This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft File: 8u5baEnIyB9adjWVWIprpoIedns.mft (raw, json) Hash identifier: 1uXj5EzjJiQMkXGtGCMtsINosKt2y6eEWu3dY0tEPMg= Subject key identifier: 74:89:0D:9F:F8:81:C5:7E:7B:27:37:E9:18:E5:70:D6:F7:9F:E3:29 Authority key identifier: F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B Certificate issuer: /CN=f2ee5b6849c8c81f5a763595588a6ba6821e767b Certificate serial: 019B3D231477F53101027E76373D4C5DEE2F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft Manifest number: 078D Signing time: Sat 20 Dec 2025 19:01:07 +0000 Manifest this update: Sat 20 Dec 2025 19:01:07 +0000 Manifest next update: Sun 21 Dec 2025 19:01:07 +0000 Files and hashes: 1: 8u5baEnIyB9adjWVWIprpoIedns.crl (hash: HvKjOf7LUCElIX1PVYVW4snTOwpTUkbJ54gqmJgA3Ck=) 2: Di0vSgAmdtxn2ZM7Al8L8Zr3oIU.roa (hash: 0Bf0l0DWLnoKx593QVoGlu2x+BD1lYWYH448tSVbn0U=) 3: Tb-8GP8qcCsPrA2Xrleo-iet2HM.roa (hash: yyhoDt89y5+7nL9lVvf4sdS/dAeJY+OT1BrhoMFwMME=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:23:14:77:f5:31:01:02:7e:76:37:3d:4c:5d:ee:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f2ee5b6849c8c81f5a763595588a6ba6821e767b Validity Not Before: Dec 20 19:01:07 2025 GMT Not After : Dec 21 19:01:07 2025 GMT Subject: CN=74890d9ff881c57e7b2737e918e570d6f79fe329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:21:12:55:33:89:67:59:23:cb:77:65:35:b4: d5:d7:61:9d:b8:1c:5b:c1:f3:ca:57:0e:22:d9:21: f2:5a:92:53:ba:4f:20:b9:c2:86:3c:9c:cd:9c:b5: 8b:63:41:a3:b7:99:a9:07:4f:db:b6:ef:a7:b3:52: e3:d1:2d:82:52:ca:e8:74:1e:4a:34:9f:a9:64:71: a8:2d:4d:2e:d4:92:06:09:77:83:2d:cd:2e:3e:12: 3d:0d:e9:8c:91:53:10:03:ae:15:72:a7:e4:3a:f0: b9:26:78:02:d7:50:45:dd:6e:30:ee:e1:09:88:37: b8:37:3b:6a:e7:98:1b:3d:e5:15:7b:13:5d:41:49: 94:48:bb:24:7b:7f:34:8b:9b:6d:94:10:0e:69:f1: 78:36:3f:ae:d6:ec:cf:75:f8:4b:cb:7a:f2:24:9c: fc:12:d1:6e:ac:0f:6d:74:b6:7e:d2:9f:d7:fd:d8: ca:eb:1f:17:f7:b1:38:e6:cb:49:95:d8:d6:79:10: e2:d8:e9:1b:5f:3e:4b:d9:ef:19:90:96:1d:21:85: bf:16:1d:aa:51:d0:84:d1:0a:8e:ca:4e:d8:54:a5: 33:d8:53:48:c7:34:e1:08:dc:16:80:0b:f9:3b:88: 27:b0:39:6c:d6:47:c3:e9:b0:c4:3b:cf:f8:78:14: 88:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:89:0D:9F:F8:81:C5:7E:7B:27:37:E9:18:E5:70:D6:F7:9F:E3:29 X509v3 Authority Key Identifier: keyid:F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:e1:d7:92:ae:93:f8:65:09:33:39:0c:2c:0a:42:34:43:c8: 