This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft File: 18YKVOA8n4Fcwzr9RdPE25r3bxY.mft (raw, json) Hash identifier: Y35Kn2f/t19sBAb8uyXspIO/VWZKN8daAwWdJ8bs1tg= Subject key identifier: 8D:0F:86:41:F4:53:21:CF:4F:50:FE:48:B9:70:07:AC:DA:4A:E5:F8 Authority key identifier: D7:C6:0A:54:E0:3C:9F:81:5C:C3:3A:FD:45:D3:C4:DB:9A:F7:6F:16 Certificate issuer: /CN=d7c60a54e03c9f815cc33afd45d3c4db9af76f16 Certificate serial: 019B397D1151CA812F591AC3B1DE1885E2FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/18YKVOA8n4Fcwzr9RdPE25r3bxY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft Manifest number: 0EAB Signing time: Sat 20 Dec 2025 02:00:56 +0000 Manifest this update: Sat 20 Dec 2025 02:00:56 +0000 Manifest next update: Sun 21 Dec 2025 02:00:56 +0000 Files and hashes: 1: 18YKVOA8n4Fcwzr9RdPE25r3bxY.crl (hash: nF0CD/vJIOjEEbBo0+Ba4jyHqEIGoZicCgoq3HWzazM=) 2: 4YqKA_NWl67P1UUsYLLewOce3N4.roa (hash: jzpkFPCa8z2EEBKsdTK/EMaQenQwoVIoEp37mrkYSlo=) 3: IQytQDxkG6z6-hb3Iu6XIv8OQic.roa (hash: Fz8ORoLoUXIyDmykV9akqdIIcR0t067gq2FU4oUFIwY=) 4: OPYEfeaD4UG3_woKyPv1Wj7JrZg.roa (hash: iv8H/ObGNtJDTTAshveiukMxLvPbVXVjWuW+XjG+jWo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft rsync://rpki.ripe.net/repository/DEFAULT/18YKVOA8n4Fcwzr9RdPE25r3bxY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:7d:11:51:ca:81:2f:59:1a:c3:b1:de:18:85:e2:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d7c60a54e03c9f815cc33afd45d3c4db9af76f16 Validity Not Before: Dec 20 02:00:56 2025 GMT Not After : Dec 21 02:00:56 2025 GMT Subject: CN=8d0f8641f45321cf4f50fe48b97007acda4ae5f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:a3:70:07:9c:64:f1:23:7f:06:81:f7:c1:61: 64:08:c9:7a:f7:f8:91:b8:aa:bf:41:db:fd:64:6a: 1f:15:b3:83:79:da:f6:e1:7f:b3:82:3f:55:a6:c8: cf:b0:85:99:80:80:a0:3c:6d:59:03:67:b2:f5:94: 03:99:0b:e9:c7:e2:a5:c1:02:a2:d4:e4:5e:c3:44: a8:43:dc:3f:15:ec:36:31:be:ba:dc:f4:b6:00:0e: 7f:87:47:15:25:86:02:01:4a:c9:f5:a9:e5:64:d5: 56:b0:0e:12:19:17:99:50:5c:6f:a1:b1:ce:56:e1: ac:0f:58:40:23:cb:96:81:22:01:6f:bf:20:25:4c: e6:64:fc:ed:a0:b3:18:f0:30:63:6d:5a:f4:09:5e: 6d:ee:67:a5:e1:76:1b:ee:b5:a7:c7:d9:79:d8:e5: 3c:76:56:23:a7:68:22:75:a6:2d:bb:81:6e:a7:f1: e4:1d:8e:8f:6c:55:5b:5a:c2:e2:1d:36:a3:8b:4d: 8a:90:e9:6b:a0:ac:a0:54:1f:3a:e9:71:20:41:92: 34:1b:1b:84:ec:28:76:fe:79:b9:34:26:d5:9b:39: ca:b1:4a:c3:fa:4f:66:c7:04:c3:93:89:9d:1d:48: b8:60:9b:db:d2:6d:45:71:b0:59:dc:2c:72:2d:db: 0a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:0F:86:41:F4:53:21:CF:4F:50:FE:48:B9:70:07:AC:DA:4A:E5:F8 X509v3 Authority Key Identifier: