42b6-92fd-ab7881b0df2b/1/INaBg9YBj1BMXm-uIo4bNQxvD-8.mft rsync://rpki.ripe.net/repository/DEFAULT/INaBg9YBj1BMXm-uIo4bNQxvD-8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 02:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2f:30:57:f2:d5:82:f8:61:13:d9:78:5b:1f:b0:63:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20d68183d6018f504c5e6fae228e1b350c6f0fef Validity Not Before: Dec 18 02:00:55 2025 GMT Not After : Dec 19 02:00:55 2025 GMT Subject: CN=0ef194878b2febd68ad1a7db67182b990fbf15bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3a:3f:c7:9f:93:44:06:0e:47:58:7f:cd:55: 40:ec:ea:43:07:a1:d7:ff:89:e4:5d:9b:54:d6:d5: d3:67:74:36:0c:22:4e:ea:ab:b5:5a:ff:f7:8f:cb: 4d:98:f4:be:86:9e:de:89:b3:1b:44:cd:34:fe:fe: 1d:bd:e1:fb:2b:2e:5b:c2:1a:b2:22:b4:8c:5c:e9: 72:84:11:9d:e6:21:9b:c7:b3:88:61:53:5e:58:f8: 2d:36:1a:d3:02:dd:e2:04:72:a1:be:60:74:73:34: 95:4e:f1:dd:86:d5:cd:84:00:21:ff:99:f5:e3:97: 69:b6:3f:df:2d:60:c2:a4:27:21:69:91:e3:83:52: 6f:57:4c:44:8b:09:02:1b:9c:87:9f:06:51:f9:92: 37:ff:ce:58:ad:9a:04:1e:b7:b6:59:8f:d8:9e:15: 49:35:67:57:af:66:d6:74:07:4e:45:00:b8:f6:5e: 33:81:70:ef:10:4a:ce:c5:3d:6f:3c:cd:d3:1b:2a: 5f:3f:31:86:2d:92:f3:31:8e:92:19:5c:47:1a:c4: 38:71:07:1c:df:c0:7c:3b:d3:11:c1:81:16:ed:d9: ba:cc:14:a3:f9:c6:b0:20:ff:23:de:ac:df:a0:3e: 75:f2:22:0e:44:44:11:84:27:4f:67:34:27:2d:6c: 7b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:F1:94:87:8B:2F:EB:D6:8A:D1:A7:DB:67:18:2B:99:0F:BF:15:BB X509v3 Authority Key Identifier: keyid:20:D6:81:83:D6:01:8F:50:4C:5E:6F:AE:22:8E:1B:35:0C:6F:0F:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/INaBg9YBj1BMXm-uIo4bNQxvD-8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/6efd9c-64c3-42b6-92fd-ab7881b0df2b/1/INaBg9YBj1BMXm-uIo4bNQxvD-8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/6efd9c-64c3-42b6-92fd-ab7881b0df2b/1/INaBg9YBj1BMXm-uIo4bNQxvD-8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:53:88:60:8b:a2:17:91:e6:1f:2f:5e:6b:be:60:2d:25:16: 1d:ff:33:aa:8e:75:14:c7:3e:63:07:a3:9b:09:44:b5:b3:f1: 70:e9:bc:6e:84:79:2c:c6:ce:ff:ca:7e:41:5b:38:8c:05:0d: f6:a6:b5:d8:b9:09:85:13:6f:0b:41:2b:75:f7:64:a7:76:66: f4:1a:d2:6e:0f:5b:1e:4e:f8:15:c6:47:85:1d:86:20:76:c3: 34:83:01:50:b5:3d:68:53:57:5f:d5:3b:ed:cd:79:db:17:c3: 05:c2:80:3a:2e:ab:cf:5f:78:dd:07:b5:77:aa:c9:61:c9:2b: 8e:26:12:7b:68:65:7d:ee:b5:5c:f1:52:24:17:78:38:3a:b5: 9c:eb:c8:7e:72:32:89:40:98:92:89:80:bd:cf:c9:05:2b:b3: 5f:50:4b:a4:11:f2:76:b1:fc:2e:c3:22:4f:d1:fe:ee:cd:6c: 7d:5a:48:41:cb:c1:1a:73:39:64:7d:8c:16:8e:59:59:d5:9d: a2:94:7f:0c:9f:ac:ac:cf:e0:13:6f:79:eb:ab:54:7f:5f:8c: a3:cf:cc:1b:c7:3f:30:9e:ca:7b:31:08:61:ff:da:fd:2c:5f: 17:49:df:82:8f:b2:95:a0:17:d7:86:75:41:51:aa:09:c4:a8: 9e:85:c4:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsvMFfy1YL4YRPZeFsfsGOBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwZDY4MTgzZDYwMThmNTA0YzVlNmZhZTIyOGUxYjM1MGM2 ZjBmZWYwHhcNMjUxMjE4MDIwMDU1WhcNMjUxMjE5MDIwMDU1WjAzMTEwLwYDVQQD EygwZWYxOTQ4NzhiMmZlYmQ2OGFkMWE3ZGI2NzE4MmI5OTBmYmYxNWJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuTo/x5+TRAYOR1h/zVVA7OpDB6HX /4nkXZtU1tXTZ3Q2DCJO6qu1Wv/3j8tNmPS+hp7eibMbRM00/v4dveH7Ky5bwhqy IrSMXOlyhBGd5iGbx7OIYVNeWPgtNhrTAt3iBHKhvmB0czSVTvHdhtXNhAAh/5n1 45dptj/fLWDCpCchaZHjg1JvV0xEiwkCG5yHnwZR+ZI3/85YrZoEHre2WY/YnhVJ NWdXr2bWdAdORQC49l4zgXDvEErOxT1vPM3TGypfPzGGLZLzMY6SGVxHGsQ4cQcc 38B8O9MRwYEW7dm6zBSj+cawIP8j3qzfoD518iIOREQRhCdPZzQnLWx7GwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA7xlIeLL+vWitGn22cYK5kPvxW7MB8GA1UdIwQY MBaAFCDWgYPWAY9QTF5vriKOGzUMbw/vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU5hQmc5WUJqMUJNWG0tdUlvNGJOUXh2RC04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC82ZWZkOWMtNjRjMy00MmI2LTkyZmQt YWI3ODgxYjBkZjJiLzEvSU5hQmc5WUJqMUJNWG0tdUlvNGJOUXh2RC04Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMC82ZWZkOWMtNjRjMy00MmI2LTkyZmQtYWI3ODgxYjBkZjJi LzEvSU5hQmc5WUJqMUJNWG0tdUlvNGJOUXh2RC04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAklOIYIui F5HmHy9ea75gLSUWHf8zqo51FMc+YwejmwlEtbPxcOm8boR5LMbO/8p+QVs4jAUN 9qa12LkJhRNvC0Erdfdkp3Zm9BrSbg9bHk74FcZHhR2GIHbDNIMBULU9aFNXX9U7 7c152xfDBcKAOi6rz1943Qe1d6rJYckrjiYSe2hlfe61XPFSJBd4ODq1nOvIfnIy iUCYkomAvc/JBSuzX1BLpBHydrH8LsMiT9H+7s1sfVpIQcvBGnM5ZH2MFo5ZWdWd opR/DJ+srM/gE29566tUf1+Mo8/MG8c/MJ7KezEIYf/a/SxfF0nfgo+ylaAX14Z1 QVGqCcSonoXE2Q== -----END CERTIFICATE-----Generated at Thu Dec 18 08:03:49 2025 by rpki-client