This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.mft File: I08I-kIiU1wK8moNc0fb8XJUcZY.mft (raw, json) Hash identifier: h6fpmXZ0bVKk35qrZ9osc5v96Af8yhi8ZvtrNDVw1vw= Subject key identifier: 37:F8:91:5C:48:16:57:38:9F:27:05:80:71:B4:B9:6A:F5:EB:FB:C8 Authority key identifier: 23:4F:08:FA:42:22:53:5C:0A:F2:6A:0D:73:47:DB:F1:72:54:71:96 Certificate issuer: /CN=234f08fa4222535c0af26a0d7347dbf172547196 Certificate serial: 019AF19AC0405EBB343212D394FA63464B24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I08I-kIiU1wK8moNc0fb8XJUcZY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.mft Manifest number: 024F Signing time: Sat 06 Dec 2025 03:00:41 +0000 Manifest this update: Sat 06 Dec 2025 03:00:41 +0000 Manifest next update: Sun 07 Dec 2025 03:00:41 +0000 Files and hashes: 1: I08I-kIiU1wK8moNc0fb8XJUcZY.crl (hash: 9MNt0Y+zptKrkNmhTMQoie607Ywve/pCVxd7qlR+g3I=) 2: PMihf48EDZLf86f7BmXfYmZbV4M.roa (hash: kAi2yEZhpDZ5dFlA+0hzmB2XiAS3L8tb6zCyB/FGwDw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.mft rsync://rpki.ripe.net/repository/DEFAULT/I08I-kIiU1wK8moNc0fb8XJUcZY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:c0:40:5e:bb:34:32:12:d3:94:fa:63:46:4b:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=234f08fa4222535c0af26a0d7347dbf172547196 Validity Not Before: Dec 6 03:00:41 2025 GMT Not After : Dec 7 03:00:41 2025 GMT Subject: CN=37f8915c481657389f27058071b4b96af5ebfbc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:42:de:ea:cb:ba:9b:b0:a6:31:1c:dd:79:19: 5f:0a:a4:98:59:38:0e:11:7e:d3:b9:9e:d8:82:0a: 6c:c0:d5:7d:81:4c:5a:d9:fb:dc:ee:7b:de:00:6f: 5a:39:ae:f0:fd:0c:84:dc:21:85:81:fa:52:4a:8b: 8d:19:32:50:24:93:10:c8:9d:e0:d2:20:64:72:9a: e5:f2:83:98:da:ab:7e:fb:6d:00:bb:e2:fe:66:2a: a7:93:e8:f4:ab:d6:e3:3a:a1:a8:40:80:19:9c:59: d4:7d:e6:db:ad:0c:56:e8:ae:dd:a4:3b:67:0d:8b: 92:98:4e:a9:11:31:84:5e:ea:58:a6:1f:79:af:39: ec:9e:d3:1c:ae:11:8a:45:32:4b:91:84:a9:0c:d9: 2f:2d:ef:28:0d:53:86:9e:25:1e:29:b3:d1:1c:3b: 64:25:e7:7c:25:2a:1c:c7:ae:9d:ea:51:63:fc:13: 65:03:c2:96:1c:4a:49:74:52:87:f7:4d:c1:60:d0: b2:22:9a:06:df:4e:df:40:09:e6:e1:6d:8e:98:b8: ec:c3:06:b5:40:bc:f6:d8:76:bc:35:a2:db:30:44: 6e:33:02:b4:6e:f2:36:a3:4d:db:82:51:ae:8f:83: 56:30:4b:c9:ad:54:88:82:3f:96:ae:fb:1d:33:b5: 2c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:F8:91:5C:48:16:57:38:9F:27:05:80:71:B4:B9:6A:F5:EB:FB:C8 X509v3 Authority Key Identifier: keyid:23:4F:08:FA:42:22:53:5C:0A:F2:6A:0D:73:47:DB:F1:72:54:71:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I08I-kIiU1wK8moNc0fb8XJUcZY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:ca:a5:1a:9d:95:71:ed:bc:b9:bd:e7:90:aa:e4:f6:ce:da: 