This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft File: J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft (raw, json) Hash identifier: wH4C5OrgQoOoeyniVoTq6byC/fb4sSwLZttZWCpfMYA= Subject key identifier: C8:F2:A3:2E:9A:89:43:BB:C3:25:13:C4:6D:4D:E3:D9:2F:F6:E8:42 Authority key identifier: 27:C4:06:DF:29:BE:9F:2A:D5:0B:3E:C5:BD:53:DF:B9:22:D1:AF:A0 Certificate issuer: /CN=27c406df29be9f2ad50b3ec5bd53dfb922d1afa0 Certificate serial: 019B3569487891DAC0BA97751193BB041E8B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J8QG3ym-nyrVCz7FvVPfuSLRr6A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft Manifest number: 07FD Signing time: Fri 19 Dec 2025 07:00:50 +0000 Manifest this update: Fri 19 Dec 2025 07:00:50 +0000 Manifest next update: Sat 20 Dec 2025 07:00:50 +0000 Files and hashes: 1: J8QG3ym-nyrVCz7FvVPfuSLRr6A.crl (hash: n2+gjaqqLeSJK+uLM0U6gPV78F4AgnzcL0pclkj4Fq8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft rsync://rpki.ripe.net/repository/DEFAULT/J8QG3ym-nyrVCz7FvVPfuSLRr6A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:69:48:78:91:da:c0:ba:97:75:11:93:bb:04:1e:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27c406df29be9f2ad50b3ec5bd53dfb922d1afa0 Validity Not Before: Dec 19 07:00:50 2025 GMT Not After : Dec 20 07:00:50 2025 GMT Subject: CN=c8f2a32e9a8943bbc32513c46d4de3d92ff6e842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:91:c9:5f:6b:c9:05:9d:9a:cd:83:23:ae:a1: 05:2b:20:e0:08:6a:ae:ef:d6:c0:0e:eb:f0:7c:11: 4a:3c:88:65:ea:7c:7d:ce:c3:59:29:03:76:39:a9: 1f:c4:3d:07:12:88:f9:c4:13:f4:d9:10:e0:6e:de: a2:86:f3:7d:7b:b5:90:a4:bf:4c:75:f5:77:af:1f: 13:35:fc:65:55:76:9d:2a:40:2e:29:f3:2b:7c:c4: 60:d2:00:8e:6e:f6:26:f5:37:3d:ea:eb:d5:fd:22: f8:1e:24:c8:58:3f:01:8e:60:53:b9:4a:be:be:ac: 2d:c6:2b:e9:01:78:7d:00:fa:4d:f8:4c:0b:22:34: 37:24:1b:8d:a2:7b:d2:8f:64:17:76:fa:9a:e7:1a: f4:d4:8a:ed:00:07:46:d4:9a:29:cb:d4:d1:6d:40: 37:11:4f:ef:54:5b:5c:9b:68:f6:d9:79:73:03:65: f6:d0:f5:a9:7e:5d:e3:c7:9f:50:1e:f8:26:18:4e: aa:e3:5e:9b:8f:40:14:cc:b4:70:b2:df:dc:9c:e2: 3a:76:6f:9e:25:9f:4e:85:79:e0:05:84:7e:57:7a: 4e:42:e4:b3:b8:ea:15:5b:42:7c:e6:e0:76:de:b5: 82:76:b2:d6:98:4a:1f:eb:bd:df:ea:42:b8:da:b9: 30:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:F2:A3:2E:9A:89:43:BB:C3:25:13:C4:6D:4D:E3:D9:2F:F6:E8:42 X509v3 Authority Key Identifier: keyid:27:C4:06:DF:29:BE:9F:2A:D5:0B:3E:C5:BD:53:DF:B9:22:D1:AF:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J8QG3ym-nyrVCz7FvVPfuSLRr6A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:f6:e6:59:c8:a4:aa:47:9f:ef:73:6c:19:00:29:5b:bc:42: 