This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft File: sO8ZvLI6LwTFhqwTEakbx8oql2U.mft (raw, json) Hash identifier: Pf+RBl//9aqXjrwsR+krOSsj/+KdK+J9/GJlCw6m0qs= Subject key identifier: 55:2E:7A:90:62:77:BE:C8:E1:38:83:D9:75:BD:DE:27:A8:0E:10:80 Authority key identifier: B0:EF:19:BC:B2:3A:2F:04:C5:86:AC:13:11:A9:1B:C7:CA:2A:97:65 Certificate issuer: /CN=b0ef19bcb23a2f04c586ac1311a91bc7ca2a9765 Certificate serial: 019B53E19639F7C364D7344BE90002B1BCB4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft Manifest number: 0B85 Signing time: Thu 25 Dec 2025 05:00:51 +0000 Manifest this update: Thu 25 Dec 2025 05:00:51 +0000 Manifest next update: Fri 26 Dec 2025 05:00:51 +0000 Files and hashes: 1: E6bot_tKJqCzADpBxFeKtsutgCs.roa (hash: IzVVajCV/IB0bxI8d5Bqo7CZjFjDagAuPrwaJPvu9o8=) 2: J2Y5cNDr8YT7PKtkms42q6KH1Ww.roa (hash: i9/0Gs/ETKeE8aofdcZW5I00xs4HTkYxcWjqF+8orKM=) 3: sO8ZvLI6LwTFhqwTEakbx8oql2U.crl (hash: 0wOLcLFAZRWGTCkzoERNalMRwoE9GQcTW/citRqOXfc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 05:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:53:e1:96:39:f7:c3:64:d7:34:4b:e9:00:02:b1:bc:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0ef19bcb23a2f04c586ac1311a91bc7ca2a9765 Validity Not Before: Dec 25 05:00:51 2025 GMT Not After : Dec 26 05:00:51 2025 GMT Subject: CN=552e7a906277bec8e13883d975bdde27a80e1080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:64:56:ab:cf:40:a3:fb:01:ae:05:cd:ba:c2: 5a:f7:fc:e1:59:c8:09:2c:e9:32:3f:54:d6:5b:3c: 48:bb:41:7c:fa:91:70:20:29:15:3f:6b:ea:9c:fa: 0d:34:5f:a6:57:79:2e:b8:15:97:31:6b:ef:54:5c: 3d:dc:a6:d7:bb:c1:9b:9a:7f:af:d8:98:7d:9c:9f: 37:b8:88:df:10:fd:7d:5c:11:5b:b5:c1:ea:1a:fe: a5:cb:6e:68:ca:41:50:65:e8:08:49:04:8d:4f:65: 93:03:4a:8f:5f:8b:c0:c5:a2:55:41:94:c4:e6:d3: 91:1c:bc:2d:32:dc:e8:7d:c0:29:f9:a7:fa:1c:32: b4:40:7c:32:96:35:f0:94:7b:87:70:d3:15:d1:b7: aa:b2:b2:74:70:b8:e3:72:4c:f8:9a:02:1b:0b:3c: 72:51:20:c0:5b:3a:1e:8c:9a:37:cc:3d:9f:d8:4a: fa:cd:d9:84:f8:c8:a0:79:31:ef:20:ae:fd:d0:4a: e8:ea:11:4c:1f:30:bc:49:22:a1:9a:50:84:80:d5: ce:ac:9f:f3:2e:fb:61:26:b1:37:e5:b4:c0:38:cd: 8e:c9:43:e2:36:d6:75:d1:cc:0c:c2:cc:bd:7a:34: 64:33:0b:a1:db:f1:dd:46:23:86:df:36:f9:cf:8a: 6f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:2E:7A:90:62:77:BE:C8:E1:38:83:D9:75:BD:DE:27:A8:0E:10:80 X509v3 Authority Key Identifier: keyid:B0:EF:19:BC:B2:3A:2F:04:C5:86:AC:13:11:A9:1B:C7:CA:2A:97:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:11:3c:3e:77:4c:f1:d0:76:04:83:db:32:1b:e9:e5:59:c0: 