This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/818491-d657-42c8-bc9a-e5470c52d4dd/1/8mJAZfhrTPmEjex9q4ak24bBXhE.mft File: 8mJAZfhrTPmEjex9q4ak24bBXhE.mft (raw, json) Hash identifier: GPm0xYSwWQjA9VSvvLOneCbpbL15yfTycXKvCiYFiLI= Subject key identifier: 45:32:93:3C:53:E9:03:E6:70:95:BF:1F:3C:2B:01:5C:1E:1C:95:07 Authority key identifier: F2:62:40:65:F8:6B:4C:F9:84:8D:EC:7D:AB:86:A4:DB:86:C1:5E:11 Certificate issuer: /CN=f2624065f86b4cf9848dec7dab86a4db86c15e11 Certificate serial: 019B3AFDBCFEFEA93FFC8D0DD0E73040B584 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8mJAZfhrTPmEjex9q4ak24bBXhE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/818491-d657-42c8-bc9a-e5470c52d4dd/1/8mJAZfhrTPmEjex9q4ak24bBXhE.mft Manifest number: 0376 Signing time: Sat 20 Dec 2025 09:01:06 +0000 Manifest this update: Sat 20 Dec 2025 09:01:06 +0000 Manifest next update: Sun 21 Dec 2025 09:01:06 +0000 Files and hashes: 1: 8mJAZfhrTPmEjex9q4ak24bBXhE.crl (hash: YgJ6fCQxhxeD0IQ33Sslsy64CWbX9PY630GzLRXyQEo=) 2: cD-tw650Z_Y6Vmxx9pyza1DBukk.roa (hash: wcc3gJVDDM85KdHRToySGGF6W2lO6V1fBEScrl4XQJI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/818491-d657-42c8-bc9a-e5470c52d4dd/1/8mJAZfhrTPmEjex9q4ak24bBXhE.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/818491-d657-42c8-bc9a-e5470c52d4dd/1/8mJAZfhrTPmEjex9q4ak24bBXhE.mft rsync://rpki.ripe.net/repository/DEFAULT/8mJAZfhrTPmEjex9q4ak24bBXhE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:fd:bc:fe:fe:a9:3f:fc:8d:0d:d0:e7:30:40:b5:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f2624065f86b4cf9848dec7dab86a4db86c15e11 Validity Not Before: Dec 20 09:01:06 2025 GMT Not After : Dec 21 09:01:06 2025 GMT Subject: CN=4532933c53e903e67095bf1f3c2b015c1e1c9507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a9:fc:94:48:71:d1:11:12:44:4d:ee:cf:a9: d1:f7:71:54:88:42:8c:99:d1:e7:06:98:65:4c:70: bc:3d:9a:b1:77:6d:ff:e9:9d:80:b0:bf:76:9d:ee: f1:70:20:2b:33:a0:be:f0:59:17:e9:c0:0d:e1:e1: 70:f7:21:19:54:62:d3:5a:66:78:c4:38:68:14:8c: cd:94:31:7c:38:90:3b:21:6a:42:1b:ac:2d:0e:31: a6:90:a9:cf:5d:86:36:75:cb:21:d3:9c:e0:0f:73: 4e:82:45:b4:f6:98:9a:44:3a:57:12:3c:18:ba:98: 15:e4:d1:b1:10:55:23:c8:8a:12:d9:f8:10:57:d3: d1:3c:7a:3e:d4:ed:27:12:0a:ad:0d:e9:65:df:13: 6e:c6:65:d0:d6:dd:60:87:c2:85:db:6a:82:a5:2c: b3:8f:75:a0:e4:d7:b9:bf:a6:79:78:c6:a1:12:c5: 5c:a1:a9:43:b4:e4:3c:4e:76:b6:97:ba:fc:50:d2: a0:46:39:17:37:99:99:fa:44:d6:6d:89:db:13:8e: 22:24:ac:63:42:0c:b9:a0:bc:d9:cd:f9:ea:2a:57: cc:d8:5d:a3:27:58:8c:09:22:60:65:1b:d4:8d:22: 63:40:e5:83:72:e9:46:93:65:92:86:2a:49:1c:db: 4e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:32:93:3C:53:E9:03:E6:70:95:BF:1F:3C:2B:01:5C:1E:1C:95:07 X509v3 Authority Key Identifier: keyid:F2:62:40:65:F8:6B:4C:F9:84:8D:EC:7D:AB:86:A4:DB:86:C1:5E:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8mJAZfhrTPmEjex9q4ak24bBXhE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/818491-d657-42c8-bc9a-e5470c52d4dd/1/8mJAZfhrTPmEjex9q4ak24bBXhE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/818491-d657-42c8-bc9a-e5470c52d4dd/1/8mJAZfhrTPmEjex9q4ak24bBXhE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:26:00:77:84:3f:2e:6a:c9:5a:18:00:f7:a1:bb:36:76:20: 1d:52:f8:96:d8:9c:63:b8:8d:c9:c9:0c:0d:e8:1b:b1:81:cd: 99:41:ee:82:59:2d:a7:91:d0:e2:b6:b3:a0:16:ac:e9:53:31: c2:33:e4:3f:d4:ef:77:66:ed:a7:31:33:a3:f8:76:29:e9:a3: b1:71:ad:6c:a7:2a:20:79:6c:e7:1b:fd:35:7e:b1:dc:c0:84: fa:48:ea:e7:90:f7:6f:76:15:a5:11:db:c5:90:b4:af:59:f6: 91:e5:1c:99:06:ce:1f:fc:f6:f2:b5:da:a6:a8:89:4b:aa:d6: 9b:6b:0d:52:96:e0:a8:54:73:a6:db:20:67:30:50:6a:6f:f9: be:92:b7:e3:16:2a:8d:9d:5d:1d:90:4a:7f:d2:c1:65:31:8f: 84:e4:55:e1:37:1f:a8:8a:16:5d:5b:6b:8a:40:c4:3c:bb:bd: 82:c5:0f:2d:c7:43:d1:02:dc:3c:66:a2:7a:16:c7:fc:64:f4: c6:90:15:0c:3f:81:60:c0:f8:ae:23:97:93:cc:0c:e0:7d:e2: ff:f3:89:3f:3b:2d:db:ec:d5:f6:1f:09:93:1d:24:0c:c0:b9: 4f:10:89:30:36:0d:49:a3:15:e7:57:dd:23:1e:30:63:34:12: f3:be:a7:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6/bz+/qk//I0N0OcwQLWEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYyNjI0MDY1Zjg2YjRjZjk4NDhkZWM3ZGFiODZhNGRiODZj MTVlMTEwHhcNMjUxMjIwMDkwMTA2WhcNMjUxMjIxMDkwMTA2WjAzMTEwLwYDVQQD Eyg0NTMyOTMzYzUzZTkwM2U2NzA5NWJmMWYzYzJiMDE1YzFlMWM5NTA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtan8lEhx0RESRE3uz6nR93FUiEKM mdHnBphlTHC8PZqxd23/6Z2AsL92ne7xcCArM6C+8FkX6cAN4eFw9yEZVGLTWmZ4 xDhoFIzNlDF8OJA7IWpCG6wtDjGmkKnPXYY2dcsh05zgD3NOgkW09piaRDpXEjwY upgV5NGxEFUjyIoS2fgQV9PRPHo+1O0nEgqtDell3xNuxmXQ1t1gh8KF22qCpSyz j3Wg5Ne5v6Z5eMahEsVcoalDtOQ8Tna2l7r8UNKgRjkXN5mZ+kTWbYnbE44iJKxj Qgy5oLzZzfnqKlfM2F2jJ1iMCSJgZRvUjSJjQOWDculGk2WShipJHNtOZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEUykzxT6QPmcJW/HzwrAVweHJUHMB8GA1UdIwQY MBaAFPJiQGX4a0z5hI3sfauGpNuGwV4RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOG1KQVpmaHJUUG1FamV4OXE0YWsyNGJCWGhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi84MTg0OTEtZDY1Ny00MmM4LWJjOWEt ZTU0NzBjNTJkNGRkLzEvOG1KQVpmaHJUUG1FamV4OXE0YWsyNGJCWGhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi84MTg0OTEtZDY1Ny00MmM4LWJjOWEtZTU0NzBjNTJkNGRk LzEvOG1KQVpmaHJUUG1FamV4OXE0YWsyNGJCWGhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAciYAd4Q/ LmrJWhgA96G7NnYgHVL4lticY7iNyckMDegbsYHNmUHuglktp5HQ4razoBas6VMx wjPkP9Tvd2btpzEzo/h2KemjsXGtbKcqIHls5xv9NX6x3MCE+kjq55D3b3YVpRHb xZC0r1n2keUcmQbOH/z28rXapqiJS6rWm2sNUpbgqFRzptsgZzBQam/5vpK34xYq jZ1dHZBKf9LBZTGPhORV4TcfqIoWXVtrikDEPLu9gsUPLcdD0QLcPGaiehbH/GT0 xpAVDD+BYMD4riOXk8wM4H3i//OJPzst2+zV9h8Jkx0kDMC5TxCJMDYNSaMV51fd Ix4wYzQS876nhA== -----END CERTIFICATE-----Generated at Sat Dec 20 13:57:54 2025 by rpki-client