This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.mft File: 8PY2_se1stGN43l-aYTAaVXnFtc.mft (raw, json) Hash identifier: Mg3pfxny7xXfENliCcVkBylHkCN05PZqXcyNunLilHs= Subject key identifier: DA:F0:8E:70:ED:B0:7D:C0:AD:1A:AB:12:DC:D0:2F:25:D0:96:E6:A0 Authority key identifier: F0:F6:36:FE:C7:B5:B2:D1:8D:E3:79:7E:69:84:C0:69:55:E7:16:D7 Certificate issuer: /CN=f0f636fec7b5b2d18de3797e6984c06955e716d7 Certificate serial: 019B41003ABF9928674514A84B35486A5561 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8PY2_se1stGN43l-aYTAaVXnFtc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.mft Manifest number: 178F Signing time: Sun 21 Dec 2025 13:01:32 +0000 Manifest this update: Sun 21 Dec 2025 13:01:32 +0000 Manifest next update: Mon 22 Dec 2025 13:01:32 +0000 Files and hashes: 1: 8PY2_se1stGN43l-aYTAaVXnFtc.crl (hash: obcJAPIWzz6QaImaNiHm17i3IRIQZwRxiCfwoq+s+H0=) 2: N4NsUcZuS_9XiBDgAfw6eryV7HU.roa (hash: tpgeA/zfOVEAg9H115FFWM358l26uFQNlABFRgvWlU4=) 3: YN5BT06xMfbo1c_Z7AZWug-50dI.roa (hash: IQTbSHfW7A6/vX1CnCMrP3c0x8Ql47ZxFKjq91S7rjA=) 4: yV4dNy3NsBZVUNWCmHTLsnrsaLM.roa (hash: HeRl5vH7gTSirrF3z1irtqiGbkDXqM3OvljtYndKLgE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.crl rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.mft rsync://rpki.ripe.net/repository/DEFAULT/8PY2_se1stGN43l-aYTAaVXnFtc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:00:3a:bf:99:28:67:45:14:a8:4b:35:48:6a:55:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f0f636fec7b5b2d18de3797e6984c06955e716d7 Validity Not Before: Dec 21 13:01:32 2025 GMT Not After : Dec 22 13:01:32 2025 GMT Subject: CN=daf08e70edb07dc0ad1aab12dcd02f25d096e6a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d9:72:40:41:fd:9b:9f:23:dc:3c:95:59:ad: 57:5b:5b:a7:da:e5:69:47:22:2f:1c:63:e2:1f:b8: 6d:c1:8c:38:ec:30:d0:66:bc:8e:ec:7b:74:38:6c: 3f:4e:81:a7:f8:90:21:af:c2:f0:19:b6:90:fa:0b: 25:7a:ea:c6:b5:5a:83:d4:7f:17:c9:69:6b:d3:7a: 55:a3:d7:03:0a:8e:be:8e:18:6b:a8:4d:6e:b0:96: 2a:8b:0e:e5:ee:08:0e:cd:22:78:3b:af:d0:44:55: cf:80:e4:9f:0d:b6:3d:40:03:74:12:e5:66:2d:2f: 70:35:4b:9f:a5:62:c3:e6:ba:ab:08:88:ae:32:88: be:b0:a2:36:a7:2b:bb:4e:c0:69:97:bd:60:03:80: e7:64:f3:7a:91:9c:8b:1f:08:25:f9:be:28:f4:0c: d8:5e:47:64:4e:4a:da:c3:d4:08:03:27:f8:84:a7: dd:f4:16:db:9f:6b:c4:f1:71:28:d8:c7:bf:0f:6d: 71:74:6c:92:b7:86:17:08:0d:24:70:d9:cf:93:1d: 4a:64:4a:62:58:75:39:0f:3c:fd:50:df:35:1a:d2: 83:c6:53:b3:a0:ed:af:a2:27:90:5c:97:0f:62:12: 25:88:7a:e4:38:7f:5a:ca:f2:f5:2b:dd:a6:65:91: 41:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:F0:8E:70:ED:B0:7D:C0:AD:1A:AB:12:DC:D0:2F:25:D0:96:E6:A0 X509v3 Authority Key Identifier: keyid:F0:F6:36:FE:C7:B5:B2:D1:8D:E3:79:7E:69:84:C0:69:55:E7:16:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8PY2_se1stGN43l-aYTAaVXnFtc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:11:52:b5:5d:2c:db:96:a6:dd:49:af:18:0b:2d:f4:ec:4e: ac:84:23:7d:50:74:a8:ff:82:57:af:68:ab:21:29:7e:47:01: e7:1a:79:e2:0e:c8:81:51:8a:6b:c6:73:41:5f:e7:f2:dd:6a: a0:ff:37:56:19:ad:e4:ce:4d:45:b2:3a:42:d2:65:6c:87:1f: 94:06:e8:d3:f7:19:9a:c3:20:cd:f2:35:39:a9:44:ae:c7:49: 44:43:ec:69:9e:cc:ee:e9:17:0c:8b:2a:03:9e:23:0b:42:f4: 1d:a7:0f:39:76:7e:d9:3f:96:02:7c:43:75:8f:b8:1f:e1:d1: 4e:03:74:2d:3c:96:35:ff:b5:57:3d:9a:fb:74:d8:a4:3d:bb: 07:5b:8c:65:d2:83:77:17:97:e7:09:3a:70:1d:82:22:f2:af: 34:df:71:25:fa:0e:a9:95:a5:0a:19:c8:c0:32:83:05:9e:76: 7d:57:dc:e7:6c:3e:c9:6a:7a:91:7e:53:d2:5c:8c:37:76:e6: 17:74:cf:59:6c:3c:1b:8e:dd:f7:89:fc:f7:e0:3a:31:0d:2b: c4:fc:6c:09:13:1c:38:53:e7:4e:73:fe:c0:c6:5e:c6:8e:d9: 40:72:5b:4b:e4:82:4b:a3:0f:6c:b6:a2:7e:b4:66:2c:e5:b9: 30:3d:08:3f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBADq/mShnRRSoSzVIalVhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwZjYzNmZlYzdiNWIyZDE4ZGUzNzk3ZTY5ODRjMDY5NTVl NzE2ZDcwHhcNMjUxMjIxMTMwMTMyWhcNMjUxMjIyMTMwMTMyWjAzMTEwLwYDVQQD EyhkYWYwOGU3MGVkYjA3ZGMwYWQxYWFiMTJkY2QwMmYyNWQwOTZlNmEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAptlyQEH9m58j3DyVWa1XW1un2uVp RyIvHGPiH7htwYw47DDQZryO7Ht0OGw/ToGn+JAhr8LwGbaQ+gsleurGtVqD1H8X yWlr03pVo9cDCo6+jhhrqE1usJYqiw7l7ggOzSJ4O6/QRFXPgOSfDbY9QAN0EuVm LS9wNUufpWLD5rqrCIiuMoi+sKI2pyu7TsBpl71gA4DnZPN6kZyLHwgl+b4o9AzY XkdkTkraw9QIAyf4hKfd9Bbbn2vE8XEo2Me/D21xdGySt4YXCA0kcNnPkx1KZEpi WHU5Dzz9UN81GtKDxlOzoO2voieQXJcPYhIliHrkOH9ayvL1K92mZZFB3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNrwjnDtsH3ArRqrEtzQLyXQluagMB8GA1UdIwQY MBaAFPD2Nv7HtbLRjeN5fmmEwGlV5xbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOFBZMl9zZTFzdEdONDNsLWFZVEFhVlhuRnRjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS9hMDFhY2QtYTNkZS00ODM5LTlkMDIt NjQzYzFmZTM4Mzg1LzEvOFBZMl9zZTFzdEdONDNsLWFZVEFhVlhuRnRjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS9hMDFhY2QtYTNkZS00ODM5LTlkMDItNjQzYzFmZTM4Mzg1 LzEvOFBZMl9zZTFzdEdONDNsLWFZVEFhVlhuRnRjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbBFStV0s 25am3UmvGAst9OxOrIQjfVB0qP+CV69oqyEpfkcB5xp54g7IgVGKa8ZzQV/n8t1q oP83Vhmt5M5NRbI6QtJlbIcflAbo0/cZmsMgzfI1OalErsdJREPsaZ7M7ukXDIsq A54jC0L0HacPOXZ+2T+WAnxDdY+4H+HRTgN0LTyWNf+1Vz2a+3TYpD27B1uMZdKD dxeX5wk6cB2CIvKvNN9xJfoOqZWlChnIwDKDBZ52fVfc52w+yWp6kX5T0lyMN3bm F3TPWWw8G47d94n89+A6MQ0rxPxsCRMcOFPnTnP+wMZexo7ZQHJbS+SCS6MPbLai frRmLOW5MD0IPw== -----END CERTIFICATE-----Generated at Sun Dec 21 20:33:09 2025 by rpki-client