This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft File: i8EWjaFgICh-6h_eygVBkwqdNok.mft (raw, json) Hash identifier: MiNjh4HM6W9ZEJeKztdFNoefbA4bvgZmLvM1HZNpPKM= Subject key identifier: 35:8A:10:E6:11:8A:ED:07:85:2A:73:3C:1D:51:A7:4C:44:29:F5:2D Authority key identifier: 8B:C1:16:8D:A1:60:20:28:7E:EA:1F:DE:CA:05:41:93:0A:9D:36:89 Certificate issuer: /CN=8bc1168da16020287eea1fdeca0541930a9d3689 Certificate serial: 019B52CEE98E53FDD45BE021F7401389BA57 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft Manifest number: 0417 Signing time: Thu 25 Dec 2025 00:00:50 +0000 Manifest this update: Thu 25 Dec 2025 00:00:50 +0000 Manifest next update: Fri 26 Dec 2025 00:00:50 +0000 Files and hashes: 1: M8dNAav4bGEdssIavf8xkWsYnhg.roa (hash: XQuy4W50mLmkvV791/MW+gWfWSh1bhqASgHVJ90pFyY=) 2: i8EWjaFgICh-6h_eygVBkwqdNok.crl (hash: pH3eivBsOVPuF/nb7Ct8Ab7T3dgNHTGQv9dCLkOe4jU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 00:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:52:ce:e9:8e:53:fd:d4:5b:e0:21:f7:40:13:89:ba:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8bc1168da16020287eea1fdeca0541930a9d3689 Validity Not Before: Dec 25 00:00:50 2025 GMT Not After : Dec 26 00:00:50 2025 GMT Subject: CN=358a10e6118aed07852a733c1d51a74c4429f52d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:56:ef:0a:56:4c:b2:06:0d:be:0e:0b:e7:c8: 8b:79:f2:04:84:5f:34:2a:a2:26:a7:3c:47:1c:86: b0:f1:0a:76:a6:28:08:31:aa:ad:a0:e9:d8:ac:fc: 40:0e:e7:5f:15:5d:45:78:89:f7:b7:70:64:e4:67: fc:12:5b:18:9e:58:00:07:92:1c:94:5b:35:dd:b6: bf:f2:25:d9:01:cb:55:a5:64:5d:06:35:65:a9:fd: 1f:15:9c:c3:44:59:83:76:d9:7d:73:3d:ec:af:13: 45:04:49:29:56:4e:71:28:61:83:1e:bd:67:a4:11: 6a:cd:eb:ca:5d:d7:42:e9:06:86:91:21:d4:0c:88: 36:b8:c4:8a:66:54:17:46:c4:21:6d:4b:f9:f9:54: b1:4a:15:b5:0b:c3:08:e3:fe:21:af:38:ff:7d:62: 78:03:9f:7d:cc:ec:23:72:73:cf:5c:72:22:d3:a9: 18:a0:1b:ec:b0:6a:72:4b:c6:04:1f:2c:1f:10:4b: 68:10:2b:b0:20:78:36:b1:69:83:f8:93:b6:55:36: bc:9c:d8:83:12:81:61:ef:65:ba:2b:33:1a:09:47: 25:79:17:fb:b9:59:51:52:fb:f1:f7:7d:42:fe:f1: 4e:03:e4:8e:ac:3a:c5:7f:91:ab:bb:d3:aa:d7:f4: 07:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:8A:10:E6:11:8A:ED:07:85:2A:73:3C:1D:51:A7:4C:44:29:F5:2D X509v3 Authority Key Identifier: keyid:8B:C1:16:8D:A1:60:20:28:7E:EA:1F:DE:CA:05:41:93:0A:9D:36:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:30:1f:56:49:f4:1b:10:4d:1c:b0:38:9c:0c:b2:d2:be:2a: 