This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft File: 8nptTTKDKDFyXEjbUYokAPGpJL0.mft (raw, json) Hash identifier: td0nYZPOCOnKcT9bKaIgKQAIVQamkcRIFKr2OjHFS+w= Subject key identifier: A8:48:8C:06:BE:40:E8:37:36:40:AE:8B:0F:EA:87:67:FF:87:9A:E7 Authority key identifier: F2:7A:6D:4D:32:83:28:31:72:5C:48:DB:51:8A:24:00:F1:A9:24:BD Certificate issuer: /CN=f27a6d4d32832831725c48db518a2400f1a924bd Certificate serial: 019B484B960E671C61E53EA01F15419EFB3D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8nptTTKDKDFyXEjbUYokAPGpJL0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft Manifest number: 16A0 Signing time: Mon 22 Dec 2025 23:01:11 +0000 Manifest this update: Mon 22 Dec 2025 23:01:11 +0000 Manifest next update: Tue 23 Dec 2025 23:01:11 +0000 Files and hashes: 1: 8nptTTKDKDFyXEjbUYokAPGpJL0.crl (hash: qEr6ZJm32lyFfIih9BtABWYvSQ2xRtonH6lcZhSRHBM=) 2: m0jbiHxRktR_kE-i3D3woRX2ZsI.roa (hash: fSOohTJ+oYWg/YD/VykP7b8U7lIYd4B0MDv4mOCNuT8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft rsync://rpki.ripe.net/repository/DEFAULT/8nptTTKDKDFyXEjbUYokAPGpJL0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 23:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:48:4b:96:0e:67:1c:61:e5:3e:a0:1f:15:41:9e:fb:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f27a6d4d32832831725c48db518a2400f1a924bd Validity Not Before: Dec 22 23:01:11 2025 GMT Not After : Dec 23 23:01:11 2025 GMT Subject: CN=a8488c06be40e8373640ae8b0fea8767ff879ae7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:c0:72:78:78:9d:0b:61:8c:dd:7f:c9:a1:0e: f6:a1:e4:2e:0d:94:25:a8:d3:fd:4d:49:4d:4d:e6: e6:f2:0a:62:74:c3:20:47:fa:af:0e:a3:35:1d:12: c5:0b:81:34:3e:c0:8a:fe:b2:02:01:9a:36:9e:af: d1:94:c6:74:3b:7c:5c:20:6b:4e:c0:d6:16:1e:92: 9e:c1:cd:e3:c9:aa:fb:66:f0:a7:18:a8:7a:f0:f6: 9a:f0:ee:11:81:0f:8c:7c:44:34:f9:45:b2:65:31: 28:91:3e:c9:07:50:17:00:e6:93:e6:e6:ed:06:a5: 5c:66:1f:dc:6a:40:08:be:31:18:28:9a:66:6f:10: 2c:c5:d9:37:74:39:66:9b:75:00:79:64:f8:29:72: 18:07:d0:9d:ee:bc:50:ce:12:8c:b7:5e:a2:95:ab: 92:d8:be:b5:89:c0:61:af:fb:ac:55:c3:52:0e:5d: 64:de:6b:7b:e1:0c:b5:cc:98:21:2b:6e:d2:c3:86: 0c:0c:57:45:58:28:3e:2d:ef:e7:23:4a:5a:52:bc: 2b:1a:dc:02:bd:5a:62:72:c6:0d:80:46:47:08:a6: 40:e7:88:7c:ef:64:fc:41:d5:ae:01:54:62:b7:8d: 8a:6c:9a:e5:22:6f:36:04:e6:f6:4c:5f:4a:b9:c7: eb:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:48:8C:06:BE:40:E8:37:36:40:AE:8B:0F:EA:87:67:FF:87:9A:E7 X509v3 Authority Key Identifier: keyid:F2:7A:6D:4D:32:83:28:31:72:5C:48:DB:51:8A:24:00:F1:A9:24:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8nptTTKDKDFyXEjbUYokAPGpJL0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:2f:cc:28:f5:7f:c6:a4:9b:7b:70:ea:69:88:00:85:df:96: 15:ee:6b:ae:c9:12:4b:21:05:52:b7:3b:67:2c:90:57:aa:1e: 9c:36:b1:42:c2:22:59:e3:1f:73:60:0b:02:2c:71:4d:56:65: c0:b4:e4:5d:9f:4f:57:e5:a5:79:da:92:a4:18:f9:ed:f0:e0: 11:7b:a6:9c:58:47:da:ab:ae:ea:b5:e5:34:11:46:6c:69:4b: 4e:2e:36:b5:ba:f6:c1:17:08:b8:9e:97:9f:8c:80:ae:f4:b0: 83:c2:46:93:5c:ed:4e:48:76:7f:dc:27:e9:d1:f6:ee:ee:6e: 56:04:f0:cd:42:0b:7e:cc:c3:f3:db:41:ff:1d:ea:4d:1b:02: a3:06:45:50:fb:14:8b:e8:fb:66:6b:8a:84:1c:09:d6:4c:d7: 2e:fc:98:8c:f1:af:70:19:12:80:f1:0e:c1:9f:2e:2e:89:8a: 2e:81:35:26:33:97:8c:61:fe:31:ec:a6:d5:cb:02:4c:bc:6f: 4d:30:3e:bb:04:e5:c0:63:83:0a:78:4f:27:6d:9e:92:62:8e: 5f:58:a9:98:27:d1:01:40:ed:52:c8:b1:ee:5b:28:a1:30:1b: f7:96:8f:b6:e0:f3:ac:fe:f0:f9:7d:bf:ae:61:dd:4b:bc:8c: f3:c7:ee:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtIS5YOZxxh5T6gHxVBnvs9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYyN2E2ZDRkMzI4MzI4MzE3MjVjNDhkYjUxOGEyNDAwZjFh OTI0YmQwHhcNMjUxMjIyMjMwMTExWhcNMjUxMjIzMjMwMTExWjAzMTEwLwYDVQQD EyhhODQ4OGMwNmJlNDBlODM3MzY0MGFlOGIwZmVhODc2N2ZmODc5YWU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5sByeHidC2GM3X/JoQ72oeQuDZQl qNP9TUlNTebm8gpidMMgR/qvDqM1HRLFC4E0PsCK/rICAZo2nq/RlMZ0O3xcIGtO wNYWHpKewc3jyar7ZvCnGKh68Paa8O4RgQ+MfEQ0+UWyZTEokT7JB1AXAOaT5ubt BqVcZh/cakAIvjEYKJpmbxAsxdk3dDlmm3UAeWT4KXIYB9Cd7rxQzhKMt16ilauS 2L61icBhr/usVcNSDl1k3mt74Qy1zJghK27Sw4YMDFdFWCg+Le/nI0paUrwrGtwC vVpicsYNgEZHCKZA54h872T8QdWuAVRit42KbJrlIm82BOb2TF9KucfrMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKhIjAa+QOg3NkCuiw/qh2f/h5rnMB8GA1UdIwQY MBaAFPJ6bU0ygygxclxI21GKJADxqSS9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOG5wdFRUS0RLREZ5WEVqYlVZb2tBUEdwSkwwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8yOGY4ZWMtZTU3Ny00NzUyLTg2ODUt MTU3M2VmNjI3MWViLzEvOG5wdFRUS0RLREZ5WEVqYlVZb2tBUEdwSkwwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi8yOGY4ZWMtZTU3Ny00NzUyLTg2ODUtMTU3M2VmNjI3MWVi LzEvOG5wdFRUS0RLREZ5WEVqYlVZb2tBUEdwSkwwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATy/MKPV/ xqSbe3DqaYgAhd+WFe5rrskSSyEFUrc7ZyyQV6oenDaxQsIiWeMfc2ALAixxTVZl wLTkXZ9PV+WledqSpBj57fDgEXumnFhH2quu6rXlNBFGbGlLTi42tbr2wRcIuJ6X n4yArvSwg8JGk1ztTkh2f9wn6dH27u5uVgTwzUILfszD89tB/x3qTRsCowZFUPsU i+j7ZmuKhBwJ1kzXLvyYjPGvcBkSgPEOwZ8uLomKLoE1JjOXjGH+Meym1csCTLxv TTA+uwTlwGODCnhPJ22ekmKOX1ipmCfRAUDtUsix7lsooTAb95aPtuDzrP7w+X2/ rmHdS7yM88fuhw== -----END CERTIFICATE-----Generated at Tue Dec 23 06:39:27 2025 by rpki-client