59:8d:86:d8:9e:aa:b8:c6:68:9e:49:db:33:a2:80:b7:2b:53: 09:31:d7:6c:e2:75:5b:c9:f6:42:59:9c:b0:b6:af:31:cc:a4: 4f:4d:d0:c2:d5:6b:7b:40:57:5c:53:f9:53:db:7c:26:1a:d1: 70:53:18:23:04:35:42:b2:7b:a0:a4:be:4f:f0:a4:42:0a:3e: 7e:58:5a:47:c0:2c:02:d5:6f:01:6f:01:72:58:97:9f:7e:82: 9d:49:0d:ee:b3:0c:fd:1a:5f:ba:2a:26:a9:80:fc:e2:4a:7e: 75:8e:94:73:c1:3c:a9:6d:02:a3:70:d2:64:0e:fb:27:c5:e2: b6:df:be:ca:de:6f:24:e9:0e:45:34:4d:46:18:1f:cb:2d:e0: 4d:79:1e:36:86:40:9d:00:43:9e:2e:5f:90:67:68:e4:23:67: 8f:de:de:8d:c3:01:04:92:d0:4d:9f:f5:7b:1c:4b:dc:16:f4: fe:83:16:c3:26:ef:fc:04:e8:ee:37:3d:be:01:61:75:e9:c8: 5f:a2:03:7d:92:b0:4b:a1:48:dc:31:2d:ac:9f:af:d6:f5:02: 59:30:13:2e:df:ce:57:05:00:e3:18:fe:0f:95:5d:24:aa:2b: 56:40:a7:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9IxR39TEBAn52Nz1MXe4vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYyZWU1YjY4NDljOGM4MWY1YTc2MzU5NTU4OGE2YmE2ODIx ZTc2N2IwHhcNMjUxMjIwMTkwMTA3WhcNMjUxMjIxMTkwMTA3WjAzMTEwLwYDVQQD Eyg3NDg5MGQ5ZmY4ODFjNTdlN2IyNzM3ZTkxOGU1NzBkNmY3OWZlMzI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtiESVTOJZ1kjy3dlNbTV12GduBxb wfPKVw4i2SHyWpJTuk8gucKGPJzNnLWLY0Gjt5mpB0/btu+ns1Lj0S2CUsrodB5K NJ+pZHGoLU0u1JIGCXeDLc0uPhI9DemMkVMQA64VcqfkOvC5JngC11BF3W4w7uEJ iDe4Nztq55gbPeUVexNdQUmUSLske380i5ttlBAOafF4Nj+u1uzPdfhLy3ryJJz8 EtFurA9tdLZ+0p/X/djK6x8X97E45stJldjWeRDi2OkbXz5L2e8ZkJYdIYW/Fh2q UdCE0QqOyk7YVKUz2FNIxzThCNwWgAv5O4gnsDls1kfD6bDEO8/4eBSIDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHSJDZ/4gcV+eyc36RjlcNb3n+MpMB8GA1UdIwQY MBaAFPLuW2hJyMgfWnY1lViKa6aCHnZ7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOHU1YmFFbkl5QjlhZGpXVldJcHJwb0llZG5zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS8wMDJhODgtM2E4NS00NzZmLWI0NTIt NjBhMDM5ZGQxYmNhLzEvOHU1YmFFbkl5QjlhZGpXVldJcHJwb0llZG5zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS8wMDJhODgtM2E4NS00NzZmLWI0NTItNjBhMDM5ZGQxYmNh LzEvOHU1YmFFbkl5QjlhZGpXVldJcHJwb0llZG5zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA+HXkq6T +GUJMzkMLApCNEPIWY2G2J6quMZonknbM6KAtytTCTHXbOJ1W8n2QlmcsLavMcyk T03QwtVre0BXXFP5U9t8JhrRcFMYIwQ1QrJ7oKS+T/CkQgo+flhaR8AsAtVvAW8B cliXn36CnUkN7rMM/RpfuiomqYD84kp+dY6Uc8E8qW0Co3DSZA77J8Xitt++yt5v JOkORTRNRhgfyy3gTXkeNoZAnQBDni5fkGdo5CNnj97ejcMBBJLQTZ/1exxL3Bb0 /oMWwybv/ATo7jc9vgFhdenIX6IDfZKwS6FI3DEtrJ+v1vUCWTATLt/OVwUA4xj+ D5VdJKorVkCnEA== -----END CERTIFICATE-----Generated at Sun Dec 21 00:11:23 2025 by rpki-client