This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/818491-d657-42c8-bc9a-e5470c52d4dd/1/8mJAZfhrTPmEjex9q4ak24bBXhE.mft File: 8mJAZfhrTPmEjex9q4ak24bBXhE.mft (raw, json) Hash identifier: sP/0yVBQUUFsAP2cPsQKaNF2pmx+y0kOp3hvZpM7F28= Subject key identifier: 73:2E:13:8F:6B:3D:93:5E:B6:B2:52:A3:AC:35:87:CC:61:54:74:F4 Authority key identifier: F2:62:40:65:F8:6B:4C:F9:84:8D:EC:7D:AB:86:A4:DB:86:C1:5E:11 Certificate issuer: /CN=f2624065f86b4cf9848dec7dab86a4db86c15e11 Certificate serial: 019B6B44A31244F74CB0BFE5DCE13AC0DF8B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8mJAZfhrTPmEjex9q4ak24bBXhE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/818491-d657-42c8-bc9a-e5470c52d4dd/1/8mJAZfhrTPmEjex9q4ak24bBXhE.mft Manifest number: 038F Signing time: Mon 29 Dec 2025 18:00:18 +0000 Manifest this update: Mon 29 Dec 2025 18:00:18 +0000 Manifest next update: Tue 30 Dec 2025 18:00:18 +0000 Files and hashes: 1: 8mJAZfhrTPmEjex9q4ak24bBXhE.crl (hash: SWrG3hXanECTBJ5/r+4rQOUTmgPFvMphbMwHqZYxQBc=) 2: cD-tw650Z_Y6Vmxx9pyza1DBukk.roa (hash: wcc3gJVDDM85KdHRToySGGF6W2lO6V1fBEScrl4XQJI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/818491-d657-42c8-bc9a-e5470c52d4dd/1/8mJAZfhrTPmEjex9q4ak24bBXhE.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/818491-d657-42c8-bc9a-e5470c52d4dd/1/8mJAZfhrTPmEjex9q4ak24bBXhE.mft rsync://rpki.ripe.net/repository/DEFAULT/8mJAZfhrTPmEjex9q4ak24bBXhE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 18:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6b:44:a3:12:44:f7:4c:b0:bf:e5:dc:e1:3a:c0:df:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f2624065f86b4cf9848dec7dab86a4db86c15e11 Validity Not Before: Dec 29 18:00:18 2025 GMT Not After : Dec 30 18:00:18 2025 GMT Subject: CN=732e138f6b3d935eb6b252a3ac3587cc615474f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a9:b4:5f:c5:9d:a5:a9:6e:bc:18:62:ba:7e: 5a:a0:39:43:8e:e1:f6:90:99:31:0c:7f:8b:68:d4: 20:4a:96:f8:fb:aa:92:b2:81:4f:6a:35:4a:cf:9e: 9b:01:6c:43:8c:4d:c1:11:a0:d4:42:32:bf:3b:6c: a8:68:ac:d7:50:d3:ac:f0:ed:a7:91:ff:15:7d:79: 7c:29:9a:c9:70:44:1c:9d:1e:8d:07:ef:6d:c2:e8: 88:cc:93:08:24:65:c6:7f:e0:f7:a3:4d:4d:c8:1d: a3:4e:a7:84:86:fb:c1:a4:cd:31:60:aa:9f:64:a6: 38:a3:b2:cf:29:8b:d9:ad:52:d9:24:4c:eb:e5:40: e2:07:05:5d:93:31:f9:54:47:bf:5f:29:c0:a6:28: cd:ce:7b:b6:c1:c6:59:c2:3a:eb:63:7c:10:82:fd: ad:07:28:be:47:e7:50:7f:7f:a7:ee:0d:b1:b2:fb: c7:3f:bf:1f:4b:f0:19:55:26:8c:17:0b:68:86:6d: 21:ab:0e:65:d2:44:42:35:8f:ce:bd:9a:e6:89:ea: 2d:f9:0a:fa:e5:c9:c7:b3:f3:8d:eb:4a:81:1e:fd: 28:70:35:ae:90:37:a0:c1:c5:ca:e7:08:62:db:8a: a3:1a:5b:3c:d3:3a:17:9b:69:89:40:b0:da:c5:84: 6d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:2E:13:8F:6B:3D:93:5E:B6:B2:52:A3:AC:35:87:CC:61:54:74:F4 X509v3 Authority Key Identifier: keyid:F2:62:40:65:F8:6B:4C:F9:84:8D:EC:7D:AB:86:A4:DB:86:C1:5E:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8mJAZfhrTPmEjex9q4ak24bBXhE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/818491-d657-42c8-bc9a-e5470c52d4dd/1/8mJAZfhrTPmEjex9q4ak24bBXhE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/818491-d657-42c8-bc9a-e5470c52d4dd/1/8mJAZfhrTPmEjex9q4ak24bBXhE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:85:fb:17:9a:c1:46:8e:b9:ab:5d:04:4b:01:65:f7:d3:32: 36:87:30:01:41:d4:90:c0:c3:77:2d:bc:e1:1a:9b:7f:03:4b: 83:7b:72:21:86:34:0e:e6:bf:82:20:d5:f6:61:d4:e2:8b:91: 93:e0:cf:51:4b:f4:d6:37:19:3a:40:ec:a0:ca:0d:71:8c:f9: df:cf:8d:a3:0e:6e:da:c6:3d:39:3b:ed:a4:4a:2b:f5:71:b3: 8f:c8:d6:7c:2d:dd:89:ca:9d:a3:f9:8e:98:ca:84:a6:22:47: c5:43:db:1f:65:f4:de:2c:72:b8:76:59:66:cf:8a:eb:1a:df: 82:83:e9:dd:4e:26:85:b1:09:6b:d5:9b:5a:1e:16:1a:49:39: 6f:a0:92:2c:22:12:18:30:00:b7:aa:68:78:9b:86:70:3d:cf: 34:dd:28:8c:49:2c:34:13:33:84:8b:b2:56:85:a9:59:a1:82: 66:3b:bb:6f:99:0c:fb:82:d0:ab:3a:12:8f:32:13:87:2c:5b: b8:9e:0e:f0:3c:00:f3:e5:42:d9:fd:c6:fe:25:e6:73:1c:ab: ad:b0:4f:7a:c5:02:b7:62:6f:e8:12:4c:99:db:ca:82:ed:15: 2c:b9:3d:e0:31:49:a0:60:31:5c:71:56:b5:b5:5b:3a:94:32: 1f:fd:9a:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtrRKMSRPdMsL/l3OE6wN+LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYyNjI0MDY1Zjg2YjRjZjk4NDhkZWM3ZGFiODZhNGRiODZj MTVlMTEwHhcNMjUxMjI5MTgwMDE4WhcNMjUxMjMwMTgwMDE4WjAzMTEwLwYDVQQD Eyg3MzJlMTM4ZjZiM2Q5MzVlYjZiMjUyYTNhYzM1ODdjYzYxNTQ3NGY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp6m0X8WdpaluvBhiun5aoDlDjuH2 kJkxDH+LaNQgSpb4+6qSsoFPajVKz56bAWxDjE3BEaDUQjK/O2yoaKzXUNOs8O2n kf8VfXl8KZrJcEQcnR6NB+9twuiIzJMIJGXGf+D3o01NyB2jTqeEhvvBpM0xYKqf ZKY4o7LPKYvZrVLZJEzr5UDiBwVdkzH5VEe/XynApijNznu2wcZZwjrrY3wQgv2t Byi+R+dQf3+n7g2xsvvHP78fS/AZVSaMFwtohm0hqw5l0kRCNY/OvZrmieot+Qr6 5cnHs/ON60qBHv0ocDWukDegwcXK5whi24qjGls80zoXm2mJQLDaxYRt2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHMuE49rPZNetrJSo6w1h8xhVHT0MB8GA1UdIwQY MBaAFPJiQGX4a0z5hI3sfauGpNuGwV4RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOG1KQVpmaHJUUG1FamV4OXE0YWsyNGJCWGhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi84MTg0OTEtZDY1Ny00MmM4LWJjOWEt ZTU0NzBjNTJkNGRkLzEvOG1KQVpmaHJUUG1FamV4OXE0YWsyNGJCWGhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi84MTg0OTEtZDY1Ny00MmM4LWJjOWEtZTU0NzBjNTJkNGRk LzEvOG1KQVpmaHJUUG1FamV4OXE0YWsyNGJCWGhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN4X7F5rB Ro65q10ESwFl99MyNocwAUHUkMDDdy284RqbfwNLg3tyIYY0Dua/giDV9mHU4ouR k+DPUUv01jcZOkDsoMoNcYz538+Now5u2sY9OTvtpEor9XGzj8jWfC3dicqdo/mO mMqEpiJHxUPbH2X03ixyuHZZZs+K6xrfgoPp3U4mhbEJa9WbWh4WGkk5b6CSLCIS GDAAt6poeJuGcD3PNN0ojEksNBMzhIuyVoWpWaGCZju7b5kM+4LQqzoSjzIThyxb uJ4O8DwA8+VC2f3G/iXmcxyrrbBPesUCt2Jv6BJMmdvKgu0VLLk94DFJoGAxXHFW tbVbOpQyH/2aoA== -----END CERTIFICATE-----Generated at Tue Dec 30 01:30:14 2025 by rpki-client