This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.mft File: 0b8Xavjbow_vMlNl7zQEgSzi2Eo.mft (raw, json) Hash identifier: p300rghtd/NIYBpHbdirV/4Nexi2m2Va9aBOIn3mmlQ= Subject key identifier: A5:63:C5:09:9E:BC:5D:85:DB:30:BE:AB:99:5E:73:C2:FA:4A:BA:59 Authority key identifier: D1:BF:17:6A:F8:DB:A3:0F:EF:32:53:65:EF:34:04:81:2C:E2:D8:4A Certificate issuer: /CN=d1bf176af8dba30fef325365ef3404812ce2d84a Certificate serial: 019B59768CD43DDDDCADCF9DFB17EEDD275A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0b8Xavjbow_vMlNl7zQEgSzi2Eo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.mft Manifest number: 1019 Signing time: Fri 26 Dec 2025 07:01:40 +0000 Manifest this update: Fri 26 Dec 2025 07:01:40 +0000 Manifest next update: Sat 27 Dec 2025 07:01:40 +0000 Files and hashes: 1: 0b8Xavjbow_vMlNl7zQEgSzi2Eo.crl (hash: mykSUYEmsDwD43F4OUYStIyOqAgReBJoX+0plvrZ9C0=) 2: tWrNNpvQLnIYXShcXDmxPXzlROA.roa (hash: rl7K0aTuna5/yne12oTJUAQ6OhB1j3YlRj4Y9PjqK84=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.crl rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.mft rsync://rpki.ripe.net/repository/DEFAULT/0b8Xavjbow_vMlNl7zQEgSzi2Eo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:8c:d4:3d:dd:dc:ad:cf:9d:fb:17:ee:dd:27:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1bf176af8dba30fef325365ef3404812ce2d84a Validity Not Before: Dec 26 07:01:40 2025 GMT Not After : Dec 27 07:01:40 2025 GMT Subject: CN=a563c5099ebc5d85db30beab995e73c2fa4aba59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b3:bd:83:9d:8c:58:2a:ff:d8:cb:c8:d6:8a: 36:b0:db:3b:9e:f0:f3:fc:65:fc:4e:45:fc:15:5e: 65:be:0e:38:04:47:c4:35:a7:ed:78:41:1b:77:e0: 16:a2:b9:de:2b:93:b3:5f:2c:d7:74:2a:89:34:fb: 79:fc:c5:59:d6:24:1e:73:99:a1:0e:ec:0a:c0:57: 13:05:a1:24:f1:ce:6b:2e:89:4d:39:03:14:62:45: 71:7e:ca:72:a9:a6:83:42:a6:43:6d:0f:63:b4:db: a5:41:c3:53:11:57:2d:de:23:68:c3:57:56:88:97: 76:ed:43:30:65:ea:e9:16:9a:15:61:c6:d9:1b:7a: df:10:88:e7:2d:94:31:f0:c7:22:51:aa:59:ea:1b: e4:e0:42:7c:3e:07:0f:bc:fc:73:2c:0a:a1:9b:a0: 0a:ea:fb:16:82:87:89:e0:cc:5a:aa:91:6c:dd:2c: 2d:ea:ef:ed:00:95:46:5f:95:e1:a9:4d:21:fc:3d: 17:dd:c6:81:b9:1b:f5:27:8a:ba:c8:45:a6:ab:89: ed:53:d4:70:8a:a7:01:03:e1:db:97:7e:4e:30:47: 8e:bc:da:d1:d0:b3:fa:13:a1:d5:4f:a3:1a:3a:99: 76:66:7a:a5:1a:12:39:01:5f:06:87:90:a7:8a:24: 1a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:63:C5:09:9E:BC:5D:85:DB:30:BE:AB:99:5E:73:C2:FA:4A:BA:59 X509v3 Authority Key Identifier: keyid:D1:BF:17:6A:F8:DB:A3:0F:EF:32:53:65:EF:34:04:81:2C:E2:D8:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b8Xavjbow_vMlNl7zQEgSzi2Eo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:44:ca:37:9f:1d:5c:ca:04:07:20:f7:f2:cd:23:ec:58:59: eb:ed:f2:2f:1f:fb:97:f8:09:c6:80:a9:ee:a5:8d:c6:94:46: 85:d1:67:f8:bf:69:3f:ff:84:19:23:b3:1b:8d:90:86:33:e2: d1:a6:3b:af:8e:cd:9e:a0:2b:c1:ec:b3:44:7c:f2:b4:a9:1f: 2d:47:32:91:3b:bd:aa:d1:57:ad:f8:ca:00:ee:b4:f9:73:b6: e6:4c:25:29:bb:5d:cb:b3:f9:bd:a1:f3:aa:e6:3e:f0:40:69: 52:0f:ba:ea:90:6e:a8:03:e8:f5:c8:39:f4:49:30:59:4f:e6: 9b:39:60:8a:7f:a8:ce:c7:f5:dc:82:a6:a9:41:6a:f9:83:03: 3d:62:a0:e7:f9:eb:8a:fb:17:dc:66:df:4e:de:28:a4:45:49: bb:d8:ce:e8:40:e6:a1:a4:7c:16:fc:8e:fa:54:3f:1e:7f:15: 2e:6a:8b:d3:50:a6:7f:6e:65:2b:ce:5f:9f:de:1d:ac:f4:e0: 2d:13:0d:c8:34:7f:75:2f:6c:d2:a0:58:6b:28:86:44:69:86: cf:ef:5d:c7:d2:d2:e9:a4:8e:82:3a:32:b3:c9:71:c4:81:7c: a9:f0:7a:12:7b:ee:a1:5f:b7:45:47:3e:8a:87:eb:86:f6:5c: 53:6e:3c:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdozUPd3crc+d+xfu3SdaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxYmYxNzZhZjhkYmEzMGZlZjMyNTM2NWVmMzQwNDgxMmNl MmQ4NGEwHhcNMjUxMjI2MDcwMTQwWhcNMjUxMjI3MDcwMTQwWjAzMTEwLwYDVQQD EyhhNTYzYzUwOTllYmM1ZDg1ZGIzMGJlYWI5OTVlNzNjMmZhNGFiYTU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoLO9g52MWCr/2MvI1oo2sNs7nvDz /GX8TkX8FV5lvg44BEfENafteEEbd+AWorneK5OzXyzXdCqJNPt5/MVZ1iQec5mh DuwKwFcTBaEk8c5rLolNOQMUYkVxfspyqaaDQqZDbQ9jtNulQcNTEVct3iNow1dW iJd27UMwZerpFpoVYcbZG3rfEIjnLZQx8MciUapZ6hvk4EJ8PgcPvPxzLAqhm6AK 6vsWgoeJ4MxaqpFs3Swt6u/tAJVGX5XhqU0h/D0X3caBuRv1J4q6yEWmq4ntU9Rw iqcBA+Hbl35OMEeOvNrR0LP6E6HVT6MaOpl2ZnqlGhI5AV8Gh5CniiQaOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKVjxQmevF2F2zC+q5lec8L6SrpZMB8GA1UdIwQY MBaAFNG/F2r426MP7zJTZe80BIEs4thKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGI4WGF2amJvd192TWxObDd6UUVnU3ppMkVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9hYmNkOGUtYjA0Yi00OGU4LThkYWMt ZmQ1NTkyNDJkNDcxLzEvMGI4WGF2amJvd192TWxObDd6UUVnU3ppMkVvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC9hYmNkOGUtYjA0Yi00OGU4LThkYWMtZmQ1NTkyNDJkNDcx LzEvMGI4WGF2amJvd192TWxObDd6UUVnU3ppMkVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU0TKN58d XMoEByD38s0j7FhZ6+3yLx/7l/gJxoCp7qWNxpRGhdFn+L9pP/+EGSOzG42QhjPi 0aY7r47NnqArweyzRHzytKkfLUcykTu9qtFXrfjKAO60+XO25kwlKbtdy7P5vaHz quY+8EBpUg+66pBuqAPo9cg59EkwWU/mmzlgin+ozsf13IKmqUFq+YMDPWKg5/nr ivsX3GbfTt4opEVJu9jO6EDmoaR8FvyO+lQ/Hn8VLmqL01Cmf25lK85fn94drPTg LRMNyDR/dS9s0qBYayiGRGmGz+9dx9LS6aSOgjoys8lxxIF8qfB6EnvuoV+3RUc+ iofrhvZcU2485Q== -----END CERTIFICATE-----Generated at Fri Dec 26 14:17:04 2025 by rpki-client