This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft File: 8oxp2pTIXt1I2cH9jjMq477mYAQ.mft (raw, json) Hash identifier: WTBnxOG6mFmtzywlLnFbj9DzQb4xTPUvVR7MCHhCF6Y= Subject key identifier: 34:04:0F:96:66:46:FF:BE:7D:C7:85:95:50:97:1E:66:D9:02:1E:49 Authority key identifier: F2:8C:69:DA:94:C8:5E:DD:48:D9:C1:FD:8E:33:2A:E3:BE:E6:60:04 Certificate issuer: /CN=f28c69da94c85edd48d9c1fd8e332ae3bee66004 Certificate serial: 019B5A1A486E1854A30BC35B28F2713DE2EE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft Manifest number: 1062 Signing time: Fri 26 Dec 2025 10:00:30 +0000 Manifest this update: Fri 26 Dec 2025 10:00:30 +0000 Manifest next update: Sat 27 Dec 2025 10:00:30 +0000 Files and hashes: 1: 8oxp2pTIXt1I2cH9jjMq477mYAQ.crl (hash: Wth9YlAVjbXlh3ln2i6zE0q/QcpKlsylo6jeITifgqU=) 2: m7fQ-cMMDdeyLl0RJP3A0VDHgVE.roa (hash: rB/+iXy3MWnMmudzmSTexHxDroAo7zhjaO5iq26LcWQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:1a:48:6e:18:54:a3:0b:c3:5b:28:f2:71:3d:e2:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f28c69da94c85edd48d9c1fd8e332ae3bee66004 Validity Not Before: Dec 26 10:00:30 2025 GMT Not After : Dec 27 10:00:30 2025 GMT Subject: CN=34040f966646ffbe7dc7859550971e66d9021e49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:cb:51:13:a3:7b:13:04:27:f5:e1:67:61:26: 8b:53:c6:c1:b1:eb:3e:37:64:a7:4f:d1:52:f5:46: ca:33:d6:c9:9a:cd:b5:32:82:68:63:0c:9e:49:5a: 52:a9:a1:d0:4d:b0:7c:d6:8e:fe:19:3e:77:52:8f: ef:98:91:b0:17:48:9a:31:b8:71:ab:c7:a9:c9:68: 53:28:14:f3:23:37:41:89:a8:c5:d6:36:d2:86:61: 06:85:31:ae:5e:28:95:48:08:c2:88:49:8d:38:52: 51:a4:7e:16:e9:e4:41:21:83:8e:c5:6f:69:fb:cd: c3:04:8c:5d:e9:db:0c:6e:06:73:0e:f9:09:54:e2: 6b:3d:62:f9:c4:d2:12:f1:08:1f:3a:b1:98:95:9e: 6c:eb:30:f5:34:d4:b7:59:7f:15:9c:ac:3c:50:ff: 01:9c:48:d3:06:25:e7:e4:06:2a:9a:52:d5:32:bd: b4:1b:1f:ac:ca:c5:0b:64:08:20:d7:02:4a:cc:ac: 41:2f:c1:6a:9b:87:98:d6:d3:60:de:12:37:4e:47: 3a:21:89:01:42:20:19:16:74:9f:61:66:90:a8:be: 4d:f3:9e:69:9d:09:c3:5b:cd:bc:bd:b8:99:6e:c1: e9:1e:61:f5:61:23:6a:fd:21:11:a0:fc:ac:55:52: b5:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:04:0F:96:66:46:FF:BE:7D:C7:85:95:50:97:1E:66:D9:02:1E:49 X509v3 Authority Key Identifier: keyid:F2:8C:69:DA:94:C8:5E:DD:48:D9:C1:FD:8E:33:2A:E3:BE:E6:60:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:81:a3:84:6b:f6:e5:05:df:e8:29:de:9d:01:43:7d:9c:1d: b2:e6:b8:5c:0c:da:f8:98:ba:61:c1:65:fe:1f:df:d4:c8:a1: 6e:c1:3c:61:ae:4f:63:fa:b3:89:88:a2:80:03:cc:bd:aa:f8: 7a:98:97:b9:40:f0:7f:52:57:88:d0:0a:9b:e7:21:60:5c:3f: b9:aa:b4:0e:bb:5a:cf:e1:0c:8f:c7:9c:9a:ae:c6:1b:0d:0c: 27:b2:08:b4:2e:af:0a:8d:97:76:ff:a2:66:9e:5e:ac:f6:ac: fc:13:64:a4:8e:d3:5f:13:05:c5:ca:78:4c:83:98:da:47:4e: b5:19:f9:9a:36:42:9e:9f:8d:dc:5e:b6:9d:74:b8:a5:5e:c1: e0:fd:ef:b2:d0:1f:e2:97:39:fb:46:16:d1:b5:28:3a:e0:11: 5a:bd:7b:4d:ea:9a:74:ca:5a:3a:24:3c:22:4b:b1:06:3e:21: 6f:55:82:29:65:2b:79:f9:c1:95:7b:f3:54:12:0e:59:1c:1e: d5:c1:1a:5f:32:ef:48:c1:f9:c9:fd:04:fd:9b:bf:ab:af:f6: d5:e2:c1:79:ed:8e:75:d5:42:b3:73:b7:f6:51:78:bf:b0:76: 34:82:d3:51:9f:b1:1b:cf:fb:b2:35:f9:96:77:45:9d:95:cb: 61:fe:60:2e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaGkhuGFSjC8NbKPJxPeLuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYyOGM2OWRhOTRjODVlZGQ0OGQ5YzFmZDhlMzMyYWUzYmVl NjYwMDQwHhcNMjUxMjI2MTAwMDMwWhcNMjUxMjI3MTAwMDMwWjAzMTEwLwYDVQQD EygzNDA0MGY5NjY2NDZmZmJlN2RjNzg1OTU1MDk3MWU2NmQ5MDIxZTQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiMtRE6N7EwQn9eFnYSaLU8bBses+ N2SnT9FS9UbKM9bJms21MoJoYwyeSVpSqaHQTbB81o7+GT53Uo/vmJGwF0iaMbhx q8epyWhTKBTzIzdBiajF1jbShmEGhTGuXiiVSAjCiEmNOFJRpH4W6eRBIYOOxW9p +83DBIxd6dsMbgZzDvkJVOJrPWL5xNIS8QgfOrGYlZ5s6zD1NNS3WX8VnKw8UP8B nEjTBiXn5AYqmlLVMr20Gx+sysULZAgg1wJKzKxBL8Fqm4eY1tNg3hI3Tkc6IYkB QiAZFnSfYWaQqL5N855pnQnDW828vbiZbsHpHmH1YSNq/SERoPysVVK11wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDQED5ZmRv++fceFlVCXHmbZAh5JMB8GA1UdIwQY MBaAFPKMadqUyF7dSNnB/Y4zKuO+5mAEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOG94cDJwVElYdDFJMmNIOWpqTXE0NzdtWUFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8wZGNkOTYtMGFlMy00ZjVjLThkMjEt YTkwMmIwMDk2Yjk5LzEvOG94cDJwVElYdDFJMmNIOWpqTXE0NzdtWUFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi8wZGNkOTYtMGFlMy00ZjVjLThkMjEtYTkwMmIwMDk2Yjk5 LzEvOG94cDJwVElYdDFJMmNIOWpqTXE0NzdtWUFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMIGjhGv2 5QXf6CnenQFDfZwdsua4XAza+Ji6YcFl/h/f1MihbsE8Ya5PY/qziYiigAPMvar4 epiXuUDwf1JXiNAKm+chYFw/uaq0Drtaz+EMj8ecmq7GGw0MJ7IItC6vCo2Xdv+i Zp5erPas/BNkpI7TXxMFxcp4TIOY2kdOtRn5mjZCnp+N3F62nXS4pV7B4P3vstAf 4pc5+0YW0bUoOuARWr17TeqadMpaOiQ8IkuxBj4hb1WCKWUrefnBlXvzVBIOWRwe 1cEaXzLvSMH5yf0E/Zu/q6/21eLBee2OddVCs3O39lF4v7B2NILTUZ+xG8/7sjX5 lndFnZXLYf5gLg== -----END CERTIFICATE-----Generated at Fri Dec 26 14:16:55 2025 by rpki-client