This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft File: iIFmRjoaMByltuuYvd0H45cJGYY.mft (raw, json) Hash identifier: szqwii6+FN0irbYv+Yc5aItUbLipJMV4XBX5XkrZ74g= Subject key identifier: 3E:E1:63:1C:05:90:8D:1B:8A:ED:06:3A:97:B3:01:F2:DE:16:8C:FC Authority key identifier: 88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86 Certificate issuer: /CN=888166463a1a301ca5b6eb98bddd07e397091986 Certificate serial: 019B3FED77DECBF85192FC382C3AA64236E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft Manifest number: 1263 Signing time: Sun 21 Dec 2025 08:01:25 +0000 Manifest this update: Sun 21 Dec 2025 08:01:25 +0000 Manifest next update: Mon 22 Dec 2025 08:01:25 +0000 Files and hashes: 1: iIFmRjoaMByltuuYvd0H45cJGYY.crl (hash: zhH3ImnfU824f6TABR2+OnWTJQaB5M+qvCAUt8m/DOE=) 2: rw7mvGsBN1ywLg0aU0WOnuWPa30.roa (hash: Kkop8VBeWFXHnSavZNOMJQZHo1FfDtxgbSsG84Nc5jo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:ed:77:de:cb:f8:51:92:fc:38:2c:3a:a6:42:36:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=888166463a1a301ca5b6eb98bddd07e397091986 Validity Not Before: Dec 21 08:01:25 2025 GMT Not After : Dec 22 08:01:25 2025 GMT Subject: CN=3ee1631c05908d1b8aed063a97b301f2de168cfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:23:fe:82:b6:05:d0:0e:59:93:44:f8:67:2b: d0:3f:42:23:f3:d9:26:3a:b1:e6:26:8d:cf:a4:ec: 0d:8b:18:63:cb:ef:62:02:b0:fc:d9:7a:7e:fa:89: 58:1a:60:aa:92:53:a3:42:40:ff:07:18:27:5e:fe: 4e:43:03:d5:74:ee:97:18:96:b0:da:75:3e:70:8b: 34:37:d9:f8:f9:6e:ef:28:36:7b:fa:00:ef:1c:8b: c8:42:71:d5:f8:64:ea:b6:83:cb:5c:ad:99:46:15: 5d:0a:e8:46:59:f8:48:3a:f6:62:ad:00:af:2d:3b: f6:fc:8e:0b:1a:26:c9:4f:e2:1b:5f:8a:99:69:d2: bc:fe:f0:01:da:8f:b5:81:fb:df:76:05:73:2f:55: 06:bf:58:2b:42:36:6e:8a:a7:4a:b1:4f:9a:e9:e8: 7f:e2:c0:ab:07:7d:47:83:a7:2a:38:37:3f:06:3a: f5:71:31:53:71:14:9d:8c:e7:f4:41:8c:43:5a:e0: aa:c6:2d:65:18:3f:7d:2b:5b:02:b3:27:83:17:a1: 4c:9b:b6:5d:09:b5:17:26:0c:bc:98:40:83:c1:1a: 06:8a:e7:a6:29:42:61:80:58:df:76:3e:54:7f:56: 26:61:3f:73:1b:0f:c9:46:8b:4b:93:ab:9f:ca:ec: 68:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E1:63:1C:05:90:8D:1B:8A:ED:06:3A:97:B3:01:F2:DE:16:8C:FC X509v3 Authority Key Identifier: keyid:88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:9f:71:dc:e9:20:6f:bb:55:53:3a:27:48:34:a1:62:1e:e8: 