This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft File: v4iEmi616d1XGo50O-17lRPXoSE.mft (raw, json) Hash identifier: 50zqiKEs4Z8d32jLDKQpdmlTdhz1xyGwa52D4h6dpA8= Subject key identifier: 24:FF:BE:0D:88:0D:C4:51:2C:A3:A2:FF:17:AA:28:79:60:A4:69:02 Authority key identifier: BF:88:84:9A:2E:B5:E9:DD:57:1A:8E:74:3B:ED:7B:95:13:D7:A1:21 Certificate issuer: /CN=bf88849a2eb5e9dd571a8e743bed7b9513d7a121 Certificate serial: 019AF208CE9828405FF04913A501A8D4D627 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4iEmi616d1XGo50O-17lRPXoSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft Manifest number: 0332 Signing time: Sat 06 Dec 2025 05:00:54 +0000 Manifest this update: Sat 06 Dec 2025 05:00:54 +0000 Manifest next update: Sun 07 Dec 2025 05:00:54 +0000 Files and hashes: 1: 5iMuwWI8XaEhRZXS7r7Tcitw9PQ.roa (hash: 8fAOJFpGS1CZZLyn3E+heU8rt8qm4ywsWgdel84Aa/Q=) 2: YvRVUVUo7_yU7Iq1s_PjtWUSc3E.roa (hash: 573R9YYxB5EQXEuIaiXRONNginQD8FqOnode2lo9il4=) 3: v4iEmi616d1XGo50O-17lRPXoSE.crl (hash: px9dHfngmmKsSr65HsuJOA5a/JDmG7z30PKTwqq70Xc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft rsync://rpki.ripe.net/repository/DEFAULT/v4iEmi616d1XGo50O-17lRPXoSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:ce:98:28:40:5f:f0:49:13:a5:01:a8:d4:d6:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf88849a2eb5e9dd571a8e743bed7b9513d7a121 Validity Not Before: Dec 6 05:00:54 2025 GMT Not After : Dec 7 05:00:54 2025 GMT Subject: CN=24ffbe0d880dc4512ca3a2ff17aa287960a46902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d2:d4:4a:c6:90:b1:b4:63:bb:12:d8:2e:4b: 4c:14:f6:66:72:a1:20:dc:f2:5b:03:ed:36:dc:cc: f4:6e:8b:4b:9e:d8:0a:78:ac:8d:c2:9d:82:8f:e1: 19:f5:60:7e:4e:d8:eb:8a:cd:8c:3c:1b:97:3a:d7: fc:f4:00:11:65:d7:f4:b4:9b:8f:03:bb:cd:50:a3: d8:7d:07:21:19:77:bb:ba:9d:c4:77:b1:41:93:3e: 82:88:35:24:6f:0f:cb:0b:d8:b2:bc:b5:fd:9a:9e: f8:2c:e6:9f:6d:65:32:bf:fb:89:e7:60:6c:fe:2c: 69:f8:69:6e:b2:db:b1:b4:ff:ac:e9:95:42:26:cb: f3:f0:38:15:8c:5a:f0:80:37:61:7c:6e:cd:93:1d: 73:51:3d:28:41:3c:bb:33:cc:f0:97:7f:52:f4:7a: eb:0a:79:c4:80:90:83:45:b3:c5:1f:18:3c:88:5f: cf:c1:12:6b:19:0f:95:ef:a4:98:c0:f3:30:de:2a: fd:57:f5:d3:9b:f2:4c:3f:b7:4d:a4:dc:0d:a5:f6: 87:c4:b1:98:a2:14:30:49:13:76:91:04:2e:f4:38: 09:49:1b:21:95:22:7a:19:12:25:e3:1a:1f:87:e5: fa:33:0e:02:89:b5:d2:26:89:aa:a8:85:68:13:c0: cc:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:FF:BE:0D:88:0D:C4:51:2C:A3:A2:FF:17:AA:28:79:60:A4:69:02 X509v3 Authority Key Identifier: