This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft File: iIFmRjoaMByltuuYvd0H45cJGYY.mft (raw, json) Hash identifier: WMrY3v78Y9IGxa8msWe1m1yhR+uIGUGsW49+PoZF5jM= Subject key identifier: CA:12:18:66:7A:AB:2C:E1:B1:5E:55:B8:BB:EF:E4:0B:34:09:B3:F5 Authority key identifier: 88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86 Certificate issuer: /CN=888166463a1a301ca5b6eb98bddd07e397091986 Certificate serial: 019B3DFF17008230FC1D71AEC56AE60BC664 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft Manifest number: 1262 Signing time: Sat 20 Dec 2025 23:01:26 +0000 Manifest this update: Sat 20 Dec 2025 23:01:26 +0000 Manifest next update: Sun 21 Dec 2025 23:01:26 +0000 Files and hashes: 1: iIFmRjoaMByltuuYvd0H45cJGYY.crl (hash: rCqe92uB6XsHjOKvUaLWI8YuLCMtGR3ncps108HPF6U=) 2: rw7mvGsBN1ywLg0aU0WOnuWPa30.roa (hash: Kkop8VBeWFXHnSavZNOMJQZHo1FfDtxgbSsG84Nc5jo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 23:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:ff:17:00:82:30:fc:1d:71:ae:c5:6a:e6:0b:c6:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=888166463a1a301ca5b6eb98bddd07e397091986 Validity Not Before: Dec 20 23:01:26 2025 GMT Not After : Dec 21 23:01:26 2025 GMT Subject: CN=ca1218667aab2ce1b15e55b8bbefe40b3409b3f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:31:27:3d:9d:a0:21:7b:dd:a1:ed:f9:b8:0f: c7:f6:cf:17:40:bc:85:bc:8a:ef:b7:42:25:8a:90: 49:93:92:dc:1c:86:e5:fc:db:f5:c9:90:e8:7d:ec: 6c:e7:01:3b:1e:98:a0:87:74:03:28:e2:9e:15:58: 86:f8:ed:6e:8c:f8:80:98:a9:cf:a6:3e:14:2a:27: f2:a8:10:a8:59:1c:be:d4:7d:f3:ad:72:ef:bb:25: b7:b6:b1:35:61:c0:62:7e:51:74:22:4a:1b:56:6c: 1d:78:af:38:d2:77:c0:6d:f0:64:02:d8:d9:65:5a: fd:13:90:41:b0:d5:6d:48:1b:dc:cd:55:fa:a9:75: 48:4b:7e:4e:54:18:64:b2:fb:c7:a6:f4:ca:db:c9: 6c:80:3d:db:89:5b:fc:00:c2:48:9e:15:c4:ae:d3: 71:d0:b2:86:bf:4a:82:44:cc:af:ce:05:f9:14:b4: 73:2f:96:32:02:6b:f0:29:48:7d:70:e1:fb:71:a0: b7:c6:f5:b7:e0:49:28:6d:46:b1:62:7c:03:d5:9e: 91:41:f7:23:4e:b5:2a:d5:55:83:77:09:15:ac:44: eb:4f:fd:43:8c:2e:55:c1:61:39:b8:8f:22:3a:86: 3c:6f:55:f2:bf:3f:ed:75:5c:5c:04:cf:52:2a:ca: 33:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:12:18:66:7A:AB:2C:E1:B1:5E:55:B8:BB:EF:E4:0B:34:09:B3:F5 X509v3 Authority Key Identifier: keyid:88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c3:56:78:de:5d:eb:1c:83:b1:1f:e3:f6:66:e9:10:4f:a2:19: 6e:e4:d5:d3:90:71:b5:92:77:e3:ae:40:10:35:8d:2a:18:7b: 5b:6e:ae:de:2d:09:18:8c:a2:0b:ce:bb:cd:22:f9:cd:12:5a: 5f:75:f0:df:07:87:30:bf:0c:9b:9f:c3:67:fe:af:be:6b:44: a8:ee:1d:1c:ff:38:74:bc:d9:fb:fa:4e:dd:ba:9a:aa:ff:c2: e2:50:41:3b:0a:c7:ff:1f:29:39:8d:4e:c3:f8:8d:db:0f:4f: 98:f9:1b:4c:67:dc:b0:64:b1:56:40:13:dd:56:71:97:64:0a: ad:68:5b:dd:52:79:5a:86:a4:e5:d9:62:46:43:86:1d:ad:ab: 64:32:cd:06:ef:79:3b:36:53:79:9b:71:eb:40:36:26:ca:10: 97:6e:79:b7:e9:75:98:8e:05:22:1d:25:7d:0d:87:9f:de:b6: 3c:45:b1:42:5a:42:a7:22:74:92:52:74:7f:4e:73:1b:b4:a2: 7d:8b:e4:eb:04:24:87:9a:8e:f0:ee:d3:bd:af:d2:f4:62:e9: d2:44:bf:66:84:93:b8:6d:1f:c4:3a:b6:ae:7f:bd:f1:2a:d6: 4c:5d:b8:d0:ab:73:2c:ca:8e:d1:0d:08:21:2b:0c:ab:93:cc: 47:98:dd:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9/xcAgjD8HXGuxWrmC8ZkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4ODE2NjQ2M2ExYTMwMWNhNWI2ZWI5OGJkZGQwN2UzOTcw OTE5ODYwHhcNMjUxMjIwMjMwMTI2WhcNMjUxMjIxMjMwMTI2WjAzMTEwLwYDVQQD EyhjYTEyMTg2NjdhYWIyY2UxYjE1ZTU1YjhiYmVmZTQwYjM0MDliM2Y1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAljEnPZ2gIXvdoe35uA/H9s8XQLyF vIrvt0IlipBJk5LcHIbl/Nv1yZDofexs5wE7Hpigh3QDKOKeFViG+O1ujPiAmKnP pj4UKifyqBCoWRy+1H3zrXLvuyW3trE1YcBiflF0IkobVmwdeK840nfAbfBkAtjZ ZVr9E5BBsNVtSBvczVX6qXVIS35OVBhksvvHpvTK28lsgD3biVv8AMJInhXErtNx 0LKGv0qCRMyvzgX5FLRzL5YyAmvwKUh9cOH7caC3xvW34EkobUaxYnwD1Z6RQfcj TrUq1VWDdwkVrETrT/1DjC5VwWE5uI8iOoY8b1Xyvz/tdVxcBM9SKsozTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMoSGGZ6qyzhsV5VuLvv5As0CbP1MB8GA1UdIwQY MBaAFIiBZkY6GjAcpbbrmL3dB+OXCRmGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi80NzZmZDAtYjhhNi00NjFmLWI0YzUt MzhjMmMyYTc5YzM1LzEvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi80NzZmZDAtYjhhNi00NjFmLWI0YzUtMzhjMmMyYTc5YzM1 LzEvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAw1Z43l3r HIOxH+P2ZukQT6IZbuTV05BxtZJ3465AEDWNKhh7W26u3i0JGIyiC867zSL5zRJa X3Xw3weHML8Mm5/DZ/6vvmtEqO4dHP84dLzZ+/pO3bqaqv/C4lBBOwrH/x8pOY1O w/iN2w9PmPkbTGfcsGSxVkAT3VZxl2QKrWhb3VJ5Woak5dliRkOGHa2rZDLNBu95 OzZTeZtx60A2JsoQl255t+l1mI4FIh0lfQ2Hn962PEWxQlpCpyJ0klJ0f05zG7Si fYvk6wQkh5qO8O7Tva/S9GLp0kS/ZoSTuG0fxDq2rn+98SrWTF240KtzLMqO0Q0I ISsMq5PMR5jd/Q== -----END CERTIFICATE-----Generated at Sun Dec 21 09:30:34 2025 by rpki-client