This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft File: 1a8gwCbeEE2W8XrLr054fvnTAgY.mft (raw, json) Hash identifier: PlZwID2f25Wgi7ENcU6zBpx/oZYm8FBLw1h+b4MBmRU= Subject key identifier: 26:8C:80:87:9A:24:19:72:DB:3A:97:55:29:31:32:C1:09:03:F2:EC Authority key identifier: D5:AF:20:C0:26:DE:10:4D:96:F1:7A:CB:AF:4E:78:7E:F9:D3:02:06 Certificate issuer: /CN=d5af20c026de104d96f17acbaf4e787ef9d30206 Certificate serial: 019B0746FB82B0D054A070C100C284C0E7D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft Manifest number: 0BAB Signing time: Wed 10 Dec 2025 08:00:51 +0000 Manifest this update: Wed 10 Dec 2025 08:00:51 +0000 Manifest next update: Thu 11 Dec 2025 08:00:51 +0000 Files and hashes: 1: 1a8gwCbeEE2W8XrLr054fvnTAgY.crl (hash: SEP/YhjlmjmbJQ5xDIwhWpmjMgg27H+9i0u4n6nrScA=) 2: ZntZKX2L_8Ma0koJ3HPW10lURHI.roa (hash: OJbq7vowsXJwKs2XlYdhIC+ZaJvxn8OPWmKWbar3xew=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 08:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:07:46:fb:82:b0:d0:54:a0:70:c1:00:c2:84:c0:e7:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d5af20c026de104d96f17acbaf4e787ef9d30206 Validity Not Before: Dec 10 08:00:51 2025 GMT Not After : Dec 11 08:00:51 2025 GMT Subject: CN=268c80879a241972db3a9755293132c10903f2ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5a:21:0a:ad:fb:f2:94:50:9d:d2:be:69:e2: 73:44:37:12:24:2a:55:4b:60:ce:2b:b6:ef:29:04: 6f:3d:fa:df:f6:79:d1:42:18:57:2e:06:6d:ca:b2: c6:2a:5f:01:cd:86:05:76:6e:54:4c:25:0f:a0:bf: f8:7b:11:c3:b1:4f:f8:ab:73:be:77:ff:bc:e9:b9: 12:7f:c9:22:85:1d:0a:29:d7:ec:f7:0e:78:db:a4: f9:96:79:3a:90:2d:ff:73:9a:c5:01:f7:e9:e9:81: 02:0f:fb:b5:b5:e2:10:32:4a:91:fc:6f:b7:ee:23: 7d:2e:43:9b:e5:13:d5:99:8d:91:a3:ed:ac:75:8a: 2d:77:ba:a9:53:25:13:fa:3b:d6:e7:df:e5:c9:93: db:e2:9e:b7:86:f8:5c:2d:e0:a2:6c:44:fb:f9:d6: 69:ab:82:67:cc:06:72:4e:fa:e7:7f:c2:03:5c:53: ab:60:0a:b3:58:c0:b8:c8:fa:c6:31:ca:a2:ce:7d: 98:55:ac:2a:25:02:f2:1d:28:20:c4:e8:23:93:fd: ad:9d:e3:21:c3:8c:ca:19:db:26:0a:19:3c:6e:eb: 6d:7a:57:c5:d8:67:8a:59:e7:a4:b1:31:88:bc:7d: 8f:49:18:18:af:f6:54:f4:ca:59:91:f8:3a:e7:a0: d0:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:8C:80:87:9A:24:19:72:DB:3A:97:55:29:31:32:C1:09:03:F2:EC X509v3 Authority Key Identifier: keyid:D5:AF:20:C0:26:DE:10:4D:96:F1:7A:CB:AF:4E:78:7E:F9:D3:02:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:a5:c0:0b:7a:8a:14:2a:97:e2:5f:58:ee:a0:1d:cf:45:86: 