This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft File: paimkAmtLokJhr3XbGM8GzHwbzo.mft (raw, json) Hash identifier: cN10JdvCaz3vZh3Z8j6QnD8UyxoMyRZFlYqXplyAvQo= Subject key identifier: C0:27:9C:66:DE:D0:27:AC:7A:61:13:59:E4:7A:76:80:2F:76:93:0A Authority key identifier: A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A Certificate issuer: /CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a Certificate serial: 019B3A21811FEB046D59F3D94495E3EA5070 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft Manifest number: 086F Signing time: Sat 20 Dec 2025 05:00:32 +0000 Manifest this update: Sat 20 Dec 2025 05:00:32 +0000 Manifest next update: Sun 21 Dec 2025 05:00:32 +0000 Files and hashes: 1: 6FOwPkcLo51Q3D-jQMVy5DzuCjo.roa (hash: ZMfa+VC1JK7r5J2BdtywNHEZxOWql9OfKZrNLteanPw=) 2: paimkAmtLokJhr3XbGM8GzHwbzo.crl (hash: RmjDbHhVchyGOKDwI8VgC90XDj7xElM4ZNL4rYWPFUw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 05:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:21:81:1f:eb:04:6d:59:f3:d9:44:95:e3:ea:50:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a Validity Not Before: Dec 20 05:00:32 2025 GMT Not After : Dec 21 05:00:32 2025 GMT Subject: CN=c0279c66ded027ac7a611359e47a76802f76930a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4d:ff:07:89:c2:3f:57:15:9c:be:c4:84:60: 2c:9d:aa:cc:97:56:89:22:30:f8:8e:fa:1e:c8:71: fa:5d:f6:ca:3a:8e:55:e7:09:2a:bf:47:d6:fa:ac: 16:82:ad:11:55:0e:e8:22:bb:53:90:8e:81:86:72: f0:6f:8c:66:ac:81:5a:23:a1:fa:20:1e:83:80:25: ca:1a:fe:36:33:2f:0c:67:fe:bf:db:24:47:85:d8: 8d:a0:46:cb:ad:5b:8a:fd:f9:ca:0c:f9:cc:ff:4d: 6e:97:d9:05:ba:13:dd:91:54:a4:b0:4c:c6:ba:03: a5:54:fd:28:37:c0:6e:d4:ed:84:50:df:1f:55:c2: 07:ca:94:6a:cf:71:05:ea:8d:4d:7d:cc:b9:3c:84: 29:23:b0:98:1b:a3:db:ea:1d:04:dc:f6:db:e1:34: aa:f1:c4:8f:53:98:06:55:cf:4c:26:5b:ec:ef:51: 41:91:f8:78:7d:24:69:81:db:aa:d9:9d:37:ba:79: c1:0e:28:45:27:1a:2e:9e:62:ed:33:64:67:6d:df: 56:0e:6e:56:3b:9a:d0:1e:a6:01:02:a8:98:bc:e1: 60:2d:32:e2:38:27:68:b8:9e:c3:79:55:24:ad:bf: 1b:11:05:98:db:04:f5:7d:ce:76:12:18:f3:96:b2: 42:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:27:9C:66:DE:D0:27:AC:7A:61:13:59:E4:7A:76:80:2F:76:93:0A X509v3 Authority Key Identifier: keyid:A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:40:58:44:c2:cd:8c:94:f8:29:24:03:73:1a:64:8b:05:8a: 7c:fc:a4:de:cd:24:98:21:d3:02:6a:69:af:d7:5c:dc:af:f6: 