This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft File: st8A84zO2SGXmTB2yzaFvzK8Xmk.mft (raw, json) Hash identifier: BYo1i+cEg9x+GtnkBDopcmXxxSx1pS8quMzs2Ev2/3g= Subject key identifier: C2:C5:D1:71:DD:1E:07:96:4F:C9:14:48:54:34:70:69:33:0D:C6:5E Authority key identifier: B2:DF:00:F3:8C:CE:D9:21:97:99:30:76:CB:36:85:BF:32:BC:5E:69 Certificate issuer: /CN=b2df00f38cced92197993076cb3685bf32bc5e69 Certificate serial: 019B507350128D56D5750A795602888D86F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/st8A84zO2SGXmTB2yzaFvzK8Xmk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft Manifest number: 12FB Signing time: Wed 24 Dec 2025 13:01:32 +0000 Manifest this update: Wed 24 Dec 2025 13:01:32 +0000 Manifest next update: Thu 25 Dec 2025 13:01:32 +0000 Files and hashes: 1: gbTQ5TFLqYdv3bxMQXRQSRcMIoc.roa (hash: rJ5djAjgxTYzs8j0EQsFjkKUrs3CGg0sgiibLKW68Ck=) 2: st8A84zO2SGXmTB2yzaFvzK8Xmk.crl (hash: 5TVDOhfb0UNME0yKBJLG4lJeBDINDweGPOhte5ab4jI=) 3: wu3L_A3dWSKUeaU4lbLH5tQFGhs.roa (hash: QMvHM8N7K9OdWcNx9rJFFp+Z7jXiktM21WFlvU4ZxMM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft rsync://rpki.ripe.net/repository/DEFAULT/st8A84zO2SGXmTB2yzaFvzK8Xmk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 13:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:50:73:50:12:8d:56:d5:75:0a:79:56:02:88:8d:86:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2df00f38cced92197993076cb3685bf32bc5e69 Validity Not Before: Dec 24 13:01:32 2025 GMT Not After : Dec 25 13:01:32 2025 GMT Subject: CN=c2c5d171dd1e07964fc9144854347069330dc65e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ae:76:09:7c:3c:ed:e6:a8:e8:f1:59:94:e2: e8:42:50:0a:05:da:6c:da:10:7e:73:de:33:0f:db: 80:d1:b6:97:b5:c1:f7:6b:98:e8:76:df:1a:32:02: 5c:bb:02:dd:67:fe:b0:a7:64:09:71:6e:07:54:0d: 53:48:e3:4e:64:b4:2c:00:ba:d4:c0:b7:67:59:30: 00:c4:5c:99:da:2d:21:96:94:03:1d:e6:f6:03:9e: 92:34:3e:4d:b5:e7:7d:ed:4d:18:7d:99:9e:93:fd: 2d:2c:53:73:46:9b:22:6d:1b:ec:38:46:5b:3f:39: fc:df:66:0c:6b:da:5d:17:e4:5c:a0:37:07:ab:7a: dc:e0:74:e1:19:3e:73:b2:e1:90:c7:4c:64:df:38: df:2b:a3:ed:67:83:29:3e:c5:0d:1d:71:10:fd:39: 3a:b0:e8:7b:11:dd:af:d9:52:90:45:56:3d:fc:32: b1:e2:21:7b:74:4d:5e:1c:b9:53:b3:7f:67:8a:0a: 76:eb:ac:cb:b1:78:d1:e3:1d:85:75:ac:cb:e7:9f: e8:23:df:84:15:f7:e6:58:67:f1:8c:8d:2a:aa:d6: 45:16:0a:a3:b9:21:89:e8:48:27:58:a7:6e:85:e3: 87:d0:82:44:42:65:1e:f6:9d:06:b4:d0:fc:cb:bb: 0f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:C5:D1:71:DD:1E:07:96:4F:C9:14:48:54:34:70:69:33:0D:C6:5E X509v3 Authority Key Identifier: keyid:B2:DF:00:F3:8C:CE:D9:21:97:99:30:76:CB:36:85:BF:32:BC:5E:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/st8A84zO2SGXmTB2yzaFvzK8Xmk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c6:8b:81:6a:a0:2f:4e:1a:22:e7:02:a2:e5:e8:fa:c2:50:50: 65:cc:78:c3:d4:80:3e:20:06:ad:a9:50:2c:d0:2b:62:97:de: 5c:1f:b2:18:ae:c0:f6:cc:31:9f:63:e9:d3:9a:70:9a:d6:6c: bf:94:9f:60:12:09:1c:9f:31:12:b0:26:81:fa:98:6d:45:96: a3:25:68:8e:98:19:7e:07:3d:8c:92:4a:33:1f:e8:90:a4:a0: 07:71:32:21:b2:f1:76:67:04:30:2f:75:7b:f3:b6:b2:f3:b4: 45:bd:d1:85:3c:c7:bc:de:ed:38:3e:28:b0:92:cf:2f:0c:72: c0:02:12:c0:f5:c5:40:50:14:3f:3b:aa:6a:4d:f6:9a:a1:04: 4d:cd:66:10:c4:3d:69:09:99:2a:25:a0:74:11:7f:de:0e:3c: 61:c3:8a:fb:b4:1d:2f:99:de:ec:cf:b6:cb:59:22:fe:31:0d: 63:e5:ba:ba:9d:e1:15:24:71:e7:d6:21:9f:45:22:a9:55:d9: 0f:fc:6b:23:76:8f:60:c6:6e:a8:2d:5e:38:91:59:c6:29:2d: 6c:d8:3a:69:33:ff:04:4e:eb:4d:7e:8a:78:01:92:17:90:35: bc:fc:a0:ec:e4:b2:21:4c:3a:20:75:d5:b0:1c:0f:bf:a6:9c: 31:0a:40:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtQc1ASjVbVdQp5VgKIjYbwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyZGYwMGYzOGNjZWQ5MjE5Nzk5MzA3NmNiMzY4NWJmMzJi YzVlNjkwHhcNMjUxMjI0MTMwMTMyWhcNMjUxMjI1MTMwMTMyWjAzMTEwLwYDVQQD EyhjMmM1ZDE3MWRkMWUwNzk2NGZjOTE0NDg1NDM0NzA2OTMzMGRjNjVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm652CXw87eao6PFZlOLoQlAKBdps 2hB+c94zD9uA0baXtcH3a5jodt8aMgJcuwLdZ/6wp2QJcW4HVA1TSONOZLQsALrU wLdnWTAAxFyZ2i0hlpQDHeb2A56SND5Nted97U0YfZmek/0tLFNzRpsibRvsOEZb Pzn832YMa9pdF+RcoDcHq3rc4HThGT5zsuGQx0xk3zjfK6PtZ4MpPsUNHXEQ/Tk6 sOh7Ed2v2VKQRVY9/DKx4iF7dE1eHLlTs39nigp266zLsXjR4x2FdazL55/oI9+E FffmWGfxjI0qqtZFFgqjuSGJ6EgnWKduheOH0IJEQmUe9p0GtND8y7sPCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMLF0XHdHgeWT8kUSFQ0cGkzDcZeMB8GA1UdIwQY MBaAFLLfAPOMztkhl5kwdss2hb8yvF5pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3Q4QTg0ek8yU0dYbVRCMnl6YUZ2eks4WG1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83MDZmYTgtNTJhMi00ZWQyLWEyZTEt MDRlNGU0ZGM1ZmJhLzEvc3Q4QTg0ek8yU0dYbVRCMnl6YUZ2eks4WG1rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi83MDZmYTgtNTJhMi00ZWQyLWEyZTEtMDRlNGU0ZGM1ZmJh LzEvc3Q4QTg0ek8yU0dYbVRCMnl6YUZ2eks4WG1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxouBaqAv Thoi5wKi5ej6wlBQZcx4w9SAPiAGralQLNArYpfeXB+yGK7A9swxn2Pp05pwmtZs v5SfYBIJHJ8xErAmgfqYbUWWoyVojpgZfgc9jJJKMx/okKSgB3EyIbLxdmcEMC91 e/O2svO0Rb3RhTzHvN7tOD4osJLPLwxywAISwPXFQFAUPzuqak32mqEETc1mEMQ9 aQmZKiWgdBF/3g48YcOK+7QdL5ne7M+2y1ki/jENY+W6up3hFSRx59Yhn0UiqVXZ D/xrI3aPYMZuqC1eOJFZxiktbNg6aTP/BE7rTX6KeAGSF5A1vPyg7OSyIUw6IHXV sBwPv6acMQpA1Q== -----END CERTIFICATE-----Generated at Wed Dec 24 20:21:06 2025 by rpki-client