This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft File: 1a8gwCbeEE2W8XrLr054fvnTAgY.mft (raw, json) Hash identifier: RsmArcY/q4Efxy9fZMdXGrMveUUwlSsCJvcQI5nk2P8= Subject key identifier: 43:9A:9F:5B:F1:9C:D8:AB:F8:DC:36:37:06:FE:36:BA:8F:D3:32:87 Authority key identifier: D5:AF:20:C0:26:DE:10:4D:96:F1:7A:CB:AF:4E:78:7E:F9:D3:02:06 Certificate issuer: /CN=d5af20c026de104d96f17acbaf4e787ef9d30206 Certificate serial: 019B397D1A55B4F670B309F34016B3EE7211 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft Manifest number: 0BC5 Signing time: Sat 20 Dec 2025 02:00:58 +0000 Manifest this update: Sat 20 Dec 2025 02:00:58 +0000 Manifest next update: Sun 21 Dec 2025 02:00:58 +0000 Files and hashes: 1: 1a8gwCbeEE2W8XrLr054fvnTAgY.crl (hash: E7n+CxzidtQwiGqKXpB1hwJZYyEGLK+piREbcRDptrk=) 2: ZntZKX2L_8Ma0koJ3HPW10lURHI.roa (hash: OJbq7vowsXJwKs2XlYdhIC+ZaJvxn8OPWmKWbar3xew=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:7d:1a:55:b4:f6:70:b3:09:f3:40:16:b3:ee:72:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d5af20c026de104d96f17acbaf4e787ef9d30206 Validity Not Before: Dec 20 02:00:58 2025 GMT Not After : Dec 21 02:00:58 2025 GMT Subject: CN=439a9f5bf19cd8abf8dc363706fe36ba8fd33287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:60:5e:3f:b9:0e:a3:9c:a0:30:2a:56:6c:e5: a6:04:24:7e:1e:ab:bc:69:2c:c2:1d:8f:5e:b0:d8: 29:b4:94:54:51:4b:16:2d:3b:d4:f9:39:ee:42:cb: e4:e6:cf:96:52:71:33:b6:b8:d4:fd:32:e9:ed:c7: 2a:09:1a:f0:af:bb:24:3c:dd:5a:d3:77:39:73:bc: 38:1f:1f:3c:8a:72:a0:10:32:60:c8:23:42:3d:92: a3:e0:5c:1f:bb:58:1f:bc:b0:4c:1f:18:11:f8:51: 9c:97:1f:b2:81:8d:23:11:14:ff:4a:64:aa:51:45: eb:23:53:60:3b:83:a2:0b:98:a9:09:57:38:b2:e7: 3b:40:ce:14:58:af:ec:eb:76:31:a5:4a:d6:83:0e: ff:e8:87:03:75:ca:54:64:29:f1:95:f7:01:bc:87: 47:72:c3:18:e8:2e:1f:ca:3e:f1:dd:05:a6:37:20: ef:ac:17:90:d0:3c:39:a0:10:12:53:1d:08:17:de: 2e:cb:76:fe:49:1a:8a:8c:9b:52:3c:52:fe:11:90: 89:a8:32:8c:2f:52:d7:1d:4c:9b:da:0c:1e:22:54: 5f:db:1f:6f:21:e2:76:cc:30:ae:ee:0f:ab:7a:c1: a2:a3:2b:53:52:15:44:1b:95:6f:3a:85:0f:a3:69: dc:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:9A:9F:5B:F1:9C:D8:AB:F8:DC:36:37:06:FE:36:BA:8F:D3:32:87 X509v3 Authority Key Identifier: keyid:D5:AF:20:C0:26:DE:10:4D:96:F1:7A:CB:AF:4E:78:7E:F9:D3:02:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:c3:a0:e9:6e:26:d8:6d:c2:9f:b0:b5:7c:1c:fb:cc:c0:e6: b2:01:0e:e7:d0:ce:dd:cd:eb:15:97:0c:0c:2e:b5:ca:86:70: 1b:e3:43:22:e2:75:20:66:c6:a2:73:08:89:3f:ba:79:ea:a0: 89:cc:f0:2f:fc:70:90:38:7b:7e:1a:f0:8d:2d:f1:28:08:74: 5d:22:c0:8b:3c:d1:9f:c5:78:6e:22:20:89:f7:19:8a:fa:11: 57:06:87:e7:77:8e:42:43:2d:31:02:b5:b4:2c:8c:8d:fc:43: c9:ae:4e:69:8c:c3:d1:1a:aa:7c:9e:df:14:48:fb:6f:a6:27: a3:18:83:e7:62:89:ff:96:5d:06:0f:7d:a9:41:54:bb:c1:9c: d7:1c:e3:2c:66:13:2e:61:f5:ed:f9:41:97:9d:c2:7b:10:e9: ed:2c:0e:db:4f:0a:2d:6d:21:bb:f9:cf:0f:1d:14:6a:a3:5f: 42:0d:ae:ba:78:3c:6b:d3:d9:8a:bb:32:94:fc:00:1a:a2:41: 9c:b1:e7:55:ff:aa:22:7e:6a:91:1d:f0:d0:a0:73:2d:70:70: cf:82:8e:e2:99:1d:30:06:e3:7d:f4:19:cd:f3:a3:b8:5e:52: ff:62:cd:1d:d0:7c:00:ec:65:4f:1f:b6:95:15:58:57:f2:5b: af:81:33:53 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs5fRpVtPZwswnzQBaz7nIRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1YWYyMGMwMjZkZTEwNGQ5NmYxN2FjYmFmNGU3ODdlZjlk MzAyMDYwHhcNMjUxMjIwMDIwMDU4WhcNMjUxMjIxMDIwMDU4WjAzMTEwLwYDVQQD Eyg0MzlhOWY1YmYxOWNkOGFiZjhkYzM2MzcwNmZlMzZiYThmZDMzMjg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx2BeP7kOo5ygMCpWbOWmBCR+Hqu8 aSzCHY9esNgptJRUUUsWLTvU+TnuQsvk5s+WUnEztrjU/TLp7ccqCRrwr7skPN1a 03c5c7w4Hx88inKgEDJgyCNCPZKj4Fwfu1gfvLBMHxgR+FGclx+ygY0jERT/SmSq UUXrI1NgO4OiC5ipCVc4suc7QM4UWK/s63YxpUrWgw7/6IcDdcpUZCnxlfcBvIdH csMY6C4fyj7x3QWmNyDvrBeQ0Dw5oBASUx0IF94uy3b+SRqKjJtSPFL+EZCJqDKM L1LXHUyb2gweIlRf2x9vIeJ2zDCu7g+resGioytTUhVEG5VvOoUPo2ncYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEOan1vxnNir+Nw2Nwb+NrqP0zKHMB8GA1UdIwQY MBaAFNWvIMAm3hBNlvF6y69OeH750wIGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMWE4Z3dDYmVFRTJXOFhyTHIwNTRmdm5UQWdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8wOWQ3MmUtODI2Ny00MzkzLTgzNjMt ODlmMTgxNWQ0YzE5LzEvMWE4Z3dDYmVFRTJXOFhyTHIwNTRmdm5UQWdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi8wOWQ3MmUtODI2Ny00MzkzLTgzNjMtODlmMTgxNWQ0YzE5 LzEvMWE4Z3dDYmVFRTJXOFhyTHIwNTRmdm5UQWdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANsOg6W4m 2G3Cn7C1fBz7zMDmsgEO59DO3c3rFZcMDC61yoZwG+NDIuJ1IGbGonMIiT+6eeqg iczwL/xwkDh7fhrwjS3xKAh0XSLAizzRn8V4biIgifcZivoRVwaH53eOQkMtMQK1 tCyMjfxDya5OaYzD0RqqfJ7fFEj7b6YnoxiD52KJ/5ZdBg99qUFUu8Gc1xzjLGYT LmH17flBl53CexDp7SwO208KLW0hu/nPDx0UaqNfQg2uung8a9PZirsylPwAGqJB nLHnVf+qIn5qkR3w0KBzLXBwz4KO4pkdMAbjffQZzfOjuF5S/2LNHdB8AOxlTx+2 lRVYV/Jbr4EzUw== -----END CERTIFICATE-----Generated at Sat Dec 20 07:36:16 2025 by rpki-client