This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft File: S8K4kvLb729UtFNg_rD4QUpahQQ.mft (raw, json) Hash identifier: S1qjApjZLNRXmOopC1eiYRHyd7eLpzlep88L6+28t9Y= Subject key identifier: 73:E4:E0:96:DC:23:A3:4C:19:AE:44:10:4F:1F:50:D0:09:89:2E:9F Authority key identifier: 4B:C2:B8:92:F2:DB:EF:6F:54:B4:53:60:FE:B0:F8:41:4A:5A:85:04 Certificate issuer: /CN=4bc2b892f2dbef6f54b45360feb0f8414a5a8504 Certificate serial: 019B3343C5F5326610E9F8132C1405D2BDD1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft Manifest number: 117E Signing time: Thu 18 Dec 2025 21:00:38 +0000 Manifest this update: Thu 18 Dec 2025 21:00:38 +0000 Manifest next update: Fri 19 Dec 2025 21:00:38 +0000 Files and hashes: 1: 8XxbJK1GWPrtjat_Lpe2HKly_9k.roa (hash: 1REGOqOGYIsLrmhSt5pZG4EmBpaR7Cf++uPRynahll8=) 2: S8K4kvLb729UtFNg_rD4QUpahQQ.crl (hash: UXdihK+9KRs7nE1XybgfIMiHfIFTbAmAV+7BDcMOx+4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 21:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:43:c5:f5:32:66:10:e9:f8:13:2c:14:05:d2:bd:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4bc2b892f2dbef6f54b45360feb0f8414a5a8504 Validity Not Before: Dec 18 21:00:38 2025 GMT Not After : Dec 19 21:00:38 2025 GMT Subject: CN=73e4e096dc23a34c19ae44104f1f50d009892e9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:76:0a:80:5d:35:2d:83:e0:4c:8c:ce:ef:b6: 8c:82:52:94:fb:37:0a:d5:d4:a0:29:a3:7c:51:b4: 03:ea:8e:8a:74:2d:2a:3e:a7:dc:e4:77:11:c2:d0: 18:23:c2:3a:bc:5c:ea:05:b0:bb:2c:3d:9e:7f:35: d9:00:af:39:68:2b:5e:7c:e2:15:16:58:85:11:a8: db:c6:bb:a0:a3:b4:8a:07:2c:80:e9:72:6d:4f:a0: 01:94:9c:4d:05:2b:11:e3:bc:85:91:28:96:1d:88: d1:9b:ff:bc:fc:56:d3:67:8e:04:05:ed:9b:de:19: a8:23:50:6b:5a:81:5a:b8:af:85:8a:10:4b:8a:ec: 40:18:0a:1a:80:78:e9:bd:08:85:aa:ec:51:ee:33: 5d:31:a1:c9:b1:88:2e:01:26:a0:7c:98:a6:19:e0: 27:e6:75:6f:b1:8a:8e:d7:e9:49:89:fb:1f:79:f5: 81:05:a9:b8:29:0e:08:77:29:e9:fa:57:d1:76:c0: 09:e6:dc:38:70:f0:28:5b:51:01:df:d1:5d:85:8f: ef:1b:b2:7d:5e:16:2d:1c:19:13:b5:ef:77:7f:23: f5:21:f2:33:58:b4:0a:d6:61:35:48:95:fb:49:53: 33:a5:ff:30:ed:3c:21:96:96:1a:72:cb:96:93:44: a8:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:E4:E0:96:DC:23:A3:4C:19:AE:44:10:4F:1F:50:D0:09:89:2E:9F X509v3 Authority Key Identifier: keyid:4B:C2:B8:92:F2:DB:EF:6F:54:B4:53:60:FE:B0:F8:41:4A:5A:85:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:77:41:b6:26:b8:8b:a2:8c:34:cb:81:cc:c3:63:9d:85:85: 