This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft File: 8zk0PMbVHduONjgpmhu0lfRYCSE.mft (raw, json) Hash identifier: gnfvJtX1XyEx+/GjWww8Hr9J6Xta6iE7/MP/MsMcv2M= Subject key identifier: 84:9F:1A:62:2D:21:59:80:53:04:FD:6D:4B:F8:B1:F6:57:5A:B0:78 Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21 Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921 Certificate serial: 019B123881BF2DF15D5BF6B705AF5C5D783A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft Manifest number: 1771 Signing time: Fri 12 Dec 2025 11:00:51 +0000 Manifest this update: Fri 12 Dec 2025 11:00:51 +0000 Manifest next update: Sat 13 Dec 2025 11:00:51 +0000 Files and hashes: 1: 8zk0PMbVHduONjgpmhu0lfRYCSE.crl (hash: MKm/EspzXEADcyggQ5P0VEMtOXWB7RTraGFzSTyXO7w=) 2: foJ4QycSZoLeX5HBGEgGb3_VDbc.roa (hash: 6GL5/gRhjE26Cz785WY71i1EcVPF5j3FDcpppmWBIT8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:12:38:81:bf:2d:f1:5d:5b:f6:b7:05:af:5c:5d:78:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921 Validity Not Before: Dec 12 11:00:51 2025 GMT Not After : Dec 13 11:00:51 2025 GMT Subject: CN=849f1a622d2159805304fd6d4bf8b1f6575ab078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:68:4f:b9:b1:6b:e2:de:6a:f5:95:bf:20:06: 8e:74:f2:31:65:3c:ce:13:b9:46:38:56:b6:6c:fc: 1e:2b:a0:de:4e:62:ce:49:0a:7c:c6:8d:bf:45:1e: 3c:08:52:9f:e6:c1:b2:85:b1:c3:b4:7c:b8:08:51: e0:17:17:3d:bc:6c:9e:2c:30:5d:58:3c:89:3f:39: 8b:5e:ca:76:ac:b8:5a:c0:f6:f4:68:0c:22:7f:0c: a9:9c:8b:8f:b6:be:8f:66:83:45:24:83:18:49:bb: 25:8a:a1:0f:60:5b:9c:03:86:ee:fd:13:20:b6:98: 94:84:f4:22:3f:10:f8:64:93:a2:ad:2f:7b:b5:4f: 6d:d9:fc:b9:a1:6a:1c:5f:8c:0c:7c:ca:3a:88:73: 76:19:cc:fa:82:e9:d5:a8:ef:35:39:fa:6c:2d:65: 20:1f:8a:19:ba:99:f4:0a:86:a3:fc:cd:f5:97:2b: 0c:01:58:25:ae:4c:14:eb:e7:19:15:7a:c4:75:17: 5c:81:a6:af:6c:e4:78:81:96:db:88:36:21:e0:19: 75:c5:8c:44:1b:6f:33:82:49:54:d4:b2:fa:c9:0a: 0e:a6:ac:a2:85:be:3d:c7:e1:5b:d7:5e:93:30:cb: 24:45:ef:df:fb:47:00:f1:84:21:62:c8:94:b3:ad: a3:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:9F:1A:62:2D:21:59:80:53:04:FD:6D:4B:F8:B1:F6:57:5A:B0:78 X509v3 Authority Key Identifier: keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:fa:7a:75:2d:dd:8e:f1:1b:2e:ea:8f:78:31:56:04:dc:59: 5f:9b:b0:4e:18:78:6e:78:27:01:d4:e2:69:60:c8:7e:93:8d: 5b:c5:a6:09:94:bc:07:20:34:63:75:ed:1b:e4:a4:6c:f9:96: 86:59:b5:4f:3e:a6:92:e2:e1:7a:79:98:d5:ed:42:e8:c3:fe: 9f:31:ba:2d:67:0c:9c:44:0b:0f:44:19:d4:a0:f7:82:fe:8e: f4:7f:77:80:2c:29:5e:67:ef:f4:51:07:32:3e:af:47:96:23: c8:0e:f9:a8:03:08:d8:d8:34:c4:0c:08:07:9c:bd:1b:2b:fe: 36:89:bd:f1:f9:93:45:25:bd:b0:1b:a6:3e:1a:06:7b:40:a8: 43:62:16:cb:f7:df:f3:1b:4e:58:38:93:22:2c:11:ea:af:bc: 8a:a8:9d:44:2c:7a:06:2e:a7:87:59:af:a3:b5:f5:bb:26:2e: 45:59:e1:1a:ef:6b:ef:55:4c:09:07:cd:27:37:01:f1:2a:f0: f0:44:99:82:9b:90:2a:78:0c:a0:09:2b:47:43:80:fe:d8:cf: 4d:31:69:58:dc:38:96:4c:10:1b:26:7b:44:1d:8f:a3:5d:85: 5a:cc:d0:99:55:67:06:c7:d2:49:9e:50:15:30:cc:d2:98:53: c5:ec:ac:e2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsSOIG/LfFdW/a3Ba9cXXg6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzMzkzNDNjYzZkNTFkZGI4ZTM2MzgyOTlhMWJiNDk1ZjQ1 ODA5MjEwHhcNMjUxMjEyMTEwMDUxWhcNMjUxMjEzMTEwMDUxWjAzMTEwLwYDVQQD Eyg4NDlmMWE2MjJkMjE1OTgwNTMwNGZkNmQ0YmY4YjFmNjU3NWFiMDc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm2hPubFr4t5q9ZW/IAaOdPIxZTzO E7lGOFa2bPweK6DeTmLOSQp8xo2/RR48CFKf5sGyhbHDtHy4CFHgFxc9vGyeLDBd WDyJPzmLXsp2rLhawPb0aAwifwypnIuPtr6PZoNFJIMYSbsliqEPYFucA4bu/RMg tpiUhPQiPxD4ZJOirS97tU9t2fy5oWocX4wMfMo6iHN2Gcz6gunVqO81OfpsLWUg H4oZupn0Coaj/M31lysMAVglrkwU6+cZFXrEdRdcgaavbOR4gZbbiDYh4Bl1xYxE G28zgklU1LL6yQoOpqyihb49x+Fb116TMMskRe/f+0cA8YQhYsiUs62jLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFISfGmItIVmAUwT9bUv4sfZXWrB4MB8GA1UdIwQY MBaAFPM5NDzG1R3bjjY4KZobtJX0WAkhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81ZGU2ZGYtY2U0Zi00YjA5LTgyZDIt Mzc3ZDI1YmU1OTRkLzEvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC81ZGU2ZGYtY2U0Zi00YjA5LTgyZDItMzc3ZDI1YmU1OTRk LzEvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdfp6dS3d jvEbLuqPeDFWBNxZX5uwThh4bngnAdTiaWDIfpONW8WmCZS8ByA0Y3XtG+SkbPmW hlm1Tz6mkuLhenmY1e1C6MP+nzG6LWcMnEQLD0QZ1KD3gv6O9H93gCwpXmfv9FEH Mj6vR5YjyA75qAMI2Ng0xAwIB5y9Gyv+Nom98fmTRSW9sBumPhoGe0CoQ2IWy/ff 8xtOWDiTIiwR6q+8iqidRCx6Bi6nh1mvo7X1uyYuRVnhGu9r71VMCQfNJzcB8Srw 8ESZgpuQKngMoAkrR0OA/tjPTTFpWNw4lkwQGyZ7RB2Po12FWszQmVVnBsfSSZ5Q FTDM0phTxeys4g== -----END CERTIFICATE-----Generated at Fri Dec 12 18:33:05 2025 by rpki-client