This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft File: wQdbeoGvSd7_tsg1xWCO4LiEMso.mft (raw, json) Hash identifier: doJVc3cstGHMoiT7JwKM88UXc7WnvJR2Fuv1NSMwvvE= Subject key identifier: 69:5C:57:8C:B5:E0:85:10:B4:E4:92:D4:CC:D2:B7:3A:64:1A:EA:6D Authority key identifier: C1:07:5B:7A:81:AF:49:DE:FF:B6:C8:35:C5:60:8E:E0:B8:84:32:CA Certificate issuer: /CN=c1075b7a81af49deffb6c835c5608ee0b88432ca Certificate serial: 019B5ABFBFF265AEAD484EC14B1D61BDC1D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wQdbeoGvSd7_tsg1xWCO4LiEMso.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft Manifest number: 02C8 Signing time: Fri 26 Dec 2025 13:01:14 +0000 Manifest this update: Fri 26 Dec 2025 13:01:14 +0000 Manifest next update: Sat 27 Dec 2025 13:01:14 +0000 Files and hashes: 1: YfJtBuAEzwrAwSN_J7xGNSKCjCE.roa (hash: XmpRYRo5Vs4yfW8P8k8ClzDTbvhLktOQ+0fCN4Fj/SI=) 2: wQdbeoGvSd7_tsg1xWCO4LiEMso.crl (hash: 55Vko1ZoROuJjl6+VJ4jbfxuOlldPHIOoKoEp/4ragQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft rsync://rpki.ripe.net/repository/DEFAULT/wQdbeoGvSd7_tsg1xWCO4LiEMso.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:bf:bf:f2:65:ae:ad:48:4e:c1:4b:1d:61:bd:c1:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c1075b7a81af49deffb6c835c5608ee0b88432ca Validity Not Before: Dec 26 13:01:14 2025 GMT Not After : Dec 27 13:01:14 2025 GMT Subject: CN=695c578cb5e08510b4e492d4ccd2b73a641aea6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e8:7f:f2:48:0b:d2:67:b9:ce:d1:63:56:0f: 4e:4e:91:78:e9:46:2a:9c:e0:50:c5:4c:7a:33:54: f8:bd:89:c4:af:9b:b5:15:d1:22:99:38:c7:e7:f9: e7:cb:2b:88:0d:bc:58:58:9d:4e:c6:72:b5:25:91: cf:92:98:c7:6b:c0:05:14:8b:8a:80:a3:70:dc:69: 99:4c:43:2b:56:6d:fd:ff:b0:2b:52:28:6e:c3:47: 69:d3:73:f5:4e:88:70:df:11:c0:b8:11:d7:3c:6c: cf:e4:74:b6:4a:6e:a4:1d:6f:30:1f:0d:bd:d3:04: e9:18:b6:c1:86:52:61:e4:f8:56:c1:c7:22:3d:65: 76:ac:38:12:84:f5:5f:fe:48:be:eb:f4:2d:d5:f0: b1:9c:20:3d:08:a2:f1:9d:a6:39:72:99:93:65:2e: 74:3a:c0:a3:f6:81:bd:81:53:02:86:cc:f4:ae:fa: b1:0b:f0:f6:64:02:e6:91:a7:3f:72:05:03:44:33: 3e:91:9e:f2:93:20:15:0a:d6:74:40:c7:3f:d1:f4: b9:f6:23:a9:4f:65:41:77:f5:ad:ce:46:10:f3:d0: 3c:32:d0:df:44:fb:dc:e3:68:b4:ee:28:f5:8c:7b: 9c:0d:3e:41:9e:97:d0:43:cb:66:85:14:33:c3:e9: a3:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:5C:57:8C:B5:E0:85:10:B4:E4:92:D4:CC:D2:B7:3A:64:1A:EA:6D X509v3 Authority Key Identifier: keyid:C1:07:5B:7A:81:AF:49:DE:FF:B6:C8:35:C5:60:8E:E0:B8:84:32:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wQdbeoGvSd7_tsg1xWCO4LiEMso.