This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.mft File: s8l-xqz0xTcKU8r4I5YxblbkhsY.mft (raw, json) Hash identifier: vJs7EhZSKwtHCK1NGgVCzL80uExNQGJIeqGay3a1zgs= Subject key identifier: DD:7B:45:B4:FF:22:0A:60:C8:97:BB:21:E0:7F:07:17:6C:58:CE:8F Authority key identifier: B3:C9:7E:C6:AC:F4:C5:37:0A:53:CA:F8:23:96:31:6E:56:E4:86:C6 Certificate issuer: /CN=b3c97ec6acf4c5370a53caf82396316e56e486c6 Certificate serial: 019B593EE4FD6F1EABC27441641883F80CB0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s8l-xqz0xTcKU8r4I5YxblbkhsY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.mft Manifest number: 0761 Signing time: Fri 26 Dec 2025 06:00:52 +0000 Manifest this update: Fri 26 Dec 2025 06:00:52 +0000 Manifest next update: Sat 27 Dec 2025 06:00:52 +0000 Files and hashes: 1: s8l-xqz0xTcKU8r4I5YxblbkhsY.crl (hash: YTohsEjrccmQF9eowbSWZXh7QzXTF8R00VKQul13xMI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.crl rsync://rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.mft rsync://rpki.ripe.net/repository/DEFAULT/s8l-xqz0xTcKU8r4I5YxblbkhsY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:3e:e4:fd:6f:1e:ab:c2:74:41:64:18:83:f8:0c:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3c97ec6acf4c5370a53caf82396316e56e486c6 Validity Not Before: Dec 26 06:00:52 2025 GMT Not After : Dec 27 06:00:52 2025 GMT Subject: CN=dd7b45b4ff220a60c897bb21e07f07176c58ce8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:78:ed:ac:fb:1c:9a:f7:9e:9f:77:96:84:c5: 84:f3:bf:c2:71:98:0e:7e:b6:12:e9:4e:cb:9f:fa: c9:7d:31:eb:64:32:07:71:47:8d:a6:a4:48:df:c1: fe:b5:13:d5:d1:4a:47:84:6c:a7:da:42:90:e8:c4: 72:0d:db:5f:e8:68:93:41:e6:67:f2:50:38:1e:8d: e7:98:25:ac:60:46:3c:80:eb:e4:10:22:be:08:74: 7b:66:06:03:47:b6:29:d9:25:07:1c:1d:9d:89:8f: 8d:db:5f:83:c5:f4:65:f0:c7:dc:65:c9:05:57:e0: 2c:41:5f:fa:b5:92:63:fd:dc:4e:11:20:21:7a:ef: 54:dc:e9:32:6d:c9:7f:a8:12:5c:4a:03:9e:01:37: 24:11:66:e4:d7:cf:23:36:ae:04:9f:1a:04:28:85: 31:17:85:3e:24:90:74:53:e1:c5:d9:5e:65:29:4c: 85:19:fc:fe:eb:0a:ed:65:37:ba:88:73:f9:d1:7a: bf:3d:50:de:f9:2e:e6:8b:e6:14:72:69:df:9d:ac: e0:c6:cd:58:bd:12:b8:4e:e8:9a:c2:56:dc:1f:ec: ce:29:04:c3:99:ba:e7:cd:ac:92:ba:a4:52:9b:50: 75:d9:df:21:f0:32:10:04:a7:79:a6:98:cb:23:84: 74:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:7B:45:B4:FF:22:0A:60:C8:97:BB:21:E0:7F:07:17:6C:58:CE:8F X509v3 Authority Key Identifier: keyid:B3:C9:7E:C6:AC:F4:C5:37:0A:53:CA:F8:23:96:31:6E:56:E4:86:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s8l-xqz0xTcKU8r4I5YxblbkhsY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:53:0c:36:65:3e:58:98:79:97:88:c2:7a:77:6d:7e:c2:96: 