This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft File: v4iEmi616d1XGo50O-17lRPXoSE.mft (raw, json) Hash identifier: 4lZX5KLsqrrcTB1mPZMT2msMnI00MJP8GkYRcLpiJD4= Subject key identifier: 0A:D5:47:75:B6:19:D1:1C:B6:AD:CD:C6:5E:69:CC:5D:78:F7:2B:D6 Authority key identifier: BF:88:84:9A:2E:B5:E9:DD:57:1A:8E:74:3B:ED:7B:95:13:D7:A1:21 Certificate issuer: /CN=bf88849a2eb5e9dd571a8e743bed7b9513d7a121 Certificate serial: 019B2DE67F408A881FC3FB9CF20DCDAB6D12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4iEmi616d1XGo50O-17lRPXoSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft Manifest number: 0351 Signing time: Wed 17 Dec 2025 20:00:39 +0000 Manifest this update: Wed 17 Dec 2025 20:00:39 +0000 Manifest next update: Thu 18 Dec 2025 20:00:39 +0000 Files and hashes: 1: 5iMuwWI8XaEhRZXS7r7Tcitw9PQ.roa (hash: 8fAOJFpGS1CZZLyn3E+heU8rt8qm4ywsWgdel84Aa/Q=) 2: YvRVUVUo7_yU7Iq1s_PjtWUSc3E.roa (hash: 573R9YYxB5EQXEuIaiXRONNginQD8FqOnode2lo9il4=) 3: v4iEmi616d1XGo50O-17lRPXoSE.crl (hash: n5I31IX4c+OpFTEOd3vwyceXlG0eX4BdnaLf3R9IRBo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft rsync://rpki.ripe.net/repository/DEFAULT/v4iEmi616d1XGo50O-17lRPXoSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2d:e6:7f:40:8a:88:1f:c3:fb:9c:f2:0d:cd:ab:6d:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf88849a2eb5e9dd571a8e743bed7b9513d7a121 Validity Not Before: Dec 17 20:00:39 2025 GMT Not After : Dec 18 20:00:39 2025 GMT Subject: CN=0ad54775b619d11cb6adcdc65e69cc5d78f72bd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f2:9f:33:39:7b:ba:68:b2:27:61:86:70:c6: 1e:bb:34:d0:fe:01:a5:57:ba:f1:79:e0:ad:82:55: 21:fd:48:ae:53:bb:ac:75:27:63:f2:79:c1:9d:d7: 3e:05:da:4b:11:30:56:e8:ce:63:c2:7b:38:5d:3d: 75:12:7b:7e:eb:19:c9:f9:36:08:0c:37:eb:fc:a5: 61:8a:3c:db:2a:a2:56:75:ff:81:81:bd:02:61:cf: 7b:3a:8c:5a:bc:23:88:6b:41:9f:2a:9b:ce:4c:58: bb:39:c1:f5:23:06:62:54:f4:66:4a:93:17:97:4c: 93:16:80:a6:0d:59:f5:21:44:39:10:47:4f:ec:8c: 37:32:51:eb:ef:9e:78:5a:ab:d5:09:3c:41:ca:98: 95:23:94:ec:76:57:c2:3c:9c:34:a0:cc:58:d8:71: b7:fb:a1:d6:28:d6:c4:f9:5f:93:76:0b:4b:0d:25: 78:28:f6:c1:59:fa:d4:3a:b2:bf:8e:79:0c:db:a0: c2:b3:1c:85:d7:af:fc:5e:61:b8:6f:48:61:01:d0: f4:fa:19:72:28:69:b2:db:a5:31:79:80:32:ac:32: f3:99:e1:fe:ed:73:8c:80:1b:43:00:74:54:72:f2: 81:9f:86:af:1e:ca:3e:39:f9:f2:c5:e8:ca:28:53: 9e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:D5:47:75:B6:19:D1:1C:B6:AD:CD:C6:5E:69:CC:5D:78:F7:2B:D6 X509v3 Authority Key Identifier: keyid:BF:88:84:9A:2E:B5:E9:DD:57:1A:8E:74:3B:ED:7B:95:13:D7:A1:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4iEmi616d1XGo50O-17lRPXoSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:40:18:bb:00:29:59:15:dd:1a:9e:de:f7:4f:38:27:b8:1c: 54:54:86:eb:27:eb:0d:de:ab:0f:69:1b:5b:50:cd:a2:f6:c7: 96:be:08:cc:f0:43:2f:5b:a4:fc:b2:75:03:40:b5:f0:09:85: f6:44:53:a4:09:f7:26:b9:f4:d0:af:cd:de:31:d3:22:4f:cc: 6b:ab:cc:42:3b:11:58:01:7d:50:9b:ea:00:1a:7d:22:2c:ff: dd:5d:37:7e:dc:3e:74:eb:b1:44:bd:13:20:a2:d8:2b:9c:72: 33:f3:d9:2d:57:55:53:ca:4f:9d:d6:6c:dd:5d:ca:be:f4:77: 9f:a0:02:87:11:bb:1c:72:b8:f7:f3:f6:c9:d3:5b:d6:60:a3: 8c:71:a6:75:6e:23:b9:0f:60:99:ac:51:08:bc:87:62:4d:a9: 0f:2a:cd:03:d0:14:12:17:b6:17:74:8a:7d:4d:3d:a3:2f:4d: 8c:bb:76:f5:a3:27:cf:23:f4:79:7f:2e:e7:a9:34:63:8f:81: a5:16:ec:b1:ae:1a:7c:5f:3f:33:a7:37:88:fa:3f:69:cb:a1: 3b:40:6f:b4:e1:9d:e6:fa:b6:50:e6:a9:46:d7:ed:9c:e6:d5: 7b:d8:fc:82:f9:90:11:5e:16:1c:f9:32:f4:94:52:c3:1a:18: 14:ff:86:65 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZst5n9Aiogfw/uc8g3Nq20SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmODg4NDlhMmViNWU5ZGQ1NzFhOGU3NDNiZWQ3Yjk1MTNk N2ExMjEwHhcNMjUxMjE3MjAwMDM5WhcNMjUxMjE4MjAwMDM5WjAzMTEwLwYDVQQD EygwYWQ1NDc3NWI2MTlkMTFjYjZhZGNkYzY1ZTY5Y2M1ZDc4ZjcyYmQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnfKfMzl7umiyJ2GGcMYeuzTQ/gGl V7rxeeCtglUh/UiuU7usdSdj8nnBndc+BdpLETBW6M5jwns4XT11Ent+6xnJ+TYI DDfr/KVhijzbKqJWdf+Bgb0CYc97OoxavCOIa0GfKpvOTFi7OcH1IwZiVPRmSpMX l0yTFoCmDVn1IUQ5EEdP7Iw3MlHr7554WqvVCTxBypiVI5TsdlfCPJw0oMxY2HG3 +6HWKNbE+V+TdgtLDSV4KPbBWfrUOrK/jnkM26DCsxyF16/8XmG4b0hhAdD0+hly KGmy26UxeYAyrDLzmeH+7XOMgBtDAHRUcvKBn4avHso+OfnyxejKKFOeUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFArVR3W2GdEctq3Nxl5pzF149yvWMB8GA1UdIwQY MBaAFL+IhJoutendVxqOdDvte5UT16EhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjRpRW1pNjE2ZDFYR281ME8tMTdsUlBYb1NFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9kYmM1OGUtMDI3Yi00YWFjLTlkZTYt MjM3MzliNWZkODRjLzEvdjRpRW1pNjE2ZDFYR281ME8tMTdsUlBYb1NFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS9kYmM1OGUtMDI3Yi00YWFjLTlkZTYtMjM3MzliNWZkODRj LzEvdjRpRW1pNjE2ZDFYR281ME8tMTdsUlBYb1NFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ0AYuwAp WRXdGp7e9084J7gcVFSG6yfrDd6rD2kbW1DNovbHlr4IzPBDL1uk/LJ1A0C18AmF 9kRTpAn3Jrn00K/N3jHTIk/Ma6vMQjsRWAF9UJvqABp9Iiz/3V03ftw+dOuxRL0T IKLYK5xyM/PZLVdVU8pPndZs3V3KvvR3n6AChxG7HHK49/P2ydNb1mCjjHGmdW4j uQ9gmaxRCLyHYk2pDyrNA9AUEhe2F3SKfU09oy9NjLt29aMnzyP0eX8u56k0Y4+B pRbssa4afF8/M6c3iPo/acuhO0BvtOGd5vq2UOapRtftnObVe9j8gvmQEV4WHPky 9JRSwxoYFP+GZQ== -----END CERTIFICATE-----Generated at Wed Dec 17 22:26:48 2025 by rpki-client