73:53:cd:c1:da:98:35:75:cf:ff:81:73:fb:c3:7f:07:f5:09: cf:85:16:d3:00:8c:49:7e:fd:61:08:62:09:ee:f6:6d:62:14: 25:1e:c8:5d:8e:74:2e:7d:8e:05:57:06:81:16:57:d9:bf:68: c0:00:d7:1b:b3:c4:70:a7:a6:bc:89:30:16:3c:d9:1a:ac:db: 83:4e:48:6a:02:5f:58:48:a6:95:49:ef:55:07:13:20:ee:b4: 67:56:8c:8a:4b:83:dd:62:ff:bc:40:6c:54:e9:4d:60:45:b8: 8d:19:c0:ab:63:0a:fb:fa:b0:d1:c7:82:75:ab:d5:56:f9:41: 47:4b:70:03:1d:47:dc:f5:47:40:1c:17:6f:f5:ee:1d:4e:55: ea:91:52:62:7d:14:1d:16:0f:35:8c:18:2b:55:cf:51:7b:b9: 79:20:d5:a8:c4:ae:d1:e8:8c:ec:a0:6c:61:fe:e1:b3:ce:a1: 1d:31:2b:31:4e:32:9f:0d:87:9f:e8:17:74:f9:8f:51:9e:b0: 8c:f9:33:e9:a7:73:d5:66:40:7d:b6:b9:fd:bb:4c:0e:02:b5: 6c:30:cd:2a:ee:ec:76:15:77:9c:bd:b4:03:81:81:2b:73:9e: e0:9f:ac:a4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmsBAXrs0MhLTlPpjRkskMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzNGYwOGZhNDIyMjUzNWMwYWYyNmEwZDczNDdkYmYxNzI1 NDcxOTYwHhcNMjUxMjA2MDMwMDQxWhcNMjUxMjA3MDMwMDQxWjAzMTEwLwYDVQQD EygzN2Y4OTE1YzQ4MTY1NzM4OWYyNzA1ODA3MWI0Yjk2YWY1ZWJmYmM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq0Le6su6m7CmMRzdeRlfCqSYWTgO EX7TuZ7YggpswNV9gUxa2fvc7nveAG9aOa7w/QyE3CGFgfpSSouNGTJQJJMQyJ3g 0iBkcprl8oOY2qt++20Au+L+Ziqnk+j0q9bjOqGoQIAZnFnUfebbrQxW6K7dpDtn DYuSmE6pETGEXupYph95rznsntMcrhGKRTJLkYSpDNkvLe8oDVOGniUeKbPRHDtk Jed8JSocx66d6lFj/BNlA8KWHEpJdFKH903BYNCyIpoG307fQAnm4W2OmLjswwa1 QLz22Ha8NaLbMERuMwK0bvI2o03bglGuj4NWMEvJrVSIgj+WrvsdM7UsFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDf4kVxIFlc4nycFgHG0uWr16/vIMB8GA1UdIwQY MBaAFCNPCPpCIlNcCvJqDXNH2/FyVHGWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTA4SS1rSWlVMXdLOG1vTmMwZmI4WEpVY1pZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi82MzhhOWMtZWM2NC00NWRlLWJjMmUt MmJlN2VkYzc5MzJkLzEvSTA4SS1rSWlVMXdLOG1vTmMwZmI4WEpVY1pZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi82MzhhOWMtZWM2NC00NWRlLWJjMmUtMmJlN2VkYzc5MzJk LzEvSTA4SS1rSWlVMXdLOG1vTmMwZmI4WEpVY1pZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAecqlGp2V ce28ub3nkKrk9s7ac1PNwdqYNXXP/4Fz+8N/B/UJz4UW0wCMSX79YQhiCe72bWIU JR7IXY50Ln2OBVcGgRZX2b9owADXG7PEcKemvIkwFjzZGqzbg05IagJfWEimlUnv VQcTIO60Z1aMikuD3WL/vEBsVOlNYEW4jRnAq2MK+/qw0ceCdavVVvlBR0twAx1H 3PVHQBwXb/XuHU5V6pFSYn0UHRYPNYwYK1XPUXu5eSDVqMSu0eiM7KBsYf7hs86h HTErMU4ynw2Hn+gXdPmPUZ6wjPkz6adz1WZAfba5/btMDgK1bDDNKu7sdhV3nL20 A4GBK3Oe4J+spA== -----END CERTIFICATE-----Generated at Sat Dec 6 12:05:30 2025 by rpki-client