This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft File: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft (raw, json) Hash identifier: R9RMdwTSUYvy20JTAPIcEwPACff21ThJKiWzuNQku/k= Subject key identifier: AD:B0:FB:BC:FB:B7:CC:60:46:66:5B:CB:39:2B:92:72:6D:0A:9D:0E Authority key identifier: 88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6 Certificate issuer: /CN=88678ca34c3c6365fb616a66077160a494a6e9d6 Certificate serial: 019B54F41C9034058ED2A807D23213ECC0F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft Manifest number: 0791 Signing time: Thu 25 Dec 2025 10:00:42 +0000 Manifest this update: Thu 25 Dec 2025 10:00:42 +0000 Manifest next update: Fri 26 Dec 2025 10:00:42 +0000 Files and hashes: 1: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl (hash: rAE47lJUklS+SbEiweOmsRkDj4K1Ol/ziadypkfB/9c=) 2: jjED_o84pmfAqHGfZ4W5FzMfdgQ.roa (hash: g8fQ9HXrdjwXLWaeOVd7NIoIybhbQ6Vz//ncwHFTshk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 03:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:54:f4:1c:90:34:05:8e:d2:a8:07:d2:32:13:ec:c0:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88678ca34c3c6365fb616a66077160a494a6e9d6 Validity Not Before: Dec 25 10:00:42 2025 GMT Not After : Dec 26 10:00:42 2025 GMT Subject: CN=adb0fbbcfbb7cc6046665bcb392b92726d0a9d0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f8:18:42:84:be:e7:ca:cf:c5:9e:b3:58:1b: 2f:7d:5c:da:ec:3b:e0:ec:f2:c9:df:66:c9:22:e0: 25:47:cf:f4:8f:85:3c:fd:42:33:9a:07:d8:e2:b3: 9c:8d:47:05:24:0b:6f:ef:82:a5:7e:17:56:25:4a: d7:ea:5e:56:83:09:bb:b9:d4:cb:d0:71:14:7e:da: 04:42:62:96:3a:8e:42:a0:5a:da:d5:b2:f7:5b:ff: e0:46:ad:a6:b1:2b:0b:50:da:ef:c9:c3:ac:cf:4c: f5:8e:65:09:93:fa:c6:44:6c:1d:16:61:a2:21:f2: 16:87:89:14:13:96:59:bc:76:f5:bc:e4:03:72:c5: e6:51:27:da:c4:4e:e9:e9:4a:67:14:49:a7:39:db: 70:c3:e1:25:2c:d6:1b:95:5a:63:96:a4:ca:4e:70: c4:6d:a1:ff:fd:97:aa:67:62:f2:68:8f:2a:f8:26: 07:53:c0:98:1b:9a:d5:4c:30:6d:bf:db:0f:cd:e7: 50:ba:55:95:ff:05:eb:bb:31:53:a2:7d:b4:22:d2: 2d:8d:51:d6:10:5e:54:39:a1:f4:76:18:97:58:b1: 5e:68:67:72:fd:ca:f8:44:74:39:b8:26:2f:7c:71: b7:93:0f:9a:59:ca:b3:71:9a:c3:5a:10:c5:92:a6: 94:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:B0:FB:BC:FB:B7:CC:60:46:66:5B:CB:39:2B:92:72:6D:0A:9D:0E X509v3 Authority Key Identifier: keyid:88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:15:94:6d:5a:7f:ba:ee:23:79:e5:84:5e:54:bc:f3:75:49: e4:61:e9:96:66:e5:30:fd:4d:5e:90:48:a4:ba:42:df:88:25: ed:f6:dc:f5:42:03:ab:f4:05:1a:96:bb:04:ab:62:03:fc:bc: 19:1a:68:60:df:1b:5a:a0:dc:ed:95:f1:02:f2:2e:0f:c3:31: 2e:93:81:1a:c9:8c:24:29:d0:a5:c5:5d:17:9f:b4:a0:c8:f5: 0f:fa:54:97:06:0d:69:6d:1d:a1:53:ef:a9:22:4d:51:15:57: 3e:53:78:1a:69:ef:c1:85:20:aa:e5:a2:c6:1b:f6:d9:b7:7e: d9:98:a7:0d:70:16:67:a9:c2:1e:c0:59:4d:27:04:87:f6:79: eb:e6:8f:d8:f6:95:0e:68:71:ae:73:19:2c:64:af:4b:a5:a7: d2:fa:60:cc:c1:2e:f4:3d:e9:49:ee:a0:36:e1:23:8b:54:7f: 44:f0:6c:0d:b6:a3:9c:94:40:c1:f7:d0:ec:5d:d1:06:40:c7: 94:12:6b:d4:98:a8:e9:92:af:74:1c:4f:c0:f2:cd:31:1e:c9: 7e:d3:57:7c:00:61:bd:ec:36:97:e5:aa:c0:d3:93:81:0f:07: 1e:d7:f6:87:bb:c9:ba:64:29:2d:f3:34:e5:55:d3:de:dd:57: 4e:18:43:8e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtU9ByQNAWO0qgH0jIT7MD5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4Njc4Y2EzNGMzYzYzNjVmYjYxNmE2NjA3NzE2MGE0OTRh NmU5ZDYwHhcNMjUxMjI1MTAwMDQyWhcNMjUxMjI2MTAwMDQyWjAzMTEwLwYDVQQD EyhhZGIwZmJiY2ZiYjdjYzYwNDY2NjViY2IzOTJiOTI3MjZkMGE5ZDBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyvgYQoS+58rPxZ6zWBsvfVza7Dvg 7PLJ32bJIuAlR8/0j4U8/UIzmgfY4rOcjUcFJAtv74KlfhdWJUrX6l5Wgwm7udTL 0HEUftoEQmKWOo5CoFra1bL3W//gRq2msSsLUNrvycOsz0z1jmUJk/rGRGwdFmGi IfIWh4kUE5ZZvHb1vOQDcsXmUSfaxE7p6UpnFEmnOdtww+ElLNYblVpjlqTKTnDE baH//ZeqZ2LyaI8q+CYHU8CYG5rVTDBtv9sPzedQulWV/wXruzFTon20ItItjVHW EF5UOaH0dhiXWLFeaGdy/cr4RHQ5uCYvfHG3kw+aWcqzcZrDWhDFkqaUPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK2w+7z7t8xgRmZbyzkrknJtCp0OMB8GA1UdIwQY MBaAFIhnjKNMPGNl+2FqZgdxYKSUpunWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUdlTW8wdzhZMlg3WVdwbUIzRmdwSlNtNmRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8zYmFhY2MtNDIwMS00OTUxLTgzNTQt Zjg1ZjcyMWZiMWI4LzEvaUdlTW8wdzhZMlg3WVdwbUIzRmdwSlNtNmRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS8zYmFhY2MtNDIwMS00OTUxLTgzNTQtZjg1ZjcyMWZiMWI4 LzEvaUdlTW8wdzhZMlg3WVdwbUIzRmdwSlNtNmRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJRWUbVp/ uu4jeeWEXlS883VJ5GHplmblMP1NXpBIpLpC34gl7fbc9UIDq/QFGpa7BKtiA/y8 GRpoYN8bWqDc7ZXxAvIuD8MxLpOBGsmMJCnQpcVdF5+0oMj1D/pUlwYNaW0doVPv qSJNURVXPlN4GmnvwYUgquWixhv22bd+2ZinDXAWZ6nCHsBZTScEh/Z56+aP2PaV DmhxrnMZLGSvS6Wn0vpgzMEu9D3pSe6gNuEji1R/RPBsDbajnJRAwffQ7F3RBkDH lBJr1Jio6ZKvdBxPwPLNMR7JftNXfABhvew2l+WqwNOTgQ8HHtf2h7vJumQpLfM0 5VXT3t1XThhDjg== -----END CERTIFICATE-----Generated at Thu Dec 25 13:07:22 2025 by rpki-client