keyid:BF:88:84:9A:2E:B5:E9:DD:57:1A:8E:74:3B:ED:7B:95:13:D7:A1:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4iEmi616d1XGo50O-17lRPXoSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:05:bc:24:13:f6:59:09:87:4b:cc:12:19:94:da:11:13:17: e0:21:f3:b7:f3:87:db:bb:d2:31:7d:09:72:bb:89:03:19:a1: e9:94:6f:b9:77:76:35:66:1e:5f:88:fe:8b:d8:b0:23:aa:bd: b6:d9:60:27:37:6c:27:0b:7f:71:63:15:b1:4f:e2:75:4a:fa: dc:2b:cb:ff:f1:8c:9a:6c:61:5a:86:03:6e:12:57:a9:75:2c: 39:6f:14:61:5f:e7:58:00:03:7a:02:5d:4e:79:6d:3e:0a:31: 22:66:7b:37:51:be:76:b2:09:34:41:6d:75:b0:ce:33:bf:19: f4:b8:1a:d9:d0:8a:7c:c8:b1:dc:3e:8c:cb:62:6c:75:2f:19: 14:aa:43:91:b4:14:69:a9:be:3f:54:3d:b0:f9:e1:f6:1c:61: ab:81:12:b5:8d:9b:12:c6:dd:1b:a2:2c:61:db:ec:46:f5:f0: 0a:3e:5f:2d:83:d7:d3:f0:56:84:88:b7:d6:4b:97:0c:44:fc: f9:ae:ea:2c:ab:83:f8:db:51:38:75:12:7b:46:83:4c:9f:42: c0:ec:e9:ca:58:28:67:71:05:b2:ef:d8:f4:ea:ef:d0:1a:8b: 56:23:3f:71:a2:11:24:15:b4:54:c6:f6:36:42:40:bf:02:60: f4:b9:6e:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCM6YKEBf8EkTpQGo1NYnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmODg4NDlhMmViNWU5ZGQ1NzFhOGU3NDNiZWQ3Yjk1MTNk N2ExMjEwHhcNMjUxMjA2MDUwMDU0WhcNMjUxMjA3MDUwMDU0WjAzMTEwLwYDVQQD EygyNGZmYmUwZDg4MGRjNDUxMmNhM2EyZmYxN2FhMjg3OTYwYTQ2OTAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsdLUSsaQsbRjuxLYLktMFPZmcqEg 3PJbA+023Mz0botLntgKeKyNwp2Cj+EZ9WB+Ttjris2MPBuXOtf89AARZdf0tJuP A7vNUKPYfQchGXe7up3Ed7FBkz6CiDUkbw/LC9iyvLX9mp74LOafbWUyv/uJ52Bs /ixp+GlustuxtP+s6ZVCJsvz8DgVjFrwgDdhfG7Nkx1zUT0oQTy7M8zwl39S9Hrr CnnEgJCDRbPFHxg8iF/PwRJrGQ+V76SYwPMw3ir9V/XTm/JMP7dNpNwNpfaHxLGY ohQwSRN2kQQu9DgJSRshlSJ6GRIl4xofh+X6Mw4CibXSJomqqIVoE8DMkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCT/vg2IDcRRLKOi/xeqKHlgpGkCMB8GA1UdIwQY MBaAFL+IhJoutendVxqOdDvte5UT16EhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjRpRW1pNjE2ZDFYR281ME8tMTdsUlBYb1NFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9kYmM1OGUtMDI3Yi00YWFjLTlkZTYt MjM3MzliNWZkODRjLzEvdjRpRW1pNjE2ZDFYR281ME8tMTdsUlBYb1NFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS9kYmM1OGUtMDI3Yi00YWFjLTlkZTYtMjM3MzliNWZkODRj LzEvdjRpRW1pNjE2ZDFYR281ME8tMTdsUlBYb1NFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABAW8JBP2 WQmHS8wSGZTaERMX4CHzt/OH27vSMX0JcruJAxmh6ZRvuXd2NWYeX4j+i9iwI6q9 ttlgJzdsJwt/cWMVsU/idUr63CvL//GMmmxhWoYDbhJXqXUsOW8UYV/nWAADegJd TnltPgoxImZ7N1G+drIJNEFtdbDOM78Z9Lga2dCKfMix3D6My2JsdS8ZFKpDkbQU aam+P1Q9sPnh9hxhq4EStY2bEsbdG6IsYdvsRvXwCj5fLYPX0/BWhIi31kuXDET8 +a7qLKuD+NtROHUSe0aDTJ9CwOzpylgoZ3EFsu/Y9Orv0BqLViM/caIRJBW0VMb2 NkJAvwJg9Llu4w== -----END CERTIFICATE-----Generated at Sat Dec 6 09:19:55 2025 by rpki-client