7b:7b:af:a4:89:96:d5:87:37:20:eb:af:be:36:3f:be:8e:07: 1f:39:2b:3c:45:47:6b:0f:89:64:79:54:b5:81:ab:a6:61:77: 93:f2:53:23:91:69:c7:e8:a8:d6:86:72:35:70:e3:16:38:74: 2f:6b:d9:68:f6:e8:76:13:54:cc:4c:7c:f2:e2:80:81:5a:82: 55:79:f5:a4:69:1e:6a:fc:30:8e:73:71:8c:2d:b3:68:58:1e: 9f:1e:5d:5f:e2:80:8d:14:1f:58:0d:09:d9:a2:03:62:43:74: d7:17:f9:eb:8e:db:29:72:69:f8:26:ef:8e:f8:07:91:76:1f: ce:b4:fa:60:9b:43:53:65:3c:a7:60:7d:a8:cc:ba:04:d3:52: 14:f6:4b:59:c9:88:3e:09:ee:f8:ec:f6:cf:86:39:32:e5:f2: d1:bd:74:52:fb:19:a7:2e:bd:5b:d1:99:e7:79:d8:4a:32:73: 10:e5:10:b9:d2:11:c4:b4:86:35:00:38:cc:44:47:f7:b3:bf: 4b:9f:33:2e:5d:a2:80:d9:18:d8:3d:5e:36:31:3d:48:32:cb: 73:f3:ef:02:53:e3:b6:81:02:91:f8:13:11:2b:64:f9:e7:c6: 7a:72:2c:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtSzumOU/3UW+Ah90ATibpXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiYzExNjhkYTE2MDIwMjg3ZWVhMWZkZWNhMDU0MTkzMGE5 ZDM2ODkwHhcNMjUxMjI1MDAwMDUwWhcNMjUxMjI2MDAwMDUwWjAzMTEwLwYDVQQD EygzNThhMTBlNjExOGFlZDA3ODUyYTczM2MxZDUxYTc0YzQ0MjlmNTJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxVbvClZMsgYNvg4L58iLefIEhF80 KqImpzxHHIaw8Qp2pigIMaqtoOnYrPxADudfFV1FeIn3t3Bk5Gf8ElsYnlgAB5Ic lFs13ba/8iXZActVpWRdBjVlqf0fFZzDRFmDdtl9cz3srxNFBEkpVk5xKGGDHr1n pBFqzevKXddC6QaGkSHUDIg2uMSKZlQXRsQhbUv5+VSxShW1C8MI4/4hrzj/fWJ4 A599zOwjcnPPXHIi06kYoBvssGpyS8YEHywfEEtoECuwIHg2sWmD+JO2VTa8nNiD EoFh72W6KzMaCUcleRf7uVlRUvvx931C/vFOA+SOrDrFf5Gru9Oq1/QHwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDWKEOYRiu0HhSpzPB1Rp0xEKfUtMB8GA1UdIwQY MBaAFIvBFo2hYCAofuof3soFQZMKnTaJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaThFV2phRmdJQ2gtNmhfZXlnVkJrd3FkTm9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi8xOGJjNjAtZWNhNi00OGRkLWFlOTkt MjZjZTA3MWIwYzM2LzEvaThFV2phRmdJQ2gtNmhfZXlnVkJrd3FkTm9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi8xOGJjNjAtZWNhNi00OGRkLWFlOTktMjZjZTA3MWIwYzM2 LzEvaThFV2phRmdJQ2gtNmhfZXlnVkJrd3FkTm9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABDAfVkn0 GxBNHLA4nAyy0r4qe3uvpImW1Yc3IOuvvjY/vo4HHzkrPEVHaw+JZHlUtYGrpmF3 k/JTI5Fpx+io1oZyNXDjFjh0L2vZaPbodhNUzEx88uKAgVqCVXn1pGkeavwwjnNx jC2zaFgenx5dX+KAjRQfWA0J2aIDYkN01xf5647bKXJp+CbvjvgHkXYfzrT6YJtD U2U8p2B9qMy6BNNSFPZLWcmIPgnu+Oz2z4Y5MuXy0b10UvsZpy69W9GZ53nYSjJz EOUQudIRxLSGNQA4zERH97O/S58zLl2igNkY2D1eNjE9SDLLc/PvAlPjtoECkfgT EStk+efGenIsOg== -----END CERTIFICATE-----Generated at Thu Dec 25 09:16:08 2025 by rpki-client