4a:91:28:7d:54:09:03:41:c5:43:16:4f:35:df:2f:77:00:79: 05:82:1c:da:cd:c7:2e:0e:ea:f6:89:3e:0a:48:68:58:40:12: 76:4f:4a:a2:8f:70:2c:5f:a7:47:e6:d8:ff:d8:cd:3f:56:73: e9:76:6d:c5:42:47:45:37:c1:be:ae:66:60:d4:19:11:d3:f9: a9:a9:53:a4:2f:49:43:2d:9d:11:fe:bf:b3:ab:b3:28:d1:63: 2f:57:e6:e5:45:0f:40:0c:45:f8:8c:87:f2:d9:fa:0d:03:a0: 5f:d7:43:cf:99:de:0f:e7:8b:d6:aa:1a:cb:3c:72:09:d9:61: 5a:61:76:54:ef:24:df:86:a1:84:5c:8f:c2:e4:39:c7:96:2e: 00:26:64:27:58:f5:56:78:16:7f:ed:14:62:11:99:f6:01:bd: 3a:a3:9b:34:0c:2f:14:4f:d3:93:7d:8d:ed:2d:22:f4:1d:5d: 5c:29:5a:67:8d:06:71:88:2b:d1:74:33:66:5c:3c:6e:31:a8: 2b:3c:34:19:be:dc:a3:0d:5b:9b:aa:03:bb:e9:08:6a:b6:5f: 4d:29:b5:10:23:94:d1:f3:77:ca:6d:aa:b2:79:53:ee:fe:6d: c7:89:f4:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1aUh4kdrAupd1EZO7BB6LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3YzQwNmRmMjliZTlmMmFkNTBiM2VjNWJkNTNkZmI5MjJk MWFmYTAwHhcNMjUxMjE5MDcwMDUwWhcNMjUxMjIwMDcwMDUwWjAzMTEwLwYDVQQD EyhjOGYyYTMyZTlhODk0M2JiYzMyNTEzYzQ2ZDRkZTNkOTJmZjZlODQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyZHJX2vJBZ2azYMjrqEFKyDgCGqu 79bADuvwfBFKPIhl6nx9zsNZKQN2OakfxD0HEoj5xBP02RDgbt6ihvN9e7WQpL9M dfV3rx8TNfxlVXadKkAuKfMrfMRg0gCObvYm9Tc96uvV/SL4HiTIWD8BjmBTuUq+ vqwtxivpAXh9APpN+EwLIjQ3JBuNonvSj2QXdvqa5xr01IrtAAdG1Jopy9TRbUA3 EU/vVFtcm2j22XlzA2X20PWpfl3jx59QHvgmGE6q416bj0AUzLRwst/cnOI6dm+e JZ9OhXngBYR+V3pOQuSzuOoVW0J85uB23rWCdrLWmEof673f6kK42rkwYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMjyoy6aiUO7wyUTxG1N49kv9uhCMB8GA1UdIwQY MBaAFCfEBt8pvp8q1Qs+xb1T37ki0a+gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSjhRRzN5bS1ueXJWQ3o3RnZWUGZ1U0xScjZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS80MWI4ZjgtMzkwMC00NTE0LThkYmYt MjdkMzYyZTk2ZDQwLzEvSjhRRzN5bS1ueXJWQ3o3RnZWUGZ1U0xScjZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS80MWI4ZjgtMzkwMC00NTE0LThkYmYtMjdkMzYyZTk2ZDQw LzEvSjhRRzN5bS1ueXJWQ3o3RnZWUGZ1U0xScjZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ/bmWcik qkef73NsGQApW7xCSpEofVQJA0HFQxZPNd8vdwB5BYIc2s3HLg7q9ok+CkhoWEAS dk9Koo9wLF+nR+bY/9jNP1Zz6XZtxUJHRTfBvq5mYNQZEdP5qalTpC9JQy2dEf6/ s6uzKNFjL1fm5UUPQAxF+IyH8tn6DQOgX9dDz5neD+eL1qoayzxyCdlhWmF2VO8k 34ahhFyPwuQ5x5YuACZkJ1j1VngWf+0UYhGZ9gG9OqObNAwvFE/Tk32N7S0i9B1d XClaZ40GcYgr0XQzZlw8bjGoKzw0Gb7cow1bm6oDu+kIarZfTSm1ECOU0fN3ym2q snlT7v5tx4n0IQ== -----END CERTIFICATE-----Generated at Fri Dec 19 14:54:12 2025 by rpki-client