This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.mft File: 8WmQKta3v0YB7qpecj7yPXD6dxQ.mft (raw, json) Hash identifier: S3FmCxv7bZMNZXmmGd8wnTGaTLsKTAfrogORb5GA9ZQ= Subject key identifier: 4B:D1:59:6E:95:4B:99:54:58:97:F9:77:E7:90:2A:98:C0:1B:CA:8C Authority key identifier: F1:69:90:2A:D6:B7:BF:46:01:EE:AA:5E:72:3E:F2:3D:70:FA:77:14 Certificate issuer: /CN=f169902ad6b7bf4601eeaa5e723ef23d70fa7714 Certificate serial: 019B66FB8B595FB7DC281E1BC3E5E680BA9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8WmQKta3v0YB7qpecj7yPXD6dxQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.mft Manifest number: 179C Signing time: Sun 28 Dec 2025 22:01:59 +0000 Manifest this update: Sun 28 Dec 2025 22:01:59 +0000 Manifest next update: Mon 29 Dec 2025 22:01:59 +0000 Files and hashes: 1: 8WmQKta3v0YB7qpecj7yPXD6dxQ.crl (hash: t1UOXoWVwuJ014DrEyyM2StimwkhQhGE5OxWy1e3MTE=) 2: f0RuL1swXlvp41CLCru-Mt1TNyc.roa (hash: rkjC9/AqAR3AXAOW7ubyDoWQhwKzvm+Iu5S5RZdguhM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.mft rsync://rpki.ripe.net/repository/DEFAULT/8WmQKta3v0YB7qpecj7yPXD6dxQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 20:59:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:66:fb:8b:59:5f:b7:dc:28:1e:1b:c3:e5:e6:80:ba:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f169902ad6b7bf4601eeaa5e723ef23d70fa7714 Validity Not Before: Dec 28 22:01:59 2025 GMT Not After : Dec 29 22:01:59 2025 GMT Subject: CN=4bd1596e954b99545897f977e7902a98c01bca8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:24:b7:39:40:fd:20:34:df:8f:9a:4e:b7:fc: 32:d9:d3:04:41:83:ad:8e:0b:39:c1:52:5c:35:78: f5:16:fe:f8:f0:12:05:54:e2:15:ea:6c:91:ef:19: 93:83:b8:88:f8:a1:8b:b7:86:ae:1d:bd:a5:26:37: 58:c0:c5:82:82:ef:1a:ed:d6:30:7f:50:b0:20:c9: 27:34:df:98:ac:36:ea:3f:e6:a0:0b:df:d3:74:48: cf:70:98:01:de:46:c7:87:17:d3:65:4b:d1:4d:c5: 03:b3:29:95:40:4d:2c:23:9f:3c:ad:91:99:98:c1: 19:d4:fc:63:3b:0b:af:dc:4e:86:a4:7a:43:11:5b: 2a:29:81:f0:fe:f7:7d:cd:67:5f:ae:52:c0:a6:09: 7c:bb:11:c9:b1:4a:a2:b6:52:42:3c:76:64:d7:98: a4:50:79:ef:d7:4b:3f:95:24:8c:ff:4d:70:7a:8f: 73:48:27:72:ff:44:98:5e:c1:aa:dd:e5:d8:15:fb: 0d:e9:94:50:de:9e:9c:51:8b:b2:81:04:ec:ae:0e: a3:53:6e:ef:f5:d2:21:ee:55:22:29:2f:cd:c2:0d: 9f:72:b2:6b:dc:cd:33:4a:24:e5:b1:ff:bc:70:6b: d6:4f:f5:0d:d1:f6:9e:94:1f:f4:e9:98:14:2d:56: 67:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:D1:59:6E:95:4B:99:54:58:97:F9:77:E7:90:2A:98:C0:1B:CA:8C X509v3 Authority Key Identifier: keyid:F1:69:90:2A:D6:B7:BF:46:01:EE:AA:5E:72:3E:F2:3D:70:FA:77:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8WmQKta3v0YB7qpecj7yPXD6dxQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:c6:7a:60:dd:b8:a3:81:6d:a3:20:57:00:44:ea:13:5d:3c: c4:b1:53:9c:ed:0c:f7:24:f4:f6:c5:78:6e:86:15:27:43:1c: e4:00:01:2c:a0:33:ed:ab:ff:c0:d2:66:c7:73:1f:f9:7c:7a: 78:01:f0:c1:36:91:b3:07:ca:f6:27:36:dc:13:71:bc:32:62: 31:b7:bd:04:83:b6:11:ba:4f:b6:d2:88:c6:0b:8d:f5:3a:fc: c2:ef:cf:19:c5:7c:57:83:54:7c:98:71:1a:8b:80:c1:77:33: a4:1f:34:63:d3:c6:87:1a:98:92:6c:16:ef:d2:ae:54:2a:17: c4:49:98:b0:26:6a:b6:3a:4c:a1:8a:51:14:bc:a8:56:5b:81: 3c:44:ad:86:6a:d8:54:38:b7:d9:c0:87:27:4d:4a:a3:0e:9e: 8b:e9:ca:1d:94:4d:3b:76:d7:7b:1d:02:12:47:5f:ea:36:b3: 83:87:6d:01:69:6d:96:1a:8f:f2:fd:ca:7f:27:51:3c:db:e6: aa:7b:08:ad:57:9f:ba:a2:db:a5:22:1d:e7:7f:46:39:dd:4b: a7:f5:34:10:71:61:c5:e9:1e:1f:e6:23:d2:5b:c9:a0:fa:91: 2c:0b:11:0f:1f:3a:a0:3a:7c:1c:0b:ab:11:e6:e3:57:23:8a: 8e:3d:d9:99 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtm+4tZX7fcKB4bw+XmgLqfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYxNjk5MDJhZDZiN2JmNDYwMWVlYWE1ZTcyM2VmMjNkNzBm YTc3MTQwHhcNMjUxMjI4MjIwMTU5WhcNMjUxMjI5MjIwMTU5WjAzMTEwLwYDVQQD Eyg0YmQxNTk2ZTk1NGI5OTU0NTg5N2Y5NzdlNzkwMmE5OGMwMWJjYThjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2SS3OUD9IDTfj5pOt/wy2dMEQYOt jgs5wVJcNXj1Fv748BIFVOIV6myR7xmTg7iI+KGLt4auHb2lJjdYwMWCgu8a7dYw f1CwIMknNN+YrDbqP+agC9/TdEjPcJgB3kbHhxfTZUvRTcUDsymVQE0sI588rZGZ mMEZ1PxjOwuv3E6GpHpDEVsqKYHw/vd9zWdfrlLApgl8uxHJsUqitlJCPHZk15ik UHnv10s/lSSM/01weo9zSCdy/0SYXsGq3eXYFfsN6ZRQ3p6cUYuygQTsrg6jU27v 9dIh7lUiKS/Nwg2fcrJr3M0zSiTlsf+8cGvWT/UN0faelB/06ZgULVZnFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEvRWW6VS5lUWJf5d+eQKpjAG8qMMB8GA1UdIwQY MBaAFPFpkCrWt79GAe6qXnI+8j1w+ncUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOFdtUUt0YTN2MFlCN3FwZWNqN3lQWEQ2ZHhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy80ZjI4MDAtYTU1NS00ZjgyLTg5MzYt ZjIwODM2NTA1MWNiLzEvOFdtUUt0YTN2MFlCN3FwZWNqN3lQWEQ2ZHhRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy80ZjI4MDAtYTU1NS00ZjgyLTg5MzYtZjIwODM2NTA1MWNi LzEvOFdtUUt0YTN2MFlCN3FwZWNqN3lQWEQ2ZHhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKMZ6YN24 o4FtoyBXAETqE108xLFTnO0M9yT09sV4boYVJ0Mc5AABLKAz7av/wNJmx3Mf+Xx6 eAHwwTaRswfK9ic23BNxvDJiMbe9BIO2EbpPttKIxguN9Tr8wu/PGcV8V4NUfJhx GouAwXczpB80Y9PGhxqYkmwW79KuVCoXxEmYsCZqtjpMoYpRFLyoVluBPESthmrY VDi32cCHJ01Kow6ei+nKHZRNO3bXex0CEkdf6jazg4dtAWltlhqP8v3KfydRPNvm qnsIrVefuqLbpSId539GOd1Lp/U0EHFhxekeH+Yj0lvJoPqRLAsRDx86oDp8HAur EebjVyOKjj3ZmQ== -----END CERTIFICATE-----Generated at Mon Dec 29 05:24:16 2025 by rpki-client