This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft File: 8lizqXQbQx177NZChrnmvODpddo.mft (raw, json) Hash identifier: 627wvQ/+iMutPAFUJhffEDFiCLfV5HNK/o0s/tQ945k= Subject key identifier: 57:6A:B1:5A:9A:E5:42:6D:B0:01:FA:B6:95:7B:2C:F0:6C:B1:91:AE Authority key identifier: F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA Certificate issuer: /CN=f258b3a9741b431d7becd64286b9e6bce0e975da Certificate serial: 019B31FAF391C28FA9E785DA20624E8397B5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft Manifest number: 1751 Signing time: Thu 18 Dec 2025 15:01:28 +0000 Manifest this update: Thu 18 Dec 2025 15:01:28 +0000 Manifest next update: Fri 19 Dec 2025 15:01:28 +0000 Files and hashes: 1: 8lizqXQbQx177NZChrnmvODpddo.crl (hash: FT8fLvp9z3dyjgZE7sGiUwbhlDVXVZbTIwNOHgEC3jo=) 2: LSDLxpYG9vUS-ynb5NuKXC0hxwk.roa (hash: iU/GAJxLreLcqJkb0jyy5NFNWuEEVZB548A5w51V+6U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:fa:f3:91:c2:8f:a9:e7:85:da:20:62:4e:83:97:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f258b3a9741b431d7becd64286b9e6bce0e975da Validity Not Before: Dec 18 15:01:28 2025 GMT Not After : Dec 19 15:01:28 2025 GMT Subject: CN=576ab15a9ae5426db001fab6957b2cf06cb191ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:dd:1c:60:b0:19:d1:cc:f6:62:29:e3:38:99: fa:c4:0b:43:fa:2d:d9:63:e7:da:4d:19:d4:d2:cd: c8:97:30:58:71:94:8f:12:8f:73:d7:ed:0e:f6:61: 34:7f:d2:43:77:94:f7:cc:2e:1b:74:da:b3:62:3b: 16:7e:ca:0a:77:81:5b:3d:a8:d6:a8:b7:87:8b:67: c3:c6:87:cd:1f:d0:4e:4f:a2:ea:06:ec:2f:af:dc: 30:4a:98:94:db:05:c9:91:da:8a:de:fd:ac:da:d5: 84:9a:77:33:e7:21:8f:4d:a7:5e:77:31:e0:48:8f: b1:87:c2:1d:9c:3f:b6:77:63:05:68:a8:b9:b0:aa: 68:dc:2c:20:01:29:98:31:2e:88:d0:d8:d9:5a:36: 7d:70:56:44:eb:c9:27:a0:92:11:6b:fa:99:50:2e: 21:c5:f9:c7:1d:05:06:57:cd:70:95:1a:b8:f6:e2: 75:d3:ff:54:22:7c:9b:6f:b0:9d:c8:d5:cf:f5:d1: 26:25:11:b0:a0:aa:39:69:df:1e:bf:7f:ef:3d:d3: 9f:a0:3b:e8:c2:81:60:de:de:28:ac:e9:35:37:80: 03:d8:e8:c2:9e:18:c9:60:d7:a0:a7:44:24:b6:a3: de:16:23:9a:b8:ce:3c:af:30:a2:f2:4a:fb:6e:44: da:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:6A:B1:5A:9A:E5:42:6D:B0:01:FA:B6:95:7B:2C:F0:6C:B1:91:AE X509v3 Authority Key Identifier: keyid:F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:4f:f5:fb:58:2a:f6:81:f4:f3:7f:7f:a5:67:8c:cd:64:5c: d2:d3:d5:27:ef:b0:6a:49:5e:e3:3a:1c:6c:95:db:e3:82:93: 