This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft File: iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft (raw, json) Hash identifier: KsZUt7rA0dIKrsDIKBxbsCns0JXMoAGp2+ezxzIqeT8= Subject key identifier: 39:E4:46:A1:59:FE:4A:73:B1:D6:28:63:93:35:74:9A:94:F6:FF:F4 Authority key identifier: 88:44:FC:4A:E1:06:49:9E:05:75:FF:3C:A1:55:6D:BC:0D:9B:46:51 Certificate issuer: /CN=8844fc4ae106499e0575ff3ca1556dbc0d9b4651 Certificate serial: 019AF464BD732FC3374EDD164D7C7FA855B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iET8SuEGSZ4Fdf88oVVtvA2bRlE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft Manifest number: 16B6 Signing time: Sat 06 Dec 2025 16:00:34 +0000 Manifest this update: Sat 06 Dec 2025 16:00:34 +0000 Manifest next update: Sun 07 Dec 2025 16:00:34 +0000 Files and hashes: 1: Qv6t4wP7j-uLsxcfTWHv2ZFQWD8.roa (hash: eR47NrGWjMdNEp9FBa07vBAWwdqKIDeSc8imYvJOwfI=) 2: iET8SuEGSZ4Fdf88oVVtvA2bRlE.crl (hash: PcnDWl7CyCbXoEyRkzaoVARacFIkK2Mmk++AKv68v7U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.crl rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft rsync://rpki.ripe.net/repository/DEFAULT/iET8SuEGSZ4Fdf88oVVtvA2bRlE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:64:bd:73:2f:c3:37:4e:dd:16:4d:7c:7f:a8:55:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8844fc4ae106499e0575ff3ca1556dbc0d9b4651 Validity Not Before: Dec 6 16:00:34 2025 GMT Not After : Dec 7 16:00:34 2025 GMT Subject: CN=39e446a159fe4a73b1d628639335749a94f6fff4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:3f:a2:cf:2c:d8:f1:7e:7f:59:32:fe:d9:71: 06:ae:87:8f:db:1b:64:07:ee:a7:3e:0b:5b:7d:20: 96:29:9f:fa:25:0a:3e:70:68:e8:1c:74:6a:2a:a2: 19:a1:25:e6:2e:b3:c4:69:44:6e:bb:6e:75:11:3d: 71:fd:af:81:74:64:98:36:1b:7d:5d:35:4d:0a:d1: 6e:db:43:cc:2f:98:be:7d:3f:26:63:2b:8e:e6:1d: 41:75:5f:aa:ea:39:7a:c8:32:fb:1c:a1:ae:b7:95: 47:22:31:9c:4d:f2:7b:fd:3b:b4:c5:41:1b:f0:d8: 56:e3:00:43:49:de:ce:95:90:82:fc:bf:c9:58:6c: 53:4c:5e:cc:b8:20:74:1c:f7:a5:0a:9f:7e:6f:50: 8e:9c:9b:7c:3b:16:0f:01:59:4e:52:fb:6c:05:29: 2d:93:02:13:57:f1:15:88:34:0e:df:c6:d2:1b:5a: 3e:fb:d7:03:12:83:fa:7d:a9:e6:9e:b4:e7:8e:c5: 50:0b:d3:e6:db:1e:34:74:6a:d0:1a:73:fe:01:a2: bb:a2:47:2e:72:a3:8f:a1:a4:17:60:e8:72:d8:bd: 0c:71:1e:65:03:6f:fc:d8:76:e3:98:65:55:6d:b6: d0:ed:72:86:41:b1:dd:b5:f8:e1:6e:ba:7c:64:c6: da:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:E4:46:A1:59:FE:4A:73:B1:D6:28:63:93:35:74:9A:94:F6:FF:F4 X509v3 Authority Key Identifier: keyid:88:44:FC:4A:E1:06:49:9E:05:75:FF:3C:A1:55:6D:BC:0D:9B:46:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iET8SuEGSZ4Fdf88oVVtvA2bRlE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:25:58:e4:36:41:06:77:b2:61:ee:e5:5b:6b:59:7b:fc:39: 0a:ae:05:80:9b:06:74:69:fc:67:10:28:c9:99:90:e4:6a:1b: 9c:c2:d8:e4:da:2e:df:77:cd:0d:02:b5:97:ab:49:fa:0f:fc: 39:46:3d:1d:1c:c2:d8:1f:53:6d:ca:f7:cc:52:2f:22:d9:96: bc:7a:c3:08:27:98:aa:ad:e2:19:8e:9c:9d:24:2f:f0:fd:4a: 60:ee:55:10:88:ee:b3:73:fc:06:51:44:59:b8:64:45:9c:8c: 2c:95:9a:80:0a:b8:35:a3:ed:d9:2e:70:b5:0d:da:64:60:29: 0d:42:10:ac:0f:c0:7c:a8:ea:4c:fc:32:31:33:46:47:d0:dc: 4b:f4:f9:b7:59:4f:60:06:05:f4:1f:9d:75:74:a2:d3:c9:9a: 5b:48:e2:30:6d:59:59:6a:03:e8:41:bd:3a:24:fc:94:af:d3: d6:ed:30:10:14:91:c3:ac:4e:ac:21:a2:0c:f8:cb:dd:98:75: f3:17:82:07:34:ad:06:84:d6:58:fe:ba:80:b2:f3:28:a7:ff: 5a:05:f4:a8:99:85:c6:c9:85:6c:2b:0d:db:99:b9:d9:51:d4: 43:55:7c:16:23:07:77:b0:fa:9e:dd:f8:78:46:83:cf:0f:dc: 20:ef:22:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0ZL1zL8M3Tt0WTXx/qFWxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4NDRmYzRhZTEwNjQ5OWUwNTc1ZmYzY2ExNTU2ZGJjMGQ5 YjQ2NTEwHhcNMjUxMjA2MTYwMDM0WhcNMjUxMjA3MTYwMDM0WjAzMTEwLwYDVQQD EygzOWU0NDZhMTU5ZmU0YTczYjFkNjI4NjM5MzM1NzQ5YTk0ZjZmZmY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiT+izyzY8X5/WTL+2XEGroeP2xtk B+6nPgtbfSCWKZ/6JQo+cGjoHHRqKqIZoSXmLrPEaURuu251ET1x/a+BdGSYNht9 XTVNCtFu20PML5i+fT8mYyuO5h1BdV+q6jl6yDL7HKGut5VHIjGcTfJ7/Tu0xUEb 8NhW4wBDSd7OlZCC/L/JWGxTTF7MuCB0HPelCp9+b1COnJt8OxYPAVlOUvtsBSkt kwITV/EViDQO38bSG1o++9cDEoP6fanmnrTnjsVQC9Pm2x40dGrQGnP+AaK7okcu cqOPoaQXYOhy2L0McR5lA2/82HbjmGVVbbbQ7XKGQbHdtfjhbrp8ZMbayQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDnkRqFZ/kpzsdYoY5M1dJqU9v/0MB8GA1UdIwQY MBaAFIhE/ErhBkmeBXX/PKFVbbwNm0ZRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUVUOFN1RUdTWjRGZGY4OG9WVnR2QTJiUmxFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi9kZDQyZDktZmY4OC00Y2EwLTg4M2Mt MzE3NjQ1Y2Q3ODg1LzEvaUVUOFN1RUdTWjRGZGY4OG9WVnR2QTJiUmxFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi9kZDQyZDktZmY4OC00Y2EwLTg4M2MtMzE3NjQ1Y2Q3ODg1 LzEvaUVUOFN1RUdTWjRGZGY4OG9WVnR2QTJiUmxFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIyVY5DZB BneyYe7lW2tZe/w5Cq4FgJsGdGn8ZxAoyZmQ5GobnMLY5Nou33fNDQK1l6tJ+g/8 OUY9HRzC2B9Tbcr3zFIvItmWvHrDCCeYqq3iGY6cnSQv8P1KYO5VEIjus3P8BlFE WbhkRZyMLJWagAq4NaPt2S5wtQ3aZGApDUIQrA/AfKjqTPwyMTNGR9DcS/T5t1lP YAYF9B+ddXSi08maW0jiMG1ZWWoD6EG9OiT8lK/T1u0wEBSRw6xOrCGiDPjL3Zh1 8xeCBzStBoTWWP66gLLzKKf/WgX0qJmFxsmFbCsN25m52VHUQ1V8FiMHd7D6nt34 eEaDzw/cIO8irA== -----END CERTIFICATE-----Generated at Sat Dec 6 20:17:16 2025 by rpki-client