This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft File: 8u5baEnIyB9adjWVWIprpoIedns.mft (raw, json) Hash identifier: fYzKTk/EM3JnW72ZGaoLV3FRKFveO4B0Agqei1U2Dbo= Subject key identifier: 78:2A:1A:C2:CA:ED:D0:A8:3C:C9:E4:1A:96:E8:CD:0A:AD:BC:BB:80 Authority key identifier: F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B Certificate issuer: /CN=f2ee5b6849c8c81f5a763595588a6ba6821e767b Certificate serial: 019B10B86B80DEA78E7672FAA6CA79C99175 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft Manifest number: 0776 Signing time: Fri 12 Dec 2025 04:01:20 +0000 Manifest this update: Fri 12 Dec 2025 04:01:20 +0000 Manifest next update: Sat 13 Dec 2025 04:01:20 +0000 Files and hashes: 1: 8u5baEnIyB9adjWVWIprpoIedns.crl (hash: Nsx1eEULJ0WhKVvJ3VHXTVCtzV+8eir3ZQL5EOgE1lM=) 2: Di0vSgAmdtxn2ZM7Al8L8Zr3oIU.roa (hash: 0Bf0l0DWLnoKx593QVoGlu2x+BD1lYWYH448tSVbn0U=) 3: Tb-8GP8qcCsPrA2Xrleo-iet2HM.roa (hash: yyhoDt89y5+7nL9lVvf4sdS/dAeJY+OT1BrhoMFwMME=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:b8:6b:80:de:a7:8e:76:72:fa:a6:ca:79:c9:91:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f2ee5b6849c8c81f5a763595588a6ba6821e767b Validity Not Before: Dec 12 04:01:20 2025 GMT Not After : Dec 13 04:01:20 2025 GMT Subject: CN=782a1ac2caedd0a83cc9e41a96e8cd0aadbcbb80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:16:87:c0:79:c9:1a:2d:2a:1b:9f:57:2b:b9: 95:5c:90:2f:a0:56:e7:d3:de:b7:02:e0:9d:6f:00: 8c:d4:dd:a1:6a:ac:53:6d:5c:c3:f3:6d:f5:0b:95: 56:f7:13:c9:37:fe:7a:22:19:b3:59:b9:0d:a8:9b: 62:57:61:07:7e:d5:a8:eb:a3:46:39:17:c9:36:34: c6:98:d4:71:cb:07:3b:79:eb:df:99:35:da:12:5f: 40:dc:b2:54:8e:65:69:21:1c:09:dc:c6:f1:54:cc: 3b:72:49:10:d4:f9:40:11:e4:bd:c9:0d:d0:34:d7: b3:07:f5:87:71:24:03:b9:7f:fa:2e:bf:23:8b:b8: d4:b4:22:12:38:76:a6:fb:14:c2:38:ae:ec:37:a7: 4a:82:a8:b7:f5:bd:23:18:f8:ba:7f:85:8e:06:28: be:0f:b1:f5:8f:26:e7:b6:85:c3:ef:f9:51:c5:84: d3:ca:7f:e4:35:37:36:d4:a9:bb:f0:e5:e8:5f:36: fd:f6:f6:af:62:5f:6c:61:00:6d:13:45:81:40:1e: f1:47:0c:55:af:ce:eb:6f:22:7e:65:3a:e1:aa:91: ac:6c:5e:4d:c7:92:20:7f:cb:36:fc:69:fb:db:d8: 46:13:34:3d:ec:be:4d:9b:31:e4:50:0c:0b:20:c4: c8:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:2A:1A:C2:CA:ED:D0:A8:3C:C9:E4:1A:96:E8:CD:0A:AD:BC:BB:80 X509v3 Authority Key Identifier: keyid:F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:4f:2a:7f:0f:ad:05:1e:06:75:1c:a8:a0:1c:5e:4b:2c:45: bb:cb:3b:0c:97:27:a8:aa:fa:b3:99:43:55:3f:7b:99:7b:47: e5:51:a2:c4:eb:0d:1b:79:76:cb:14:9f:cc:4b:89:1c:96:eb: eb:8f:29:8e:b0:19:13:75:16:56:33:e5:78:12:01:a8:88:4f: ec:4a:86:87:59:f2:f4:bb:9f:48:eb:fa:d7:6c:8a:39:34:8f: 6a:d9:5d:8c:d0:1c:82:9c:bc:55:0e:26:13:aa:7f:b4:83:9b: da:84:ec:27:46:8e:ee:a6:2f:e4:17:2e:e9:de:ca:c4:ad:2f: 51:f8:13:4b:e7:92:82:79:f0:e3:3e:33:76:30:d3:26:45:b5: 02:f5:82:bf:d4:a1:dc:2c:32:be:0b:70:eb:23:96:16:62:c4: 67:45:33:ba:55:9c:77:1d:eb:4f:50:b4:58:a7:ff:74:b3:a9: c4:02:83:4a:40:e5:7f:53:e4:4c:7c:c2:88:37:40:f8:7f:bf: 67:d6:26:22:65:b7:91:9d:82:41:bb:8a:85:f9:91:37:48:50: f9:da:8a:48:ec:89:b0:f3:12:32:4e:a7:8a:be:29:ce:f1:8f: 3b:cd:72:d1:48:2e:1f:00:b5:9a:9d:06:8f:94:51:92:5e:26: ce:1d:40:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQuGuA3qeOdnL6psp5yZF1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYyZWU1YjY4NDljOGM4MWY1YTc2MzU5NTU4OGE2YmE2ODIx ZTc2N2IwHhcNMjUxMjEyMDQwMTIwWhcNMjUxMjEzMDQwMTIwWjAzMTEwLwYDVQQD Eyg3ODJhMWFjMmNhZWRkMGE4M2NjOWU0MWE5NmU4Y2QwYWFkYmNiYjgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxaHwHnJGi0qG59XK7mVXJAvoFbn 0963AuCdbwCM1N2haqxTbVzD8231C5VW9xPJN/56IhmzWbkNqJtiV2EHftWo66NG ORfJNjTGmNRxywc7eevfmTXaEl9A3LJUjmVpIRwJ3MbxVMw7ckkQ1PlAEeS9yQ3Q NNezB/WHcSQDuX/6Lr8ji7jUtCISOHam+xTCOK7sN6dKgqi39b0jGPi6f4WOBii+ D7H1jybntoXD7/lRxYTTyn/kNTc21Km78OXoXzb99vavYl9sYQBtE0WBQB7xRwxV r87rbyJ+ZTrhqpGsbF5Nx5Igf8s2/Gn729hGEzQ97L5NmzHkUAwLIMTIxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHgqGsLK7dCoPMnkGpbozQqtvLuAMB8GA1UdIwQY MBaAFPLuW2hJyMgfWnY1lViKa6aCHnZ7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOHU1YmFFbkl5QjlhZGpXVldJcHJwb0llZG5zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS8wMDJhODgtM2E4NS00NzZmLWI0NTIt NjBhMDM5ZGQxYmNhLzEvOHU1YmFFbkl5QjlhZGpXVldJcHJwb0llZG5zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS8wMDJhODgtM2E4NS00NzZmLWI0NTItNjBhMDM5ZGQxYmNh LzEvOHU1YmFFbkl5QjlhZGpXVldJcHJwb0llZG5zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjk8qfw+t BR4GdRyooBxeSyxFu8s7DJcnqKr6s5lDVT97mXtH5VGixOsNG3l2yxSfzEuJHJbr 648pjrAZE3UWVjPleBIBqIhP7EqGh1ny9LufSOv612yKOTSPatldjNAcgpy8VQ4m E6p/tIOb2oTsJ0aO7qYv5Bcu6d7KxK0vUfgTS+eSgnnw4z4zdjDTJkW1AvWCv9Sh 3Cwyvgtw6yOWFmLEZ0UzulWcdx3rT1C0WKf/dLOpxAKDSkDlf1PkTHzCiDdA+H+/ Z9YmImW3kZ2CQbuKhfmRN0hQ+dqKSOyJsPMSMk6nir4pzvGPO81y0UguHwC1mp0G j5RRkl4mzh1A4w== -----END CERTIFICATE-----Generated at Fri Dec 12 08:02:14 2025 by rpki-client