This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft File: paimkAmtLokJhr3XbGM8GzHwbzo.mft (raw, json) Hash identifier: TT5yKMYQUXHSI8guxT6sh9oY+EjZn37llNPUg30iDMg= Subject key identifier: 08:A6:F0:17:3E:19:2C:9A:7D:4E:73:75:F3:A5:EE:99:33:72:D2:1B Authority key identifier: A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A Certificate issuer: /CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a Certificate serial: 019B47A69B5A210CED2C34C053A811A49537 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft Manifest number: 0876 Signing time: Mon 22 Dec 2025 20:00:59 +0000 Manifest this update: Mon 22 Dec 2025 20:00:59 +0000 Manifest next update: Tue 23 Dec 2025 20:00:59 +0000 Files and hashes: 1: 6FOwPkcLo51Q3D-jQMVy5DzuCjo.roa (hash: ZMfa+VC1JK7r5J2BdtywNHEZxOWql9OfKZrNLteanPw=) 2: paimkAmtLokJhr3XbGM8GzHwbzo.crl (hash: EDWpX2LzrL/tBD4kPrRXwH/BNhy982qHc/dVWRikugA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 20:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:47:a6:9b:5a:21:0c:ed:2c:34:c0:53:a8:11:a4:95:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a Validity Not Before: Dec 22 20:00:59 2025 GMT Not After : Dec 23 20:00:59 2025 GMT Subject: CN=08a6f0173e192c9a7d4e7375f3a5ee993372d21b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4f:a2:e0:f5:ef:4c:21:44:de:8a:9a:31:0e: 94:53:0d:2f:70:ff:04:89:23:9d:dd:02:bc:01:d3: 01:27:9d:6e:32:c2:d7:74:33:e9:48:f1:59:43:00: a4:21:16:1a:60:bf:14:ba:29:56:1a:97:2d:25:c1: 27:19:0f:a5:f7:f2:37:ea:24:a6:c9:40:1e:f3:e3: 74:ef:77:29:71:3b:ae:f9:23:4e:a7:dd:02:87:90: 28:64:56:42:20:c3:6d:12:81:fe:3a:5a:1d:28:63: c8:94:60:a9:22:e6:c2:1e:49:ec:5b:c5:34:a0:e1: 93:29:36:0e:2f:87:d8:0b:9a:30:73:2c:33:6a:17: 95:1e:60:b0:14:aa:ff:5f:ba:80:b6:40:bb:a4:07: bf:2d:91:f0:9e:e1:9b:0e:cc:14:ab:d4:c7:a9:6f: de:1a:7f:6c:74:53:ac:70:48:f5:a3:e6:56:77:dc: 29:69:8a:37:c2:6d:45:1c:54:63:f7:ee:6a:a2:e2: bf:82:bc:77:5b:ef:93:2b:6f:65:3d:2a:ee:e7:4a: 38:24:24:ab:5b:34:32:8c:b1:c0:dc:b2:c3:8c:61: ee:ae:27:de:de:25:97:14:eb:e4:99:2c:31:2b:9e: 2a:2e:d9:3e:13:20:aa:b5:be:4f:46:2e:4f:f8:22: 2d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:A6:F0:17:3E:19:2C:9A:7D:4E:73:75:F3:A5:EE:99:33:72:D2:1B X509v3 Authority Key Identifier: keyid:A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:ed:32:bb:3a:9b:f1:06:f3:1f:b2:2a:da:5f:d9:a1:18:a1: b1:94:e4:45:a7:57:63:7b:44:a4:d9:57:0b:01:8a:fb:a0:71: 