60:e0:25:30:82:22:3c:34:ae:c9:48:52:0c:ab:21:26:e6:29: 02:cd:ed:78:4a:a7:07:71:9a:8d:40:f8:47:a5:f7:dc:2e:9b: 01:d3:aa:1c:81:0d:de:62:33:15:7e:80:63:64:05:cc:65:87: 7d:12:36:12:51:1f:f3:b5:48:1b:1d:ff:ca:f6:e5:57:45:19: c3:4e:64:66:03:e6:cf:97:33:63:e3:e3:70:0a:04:d2:b6:85: 3c:63:d1:8f:16:35:ea:d1:dd:82:c7:2c:41:4a:bb:a0:00:8e: a5:29:1c:f5:fd:d1:1b:98:55:90:6d:bf:4b:46:85:e0:ab:df: 72:e1:c1:40:e5:c3:19:0c:5a:63:34:5f:fa:c5:82:ec:b8:8c: 16:d5:da:0d:d7:e1:49:af:78:52:59:a9:66:b7:7d:28:0e:70: 59:77:e7:29:14:6e:36:72:4f:e2:e9:2d:13:cd:64:e4:e3:87: c3:8a:59:99:92:48:ab:0c:7a:3f:1c:db:df:f7:07:71:f7:9b: b6:a9:ca:da:19:4a:1a:03:f5:17:2c:4c:1c:c4:d6:77:81:a8: d8:0a:88:8d:27:98:3c:8c:0d:72:05:c4:f4:dc:7d:43:3b:41: d9:f8:22:65 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszQ8X1MmYQ6fgTLBQF0r3RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiYzJiODkyZjJkYmVmNmY1NGI0NTM2MGZlYjBmODQxNGE1 YTg1MDQwHhcNMjUxMjE4MjEwMDM4WhcNMjUxMjE5MjEwMDM4WjAzMTEwLwYDVQQD Eyg3M2U0ZTA5NmRjMjNhMzRjMTlhZTQ0MTA0ZjFmNTBkMDA5ODkyZTlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt3YKgF01LYPgTIzO77aMglKU+zcK 1dSgKaN8UbQD6o6KdC0qPqfc5HcRwtAYI8I6vFzqBbC7LD2efzXZAK85aCtefOIV FliFEajbxrugo7SKByyA6XJtT6ABlJxNBSsR47yFkSiWHYjRm/+8/FbTZ44EBe2b 3hmoI1BrWoFauK+FihBLiuxAGAoagHjpvQiFquxR7jNdMaHJsYguASagfJimGeAn 5nVvsYqO1+lJifsfefWBBam4KQ4Idynp+lfRdsAJ5tw4cPAoW1EB39FdhY/vG7J9 XhYtHBkTte93fyP1IfIzWLQK1mE1SJX7SVMzpf8w7TwhlpYacsuWk0SoiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHPk4JbcI6NMGa5EEE8fUNAJiS6fMB8GA1UdIwQY MBaAFEvCuJLy2+9vVLRTYP6w+EFKWoUEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzhLNGt2TGI3MjlVdEZOZ19yRDRRVXBhaFFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9jMWE4NTItNTVmNS00NTA1LThkOTAt MjE1N2E1NzVkYjBiLzEvUzhLNGt2TGI3MjlVdEZOZ19yRDRRVXBhaFFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy9jMWE4NTItNTVmNS00NTA1LThkOTAtMjE1N2E1NzVkYjBi LzEvUzhLNGt2TGI3MjlVdEZOZ19yRDRRVXBhaFFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALndBtia4 i6KMNMuBzMNjnYWFYOAlMIIiPDSuyUhSDKshJuYpAs3teEqnB3GajUD4R6X33C6b AdOqHIEN3mIzFX6AY2QFzGWHfRI2ElEf87VIGx3/yvblV0UZw05kZgPmz5czY+Pj cAoE0raFPGPRjxY16tHdgscsQUq7oACOpSkc9f3RG5hVkG2/S0aF4KvfcuHBQOXD GQxaYzRf+sWC7LiMFtXaDdfhSa94UlmpZrd9KA5wWXfnKRRuNnJP4uktE81k5OOH w4pZmZJIqwx6Pxzb3/cHcfebtqnK2hlKGgP1FyxMHMTWd4Go2AqIjSeYPIwNcgXE 9Nx9QztB2fgiZQ== -----END CERTIFICATE-----Generated at Fri Dec 19 04:48:41 2025 by rpki-client