This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft File: i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft (raw, json) Hash identifier: ZmuuE16z6djG+KgueTO+jWFRrJ7Gy8nHmUduz9WYRdc= Subject key identifier: 3B:9D:04:8A:4E:85:28:82:F8:97:9F:88:E9:42:79:9C:9E:1A:84:B6 Authority key identifier: 8B:CA:0E:DF:12:2F:4C:F9:8B:08:2D:D4:CC:0D:84:F5:ED:E8:04:B9 Certificate issuer: /CN=8bca0edf122f4cf98b082dd4cc0d84f5ede804b9 Certificate serial: 019B108135F528F771BA713557984FBB8490 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft Manifest number: 1088 Signing time: Fri 12 Dec 2025 03:01:01 +0000 Manifest this update: Fri 12 Dec 2025 03:01:01 +0000 Manifest next update: Sat 13 Dec 2025 03:01:01 +0000 Files and hashes: 1: i8oO3xIvTPmLCC3UzA2E9e3oBLk.crl (hash: 53AosWoZTemAEzYvQLFGTMH2WEI56/dmY5JmWfBmXg4=) 2: nqo_O7xWpllnpXWgXV-EBK2yLMY.roa (hash: v3gPcs+xtmwPaPJ3A0/t7F8YEQgyHeonW0dBXWdUhwo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft rsync://rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:81:35:f5:28:f7:71:ba:71:35:57:98:4f:bb:84:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8bca0edf122f4cf98b082dd4cc0d84f5ede804b9 Validity Not Before: Dec 12 03:01:01 2025 GMT Not After : Dec 13 03:01:01 2025 GMT Subject: CN=3b9d048a4e852882f8979f88e942799c9e1a84b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:71:47:06:f9:74:62:b9:fd:9f:b8:e0:30:0c: 8b:c5:c2:a8:1f:2e:69:ae:73:67:63:56:92:9a:a0: 45:84:1e:96:b3:50:fa:23:44:57:df:28:44:09:84: 0b:4f:98:5d:ea:8d:98:bf:07:77:e0:8d:20:11:6c: 80:ea:ad:75:ca:d9:3a:ad:61:39:d8:22:24:47:79: 42:1c:10:cf:f3:09:c8:d3:e4:ac:e2:ec:b6:a1:44: b0:29:4b:b2:d0:86:4c:b1:84:a5:4e:ce:5a:be:2b: d7:79:62:3c:b9:f4:83:79:71:6f:83:f7:73:bc:77: 3c:0a:43:30:a6:04:53:6e:ca:db:27:b0:21:2c:d4: 21:c2:23:95:cb:f3:a2:7a:2f:43:22:93:fc:55:ad: 23:c2:ee:7b:27:3d:71:6a:cc:ad:0b:ec:25:ad:ac: 66:46:13:54:4a:21:10:11:ef:d0:27:ff:ca:35:be: 14:00:d4:17:7b:b6:22:65:3a:13:d2:ab:8b:98:85: 83:4c:fd:69:3f:66:74:90:12:41:78:ed:92:09:ed: e3:5e:08:13:58:eb:ee:ca:b4:6d:e6:3a:fc:85:1c: ec:69:ea:63:0b:7b:b4:d8:85:df:0b:73:1a:89:78: 46:6e:22:bc:de:48:14:d5:b1:ac:fa:64:56:de:ab: ec:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:9D:04:8A:4E:85:28:82:F8:97:9F:88:E9:42:79:9C:9E:1A:84:B6 X509v3 Authority Key Identifier: keyid:8B:CA:0E:DF:12:2F:4C:F9:8B:08:2D:D4:CC:0D:84:F5:ED:E8:04:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:3c:2f:e7:cf:db:69:7c:9d:30:1a:04:fd:34:7b:3f:20:35: 