This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/688943-713d-491e-a721-eca59f82018a/1/8DpbV31dnm0cX9O-1ADpacC-fDQ.mft File: 8DpbV31dnm0cX9O-1ADpacC-fDQ.mft (raw, json) Hash identifier: nhFYWyTbtKvR+M713V6DtnGV4JiY4QvyxC08QRu86OA= Subject key identifier: 7E:B8:06:72:82:CB:E7:7E:54:E3:F0:F5:25:85:CB:38:D0:F9:B0:69 Authority key identifier: F0:3A:5B:57:7D:5D:9E:6D:1C:5F:D3:BE:D4:00:E9:69:C0:BE:7C:34 Certificate issuer: /CN=f03a5b577d5d9e6d1c5fd3bed400e969c0be7c34 Certificate serial: 019B2FD4EBC1E20495574FF7FE6DB66D0278 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8DpbV31dnm0cX9O-1ADpacC-fDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/688943-713d-491e-a721-eca59f82018a/1/8DpbV31dnm0cX9O-1ADpacC-fDQ.mft Manifest number: 177C Signing time: Thu 18 Dec 2025 05:00:41 +0000 Manifest this update: Thu 18 Dec 2025 05:00:41 +0000 Manifest next update: Fri 19 Dec 2025 05:00:41 +0000 Files and hashes: 1: 8DpbV31dnm0cX9O-1ADpacC-fDQ.crl (hash: fcWFPJ4Ev6Vaal8wRBXVEyvASSbifYfy2ZKZoYoshyg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/688943-713d-491e-a721-eca59f82018a/1/8DpbV31dnm0cX9O-1ADpacC-fDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/688943-713d-491e-a721-eca59f82018a/1/8DpbV31dnm0cX9O-1ADpacC-fDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/8DpbV31dnm0cX9O-1ADpacC-fDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2f:d4:eb:c1:e2:04:95:57:4f:f7:fe:6d:b6:6d:02:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f03a5b577d5d9e6d1c5fd3bed400e969c0be7c34 Validity Not Before: Dec 18 05:00:41 2025 GMT Not After : Dec 19 05:00:41 2025 GMT Subject: CN=7eb8067282cbe77e54e3f0f52585cb38d0f9b069 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:25:c7:67:f8:75:3a:2b:95:25:6f:80:9c:57: 15:da:77:3c:3f:94:b1:31:63:07:89:b1:1a:9d:8e: da:43:12:49:af:b6:33:ab:b1:32:ca:fd:e5:8f:b7: a8:41:64:ec:f0:22:ff:69:aa:99:60:e0:9b:7c:a6: 61:f9:57:ce:7b:ea:3b:c9:6e:1a:8d:32:71:76:ce: cd:c9:28:69:d7:80:cd:c8:83:41:d1:cb:00:b5:99: 23:5e:15:2a:08:97:f0:f8:ea:91:24:a8:e7:69:70: 33:cb:8d:26:e9:86:ea:20:d8:1b:6c:00:78:0d:70: c1:ea:dd:9d:fc:c0:ab:67:26:5b:84:52:21:87:d4: 68:43:e2:b2:a5:b0:09:eb:cd:41:10:62:bd:8e:8d: 03:1e:fe:2c:78:dc:1a:13:05:03:bc:12:e6:3b:62: f0:1d:d9:6a:48:e9:b0:02:f7:3b:8a:0f:60:28:35: 7b:ed:53:19:7c:37:89:ba:07:ad:b1:db:58:9c:7f: 78:44:be:22:5e:b6:c0:eb:6d:6c:8b:4b:83:e6:b0: d1:b3:8b:75:5b:d8:14:15:37:9e:f0:3b:38:fb:42: 57:36:62:7f:f3:b6:4f:9c:c4:ba:b6:ce:7c:d8:3e: 44:9b:00:5e:2b:24:67:e4:10:f6:b6:38:7b:bc:8d: ac:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:B8:06:72:82:CB:E7:7E:54:E3:F0:F5:25:85:CB:38:D0:F9:B0:69 X509v3 Authority Key Identifier: keyid:F0:3A:5B:57:7D:5D:9E:6D:1C:5F:D3:BE:D4:00:E9:69:C0:BE:7C:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8DpbV31dnm0cX9O-1ADpacC-fDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/688943-713d-491e-a721-eca59f82018a/1/8DpbV31dnm0cX9O-1ADpacC-fDQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/688943-713d-491e-a721-eca59f82018a/1/8DpbV31dnm0cX9O-1ADpacC-fDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:0c:92:67:98:5b:11:c6:8e:91:13:0c:64:a1:3c:30:d4:3d: 2f:13:c1:22:0e:50:af:17:c3:c1:2b:16:ff:ee:f8:c8:c3:f5: 66:6d:96:d5:1f:6f:69:b7:29:74:9f:38:a0:ed:0d:66:2a:d4: a9:eb:a3:ad:9e:ca:09:ac:bf:c8:39:53:a9:0f:0f:d1:43:ae: 34:35:06:60:62:55:5c:3a:f9:eb:9d:5a:98:c3:41:b6:b2:95: a5:02:fe:59:12:c6:6a:5c:af:c0:ba:3e:de:6f:a0:d2:25:45: 06:ec:82:f2:1b:63:66:29:0d:e5:72:5e:85:cb:1e:07:05:40: 2a:52:74:aa:01:70:40:75:ea:c5:26:55:34:ac:dd:42:dd:4e: 7f:c6:ee:c4:a1:a3:67:f5:f4:17:f7:68:c5:c0:15:b5:c2:b0: ef:63:2e:6b:bb:d4:7e:57:df:50:e6:98:84:13:4f:d9:e0:2f: 99:99:5a:7f:e1:ef:e8:61:01:05:f4:28:15:16:82:77:3c:73: f3:28:23:69:a0:86:76:30:f8:fc:5b:82:60:2c:2d:e5:cd:0f: d7:6a:0e:18:44:af:85:ba:af:1b:f7:2b:45:dd:31:c9:60:e8: a6:00:ef:1e:35:b4:5f:7b:b1:fb:9b:58:7b:fc:81:1c:c6:ec: fe:b7:01:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsv1OvB4gSVV0/3/m22bQJ4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwM2E1YjU3N2Q1ZDllNmQxYzVmZDNiZWQ0MDBlOTY5YzBi ZTdjMzQwHhcNMjUxMjE4MDUwMDQxWhcNMjUxMjE5MDUwMDQxWjAzMTEwLwYDVQQD Eyg3ZWI4MDY3MjgyY2JlNzdlNTRlM2YwZjUyNTg1Y2IzOGQwZjliMDY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArSXHZ/h1OiuVJW+AnFcV2nc8P5Sx MWMHibEanY7aQxJJr7Yzq7Eyyv3lj7eoQWTs8CL/aaqZYOCbfKZh+VfOe+o7yW4a jTJxds7NyShp14DNyINB0csAtZkjXhUqCJfw+OqRJKjnaXAzy40m6YbqINgbbAB4 DXDB6t2d/MCrZyZbhFIhh9RoQ+KypbAJ681BEGK9jo0DHv4seNwaEwUDvBLmO2Lw HdlqSOmwAvc7ig9gKDV77VMZfDeJugetsdtYnH94RL4iXrbA621si0uD5rDRs4t1 W9gUFTee8Ds4+0JXNmJ/87ZPnMS6ts582D5EmwBeKyRn5BD2tjh7vI2szwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH64BnKCy+d+VOPw9SWFyzjQ+bBpMB8GA1UdIwQY MBaAFPA6W1d9XZ5tHF/TvtQA6WnAvnw0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOERwYlYzMWRubTBjWDlPLTFBRHBhY0MtZkRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS82ODg5NDMtNzEzZC00OTFlLWE3MjEt ZWNhNTlmODIwMThhLzEvOERwYlYzMWRubTBjWDlPLTFBRHBhY0MtZkRRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS82ODg5NDMtNzEzZC00OTFlLWE3MjEtZWNhNTlmODIwMThh LzEvOERwYlYzMWRubTBjWDlPLTFBRHBhY0MtZkRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATwySZ5hb EcaOkRMMZKE8MNQ9LxPBIg5QrxfDwSsW/+74yMP1Zm2W1R9vabcpdJ84oO0NZirU qeujrZ7KCay/yDlTqQ8P0UOuNDUGYGJVXDr5651amMNBtrKVpQL+WRLGalyvwLo+ 3m+g0iVFBuyC8htjZikN5XJehcseBwVAKlJ0qgFwQHXqxSZVNKzdQt1Of8buxKGj Z/X0F/doxcAVtcKw72Mua7vUflffUOaYhBNP2eAvmZlaf+Hv6GEBBfQoFRaCdzxz 8ygjaaCGdjD4/FuCYCwt5c0P12oOGESvhbqvG/crRd0xyWDopgDvHjW0X3ux+5tY e/yBHMbs/rcBrw== -----END CERTIFICATE-----Generated at Thu Dec 18 09:53:06 2025 by rpki-client