34:72:b3:7f:6c:49:0c:23:21:09:5f:c4:6a:1e:a7:82:70:21: f3:93:22:2d:7a:41:9c:b9:da:a4:12:9a:70:e5:f1:90:3c:3d: 03:1d:72:8e:f1:b6:0a:af:51:17:6b:7c:c8:1d:eb:15:62:f2: 7e:d1:88:8e:d4:36:b1:be:cc:44:d8:46:77:8d:5a:55:36:a2: 09:99:3e:d7:33:0f:4d:16:17:8e:13:87:29:d9:c4:f3:10:6d: 79:5a:cf:db:04:49:6e:83:49:ea:2e:62:f6:af:ba:f4:1f:ef: dd:ab:f3:5f:bc:8a:38:d2:71:3a:12:4d:ee:78:2d:50:5f:2f: b0:19:6f:ce:82:42:3d:7d:46:5b:30:9d:d2:8e:6d:49:87:ab: c1:b7:c4:1b:08:2a:21:d1:dd:cf:6a:49:db:38:50:0d:78:2f: c0:34:10:a7:14:2b:3b:3b:e8:0a:ff:f9:e0:b6:e7:2a:34:1d: 7b:66:86:4c:6c:0f:19:52:21:5c:f9:2b:93:14:5d:60:41:77: fe:8d:78:6b:16:d4:04:26:cd:95:dc:94:6b:aa:0b:71:2a:17: 54:28:c6:5e:47:e8:dc:0a:66:71:e9:81:17:15:ec:2f:1a:d1: d8:89:c4:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtT4ZY598Nk1zRL6QACsby0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwZWYxOWJjYjIzYTJmMDRjNTg2YWMxMzExYTkxYmM3Y2Ey YTk3NjUwHhcNMjUxMjI1MDUwMDUxWhcNMjUxMjI2MDUwMDUxWjAzMTEwLwYDVQQD Eyg1NTJlN2E5MDYyNzdiZWM4ZTEzODgzZDk3NWJkZGUyN2E4MGUxMDgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArGRWq89Ao/sBrgXNusJa9/zhWcgJ LOkyP1TWWzxIu0F8+pFwICkVP2vqnPoNNF+mV3kuuBWXMWvvVFw93KbXu8Gbmn+v 2Jh9nJ83uIjfEP19XBFbtcHqGv6ly25oykFQZegISQSNT2WTA0qPX4vAxaJVQZTE 5tORHLwtMtzofcAp+af6HDK0QHwyljXwlHuHcNMV0beqsrJ0cLjjckz4mgIbCzxy USDAWzoejJo3zD2f2Er6zdmE+MigeTHvIK790Ero6hFMHzC8SSKhmlCEgNXOrJ/z LvthJrE35bTAOM2OyUPiNtZ10cwMwsy9ejRkMwuh2/HdRiOG3zb5z4pvkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFUuepBid77I4TiD2XW93ieoDhCAMB8GA1UdIwQY MBaAFLDvGbyyOi8ExYasExGpG8fKKpdlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc084WnZMSTZMd1RGaHF3VEVha2J4OG9xbDJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9hZjNlNTEtNzlkNi00MDc4LWE1Njkt ZDAwMDNhNmI1MjI0LzEvc084WnZMSTZMd1RGaHF3VEVha2J4OG9xbDJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi9hZjNlNTEtNzlkNi00MDc4LWE1NjktZDAwMDNhNmI1MjI0 LzEvc084WnZMSTZMd1RGaHF3VEVha2J4OG9xbDJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIRE8PndM 8dB2BIPbMhvp5VnANHKzf2xJDCMhCV/Eah6ngnAh85MiLXpBnLnapBKacOXxkDw9 Ax1yjvG2Cq9RF2t8yB3rFWLyftGIjtQ2sb7MRNhGd41aVTaiCZk+1zMPTRYXjhOH KdnE8xBteVrP2wRJboNJ6i5i9q+69B/v3avzX7yKONJxOhJN7ngtUF8vsBlvzoJC PX1GWzCd0o5tSYerwbfEGwgqIdHdz2pJ2zhQDXgvwDQQpxQrOzvoCv/54LbnKjQd e2aGTGwPGVIhXPkrkxRdYEF3/o14axbUBCbNldyUa6oLcSoXVCjGXkfo3ApmcemB FxXsLxrR2InE9w== -----END CERTIFICATE-----Generated at Thu Dec 25 14:34:42 2025 by rpki-client