2a:7e:4e:e9:0c:6d:c8:81:6f:1b:68:3a:93:11:96:fa:98:be: e4:92:c4:d3:32:11:95:8f:72:b7:71:1e:ea:d3:3c:75:79:fa: b2:a0:b3:09:36:1c:6c:f8:96:0a:6b:3a:31:5e:37:e9:c4:63: 88:0d:9f:c9:c5:ea:42:b5:1c:3e:61:0b:f6:ca:6b:d9:a0:f3: 86:d6:09:08:41:4b:dc:f7:37:4b:56:ad:02:55:6a:43:ab:b4: d0:3f:30:c0:09:fb:3e:50:4f:57:c7:d7:d8:6f:5f:fa:f8:b2: 63:03:42:45:97:69:61:ea:3b:eb:4d:55:e9:e4:05:69:51:42: 26:c4:78:20:6e:be:07:83:99:c4:85:9c:1b:9e:8d:8e:93:10: 9a:12:f8:95:67:7f:64:2c:d2:8f:fb:01:5d:20:26:33:20:5f: 92:96:0d:c3:0a:20:69:93:f5:3b:6b:68:16:d9:02:ae:73:65: 40:98:db:33:ca:b1:b4:b8:e8:57:30:0f:98:93:4e:a0:88:f6: 11:b4:4a:4f:1d:b6:ec:40:3c:a3:9f:6a:2a:07:8a:07:14:76: da:4f:17:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtHpptaIQztLDTAU6gRpJU3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1YThhNjkwMDlhZDJlODkwOTg2YmRkNzZjNjMzYzFiMzFm MDZmM2EwHhcNMjUxMjIyMjAwMDU5WhcNMjUxMjIzMjAwMDU5WjAzMTEwLwYDVQQD EygwOGE2ZjAxNzNlMTkyYzlhN2Q0ZTczNzVmM2E1ZWU5OTMzNzJkMjFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1U+i4PXvTCFE3oqaMQ6UUw0vcP8E iSOd3QK8AdMBJ51uMsLXdDPpSPFZQwCkIRYaYL8UuilWGpctJcEnGQ+l9/I36iSm yUAe8+N073cpcTuu+SNOp90Ch5AoZFZCIMNtEoH+OlodKGPIlGCpIubCHknsW8U0 oOGTKTYOL4fYC5owcywzaheVHmCwFKr/X7qAtkC7pAe/LZHwnuGbDswUq9THqW/e Gn9sdFOscEj1o+ZWd9wpaYo3wm1FHFRj9+5qouK/grx3W++TK29lPSru50o4JCSr WzQyjLHA3LLDjGHurife3iWXFOvkmSwxK54qLtk+EyCqtb5PRi5P+CItiQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAim8Bc+GSyafU5zdfOl7pkzctIbMB8GA1UdIwQY MBaAFKWoppAJrS6JCYa912xjPBsx8G86MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGFpbWtBbXRMb2tKaHIzWGJHTThHekh3YnpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy9jNGRhZGEtMWEyOS00NDlhLTlhYzYt YjEyZWJmMzQ1YmMzLzEvcGFpbWtBbXRMb2tKaHIzWGJHTThHekh3YnpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYy9jNGRhZGEtMWEyOS00NDlhLTlhYzYtYjEyZWJmMzQ1YmMz LzEvcGFpbWtBbXRMb2tKaHIzWGJHTThHekh3YnpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAee0yuzqb 8QbzH7Iq2l/ZoRihsZTkRadXY3tEpNlXCwGK+6BxKn5O6QxtyIFvG2g6kxGW+pi+ 5JLE0zIRlY9yt3Ee6tM8dXn6sqCzCTYcbPiWCms6MV436cRjiA2fycXqQrUcPmEL 9spr2aDzhtYJCEFL3Pc3S1atAlVqQ6u00D8wwAn7PlBPV8fX2G9f+viyYwNCRZdp Yeo7601V6eQFaVFCJsR4IG6+B4OZxIWcG56NjpMQmhL4lWd/ZCzSj/sBXSAmMyBf kpYNwwogaZP1O2toFtkCrnNlQJjbM8qxtLjoVzAPmJNOoIj2EbRKTx227EA8o59q KgeKBxR22k8Xzg== -----END CERTIFICATE-----Generated at Tue Dec 23 06:05:34 2025 by rpki-client