38:02:40:74:e3:c2:d6:4e:ed:c5:f8:e1:b8:12:2c:a9:41:d8: f9:06:b6:fa:28:db:01:a2:c6:4e:87:08:58:29:f8:37:8b:b5: 13:bc:bd:27:9c:5c:d0:01:f8:7b:e9:89:ec:9c:15:d7:1a:64: 0a:46:d7:f9:46:90:b1:e3:2f:bd:0f:6b:ef:dc:3d:41:40:34: e5:b1:6b:30:c0:22:0d:d5:b3:2c:67:d4:df:3e:23:b5:0b:20: 58:29:56:00:bf:82:4c:7f:47:d5:06:91:dd:39:df:87:c6:f9: 82:a6:c6:cc:68:bb:f7:9b:17:dc:3a:34:71:57:8f:e6:1b:97: 8f:af:e2:68:dd:65:61:8d:fb:e7:44:ae:fc:6e:32:a5:f7:f0: 13:5f:b4:6c:00:34:96:1f:1f:dd:87:35:a8:71:22:23:18:35: b1:f1:e8:bc:58:9c:ad:ff:75:54:66:d2:ab:64:e2:56:7d:ca: d1:f6:75:25:25:b4:89:8a:3c:b6:14:64:74:26:eb:49:9c:64: 62:39:60:f1:f2:3f:e0:20:73:72:55:38:8c:de:34:be:56:c4: 14:c3:91:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6IYEf6wRtWfPZRJXj6lBwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1YThhNjkwMDlhZDJlODkwOTg2YmRkNzZjNjMzYzFiMzFm MDZmM2EwHhcNMjUxMjIwMDUwMDMyWhcNMjUxMjIxMDUwMDMyWjAzMTEwLwYDVQQD EyhjMDI3OWM2NmRlZDAyN2FjN2E2MTEzNTllNDdhNzY4MDJmNzY5MzBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx03/B4nCP1cVnL7EhGAsnarMl1aJ IjD4jvoeyHH6XfbKOo5V5wkqv0fW+qwWgq0RVQ7oIrtTkI6BhnLwb4xmrIFaI6H6 IB6DgCXKGv42My8MZ/6/2yRHhdiNoEbLrVuK/fnKDPnM/01ul9kFuhPdkVSksEzG ugOlVP0oN8Bu1O2EUN8fVcIHypRqz3EF6o1Nfcy5PIQpI7CYG6Pb6h0E3Pbb4TSq 8cSPU5gGVc9MJlvs71FBkfh4fSRpgduq2Z03unnBDihFJxounmLtM2Rnbd9WDm5W O5rQHqYBAqiYvOFgLTLiOCdouJ7DeVUkrb8bEQWY2wT1fc52EhjzlrJCDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMAnnGbe0CesemETWeR6doAvdpMKMB8GA1UdIwQY MBaAFKWoppAJrS6JCYa912xjPBsx8G86MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGFpbWtBbXRMb2tKaHIzWGJHTThHekh3YnpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy9jNGRhZGEtMWEyOS00NDlhLTlhYzYt YjEyZWJmMzQ1YmMzLzEvcGFpbWtBbXRMb2tKaHIzWGJHTThHekh3YnpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYy9jNGRhZGEtMWEyOS00NDlhLTlhYzYtYjEyZWJmMzQ1YmMz LzEvcGFpbWtBbXRMb2tKaHIzWGJHTThHekh3YnpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdkBYRMLN jJT4KSQDcxpkiwWKfPyk3s0kmCHTAmppr9dc3K/2OAJAdOPC1k7txfjhuBIsqUHY +Qa2+ijbAaLGTocIWCn4N4u1E7y9J5xc0AH4e+mJ7JwV1xpkCkbX+UaQseMvvQ9r 79w9QUA05bFrMMAiDdWzLGfU3z4jtQsgWClWAL+CTH9H1QaR3Tnfh8b5gqbGzGi7 95sX3Do0cVeP5huXj6/iaN1lYY3750Su/G4ypffwE1+0bAA0lh8f3Yc1qHEiIxg1 sfHovFicrf91VGbSq2TiVn3K0fZ1JSW0iYo8thRkdCbrSZxkYjlg8fI/4CBzclU4 jN40vlbEFMOR5Q== -----END CERTIFICATE-----Generated at Sat Dec 20 12:25:51 2025 by rpki-client