This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/h8O4Wnvvu0SQ16yFLri-hL-Ti00.mft File: h8O4Wnvvu0SQ16yFLri-hL-Ti00.mft (raw, json) Hash identifier: ZVqVfrr98d4T8OZOBLVRGx4HlD96l+OZhRxrG8eMQ0Y= Subject key identifier: 82:23:8E:8A:EA:D2:75:B7:C4:F8:02:2A:C9:92:1E:96:32:08:F9:4F Authority key identifier: 87:C3:B8:5A:7B:EF:BB:44:90:D7:AC:85:2E:B8:BE:84:BF:93:8B:4D Certificate issuer: /CN=87c3b85a7befbb4490d7ac852eb8be84bf938b4d Certificate serial: 019B46945B8BB0A547BC2597C3002D68B135 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h8O4Wnvvu0SQ16yFLri-hL-Ti00.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/h8O4Wnvvu0SQ16yFLri-hL-Ti00.mft Manifest number: 09AD Signing time: Mon 22 Dec 2025 15:01:26 +0000 Manifest this update: Mon 22 Dec 2025 15:01:26 +0000 Manifest next update: Tue 23 Dec 2025 15:01:26 +0000 Files and hashes: 1: AO9S5FPNyFUFF8sl00iZG2uj63o.roa (hash: dj/tZS47oYr7HP4aHIaoRYk9wXqksDBdwIFty9clVxk=) 2: h8O4Wnvvu0SQ16yFLri-hL-Ti00.crl (hash: 1EwSOKghxY5E4LcrP+nF3dS0RG3GHX0oenx73xKpRoU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/h8O4Wnvvu0SQ16yFLri-hL-Ti00.crl rsync://rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/h8O4Wnvvu0SQ16yFLri-hL-Ti00.mft rsync://rpki.ripe.net/repository/DEFAULT/h8O4Wnvvu0SQ16yFLri-hL-Ti00.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 15:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:46:94:5b:8b:b0:a5:47:bc:25:97:c3:00:2d:68:b1:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87c3b85a7befbb4490d7ac852eb8be84bf938b4d Validity Not Before: Dec 22 15:01:26 2025 GMT Not After : Dec 23 15:01:26 2025 GMT Subject: CN=82238e8aead275b7c4f8022ac9921e963208f94f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:ae:ec:17:cb:b0:21:e3:f4:74:26:d5:fd:92: 18:12:53:9f:98:0f:78:bd:f2:c6:83:d1:60:74:a0: a9:6d:23:9f:f2:92:66:e4:17:4f:9e:d8:35:36:70: 05:bb:05:b2:90:e5:85:22:70:60:cd:10:94:05:99: e5:29:d5:18:20:50:52:b6:1f:f1:4b:f9:2a:11:35: ad:1e:f9:f9:9c:99:69:a1:32:47:81:67:c4:b0:9a: b0:b5:08:96:4c:54:b9:03:cb:54:71:8d:e8:88:b9: 21:4b:28:09:d4:34:bf:44:76:87:ed:75:c1:cf:98: 8b:21:ff:54:c6:25:fd:20:8a:81:1d:66:9f:95:d1: 22:f1:96:27:3b:4b:9a:62:fd:ec:1e:b2:d1:86:b4: 43:69:a2:fa:3b:86:2e:14:eb:91:d4:73:f7:49:36: ec:60:e9:e4:e9:0b:29:96:a8:67:75:89:ba:32:82: 64:de:68:4c:c5:d5:b3:d2:ae:44:c8:bc:c3:de:ce: c2:a8:97:19:16:66:61:a8:9c:61:c5:d6:01:06:ba: 7c:40:1f:03:af:9d:90:48:33:50:65:68:29:c9:62: 5b:4b:6e:99:e9:e0:40:16:6e:d2:f1:49:8d:a4:e6: 30:d0:bc:be:83:59:a9:53:b7:f0:2e:c7:e3:04:41: e9:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:23:8E:8A:EA:D2:75:B7:C4:F8:02:2A:C9:92:1E:96:32:08:F9:4F X509v3 Authority Key Identifier: keyid:87:C3:B8:5A:7B:EF:BB:44:90:D7:AC:85:2E:B8:BE:84:BF:93:8B:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h8O4Wnvvu0SQ16yFLri-hL-Ti00.