This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft File: 8zk0PMbVHduONjgpmhu0lfRYCSE.mft (raw, json) Hash identifier: /FgtrEdi+OG2l9SC2Fl7fWiPsvqjIy+FZXjnVd4oXDY= Subject key identifier: 7B:B9:82:EF:2B:19:16:41:59:A4:39:E1:C3:B0:67:FA:51:D1:EC:36 Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21 Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921 Certificate serial: 019B3EA381A6F16F845BA60A87491B584F84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft Manifest number: 1788 Signing time: Sun 21 Dec 2025 02:01:01 +0000 Manifest this update: Sun 21 Dec 2025 02:01:01 +0000 Manifest next update: Mon 22 Dec 2025 02:01:01 +0000 Files and hashes: 1: 8zk0PMbVHduONjgpmhu0lfRYCSE.crl (hash: IEbD2rBgFsn+UjkEW5n5ec0xagKqyCBlEILahwphwgQ=) 2: foJ4QycSZoLeX5HBGEgGb3_VDbc.roa (hash: 6GL5/gRhjE26Cz785WY71i1EcVPF5j3FDcpppmWBIT8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:a3:81:a6:f1:6f:84:5b:a6:0a:87:49:1b:58:4f:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921 Validity Not Before: Dec 21 02:01:01 2025 GMT Not After : Dec 22 02:01:01 2025 GMT Subject: CN=7bb982ef2b19164159a439e1c3b067fa51d1ec36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:54:5e:69:63:7e:0f:8a:d7:6e:04:84:be:4d: cc:28:df:72:da:cd:c2:e8:5f:7d:19:08:91:88:75: 0d:c0:c8:c0:a5:77:61:44:9a:1e:b4:55:53:9c:c4: aa:00:04:4c:c5:fe:46:05:e9:31:ce:44:d0:90:31: 3e:83:80:b4:ec:47:4f:a9:ba:4e:9d:90:37:45:31: 7d:24:0a:cc:5f:99:ec:ff:af:74:0c:da:86:e6:8e: 16:60:52:ec:af:1e:00:53:33:88:5c:c7:15:d7:5c: 7e:9e:e9:39:a0:c7:37:61:87:c9:95:f4:20:f5:ba: 83:5c:d4:d0:10:5e:1b:ba:37:de:06:db:b5:9d:61: ab:1a:23:be:03:7c:88:d9:2c:39:db:86:50:80:50: 95:cb:6d:f5:a2:db:87:b4:29:f8:fc:d2:74:a9:58: a9:28:55:46:21:91:5f:3d:c7:ba:d1:40:b1:de:a0: 79:40:b8:be:c3:6f:1b:a8:05:ce:58:53:c4:15:98: 22:71:8b:88:c7:a5:b9:58:7a:d9:1d:d0:6d:3d:c5: 05:5f:21:36:e6:a6:66:bc:5d:de:52:2d:e9:c5:ee: 18:df:08:6c:2f:f4:9e:2e:81:0d:2f:c7:f8:1f:4a: ab:1c:dd:25:c4:09:84:6a:97:48:fe:a2:5a:f5:eb: 75:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:B9:82:EF:2B:19:16:41:59:A4:39:E1:C3:B0:67:FA:51:D1:EC:36 X509v3 Authority Key Identifier: keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:f9:57:4e:c1:97:8d:da:ab:0c:50:ee:04:31:84:d8:fc:a4: 3a:41:4f:af:b1:9d:23:37:16:a2:9c:6a:f4:4c:16:55:8a:66: f8:8a:bf:7b:ad:f8:45:d2:c8:16:c1:ad:9f:af:c3:90:5d:92: fa:0a:c1:c0:1b:68:ba:0e:43:28:3b:ec:a6:31:fa:2a:24:6f: fa:85:e2:4f:24:c8:55:2b:aa:fb:ad:e2:f1:a3:b1:d8:89:09: 3d:97:e9:b1:fe:33:ed:70:7d:77:7d:62:0a:f0:93:13:37:34: c8:4c:72:fd:cc:d4:0c:49:4d:4a:85:7c:5f:3f:cb:16:fa:ab: 5c:2c:ec:ee:46:b7:8f:40:ba:7c:66:0f:29:93:88:00:a1:7e: 98:d0:2f:fb:47:d6:f0:b9:b1:ad:99:8f:87:c8:47:9b:2a:0e: 1d:cb:79:fa:0c:1e:72:68:c5:34:f2:a9:ae:9f:cf:a1:64:a1: 4e:e0:d2:39:99:7e:72:00:53:d6:2f:d7:21:aa:4e:15:ab:4a: 19:40:f5:4b:27:7d:0b:97:73:da:a2:29:27:9b:e2:ab:7f:19: 25:b2:0b:6e:e7:83:0b:ea:0b:97:b9:83:be:77:d8:f6:5a:25: 30:b7:8f:1d:f4:e3:c9:3d:cf:6c:9f:55:21:1e:a7:aa:58:20: ea:7d:bd:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+o4Gm8W+EW6YKh0kbWE+EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzMzkzNDNjYzZkNTFkZGI4ZTM2MzgyOTlhMWJiNDk1ZjQ1 ODA5MjEwHhcNMjUxMjIxMDIwMTAxWhcNMjUxMjIyMDIwMTAxWjAzMTEwLwYDVQQD Eyg3YmI5ODJlZjJiMTkxNjQxNTlhNDM5ZTFjM2IwNjdmYTUxZDFlYzM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl1ReaWN+D4rXbgSEvk3MKN9y2s3C 6F99GQiRiHUNwMjApXdhRJoetFVTnMSqAARMxf5GBekxzkTQkDE+g4C07EdPqbpO nZA3RTF9JArMX5ns/690DNqG5o4WYFLsrx4AUzOIXMcV11x+nuk5oMc3YYfJlfQg 9bqDXNTQEF4bujfeBtu1nWGrGiO+A3yI2Sw524ZQgFCVy231otuHtCn4/NJ0qVip KFVGIZFfPce60UCx3qB5QLi+w28bqAXOWFPEFZgicYuIx6W5WHrZHdBtPcUFXyE2 5qZmvF3eUi3pxe4Y3whsL/SeLoENL8f4H0qrHN0lxAmEapdI/qJa9et12wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHu5gu8rGRZBWaQ54cOwZ/pR0ew2MB8GA1UdIwQY MBaAFPM5NDzG1R3bjjY4KZobtJX0WAkhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81ZGU2ZGYtY2U0Zi00YjA5LTgyZDIt Mzc3ZDI1YmU1OTRkLzEvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC81ZGU2ZGYtY2U0Zi00YjA5LTgyZDItMzc3ZDI1YmU1OTRk LzEvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATflXTsGX jdqrDFDuBDGE2PykOkFPr7GdIzcWopxq9EwWVYpm+Iq/e634RdLIFsGtn6/DkF2S +grBwBtoug5DKDvspjH6KiRv+oXiTyTIVSuq+63i8aOx2IkJPZfpsf4z7XB9d31i CvCTEzc0yExy/czUDElNSoV8Xz/LFvqrXCzs7ka3j0C6fGYPKZOIAKF+mNAv+0fW 8LmxrZmPh8hHmyoOHct5+gwecmjFNPKprp/PoWShTuDSOZl+cgBT1i/XIapOFatK GUD1Syd9C5dz2qIpJ5viq38ZJbILbueDC+oLl7mDvnfY9lolMLePHfTjyT3PbJ9V IR6nqlgg6n29ww== -----END CERTIFICATE-----Generated at Sun Dec 21 06:28:18 2025 by rpki-client