keyid:D7:C6:0A:54:E0:3C:9F:81:5C:C3:3A:FD:45:D3:C4:DB:9A:F7:6F:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/18YKVOA8n4Fcwzr9RdPE25r3bxY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:89:09:2e:2f:66:2b:a4:6a:d6:ed:19:b1:f0:75:9a:76:7f: db:96:39:bc:eb:42:06:db:6b:09:66:0c:cb:08:78:ea:b6:34: f8:7c:b2:8c:73:1d:9c:4e:52:49:fe:96:57:01:f6:e1:7a:93: b7:f4:ee:d0:f2:75:ad:fd:b2:2e:f3:03:80:43:b6:88:24:23: bc:fe:d7:13:70:ad:6f:42:9d:c4:56:b1:21:52:a2:02:08:3a: 97:35:52:8b:4f:e3:c5:63:1f:0a:cf:4b:7a:33:7b:b1:05:e2: 7d:c3:16:07:79:e3:3f:cd:09:8a:93:13:65:c5:fc:bb:7b:86: 00:b0:fa:ba:82:00:92:45:42:d7:53:7a:87:bf:47:b4:f4:e8: 6f:59:e3:53:9c:53:e0:32:b0:aa:78:a1:7e:02:cf:aa:18:75: ce:20:93:17:f1:05:1c:d4:7e:e7:84:c8:1d:4d:8b:94:08:c6: 24:37:35:e0:6d:c8:ed:32:77:f6:45:e5:e2:dd:5c:ec:79:19: 77:63:73:60:90:e9:e3:45:ad:78:67:3e:2f:8a:2d:2e:c8:43: d1:f7:59:da:7f:d1:5c:88:71:14:d0:04:a8:ac:21:f4:d7:c5: 89:69:8e:01:b2:32:07:24:84:5b:92:da:13:72:e9:a4:a0:57: 2d:f5:5a:53 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs5fRFRyoEvWRrDsd4YheL6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ3YzYwYTU0ZTAzYzlmODE1Y2MzM2FmZDQ1ZDNjNGRiOWFm NzZmMTYwHhcNMjUxMjIwMDIwMDU2WhcNMjUxMjIxMDIwMDU2WjAzMTEwLwYDVQQD Eyg4ZDBmODY0MWY0NTMyMWNmNGY1MGZlNDhiOTcwMDdhY2RhNGFlNWY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjqNwB5xk8SN/BoH3wWFkCMl69/iR uKq/Qdv9ZGofFbODedr24X+zgj9VpsjPsIWZgICgPG1ZA2ey9ZQDmQvpx+KlwQKi 1ORew0SoQ9w/Few2Mb663PS2AA5/h0cVJYYCAUrJ9anlZNVWsA4SGReZUFxvobHO VuGsD1hAI8uWgSIBb78gJUzmZPztoLMY8DBjbVr0CV5t7mel4XYb7rWnx9l52OU8 dlYjp2gidaYtu4Fup/HkHY6PbFVbWsLiHTaji02KkOlroKygVB866XEgQZI0GxuE 7Ch2/nm5NCbVmznKsUrD+k9mxwTDk4mdHUi4YJvb0m1FcbBZ3CxyLdsKnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI0PhkH0UyHPT1D+SLlwB6zaSuX4MB8GA1UdIwQY MBaAFNfGClTgPJ+BXMM6/UXTxNua928WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMThZS1ZPQThuNEZjd3pyOVJkUEUyNXIzYnhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC84OTA5MGMtNTNiMS00MWJlLWEzMzgt MzgzMWYzZWQxY2E4LzEvMThZS1ZPQThuNEZjd3pyOVJkUEUyNXIzYnhZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC84OTA5MGMtNTNiMS00MWJlLWEzMzgtMzgzMWYzZWQxY2E4 LzEvMThZS1ZPQThuNEZjd3pyOVJkUEUyNXIzYnhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO4kJLi9m K6Rq1u0ZsfB1mnZ/25Y5vOtCBttrCWYMywh46rY0+HyyjHMdnE5SSf6WVwH24XqT t/Tu0PJ1rf2yLvMDgEO2iCQjvP7XE3Ctb0KdxFaxIVKiAgg6lzVSi0/jxWMfCs9L ejN7sQXifcMWB3njP80JipMTZcX8u3uGALD6uoIAkkVC11N6h79HtPTob1njU5xT 4DKwqnihfgLPqhh1ziCTF/EFHNR+54TIHU2LlAjGJDc14G3I7TJ39kXl4t1c7HkZ d2NzYJDp40WteGc+L4otLshD0fdZ2n/RXIhxFNAEqKwh9NfFiWmOAbIyBySEW5La E3LppKBXLfVaUw== -----END CERTIFICATE-----Generated at Sat Dec 20 08:06:09 2025 by rpki-client