This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft File: S8K4kvLb729UtFNg_rD4QUpahQQ.mft (raw, json) Hash identifier: xZ1+vi6m63j6fALuhHxdpNa+h/htGV8QQjzr7dUe2KM= Subject key identifier: C8:1B:26:95:7D:C7:A8:32:F3:42:5B:EB:B2:28:06:34:C0:78:9E:66 Authority key identifier: 4B:C2:B8:92:F2:DB:EF:6F:54:B4:53:60:FE:B0:F8:41:4A:5A:85:04 Certificate issuer: /CN=4bc2b892f2dbef6f54b45360feb0f8414a5a8504 Certificate serial: 019B3AFD535A414AF695856331C00ADB2189 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft Manifest number: 1182 Signing time: Sat 20 Dec 2025 09:00:38 +0000 Manifest this update: Sat 20 Dec 2025 09:00:38 +0000 Manifest next update: Sun 21 Dec 2025 09:00:38 +0000 Files and hashes: 1: 8XxbJK1GWPrtjat_Lpe2HKly_9k.roa (hash: 1REGOqOGYIsLrmhSt5pZG4EmBpaR7Cf++uPRynahll8=) 2: S8K4kvLb729UtFNg_rD4QUpahQQ.crl (hash: Q6BFHjGPIE0ExxHE9UOovgoKQ8LRWWboyp9DrMIYh9M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:fd:53:5a:41:4a:f6:95:85:63:31:c0:0a:db:21:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4bc2b892f2dbef6f54b45360feb0f8414a5a8504 Validity Not Before: Dec 20 09:00:38 2025 GMT Not After : Dec 21 09:00:38 2025 GMT Subject: CN=c81b26957dc7a832f3425bebb2280634c0789e66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c2:61:08:7e:e9:b7:25:4c:31:97:24:d3:b8: 2c:b7:0b:3e:4d:a3:60:fc:45:26:d9:dc:a4:ae:ff: 16:a3:a8:bc:49:b6:8b:b9:4c:cf:a2:51:62:c6:0a: ea:b8:e7:31:6e:71:d5:88:16:77:d6:12:62:66:b3: c5:d3:24:29:66:63:67:61:e7:70:7e:bf:7b:35:70: b9:c6:00:27:65:45:3c:13:06:7a:a3:79:5d:0b:f5: 6d:8a:b8:2d:49:f0:9e:2d:39:52:d0:63:4a:be:0b: 2b:6c:fd:67:82:e0:cb:7f:01:84:34:d2:d5:54:55: 4f:94:ee:79:42:de:ed:e1:46:fd:a8:1e:c3:f2:53: 9b:da:c0:63:98:28:88:68:97:03:6a:da:b5:59:73: f4:06:56:a2:5e:20:d8:c7:42:91:bb:a7:be:59:45: 96:2f:56:8b:87:77:d9:76:13:13:88:e0:3d:9f:08: 52:d8:89:37:e1:6d:15:7c:04:0b:47:71:fe:73:6e: a0:c4:57:7e:67:6a:f3:2e:63:8c:54:b3:89:55:2a: 43:61:64:78:c3:3e:8b:90:0c:25:ad:8e:42:b3:1f: af:c4:03:54:06:95:47:6f:89:07:5f:ca:78:c9:be: 47:d6:3f:09:a0:e5:1c:cf:33:f3:fd:4e:a7:97:19: 4d:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:1B:26:95:7D:C7:A8:32:F3:42:5B:EB:B2:28:06:34:C0:78:9E:66 X509v3 Authority Key Identifier: keyid:4B:C2:B8:92:F2:DB:EF:6F:54:B4:53:60:FE:B0:F8:41:4A:5A:85:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:eb:fa:d4:a8:f4:d7:34:0b:41:f9:0b:e9:33:1f:1e:bc:93: 