41:a0:df:5b:e1:5f:8f:3b:cb:ab:3e:a9:5a:a4:47:44:48:c3: 4a:70:59:62:63:07:9f:53:5c:9b:50:08:10:02:78:f5:b6:f0: 00:03:c4:6f:ed:69:f7:e9:e3:83:68:b8:47:a4:bc:9c:3f:a2: 28:6b:4c:5f:ac:0b:43:c1:3a:81:f9:d2:8b:06:df:82:7d:8e: 2c:14:f8:2e:3c:cb:5a:db:fc:45:93:a9:4a:56:56:d4:3a:d8: 32:43:3e:bc:98:60:ea:2e:ea:fa:9a:d0:c3:88:bd:d1:43:2f: d7:e6:18:58:51:e7:9b:93:c4:49:40:fa:c2:23:70:eb:73:34: ec:b5:3a:b6:73:11:1f:a9:e0:16:4a:24:3c:fd:9d:39:82:1d: 6e:6a:a8:3f:c3:88:fb:66:60:75:62:99:ad:39:f9:60:70:0a: 4a:7d:3d:9b:f9:fc:23:c4:68:fa:ba:3c:b0:4a:f5:3d:b7:17: 2a:43:77:84:2c:98:c0:c4:2d:83:4c:28:45:32:87:10:86:d7: 69:9f:15:ff:55:c5:5a:fd:b4:f8:2a:0f:07:26:d4:09:31:b8: a7:5a:8d:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsx+vORwo+p54XaIGJOg5e1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYyNThiM2E5NzQxYjQzMWQ3YmVjZDY0Mjg2YjllNmJjZTBl OTc1ZGEwHhcNMjUxMjE4MTUwMTI4WhcNMjUxMjE5MTUwMTI4WjAzMTEwLwYDVQQD Eyg1NzZhYjE1YTlhZTU0MjZkYjAwMWZhYjY5NTdiMmNmMDZjYjE5MWFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA490cYLAZ0cz2YinjOJn6xAtD+i3Z Y+faTRnU0s3IlzBYcZSPEo9z1+0O9mE0f9JDd5T3zC4bdNqzYjsWfsoKd4FbPajW qLeHi2fDxofNH9BOT6LqBuwvr9wwSpiU2wXJkdqK3v2s2tWEmncz5yGPTadedzHg SI+xh8IdnD+2d2MFaKi5sKpo3CwgASmYMS6I0NjZWjZ9cFZE68knoJIRa/qZUC4h xfnHHQUGV81wlRq49uJ10/9UInybb7CdyNXP9dEmJRGwoKo5ad8ev3/vPdOfoDvo woFg3t4orOk1N4AD2OjCnhjJYNegp0QktqPeFiOauM48rzCi8kr7bkTafwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFdqsVqa5UJtsAH6tpV7LPBssZGuMB8GA1UdIwQY MBaAFPJYs6l0G0Mde+zWQoa55rzg6XXaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOGxpenFYUWJReDE3N05aQ2hybm12T0RwZGRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8wOTVkNWYtMjY5My00MTgyLTkzOTct Y2RhOTRmYjc5NmQxLzEvOGxpenFYUWJReDE3N05aQ2hybm12T0RwZGRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8wOTVkNWYtMjY5My00MTgyLTkzOTctY2RhOTRmYjc5NmQx LzEvOGxpenFYUWJReDE3N05aQ2hybm12T0RwZGRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD0/1+1gq 9oH0839/pWeMzWRc0tPVJ++wakle4zocbJXb44KTQaDfW+FfjzvLqz6pWqRHREjD SnBZYmMHn1Ncm1AIEAJ49bbwAAPEb+1p9+njg2i4R6S8nD+iKGtMX6wLQ8E6gfnS iwbfgn2OLBT4LjzLWtv8RZOpSlZW1DrYMkM+vJhg6i7q+prQw4i90UMv1+YYWFHn m5PESUD6wiNw63M07LU6tnMRH6ngFkokPP2dOYIdbmqoP8OI+2ZgdWKZrTn5YHAK Sn09m/n8I8Ro+ro8sEr1PbcXKkN3hCyYwMQtg0woRTKHEIbXaZ8V/1XFWv20+CoP BybUCTG4p1qNhA== -----END CERTIFICATE-----Generated at Thu Dec 18 21:31:54 2025 by rpki-client