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c2:f8:17:80:07:b5:d9:b8:cb:58:c7:1c:e3:a0:d5:0e:20:3c: cc:9e:50:91:49:18:6e:1d:98:28:a4:b4:74:35:3b:02:a7:e3: 5b:87:88:39:de:48:ed:85:ce:6b:32:2d:e9:96:12:09:b7:66: ea:ce:ca:d5:13:2e:3e:d2:aa:d8:80:a4:1f:1c:ba:0c:93:bf: 45:85:4b:dd:54:b4:8e:15:f5:d6:37:9e:09:ff:39:79:24:ca: 8c:9e:cf:64:dc:e4:6e:c9:f7:01:f6:36:36:5a:90:44:69:70: 04:11:b2:ff:46:54:36:23:b3:b8:53:86:6c:09:8d:32:3b:f8: a5:cc:57:fc:0b:a7:5e:99:41:c2:a2:52:8e:e7:b1:99:f8:df: 8b:96:ad:e7:28:c9:74:80:6b:1c:d4:48:a4:c7:e5:c1:67:52: c0:7d:11:bd:5c:e7:e7:69:32:88:3b:84:bd:20:fe:90:a8:a2: 6e:95:65:4c:aa:89:ae:9c:c0:48:15:18:01:0b:c2:5d:aa:27: a3:ff:d5:87:a2:06:e6:ee:07:69:ac:e7:23:37:17:8c:9c:9b: 14:09:4c:42:06:64:45:8e:93:f9:c0:2a:0f:ee:ba:9c:66:4e: 64:30:ce:ad:e7:0d:54:71:7d:be:7a:d6:8c:f6:dc:8b:32:f6: f2:9e:74:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtav7/yZa6tSE7BSx1hvcHYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMxMDc1YjdhODFhZjQ5ZGVmZmI2YzgzNWM1NjA4ZWUwYjg4 NDMyY2EwHhcNMjUxMjI2MTMwMTE0WhcNMjUxMjI3MTMwMTE0WjAzMTEwLwYDVQQD Eyg2OTVjNTc4Y2I1ZTA4NTEwYjRlNDkyZDRjY2QyYjczYTY0MWFlYTZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAruh/8kgL0me5ztFjVg9OTpF46UYq nOBQxUx6M1T4vYnEr5u1FdEimTjH5/nnyyuIDbxYWJ1OxnK1JZHPkpjHa8AFFIuK gKNw3GmZTEMrVm39/7ArUihuw0dp03P1Tohw3xHAuBHXPGzP5HS2Sm6kHW8wHw29 0wTpGLbBhlJh5PhWwcciPWV2rDgShPVf/ki+6/Qt1fCxnCA9CKLxnaY5cpmTZS50 OsCj9oG9gVMChsz0rvqxC/D2ZALmkac/cgUDRDM+kZ7ykyAVCtZ0QMc/0fS59iOp T2VBd/WtzkYQ89A8MtDfRPvc42i07ij1jHucDT5BnpfQQ8tmhRQzw+mjTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGlcV4y14IUQtOSS1MzStzpkGuptMB8GA1UdIwQY MBaAFMEHW3qBr0ne/7bINcVgjuC4hDLKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd1FkYmVvR3ZTZDdfdHNnMXhXQ080TGlFTXNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC8yYTgyOWItMzJiMy00OTZhLTgwY2Ut YTAyNDY3ZjY0MjVmLzEvd1FkYmVvR3ZTZDdfdHNnMXhXQ080TGlFTXNvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC8yYTgyOWItMzJiMy00OTZhLTgwY2UtYTAyNDY3ZjY0MjVm LzEvd1FkYmVvR3ZTZDdfdHNnMXhXQ080TGlFTXNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwvgXgAe1 2bjLWMcc46DVDiA8zJ5QkUkYbh2YKKS0dDU7AqfjW4eIOd5I7YXOazIt6ZYSCbdm 6s7K1RMuPtKq2ICkHxy6DJO/RYVL3VS0jhX11jeeCf85eSTKjJ7PZNzkbsn3AfY2 NlqQRGlwBBGy/0ZUNiOzuFOGbAmNMjv4pcxX/AunXplBwqJSjuexmfjfi5at5yjJ dIBrHNRIpMflwWdSwH0RvVzn52kyiDuEvSD+kKiibpVlTKqJrpzASBUYAQvCXaon o//Vh6IG5u4HaaznIzcXjJybFAlMQgZkRY6T+cAqD+66nGZOZDDOrecNVHF9vnrW jPbcizL28p50KA== -----END CERTIFICATE-----Generated at Fri Dec 26 15:45:21 2025 by rpki-client