This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft File: ih8K1VcrribjnIdAxoqPu0buSGQ.mft (raw, json) Hash identifier: OL8ysN9md+6XRzVdvVB5mJJVRSLYYKdcEH/JU6dtpww= Subject key identifier: E0:DA:D4:CE:99:6D:31:15:47:72:5B:A0:DB:ED:84:1C:C1:5E:9C:20 Authority key identifier: 8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64 Certificate issuer: /CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864 Certificate serial: 019B3456EF243D815F0A5B6CF79393E782F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft Manifest number: 0B15 Signing time: Fri 19 Dec 2025 02:01:11 +0000 Manifest this update: Fri 19 Dec 2025 02:01:11 +0000 Manifest next update: Sat 20 Dec 2025 02:01:11 +0000 Files and hashes: 1: eG2Sz-NBLwpAqaii4LbUZ-cWycY.roa (hash: uPzFHNSnB/27/j7jzNn6SSjG0qijsqzpue+Zsmabwu4=) 2: ih8K1VcrribjnIdAxoqPu0buSGQ.crl (hash: +WUaEgAiDOMgpONJh1O+t01oND6d6/eVCYX/+n1+EiI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:56:ef:24:3d:81:5f:0a:5b:6c:f7:93:93:e7:82:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864 Validity Not Before: Dec 19 02:01:11 2025 GMT Not After : Dec 20 02:01:11 2025 GMT Subject: CN=e0dad4ce996d311547725ba0dbed841cc15e9c20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b6:26:de:f1:54:06:98:b2:fa:61:c8:25:f2: aa:6f:51:d2:93:ec:61:ea:62:61:08:07:66:27:36: ee:fa:09:1d:87:8b:92:3b:19:b3:41:11:e4:84:01: 2d:9b:a9:87:97:6d:79:68:77:10:a2:6b:58:af:f1: 55:47:02:7b:1c:82:50:af:66:54:58:41:fd:cd:38: d7:08:b4:da:77:2f:18:b7:c1:5e:5b:18:c9:82:70: 25:8c:8a:24:2c:5b:98:db:69:e4:04:e0:34:ab:1b: d3:8a:c6:aa:60:d0:37:9e:6a:ae:7a:06:09:62:30: 74:9c:92:d8:c3:62:86:19:19:68:cb:22:44:4a:a8: e2:cf:68:0a:4d:d5:45:a8:7e:51:47:0b:9a:54:65: 94:46:1a:49:fe:67:5c:98:b5:91:d9:c1:ab:6b:b1: 47:fe:7c:d1:b8:e2:1e:98:81:98:5c:6b:80:fa:d0: 40:73:02:c0:e3:02:b4:a2:ab:4d:39:03:bf:1d:26: 5a:8e:dc:3f:28:45:2a:4f:47:1c:8e:c6:47:fa:0e: 72:cc:d3:21:24:b6:6c:b0:d2:e8:15:fb:86:fe:57: 69:dd:ac:21:3e:2e:75:b9:b0:b4:c4:f2:e1:f5:29: fc:24:3b:02:95:6a:85:48:4e:de:7f:08:bd:98:98: 3b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:DA:D4:CE:99:6D:31:15:47:72:5B:A0:DB:ED:84:1C:C1:5E:9C:20 X509v3 Authority Key Identifier: keyid:8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:dd:98:53:2a:57:5b:74:8a:34:dc:ab:d5:e4:ab:fd:51:aa: e8:2e:8b:7f:ca:88:30:62:82:0d:6a:04:5e:fa:0f:15:b0:2a: c1:fe:28:f2:10:7c:8a:20:8e:51:ba:f6:3c:4f:a6:90:48:46: 6a:0d:2d:de:eb:c1:e9:bf:51:a6:f8:a3:35:4e:c4:df:82:a3: 30:15:5f:b5:4c:48:05:6a:dc:ff:9f:47:4b:ac:2a:35:9c:37: be:1b:67:ac:52:c7:6b:d0:93:d9:f2:60:49:b0:9f:50:b1:41: a1:93:a5:ff:11:bc:ba:37:70:3e:d8:fe:9d:55:f0:0c:9e:a0: 0f:97:db:2b:b7:d7:df:1e:9b:f6:a6:71:ae:8e:a3:6b:e0:f5: 7d:9b:bd:c1:7a:93:55:f8:0c:d8:31:af:39:c4:9e:3e:eb:23: 28:90:f1:3b:e7:97:2a:fb:0f:70:c7:64:1f:13:f0:4b:ba:79: 19:72:b7:61:74:f3:00:b7:25:d6:32:31:34:a5:21:b6:b1:62: f6:49:b8:50:0b:d4:29:ad:1b:cc:cb:ae:f8:4f:54:63:ff:17: 9a:5e:f3:58:df:59:48:f8:ed:44:65:a4:87:c5:0f:01:ef:05: 2d:76:36:25:2f:9a:67:c7:46:c5:49:69:b7:5a:b5:04:95:fd: 50:58:e1:6c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0Vu8kPYFfClts95OT54L0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhMWYwYWQ1NTcyYmFlMjZlMzljODc0MGM2OGE4ZmJiNDZl ZTQ4NjQwHhcNMjUxMjE5MDIwMTExWhcNMjUxMjIwMDIwMTExWjAzMTEwLwYDVQQD EyhlMGRhZDRjZTk5NmQzMTE1NDc3MjViYTBkYmVkODQxY2MxNWU5YzIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4LYm3vFUBpiy+mHIJfKqb1HSk+xh 6mJhCAdmJzbu+gkdh4uSOxmzQRHkhAEtm6mHl215aHcQomtYr/FVRwJ7HIJQr2ZU WEH9zTjXCLTady8Yt8FeWxjJgnAljIokLFuY22nkBOA0qxvTisaqYNA3nmquegYJ YjB0nJLYw2KGGRloyyJESqjiz2gKTdVFqH5RRwuaVGWURhpJ/mdcmLWR2cGra7FH /nzRuOIemIGYXGuA+tBAcwLA4wK0oqtNOQO/HSZajtw/KEUqT0ccjsZH+g5yzNMh JLZssNLoFfuG/ldp3awhPi51ubC0xPLh9Sn8JDsClWqFSE7efwi9mJg7TQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFODa1M6ZbTEVR3JboNvthBzBXpwgMB8GA1UdIwQY MBaAFIofCtVXK64m45yHQMaKj7tG7khkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWg4SzFWY3JyaWJqbklkQXhvcVB1MGJ1U0dRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS8yZmQyMGEtNTNhZS00YmVhLTgwYzkt MDNmMjNhNzM5NDFkLzEvaWg4SzFWY3JyaWJqbklkQXhvcVB1MGJ1U0dRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS8yZmQyMGEtNTNhZS00YmVhLTgwYzktMDNmMjNhNzM5NDFk LzEvaWg4SzFWY3JyaWJqbklkQXhvcVB1MGJ1U0dRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATt2YUypX W3SKNNyr1eSr/VGq6C6Lf8qIMGKCDWoEXvoPFbAqwf4o8hB8iiCOUbr2PE+mkEhG ag0t3uvB6b9RpvijNU7E34KjMBVftUxIBWrc/59HS6wqNZw3vhtnrFLHa9CT2fJg SbCfULFBoZOl/xG8ujdwPtj+nVXwDJ6gD5fbK7fX3x6b9qZxro6ja+D1fZu9wXqT VfgM2DGvOcSePusjKJDxO+eXKvsPcMdkHxPwS7p5GXK3YXTzALcl1jIxNKUhtrFi 9km4UAvUKa0bzMuu+E9UY/8Xml7zWN9ZSPjtRGWkh8UPAe8FLXY2JS+aZ8dGxUlp t1q1BJX9UFjhbA== -----END CERTIFICATE-----Generated at Fri Dec 19 08:08:09 2025 by rpki-client