52:81:eb:f2:93:7d:19:79:91:d5:53:3e:72:ba:c4:77:ee:1c: 8e:12:3d:ef:c3:4a:b0:a1:60:02:b7:98:d1:e9:10:fa:30:7c: ef:75:70:c4:19:65:62:1c:a4:04:da:a1:00:c8:6d:f1:4e:29: 27:e3:51:22:3c:f1:65:2e:c9:0d:61:80:7d:5c:92:2c:27:20: 45:bc:2c:02:9c:23:2e:60:76:41:e9:a2:40:d2:43:80:4b:9c: 19:d0:69:3e:5e:e2:5f:40:58:d0:51:b2:e4:b1:7a:e3:3e:76: 62:ed:24:4f:b5:35:47:1c:69:a0:88:ce:7c:2d:a5:72:f8:b5: 2f:4a:a9:d2:8e:d9:63:d7:3f:10:b0:dc:03:e8:e7:14:88:ef: 44:32:5e:5c:9d:eb:52:49:8f:ca:5d:1d:f4:d2:ad:86:87:bd: 1d:c2:77:1a:99:35:80:31:14:57:08:59:0c:ad:ca:b3:9b:f6: 9b:de:15:95:64:d0:de:72:b1:71:69:97:bb:4e:95:f5:09:a8: 88:bf:3c:dd:34:5c:90:c2:8f:3d:b4:b8:85:fa:62:cf:a8:ff: eb:a6:fb:42:da:5e:37:b4:8d:fe:d4:94:23:04:89:72:a9:4c: bb:bb:76:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6/VNaQUr2lYVjMcAK2yGJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiYzJiODkyZjJkYmVmNmY1NGI0NTM2MGZlYjBmODQxNGE1 YTg1MDQwHhcNMjUxMjIwMDkwMDM4WhcNMjUxMjIxMDkwMDM4WjAzMTEwLwYDVQQD EyhjODFiMjY5NTdkYzdhODMyZjM0MjViZWJiMjI4MDYzNGMwNzg5ZTY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAssJhCH7ptyVMMZck07gstws+TaNg /EUm2dykrv8Wo6i8SbaLuUzPolFixgrquOcxbnHViBZ31hJiZrPF0yQpZmNnYedw fr97NXC5xgAnZUU8EwZ6o3ldC/VtirgtSfCeLTlS0GNKvgsrbP1nguDLfwGENNLV VFVPlO55Qt7t4Ub9qB7D8lOb2sBjmCiIaJcDatq1WXP0BlaiXiDYx0KRu6e+WUWW L1aLh3fZdhMTiOA9nwhS2Ik34W0VfAQLR3H+c26gxFd+Z2rzLmOMVLOJVSpDYWR4 wz6LkAwlrY5Csx+vxANUBpVHb4kHX8p4yb5H1j8JoOUczzPz/U6nlxlNNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMgbJpV9x6gy80Jb67IoBjTAeJ5mMB8GA1UdIwQY MBaAFEvCuJLy2+9vVLRTYP6w+EFKWoUEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzhLNGt2TGI3MjlVdEZOZ19yRDRRVXBhaFFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9jMWE4NTItNTVmNS00NTA1LThkOTAt MjE1N2E1NzVkYjBiLzEvUzhLNGt2TGI3MjlVdEZOZ19yRDRRVXBhaFFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy9jMWE4NTItNTVmNS00NTA1LThkOTAtMjE1N2E1NzVkYjBi LzEvUzhLNGt2TGI3MjlVdEZOZ19yRDRRVXBhaFFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALOv61Kj0 1zQLQfkL6TMfHryTUoHr8pN9GXmR1VM+crrEd+4cjhI978NKsKFgAreY0ekQ+jB8 73VwxBllYhykBNqhAMht8U4pJ+NRIjzxZS7JDWGAfVySLCcgRbwsApwjLmB2Qemi QNJDgEucGdBpPl7iX0BY0FGy5LF64z52Yu0kT7U1RxxpoIjOfC2lcvi1L0qp0o7Z Y9c/ELDcA+jnFIjvRDJeXJ3rUkmPyl0d9NKthoe9HcJ3Gpk1gDEUVwhZDK3Ks5v2 m94VlWTQ3nKxcWmXu06V9QmoiL883TRckMKPPbS4hfpiz6j/66b7QtpeN7SN/tSU IwSJcqlMu7t2GA== -----END CERTIFICATE-----Generated at Sat Dec 20 12:16:36 2025 by rpki-client