This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft File: 8yvpggYKQ3NNCtEmrUbaLzlcne8.mft (raw, json) Hash identifier: inyTE8UnrjENWKbMVuHNvWiHTpvGz1VFIvRAq1zkWb0= Subject key identifier: 6F:6D:AC:F6:0C:75:2F:4C:5C:70:80:F1:9D:AB:BE:A2:CE:33:81:15 Authority key identifier: F3:2B:E9:82:06:0A:43:73:4D:0A:D1:26:AD:46:DA:2F:39:5C:9D:EF Certificate issuer: /CN=f32be982060a43734d0ad126ad46da2f395c9def Certificate serial: 019B397CEE8D32B77160EA282A0201EE16E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft Manifest number: 178D Signing time: Sat 20 Dec 2025 02:00:47 +0000 Manifest this update: Sat 20 Dec 2025 02:00:47 +0000 Manifest next update: Sun 21 Dec 2025 02:00:47 +0000 Files and hashes: 1: 8yvpggYKQ3NNCtEmrUbaLzlcne8.crl (hash: 1CTzUNGCtg1VXFNt2RdAdRSTEA+hbLTXOTWioal94Yw=) 2: _ez--C0KRSwSRmH4lyGu5zUk1HU.roa (hash: KFrEJZmjOcmfSBpY7GDcoqxz0mSObldiNHL67FlKf8w=) 3: bHl4gP55LgKhhE_L1xho4xppPEo.roa (hash: rqcbN4+Al2DH9m3ppJi1E488vxtH8t3M86sJsdVuXgY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.crl rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:7c:ee:8d:32:b7:71:60:ea:28:2a:02:01:ee:16:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f32be982060a43734d0ad126ad46da2f395c9def Validity Not Before: Dec 20 02:00:47 2025 GMT Not After : Dec 21 02:00:47 2025 GMT Subject: CN=6f6dacf60c752f4c5c7080f19dabbea2ce338115 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:7c:19:94:40:90:75:25:47:ff:5a:f8:fb:02: 52:59:33:1e:22:c5:87:a6:6a:c2:88:e9:46:aa:c4: 19:00:a0:be:e2:dc:02:ee:17:7b:83:f3:de:bc:c7: 66:fa:92:90:74:a0:30:76:5d:46:97:84:48:95:61: 7c:08:76:ad:61:fe:a9:2c:03:c0:6f:6c:2c:c0:44: eb:33:00:e4:03:b6:94:24:9f:6d:06:76:13:82:55: 52:b3:a3:d4:1b:e3:0f:c8:97:39:de:92:e8:53:ab: 61:43:bf:28:66:d2:05:ee:28:57:61:00:a5:33:15: 42:27:04:2d:bf:92:65:30:06:0e:cd:b5:bd:8d:9b: fb:16:d9:3d:41:54:70:0f:4f:c6:d5:2a:d3:fa:80: 79:ba:4e:f5:26:d6:47:3a:97:09:7e:2f:92:c1:61: 1a:e9:a5:7e:39:50:df:61:c0:04:f5:97:00:bb:cd: e5:2f:85:81:bd:35:af:66:5a:9c:c6:2c:d8:01:39: cb:70:51:ce:41:8e:6f:26:b7:7d:11:5b:2c:1b:b2: ee:d6:2e:2a:a7:eb:2b:43:3a:04:3a:76:ad:3c:28: fd:a7:fe:10:ee:d1:6d:ba:18:05:61:71:7a:dc:b8: af:c9:35:d6:fd:5a:98:22:31:ab:d5:54:72:02:ea: 08:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:6D:AC:F6:0C:75:2F:4C:5C:70:80:F1:9D:AB:BE:A2:CE:33:81:15 X509v3 Authority Key Identifier: keyid:F3:2B:E9:82:06:0A:43:73:4D:0A:D1:26:AD:46:DA:2F:39:5C:9D:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:9d:21:26:f5:8e:5b:e5:a0:83:08:dc:db:22:06:a2:d9:e1: 