This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
File: iIFmRjoaMByltuuYvd0H45cJGYY.mft (raw, json)
Hash identifier: szqwii6+FN0irbYv+Yc5aItUbLipJMV4XBX5XkrZ74g=
Subject key identifier: 3E:E1:63:1C:05:90:8D:1B:8A:ED:06:3A:97:B3:01:F2:DE:16:8C:FC
Authority key identifier: 88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
Certificate issuer: /CN=888166463a1a301ca5b6eb98bddd07e397091986
Certificate serial: 019B3FED77DECBF85192FC382C3AA64236E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
Manifest number: 1263
Signing time: Sun 21 Dec 2025 08:01:25 +0000
Manifest this update: Sun 21 Dec 2025 08:01:25 +0000
Manifest next update: Mon 22 Dec 2025 08:01:25 +0000
Files and hashes: 1: iIFmRjoaMByltuuYvd0H45cJGYY.crl (hash: zhH3ImnfU824f6TABR2+OnWTJQaB5M+qvCAUt8m/DOE=)
2: rw7mvGsBN1ywLg0aU0WOnuWPa30.roa (hash: Kkop8VBeWFXHnSavZNOMJQZHo1FfDtxgbSsG84Nc5jo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 22 Dec 2025 04:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:3f:ed:77:de:cb:f8:51:92:fc:38:2c:3a:a6:42:36:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=888166463a1a301ca5b6eb98bddd07e397091986
Validity
Not Before: Dec 21 08:01:25 2025 GMT
Not After : Dec 22 08:01:25 2025 GMT
Subject: CN=3ee1631c05908d1b8aed063a97b301f2de168cfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:23:fe:82:b6:05:d0:0e:59:93:44:f8:67:2b:
d0:3f:42:23:f3:d9:26:3a:b1:e6:26:8d:cf:a4:ec:
0d:8b:18:63:cb:ef:62:02:b0:fc:d9:7a:7e:fa:89:
58:1a:60:aa:92:53:a3:42:40:ff:07:18:27:5e:fe:
4e:43:03:d5:74:ee:97:18:96:b0:da:75:3e:70:8b:
34:37:d9:f8:f9:6e:ef:28:36:7b:fa:00:ef:1c:8b:
c8:42:71:d5:f8:64:ea:b6:83:cb:5c:ad:99:46:15:
5d:0a:e8:46:59:f8:48:3a:f6:62:ad:00:af:2d:3b:
f6:fc:8e:0b:1a:26:c9:4f:e2:1b:5f:8a:99:69:d2:
bc:fe:f0:01:da:8f:b5:81:fb:df:76:05:73:2f:55:
06:bf:58:2b:42:36:6e:8a:a7:4a:b1:4f:9a:e9:e8:
7f:e2:c0:ab:07:7d:47:83:a7:2a:38:37:3f:06:3a:
f5:71:31:53:71:14:9d:8c:e7:f4:41:8c:43:5a:e0:
aa:c6:2d:65:18:3f:7d:2b:5b:02:b3:27:83:17:a1:
4c:9b:b6:5d:09:b5:17:26:0c:bc:98:40:83:c1:1a:
06:8a:e7:a6:29:42:61:80:58:df:76:3e:54:7f:56:
26:61:3f:73:1b:0f:c9:46:8b:4b:93:ab:9f:ca:ec:
68:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:E1:63:1C:05:90:8D:1B:8A:ED:06:3A:97:B3:01:F2:DE:16:8C:FC
X509v3 Authority Key Identifier:
keyid:88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:9f:71:dc:e9:20:6f:bb:55:53:3a:27:48:34:a1:62:1e:e8:
95:0c:e0:67:79:84:65:0e:63:e5:78:c9:d6:79:6a:2c:a5:d7:
23:48:ae:ed:3b:2d:62:1d:b6:50:e5:a9:d1:54:5c:5c:6d:c4:
31:97:f3:57:1e:8c:a6:0c:15:85:42:87:04:b4:5f:fe:8c:8e:
c0:0e:9e:7b:ce:6f:88:58:11:72:9d:71:17:0a:fb:84:4a:de:
61:be:d5:b6:6f:40:ad:0a:f8:99:5e:0d:26:98:0e:96:3b:a9:
e1:4f:16:42:17:14:88:07:84:33:85:0d:5b:2d:6e:b5:a5:6d:
72:cc:0a:a8:7c:cb:c9:c0:c4:1e:e9:b7:32:00:cb:93:70:86:
5b:dd:48:ce:57:4d:7e:0e:0d:19:26:d9:eb:02:17:3c:4d:ce:
42:56:68:3c:f9:3b:5b:fc:79:b8:3c:7c:00:f5:07:74:f9:1a:
cf:ff:6c:5e:f7:90:e3:56:f0:df:a1:44:82:6b:12:a1:78:55:
e8:70:96:c4:a6:6f:ee:ed:cf:d9:ce:f3:04:30:2f:6a:64:ce:
b2:52:a9:75:d9:f4:a0:1c:8b:c9:19:88:b7:a8:a3:c8:3d:91:
be:64:3c:0e:83:5c:03:3a:18:39:5e:0a:f4:6f:3f:f6:df:bc:
c4:44:b4:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZs/7Xfey/hRkvw4LDqmQjbhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4ODE2NjQ2M2ExYTMwMWNhNWI2ZWI5OGJkZGQwN2UzOTcw
OTE5ODYwHhcNMjUxMjIxMDgwMTI1WhcNMjUxMjIyMDgwMTI1WjAzMTEwLwYDVQQD
EygzZWUxNjMxYzA1OTA4ZDFiOGFlZDA2M2E5N2IzMDFmMmRlMTY4Y2ZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnyP+grYF0A5Zk0T4ZyvQP0Ij89km
OrHmJo3PpOwNixhjy+9iArD82Xp++olYGmCqklOjQkD/BxgnXv5OQwPVdO6XGJaw
2nU+cIs0N9n4+W7vKDZ7+gDvHIvIQnHV+GTqtoPLXK2ZRhVdCuhGWfhIOvZirQCv
LTv2/I4LGibJT+IbX4qZadK8/vAB2o+1gfvfdgVzL1UGv1grQjZuiqdKsU+a6eh/
4sCrB31Hg6cqODc/Bjr1cTFTcRSdjOf0QYxDWuCqxi1lGD99K1sCsyeDF6FMm7Zd
CbUXJgy8mECDwRoGiuemKUJhgFjfdj5Uf1YmYT9zGw/JRotLk6ufyuxomwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD7hYxwFkI0biu0GOpezAfLeFoz8MB8GA1UdIwQY
MBaAFIiBZkY6GjAcpbbrmL3dB+OXCRmGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi80NzZmZDAtYjhhNi00NjFmLWI0YzUt
MzhjMmMyYTc5YzM1LzEvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi80NzZmZDAtYjhhNi00NjFmLWI0YzUtMzhjMmMyYTc5YzM1
LzEvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIZ9x3Okg
b7tVUzonSDShYh7olQzgZ3mEZQ5j5XjJ1nlqLKXXI0iu7TstYh22UOWp0VRcXG3E
MZfzVx6MpgwVhUKHBLRf/oyOwA6ee85viFgRcp1xFwr7hEreYb7Vtm9ArQr4mV4N
JpgOljup4U8WQhcUiAeEM4UNWy1utaVtcswKqHzLycDEHum3MgDLk3CGW91IzldN
fg4NGSbZ6wIXPE3OQlZoPPk7W/x5uDx8APUHdPkaz/9sXveQ41bw36FEgmsSoXhV
6HCWxKZv7u3P2c7zBDAvamTOslKpddn0oByLyRmIt6ijyD2RvmQ8DoNcAzoYOV4K
9G8/9t+8xES0Uw==
-----END CERTIFICATE-----
Generated at Sun Dec 21 11:05:12 2025 by rpki-client