13:fa:c6:d0:bd:fa:bf:4b:80:f5:d6:77:18:c8:b8:c0:5d:26: d2:3b:3b:b6:d5:10:25:16:a4:00:00:31:c3:0e:96:57:99:c7: 56:7f:65:f6:00:18:c0:f5:94:b5:b4:68:56:82:60:36:78:b6: 2b:51:49:10:45:00:5a:85:46:47:66:81:ac:d5:15:c3:fa:40: 98:c2:ef:b4:85:21:3e:5a:62:2e:76:be:0e:e7:0a:a6:b4:9a: 18:19:fb:d3:37:82:dc:ec:f4:91:5b:d6:30:65:24:e4:8a:5d: 52:01:2a:4a:f0:a4:89:4a:9e:36:1d:a8:cd:b2:cb:3f:b0:68: 8d:b9:05:92:06:23:e7:06:df:35:c0:95:29:d6:1a:41:c3:cf: ce:d1:56:d1:6a:ae:37:36:13:87:0c:cb:fe:63:f5:f4:b0:7c: 5f:f9:37:81:41:e7:89:e2:9f:a8:c0:c1:be:cf:6a:10:01:72: 66:5e:9f:91:18:b4:18:1d:32:4c:d2:92:7d:15:45:ba:47:08: 97:aa:33:ab:14:82:36:8a:3a:f3:93:b5:1b:a2:61:d8:37:db: ee:54:15:7d:99:c4:2b:5c:d7:19:3b:75:bf:08:e8:7c:28:41: 09:50:67:4a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsHRvuCsNBUoHDBAMKEwOfQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1YWYyMGMwMjZkZTEwNGQ5NmYxN2FjYmFmNGU3ODdlZjlk MzAyMDYwHhcNMjUxMjEwMDgwMDUxWhcNMjUxMjExMDgwMDUxWjAzMTEwLwYDVQQD EygyNjhjODA4NzlhMjQxOTcyZGIzYTk3NTUyOTMxMzJjMTA5MDNmMmVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxFohCq378pRQndK+aeJzRDcSJCpV S2DOK7bvKQRvPfrf9nnRQhhXLgZtyrLGKl8BzYYFdm5UTCUPoL/4exHDsU/4q3O+ d/+86bkSf8kihR0KKdfs9w5426T5lnk6kC3/c5rFAffp6YECD/u1teIQMkqR/G+3 7iN9LkOb5RPVmY2Ro+2sdYotd7qpUyUT+jvW59/lyZPb4p63hvhcLeCibET7+dZp q4JnzAZyTvrnf8IDXFOrYAqzWMC4yPrGMcqizn2YVawqJQLyHSggxOgjk/2tneMh w4zKGdsmChk8buttelfF2GeKWeeksTGIvH2PSRgYr/ZU9MpZkfg656DQHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCaMgIeaJBly2zqXVSkxMsEJA/LsMB8GA1UdIwQY MBaAFNWvIMAm3hBNlvF6y69OeH750wIGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMWE4Z3dDYmVFRTJXOFhyTHIwNTRmdm5UQWdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8wOWQ3MmUtODI2Ny00MzkzLTgzNjMt ODlmMTgxNWQ0YzE5LzEvMWE4Z3dDYmVFRTJXOFhyTHIwNTRmdm5UQWdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi8wOWQ3MmUtODI2Ny00MzkzLTgzNjMtODlmMTgxNWQ0YzE5 LzEvMWE4Z3dDYmVFRTJXOFhyTHIwNTRmdm5UQWdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe6XAC3qK FCqX4l9Y7qAdz0WGE/rG0L36v0uA9dZ3GMi4wF0m0js7ttUQJRakAAAxww6WV5nH Vn9l9gAYwPWUtbRoVoJgNni2K1FJEEUAWoVGR2aBrNUVw/pAmMLvtIUhPlpiLna+ DucKprSaGBn70zeC3Oz0kVvWMGUk5IpdUgEqSvCkiUqeNh2ozbLLP7BojbkFkgYj 5wbfNcCVKdYaQcPPztFW0WquNzYThwzL/mP19LB8X/k3gUHnieKfqMDBvs9qEAFy Zl6fkRi0GB0yTNKSfRVFukcIl6ozqxSCNoo685O1G6Jh2Dfb7lQVfZnEK1zXGTt1 vwjofChBCVBnSg== -----END CERTIFICATE-----Generated at Wed Dec 10 18:24:43 2025 by rpki-client