This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.mft File: Ac8qcbLHv1QcbMBBUc0CB402mSY.mft (raw, json) Hash identifier: 5A6yx4zWQnalDW2Ngs2MIjClnZ++i4bHIrXZtvtEiI4= Subject key identifier: 81:CC:60:CA:69:46:38:FA:57:41:6A:68:C0:B8:12:5A:38:E7:24:A4 Authority key identifier: 01:CF:2A:71:B2:C7:BF:54:1C:6C:C0:41:51:CD:02:07:8D:36:99:26 Certificate issuer: /CN=01cf2a71b2c7bf541c6cc04151cd02078d369926 Certificate serial: 019B5A88EB65C42423C5690D5433AEDC8D44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ac8qcbLHv1QcbMBBUc0CB402mSY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.mft Manifest number: 049E Signing time: Fri 26 Dec 2025 12:01:21 +0000 Manifest this update: Fri 26 Dec 2025 12:01:21 +0000 Manifest next update: Sat 27 Dec 2025 12:01:21 +0000 Files and hashes: 1: Ac8qcbLHv1QcbMBBUc0CB402mSY.crl (hash: WHaZ3aF2PwONE280TTsOYz2XjwO2isXB1B+BrnAE9pc=) 2: rygZTFCBNWEkh81f14PWqNNI1kI.roa (hash: Nw/ZIl2uHVeZMov8V5+Nv9xGTV5/WVlGxw5x2u+Et/o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.mft rsync://rpki.ripe.net/repository/DEFAULT/Ac8qcbLHv1QcbMBBUc0CB402mSY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:88:eb:65:c4:24:23:c5:69:0d:54:33:ae:dc:8d:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01cf2a71b2c7bf541c6cc04151cd02078d369926 Validity Not Before: Dec 26 12:01:21 2025 GMT Not After : Dec 27 12:01:21 2025 GMT Subject: CN=81cc60ca694638fa57416a68c0b8125a38e724a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:b8:a2:2c:8f:17:c7:e0:c2:36:56:6f:ba:54: cb:22:90:64:4e:db:a6:d2:49:47:b9:a8:5c:8e:ff: 4a:fd:fb:89:c1:64:c1:54:73:91:a9:97:29:41:4d: 7b:c2:65:79:b3:56:2b:d5:65:78:ae:a1:0e:42:ac: 59:7a:81:47:ba:e8:0e:c7:8f:17:d9:e4:8a:94:ce: 57:09:d0:69:c2:30:17:b1:41:4d:e3:8c:5b:ff:52: bb:37:22:d7:e9:34:a1:1b:e8:63:8c:97:11:3c:90: 92:30:24:17:be:b6:fc:93:97:e8:5e:aa:3a:4a:25: 34:95:1f:45:77:83:fc:f3:a4:f3:7d:0a:15:2b:73: 1f:c5:44:d6:4d:41:52:5b:05:c1:43:82:a5:4d:f3: 95:4b:b9:ab:f3:3d:26:8d:47:15:1c:66:b7:51:14: 1c:1d:26:bb:6b:91:d7:a7:02:37:3d:69:2f:d7:b7: 8b:69:6a:be:8b:9b:d1:15:0c:dc:c0:18:17:a2:d4: 79:62:54:3c:1d:2a:24:3c:1f:18:23:ec:66:0a:3d: 7b:92:d0:d4:1f:d5:5e:97:78:32:a4:ae:77:78:e3: 71:49:1e:64:63:78:eb:ea:9c:98:fa:6b:52:14:b4: e4:aa:ee:d2:a5:38:42:88:7a:6b:48:c7:c9:2f:fd: 83:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:CC:60:CA:69:46:38:FA:57:41:6A:68:C0:B8:12:5A:38:E7:24:A4 X509v3 Authority Key Identifier: keyid:01:CF:2A:71:B2:C7:BF:54:1C:6C:C0:41:51:CD:02:07:8D:36:99:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ac8qcbLHv1QcbMBBUc0CB402mSY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:35:13:b4:65:4c:40:5d:81:66:09:cc:c0:df:f3:92:99:06: 15:fa:0e:b2:ef:22:5b:ac:7e:a8:f5:a3:93:57:35:12:54:24: 5e:09:9a:7c:91:b9:cc:b1:b2:77:ac:f4:79:df:4d:be:1b:1c: ad:ec:cd:4a:b9:19:3b:dd:1f:53:3a:da:6c:b5:b9:4f:76:8e: 19:ec:2e:cd:d4:7e:4e:98:4f:7a:7d:98:63:08:1b:fd:4c:08: 54:ec:c4:29:81:50:7c:b1:b0:3f:43:5a:f9:65:be:3b:2f:de: 72:ee:d9:7b:d0:9c:9b:06:cf:98:08:3f:52:51:f4:63:fe:30: d7:ba:34:cf:ae:52:1c:02:01:cd:6d:6b:2e:fa:eb:61:01:9a: 21:3d:ad:31:cb:e6:14:31:77:76:d5:f5:c7:cb:7d:0c:21:d4: b6:6f:35:60:ab:80:0b:b4:99:5c:67:ba:b8:2c:7f:49:94:40: 8d:b7:cf:4d:ca:2d:b2:b0:10:0f:a6:e4:3a:ad:b4:74:84:e5: 81:90:94:05:ee:c4:c0:a4:89:db:bc:37:6e:54:fe:5b:e0:ed: 26:6a:77:81:cd:c2:24:2c:03:12:75:c2:d6:18:bd:4f:4d:ea: a3:73:d5:2d:1a:3f:47:eb:af:34:04:7c:08:34:cf:ec:57:46: 1e:f2:36:19 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaiOtlxCQjxWkNVDOu3I1EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxY2YyYTcxYjJjN2JmNTQxYzZjYzA0MTUxY2QwMjA3OGQz Njk5MjYwHhcNMjUxMjI2MTIwMTIxWhcNMjUxMjI3MTIwMTIxWjAzMTEwLwYDVQQD Eyg4MWNjNjBjYTY5NDYzOGZhNTc0MTZhNjhjMGI4MTI1YTM4ZTcyNGE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5riiLI8Xx+DCNlZvulTLIpBkTtum 0klHuahcjv9K/fuJwWTBVHORqZcpQU17wmV5s1Yr1WV4rqEOQqxZeoFHuugOx48X 2eSKlM5XCdBpwjAXsUFN44xb/1K7NyLX6TShG+hjjJcRPJCSMCQXvrb8k5foXqo6 SiU0lR9Fd4P886TzfQoVK3MfxUTWTUFSWwXBQ4KlTfOVS7mr8z0mjUcVHGa3URQc HSa7a5HXpwI3PWkv17eLaWq+i5vRFQzcwBgXotR5YlQ8HSokPB8YI+xmCj17ktDU H9Vel3gypK53eONxSR5kY3jr6pyY+mtSFLTkqu7SpThCiHprSMfJL/2D9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIHMYMppRjj6V0FqaMC4Elo45ySkMB8GA1UdIwQY MBaAFAHPKnGyx79UHGzAQVHNAgeNNpkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWM4cWNiTEh2MVFjYk1CQlVjMENCNDAybVNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC9jMjRlZTEtMmNiMi00OTA3LTgwNDgt YjBmNGZiZTI2YjYxLzEvQWM4cWNiTEh2MVFjYk1CQlVjMENCNDAybVNZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC9jMjRlZTEtMmNiMi00OTA3LTgwNDgtYjBmNGZiZTI2YjYx LzEvQWM4cWNiTEh2MVFjYk1CQlVjMENCNDAybVNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnzUTtGVM QF2BZgnMwN/zkpkGFfoOsu8iW6x+qPWjk1c1ElQkXgmafJG5zLGyd6z0ed9Nvhsc rezNSrkZO90fUzrabLW5T3aOGewuzdR+TphPen2YYwgb/UwIVOzEKYFQfLGwP0Na +WW+Oy/ecu7Ze9CcmwbPmAg/UlH0Y/4w17o0z65SHAIBzW1rLvrrYQGaIT2tMcvm FDF3dtX1x8t9DCHUtm81YKuAC7SZXGe6uCx/SZRAjbfPTcotsrAQD6bkOq20dITl gZCUBe7EwKSJ27w3blT+W+DtJmp3gc3CJCwDEnXC1hi9T03qo3PVLRo/R+uvNAR8 CDTP7FdGHvI2GQ== -----END CERTIFICATE-----Generated at Fri Dec 26 15:45:26 2025 by rpki-client