This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft File: K8hpV3Lw5k87mhYhczzAJQb3RwI.mft (raw, json) Hash identifier: hTWx6BT09nlTjjlwRIdwahaSdZJSg3h3PdShox1gssI= Subject key identifier: ED:33:F6:5A:66:00:96:E6:0E:4F:54:C3:FA:88:9C:C0:BF:EA:12:99 Authority key identifier: 2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02 Certificate issuer: /CN=2bc8695772f0e64f3b9a1621733cc02506f74702 Certificate serial: 019B0E5C105CF58011C3FAFB58502CD0E12E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft Manifest number: 1784 Signing time: Thu 11 Dec 2025 17:01:13 +0000 Manifest this update: Thu 11 Dec 2025 17:01:13 +0000 Manifest next update: Fri 12 Dec 2025 17:01:13 +0000 Files and hashes: 1: 0_EpdViy3Y27mqejc66l1--sjBk.roa (hash: 5pxFxSH3+mNeuLlB3lfUr3Q81qL23oDYt7nqdhFYvqU=) 2: K8hpV3Lw5k87mhYhczzAJQb3RwI.crl (hash: 3NHOGhLrTjXIlRaqaCFfysoUhRavBH14mfVwLRBB4MI=) 3: LcFyOrobUrG-q36ENaVBWkIxyec.roa (hash: aiGhAwWl1vo/+1mZ5amS0ElRqf0Ru78HcL61kI16D7M=) 4: mJjYnvCF0aJWwcOO87dJLulTej8.roa (hash: cyYF0//qn6HDiGNvk9163fm1e6ldk0sS9GYuhZI3HqU=) 5: oOM7QrbyKmK3sX9tSspvcF4LQYc.roa (hash: FI0q4cfrXLcPzOiQWzP6cR+1RIpvdT5irQXBJq3jipE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 17:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:5c:10:5c:f5:80:11:c3:fa:fb:58:50:2c:d0:e1:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2bc8695772f0e64f3b9a1621733cc02506f74702 Validity Not Before: Dec 11 17:01:13 2025 GMT Not After : Dec 12 17:01:13 2025 GMT Subject: CN=ed33f65a660096e60e4f54c3fa889cc0bfea1299 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8f:09:ed:d3:7c:7c:89:15:38:d0:5c:01:fb: 7a:49:89:98:45:59:60:ea:ec:ed:6f:33:9e:4d:fc: 5f:48:4e:91:49:24:f6:d1:1f:e2:b4:96:5e:01:36: 12:a7:d8:0b:52:9a:7c:7a:18:8e:16:95:22:9a:a5: 16:2b:4e:a8:3a:55:e4:0e:f8:3b:dd:cb:ce:7b:32: 2f:b6:04:2f:a6:01:d6:dc:e1:5b:67:71:74:72:80: 80:03:71:5f:ab:cf:56:09:24:b8:1c:19:2e:4b:f5: 6b:32:50:10:b7:f1:b6:1a:d9:b1:c6:c7:d4:dc:a9: 83:9a:a9:a4:41:f3:ef:64:d8:be:ce:a5:68:43:a6: 63:bd:0f:5c:31:e3:41:b5:90:48:4b:1f:bb:3a:96: c4:ed:f5:01:2f:12:18:ad:60:7f:97:d6:98:09:39: bf:34:33:77:a9:16:6c:5e:08:42:5b:2b:76:da:d6: a7:b6:ae:30:e1:b6:7b:c6:2a:a6:b1:8f:b7:3a:3a: 52:30:83:1e:eb:d8:90:33:39:aa:60:9e:92:17:c9: 7d:5a:53:b1:4b:c2:51:9f:9d:86:eb:ac:35:88:6c: 18:55:cc:72:e5:72:58:ae:c2:66:cd:01:36:3c:f4: 4d:c9:b5:af:65:f3:31:6a:71:c8:28:74:cf:56:2c: 34:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:33:F6:5A:66:00:96:E6:0E:4F:54:C3:FA:88:9C:C0:BF:EA:12:99 X509v3 Authority Key Identifier: keyid:2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:3d:c5:4d:f8:be:80:1f:b4:8e:f1:0e:3c:75:fe:fc:41:8c: 45:3c:ed:56:77:f1:31:52:d6:75:b8:0d:40:61:e1:95:6d:d6: 2a:d6:4b:a3:21:e8:2d:8a:e0:b7:0f:d8:bc:2a:b3:05:82:cc: 31:a3:e7:88:24:7a:2f:58:ea:45:47:97:9a:ae:0e:1c:9f:ae: a8:e9:0d:72:26:38:02:14:8e:1c:b9:8f:b4:cf:69:6e:ac:f4: 22:ec:78:ff:7d:21:fb:8d:19:84:a3:37:24:ec:e3:f7:5a:97: 9f:55:0d:a5:c6:ff:76:56:ba:15:d0:6a:ac:5f:75:f1:e8:33: 81:82:13:c6:1e:d4:b8:92:d1:f6:88:c2:bd:6e:89:14:4f:b8: 81:ac:8f:c0:f6:39:30:a3:30:fb:d2:df:ad:85:6a:e4:50:40: e4:83:2f:9b:93:38:f5:e5:33:75:2f:b1:e2:7f:15:6e:bd:4d: 63:78:5b:2a:69:93:d6:09:8d:bb:11:81:b7:1d:7b:6f:35:a8: 0b:7e:e9:e1:a1:a1:d5:9b:f8:ec:b3:2f:8b:22:2b:51:a5:d9: c8:38:4e:38:b1:19:66:f9:1b:b9:f3:c7:bc:d8:42:30:08:58: 8f:e4:d2:56:97:66:ed:67:6f:96:c7:27:4e:31:e7:c1:0f:69: bf:3e:2d:75 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOXBBc9YARw/r7WFAs0OEuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiYzg2OTU3NzJmMGU2NGYzYjlhMTYyMTczM2NjMDI1MDZm NzQ3MDIwHhcNMjUxMjExMTcwMTEzWhcNMjUxMjEyMTcwMTEzWjAzMTEwLwYDVQQD EyhlZDMzZjY1YTY2MDA5NmU2MGU0ZjU0YzNmYTg4OWNjMGJmZWExMjk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvY8J7dN8fIkVONBcAft6SYmYRVlg 6uztbzOeTfxfSE6RSST20R/itJZeATYSp9gLUpp8ehiOFpUimqUWK06oOlXkDvg7 3cvOezIvtgQvpgHW3OFbZ3F0coCAA3Ffq89WCSS4HBkuS/VrMlAQt/G2GtmxxsfU 3KmDmqmkQfPvZNi+zqVoQ6ZjvQ9cMeNBtZBISx+7OpbE7fUBLxIYrWB/l9aYCTm/ NDN3qRZsXghCWyt22tantq4w4bZ7xiqmsY+3OjpSMIMe69iQMzmqYJ6SF8l9WlOx S8JRn52G66w1iGwYVcxy5XJYrsJmzQE2PPRNybWvZfMxanHIKHTPViw0eQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO0z9lpmAJbmDk9Uw/qInMC/6hKZMB8GA1UdIwQY MBaAFCvIaVdy8OZPO5oWIXM8wCUG90cCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSzhocFYzTHc1azg3bWhZaGN6ekFKUWIzUndJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9jYmZhOWItMDI5MS00OGUzLTgwNWMt NDNkNjZhMDMzMWVjLzEvSzhocFYzTHc1azg3bWhZaGN6ekFKUWIzUndJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS9jYmZhOWItMDI5MS00OGUzLTgwNWMtNDNkNjZhMDMzMWVj LzEvSzhocFYzTHc1azg3bWhZaGN6ekFKUWIzUndJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkz3FTfi+ gB+0jvEOPHX+/EGMRTztVnfxMVLWdbgNQGHhlW3WKtZLoyHoLYrgtw/YvCqzBYLM MaPniCR6L1jqRUeXmq4OHJ+uqOkNciY4AhSOHLmPtM9pbqz0Iux4/30h+40ZhKM3 JOzj91qXn1UNpcb/dla6FdBqrF918egzgYITxh7UuJLR9ojCvW6JFE+4gayPwPY5 MKMw+9LfrYVq5FBA5IMvm5M49eUzdS+x4n8Vbr1NY3hbKmmT1gmNuxGBtx17bzWo C37p4aGh1Zv47LMviyIrUaXZyDhOOLEZZvkbufPHvNhCMAhYj+TSVpdm7Wdvlscn TjHnwQ9pvz4tdQ== -----END CERTIFICATE-----Generated at Fri Dec 12 02:51:50 2025 by rpki-client