00:86:98:04:3d:2e:72:35:da:da:ad:4f:8f:94:03:5e:c3:61: 16:ed:28:a7:47:ce:14:32:01:8e:e8:09:0c:cf:a6:5d:c5:8f: 2f:d7:4c:66:b6:9f:b7:69:77:9d:42:71:c1:28:87:3e:76:2f: 41:73:d0:8b:f4:e7:9b:b1:a4:76:15:35:7e:a6:6c:ea:a3:59: 8c:6d:f5:54:d6:39:e4:54:e6:71:04:62:0d:f0:ce:33:f9:ac: f3:1e:aa:28:fd:09:77:5b:fd:8d:4a:8f:6f:26:39:38:c4:04: 78:69:8a:54:f5:87:8b:a9:53:8f:09:87:a7:ba:6c:72:7f:06: 34:35:0e:47:58:4c:f9:66:7f:c5:4c:05:fc:21:1e:a9:b3:45: 9e:36:ea:4b:e7:33:f8:68:c5:a3:d0:01:2d:d6:40:7c:7b:6c: 79:b2:ff:5b:d3:62:ba:08:85:7b:70:40:8e:8d:ab:19:8d:c5: 47:74:d8:86:80:fa:62:a5:2c:5e:02:9b:29:2c:58:58:d3:fd: 6c:b2:bd:57:72:11:51:86:b6:77:17:1e:d5:01:6b:1c:55:e0: 2a:e2:33:07:df:43:fd:99:64:18:ce:8f:1d:ea:b3:0b:41:b5: 6d:45:9b:5f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQgTX1KPdxunE1V5hPu4SQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiY2EwZWRmMTIyZjRjZjk4YjA4MmRkNGNjMGQ4NGY1ZWRl ODA0YjkwHhcNMjUxMjEyMDMwMTAxWhcNMjUxMjEzMDMwMTAxWjAzMTEwLwYDVQQD EygzYjlkMDQ4YTRlODUyODgyZjg5NzlmODhlOTQyNzk5YzllMWE4NGI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA13FHBvl0Yrn9n7jgMAyLxcKoHy5p rnNnY1aSmqBFhB6Ws1D6I0RX3yhECYQLT5hd6o2Yvwd34I0gEWyA6q11ytk6rWE5 2CIkR3lCHBDP8wnI0+Ss4uy2oUSwKUuy0IZMsYSlTs5avivXeWI8ufSDeXFvg/dz vHc8CkMwpgRTbsrbJ7AhLNQhwiOVy/Oiei9DIpP8Va0jwu57Jz1xasytC+wlraxm RhNUSiEQEe/QJ//KNb4UANQXe7YiZToT0quLmIWDTP1pP2Z0kBJBeO2SCe3jXggT WOvuyrRt5jr8hRzsaepjC3u02IXfC3MaiXhGbiK83kgU1bGs+mRW3qvsEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDudBIpOhSiC+JefiOlCeZyeGoS2MB8GA1UdIwQY MBaAFIvKDt8SL0z5iwgt1MwNhPXt6AS5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaThvTzN4SXZUUG1MQ0MzVXpBMkU5ZTNvQkxrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi9hZWYwZWEtOTQwMy00N2ZiLWFkODAt MWVkYTUzYWViZTUxLzEvaThvTzN4SXZUUG1MQ0MzVXpBMkU5ZTNvQkxrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi9hZWYwZWEtOTQwMy00N2ZiLWFkODAtMWVkYTUzYWViZTUx LzEvaThvTzN4SXZUUG1MQ0MzVXpBMkU5ZTNvQkxrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPTwv58/b aXydMBoE/TR7PyA1AIaYBD0ucjXa2q1Pj5QDXsNhFu0op0fOFDIBjugJDM+mXcWP L9dMZraft2l3nUJxwSiHPnYvQXPQi/Tnm7GkdhU1fqZs6qNZjG31VNY55FTmcQRi DfDOM/ms8x6qKP0Jd1v9jUqPbyY5OMQEeGmKVPWHi6lTjwmHp7pscn8GNDUOR1hM +WZ/xUwF/CEeqbNFnjbqS+cz+GjFo9ABLdZAfHtsebL/W9NiugiFe3BAjo2rGY3F R3TYhoD6YqUsXgKbKSxYWNP9bLK9V3IRUYa2dxce1QFrHFXgKuIzB99D/ZlkGM6P HeqzC0G1bUWbXw== -----END CERTIFICATE-----Generated at Fri Dec 12 07:59:00 2025 by rpki-client