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/h8O4Wnvvu0SQ16yFLri-hL-Ti00.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/h8O4Wnvvu0SQ16yFLri-hL-Ti00.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:ab:20:47:93:69:8e:d9:2c:f9:8d:31:ac:19:cc:df:2f:f4: 88:01:4a:72:05:f7:1c:f5:ba:f9:fa:0b:1b:5c:23:f3:42:84: 04:5d:f8:0a:27:90:7f:5a:7d:6c:55:65:7b:25:48:36:4e:5a: 0a:8d:90:f0:39:d6:63:e4:ad:49:dc:ce:ce:bb:b0:ce:d7:2c: 91:2a:b2:ad:50:ec:63:f2:95:c6:04:3d:8b:34:a7:83:9a:14: df:8a:c5:a2:7b:46:4a:9e:53:54:76:9c:11:1e:e9:bc:ab:23: 4b:d4:b8:fe:a5:25:8a:0d:81:7f:fc:c9:00:27:00:42:cb:7c: eb:31:a0:6f:18:8c:fb:58:5e:2f:92:f8:ed:fc:85:de:53:fe: e0:48:af:cc:1f:32:d1:a5:11:70:3e:f3:d5:4d:9e:99:c7:7e: 13:9b:6a:70:3d:2a:f9:08:84:ee:57:34:d5:a4:87:74:1d:30: b9:48:da:6e:8f:67:44:c2:18:43:3b:9a:0d:69:31:05:ee:80: 59:db:f8:92:85:40:36:93:42:1b:fa:51:2b:90:71:ed:10:3a: e8:54:5c:8f:e0:98:3e:67:e2:12:4a:2f:c0:7b:bd:13:1f:a6: 54:39:b1:84:ba:5a:e4:bf:2f:65:44:29:a9:59:c2:be:e0:57: 55:30:a7:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtGlFuLsKVHvCWXwwAtaLE1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3YzNiODVhN2JlZmJiNDQ5MGQ3YWM4NTJlYjhiZTg0YmY5 MzhiNGQwHhcNMjUxMjIyMTUwMTI2WhcNMjUxMjIzMTUwMTI2WjAzMTEwLwYDVQQD Eyg4MjIzOGU4YWVhZDI3NWI3YzRmODAyMmFjOTkyMWU5NjMyMDhmOTRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7K7sF8uwIeP0dCbV/ZIYElOfmA94 vfLGg9FgdKCpbSOf8pJm5BdPntg1NnAFuwWykOWFInBgzRCUBZnlKdUYIFBSth/x S/kqETWtHvn5nJlpoTJHgWfEsJqwtQiWTFS5A8tUcY3oiLkhSygJ1DS/RHaH7XXB z5iLIf9UxiX9IIqBHWafldEi8ZYnO0uaYv3sHrLRhrRDaaL6O4YuFOuR1HP3STbs YOnk6QsplqhndYm6MoJk3mhMxdWz0q5EyLzD3s7CqJcZFmZhqJxhxdYBBrp8QB8D r52QSDNQZWgpyWJbS26Z6eBAFm7S8UmNpOYw0Ly+g1mpU7fwLsfjBEHprwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIIjjorq0nW3xPgCKsmSHpYyCPlPMB8GA1UdIwQY MBaAFIfDuFp777tEkNeshS64voS/k4tNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDhPNFdudnZ1MFNRMTZ5RkxyaS1oTC1UaTAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9iYzVjYzgtYjNlZi00MGZjLWFlNDAt NzhlYzgwMjMwNjhmLzEvaDhPNFdudnZ1MFNRMTZ5RkxyaS1oTC1UaTAwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny9iYzVjYzgtYjNlZi00MGZjLWFlNDAtNzhlYzgwMjMwNjhm LzEvaDhPNFdudnZ1MFNRMTZ5RkxyaS1oTC1UaTAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhKsgR5Np jtks+Y0xrBnM3y/0iAFKcgX3HPW6+foLG1wj80KEBF34CieQf1p9bFVleyVINk5a Co2Q8DnWY+StSdzOzruwztcskSqyrVDsY/KVxgQ9izSng5oU34rFontGSp5TVHac ER7pvKsjS9S4/qUlig2Bf/zJACcAQst86zGgbxiM+1heL5L47fyF3lP+4EivzB8y 0aURcD7z1U2emcd+E5tqcD0q+QiE7lc01aSHdB0wuUjabo9nRMIYQzuaDWkxBe6A Wdv4koVANpNCG/pRK5Bx7RA66FRcj+CYPmfiEkovwHu9Ex+mVDmxhLpa5L8vZUQp qVnCvuBXVTCnZw== -----END CERTIFICATE-----Generated at Mon Dec 22 20:46:13 2025 by rpki-client