1c:07:9a:fc:6a:45:7d:86:af:fe:55:24:13:37:56:74:dd:0d: 5f:bd:d7:0d:02:24:b2:e2:9a:80:ae:9f:12:a3:d0:45:7a:bf: eb:a4:56:8a:30:aa:5f:ae:21:a5:37:89:3a:52:06:32:ab:b3: 65:9b:18:5a:4a:cf:b4:87:31:76:da:8b:df:b8:d1:da:b3:3a: 23:d8:69:19:58:d0:42:d9:86:94:0c:bd:77:ed:04:cf:a1:15: 7d:3e:d4:98:ca:9c:aa:9c:fa:68:09:52:b1:c8:bd:52:3d:f5: 03:01:07:04:88:ae:1a:71:72:4f:ad:18:81:0b:28:ba:37:ab: 54:08:7b:5a:1a:f2:41:19:4d:74:87:e5:53:83:ba:8d:3d:3f: 5c:0e:24:63:66:31:5f:e9:e7:86:4e:9f:f8:9c:8c:3a:0c:79: 90:c7:df:e0:3f:68:4e:bf:9b:4b:28:7e:f2:b5:6f:17:1c:2e: 50:2c:78:fe:10:6c:69:ed:2b:10:0f:83:68:82:29:07:2f:79: 58:9e:29:d3:92:3e:e2:c4:97:3e:02:ca:a0:43:ea:d5:e1:38: 40:55:ce:89:68:13:f5:70:5b:d7:2a:69:a3:33:76:92:e9:6e: f4:6d:22:8e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs5fO6NMrdxYOooKgIB7hbkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzMmJlOTgyMDYwYTQzNzM0ZDBhZDEyNmFkNDZkYTJmMzk1 YzlkZWYwHhcNMjUxMjIwMDIwMDQ3WhcNMjUxMjIxMDIwMDQ3WjAzMTEwLwYDVQQD Eyg2ZjZkYWNmNjBjNzUyZjRjNWM3MDgwZjE5ZGFiYmVhMmNlMzM4MTE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3nwZlECQdSVH/1r4+wJSWTMeIsWH pmrCiOlGqsQZAKC+4twC7hd7g/PevMdm+pKQdKAwdl1Gl4RIlWF8CHatYf6pLAPA b2wswETrMwDkA7aUJJ9tBnYTglVSs6PUG+MPyJc53pLoU6thQ78oZtIF7ihXYQCl MxVCJwQtv5JlMAYOzbW9jZv7Ftk9QVRwD0/G1SrT+oB5uk71JtZHOpcJfi+SwWEa 6aV+OVDfYcAE9ZcAu83lL4WBvTWvZlqcxizYATnLcFHOQY5vJrd9EVssG7Lu1i4q p+srQzoEOnatPCj9p/4Q7tFtuhgFYXF63LivyTXW/VqYIjGr1VRyAuoIOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG9trPYMdS9MXHCA8Z2rvqLOM4EVMB8GA1UdIwQY MBaAFPMr6YIGCkNzTQrRJq1G2i85XJ3vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOHl2cGdnWUtRM05OQ3RFbXJVYmFMemxjbmU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC9kYTNiMWQtN2FjZi00NTFmLWI2OGIt OTliY2JlNmQ3ZjYzLzEvOHl2cGdnWUtRM05OQ3RFbXJVYmFMemxjbmU4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC9kYTNiMWQtN2FjZi00NTFmLWI2OGItOTliY2JlNmQ3ZjYz LzEvOHl2cGdnWUtRM05OQ3RFbXJVYmFMemxjbmU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApZ0hJvWO W+Wggwjc2yIGotnhHAea/GpFfYav/lUkEzdWdN0NX73XDQIksuKagK6fEqPQRXq/ 66RWijCqX64hpTeJOlIGMquzZZsYWkrPtIcxdtqL37jR2rM6I9hpGVjQQtmGlAy9 d+0Ez6EVfT7UmMqcqpz6aAlSsci9Uj31AwEHBIiuGnFyT60YgQsoujerVAh7Whry QRlNdIflU4O6jT0/XA4kY2YxX+nnhk6f+JyMOgx5kMff4D9oTr+bSyh+8rVvFxwu UCx4/hBsae0rEA+DaIIpBy95WJ4p05I+4sSXPgLKoEPq1eE4QFXOiWgT9XBb1ypp ozN2kulu9G0ijg== -----END CERTIFICATE-----Generated at Sat Dec 20 08:55:04 2025 by rpki-client