17:e5:36:59:66:d2:2c:d4:76:28:97:fa:cb:d7:90:cd:c6:cb: da:a5:0a:af:4c:f7:af:cb:e3:d3:5a:57:b2:95:64:40:a7:77: 41:d4:3f:b4:5a:f7:61:13:e3:92:67:85:f5:3d:72:4f:68:d9: f0:e7:10:9b:26:cd:03:3e:92:b1:03:1b:47:ca:fc:e8:98:0d: 80:33:3c:82:06:7c:e0:9b:47:11:2d:37:3b:4a:2f:5f:09:90: 16:4a:2c:79:8e:fe:23:b7:10:f2:d7:0a:96:b3:2c:35:ce:ed: 5a:09:67:3d:1f:e8:bb:1e:bc:af:45:14:a4:90:8b:84:30:7c: 38:01:b6:88:18:92:f1:f9:fa:17:68:e1:a3:5b:43:8f:c6:7f: 19:6c:d0:d8:04:a5:0e:62:65:09:bd:bc:62:e4:eb:cd:ff:9a: e3:fa:b8:40:f8:7e:d4:31:c1:75:c5:90:f9:c7:fc:2f:fe:b5: 8d:3f:0d:d7:4e:a4:00:11:01:18:da:5f:6e:04:1f:db:2a:5e: 77:d1:9b:c6:ee:35:5c:49:ef:bb:91:cb:61:d3:ca:fd:25:91: 78:5d:68:e7:7f:c1:b8:8b:c7:2d:88:08:02:2a:b2:99:dc:4e: 71:f2:4f:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZPuT9bx6rwnRBZBiD+AywMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzYzk3ZWM2YWNmNGM1MzcwYTUzY2FmODIzOTYzMTZlNTZl NDg2YzYwHhcNMjUxMjI2MDYwMDUyWhcNMjUxMjI3MDYwMDUyWjAzMTEwLwYDVQQD EyhkZDdiNDViNGZmMjIwYTYwYzg5N2JiMjFlMDdmMDcxNzZjNThjZThmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoHjtrPscmveen3eWhMWE87/CcZgO frYS6U7Ln/rJfTHrZDIHcUeNpqRI38H+tRPV0UpHhGyn2kKQ6MRyDdtf6GiTQeZn 8lA4Ho3nmCWsYEY8gOvkECK+CHR7ZgYDR7Yp2SUHHB2diY+N21+DxfRl8MfcZckF V+AsQV/6tZJj/dxOESAheu9U3Okybcl/qBJcSgOeATckEWbk188jNq4EnxoEKIUx F4U+JJB0U+HF2V5lKUyFGfz+6wrtZTe6iHP50Xq/PVDe+S7mi+YUcmnfnazgxs1Y vRK4TuiawlbcH+zOKQTDmbrnzaySuqRSm1B12d8h8DIQBKd5ppjLI4R0CQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN17RbT/IgpgyJe7IeB/BxdsWM6PMB8GA1UdIwQY MBaAFLPJfsas9MU3ClPK+COWMW5W5IbGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczhsLXhxejB4VGNLVThyNEk1WXhibGJraHNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni83MmYzMjgtY2U1Zi00MDRhLTlkNGMt ZDNjMTk1OThhMGU2LzEvczhsLXhxejB4VGNLVThyNEk1WXhibGJraHNZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni83MmYzMjgtY2U1Zi00MDRhLTlkNGMtZDNjMTk1OThhMGU2 LzEvczhsLXhxejB4VGNLVThyNEk1WXhibGJraHNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWFMMNmU+ WJh5l4jCendtfsKWF+U2WWbSLNR2KJf6y9eQzcbL2qUKr0z3r8vj01pXspVkQKd3 QdQ/tFr3YRPjkmeF9T1yT2jZ8OcQmybNAz6SsQMbR8r86JgNgDM8ggZ84JtHES03 O0ovXwmQFkoseY7+I7cQ8tcKlrMsNc7tWglnPR/oux68r0UUpJCLhDB8OAG2iBiS 8fn6F2jho1tDj8Z/GWzQ2ASlDmJlCb28YuTrzf+a4/q4QPh+1DHBdcWQ+cf8L/61 jT8N106kABEBGNpfbgQf2yped9Gbxu41XEnvu5HLYdPK/SWReF1o53/BuIvHLYgI AiqymdxOcfJPhA== -----END CERTIFICATE-----Generated at Fri Dec 26 14:16:57 2025 by rpki-client