95:0c:e0:67:79:84:65:0e:63:e5:78:c9:d6:79:6a:2c:a5:d7: 23:48:ae:ed:3b:2d:62:1d:b6:50:e5:a9:d1:54:5c:5c:6d:c4: 31:97:f3:57:1e:8c:a6:0c:15:85:42:87:04:b4:5f:fe:8c:8e: c0:0e:9e:7b:ce:6f:88:58:11:72:9d:71:17:0a:fb:84:4a:de: 61:be:d5:b6:6f:40:ad:0a:f8:99:5e:0d:26:98:0e:96:3b:a9: e1:4f:16:42:17:14:88:07:84:33:85:0d:5b:2d:6e:b5:a5:6d: 72:cc:0a:a8:7c:cb:c9:c0:c4:1e:e9:b7:32:00:cb:93:70:86: 5b:dd:48:ce:57:4d:7e:0e:0d:19:26:d9:eb:02:17:3c:4d:ce: 42:56:68:3c:f9:3b:5b:fc:79:b8:3c:7c:00:f5:07:74:f9:1a: cf:ff:6c:5e:f7:90:e3:56:f0:df:a1:44:82:6b:12:a1:78:55: e8:70:96:c4:a6:6f:ee:ed:cf:d9:ce:f3:04:30:2f:6a:64:ce: b2:52:a9:75:d9:f4:a0:1c:8b:c9:19:88:b7:a8:a3:c8:3d:91: be:64:3c:0e:83:5c:03:3a:18:39:5e:0a:f4:6f:3f:f6:df:bc: c4:44:b4:53 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/7Xfey/hRkvw4LDqmQjbhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4ODE2NjQ2M2ExYTMwMWNhNWI2ZWI5OGJkZGQwN2UzOTcw OTE5ODYwHhcNMjUxMjIxMDgwMTI1WhcNMjUxMjIyMDgwMTI1WjAzMTEwLwYDVQQD EygzZWUxNjMxYzA1OTA4ZDFiOGFlZDA2M2E5N2IzMDFmMmRlMTY4Y2ZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnyP+grYF0A5Zk0T4ZyvQP0Ij89km OrHmJo3PpOwNixhjy+9iArD82Xp++olYGmCqklOjQkD/BxgnXv5OQwPVdO6XGJaw 2nU+cIs0N9n4+W7vKDZ7+gDvHIvIQnHV+GTqtoPLXK2ZRhVdCuhGWfhIOvZirQCv LTv2/I4LGibJT+IbX4qZadK8/vAB2o+1gfvfdgVzL1UGv1grQjZuiqdKsU+a6eh/ 4sCrB31Hg6cqODc/Bjr1cTFTcRSdjOf0QYxDWuCqxi1lGD99K1sCsyeDF6FMm7Zd CbUXJgy8mECDwRoGiuemKUJhgFjfdj5Uf1YmYT9zGw/JRotLk6ufyuxomwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD7hYxwFkI0biu0GOpezAfLeFoz8MB8GA1UdIwQY MBaAFIiBZkY6GjAcpbbrmL3dB+OXCRmGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi80NzZmZDAtYjhhNi00NjFmLWI0YzUt MzhjMmMyYTc5YzM1LzEvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi80NzZmZDAtYjhhNi00NjFmLWI0YzUtMzhjMmMyYTc5YzM1 LzEvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIZ9x3Okg b7tVUzonSDShYh7olQzgZ3mEZQ5j5XjJ1nlqLKXXI0iu7TstYh22UOWp0VRcXG3E MZfzVx6MpgwVhUKHBLRf/oyOwA6ee85viFgRcp1xFwr7hEreYb7Vtm9ArQr4mV4N JpgOljup4U8WQhcUiAeEM4UNWy1utaVtcswKqHzLycDEHum3MgDLk3CGW91IzldN fg4NGSbZ6wIXPE3OQlZoPPk7W/x5uDx8APUHdPkaz/9sXveQ41bw36FEgmsSoXhV 6HCWxKZv7u3P2c7zBDAvamTOslKpddn0oByLyRmIt6ijyD2RvmQ8DoNcAzoYOV4K 9G8/9t+8xES0Uw== -----END CERTIFICATE-----Generated at Sun Dec 21 11:05:12 2025 by rpki-client