This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft File: D8lnTtVfCnZcpdocb6-k3SXioXg.mft (raw, json) Hash identifier: 9pCR3X3HDUXv61cUyNMCaBzolxkYqILOuDQ7U4b1vKk= Subject key identifier: 93:E8:05:5F:A4:7E:DA:A8:EF:79:B9:B2:7A:CC:B4:E5:F3:9F:DF:AE Authority key identifier: 0F:C9:67:4E:D5:5F:0A:76:5C:A5:DA:1C:6F:AF:A4:DD:25:E2:A1:78 Certificate issuer: /CN=0fc9674ed55f0a765ca5da1c6fafa4dd25e2a178 Certificate serial: 019B5A1A8973789A65877E29FDCA3790AFD7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft Manifest number: 087C Signing time: Fri 26 Dec 2025 10:00:47 +0000 Manifest this update: Fri 26 Dec 2025 10:00:47 +0000 Manifest next update: Sat 27 Dec 2025 10:00:47 +0000 Files and hashes: 1: D8lnTtVfCnZcpdocb6-k3SXioXg.crl (hash: RgAYDVcWtFopr3/5FU7ka/SxSb+F58PZogrqnpDm/To=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:1a:89:73:78:9a:65:87:7e:29:fd:ca:37:90:af:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0fc9674ed55f0a765ca5da1c6fafa4dd25e2a178 Validity Not Before: Dec 26 10:00:47 2025 GMT Not After : Dec 27 10:00:47 2025 GMT Subject: CN=93e8055fa47edaa8ef79b9b27accb4e5f39fdfae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:88:d7:22:b9:9f:83:e6:ff:fb:c2:d9:20:bd: f8:12:ad:61:4d:70:74:06:89:d7:0c:7b:7c:a4:e3: 53:ac:a7:a2:e0:ec:cf:89:28:c1:11:9d:bf:6c:fa: d0:ee:45:0e:a8:e9:c4:af:28:04:8f:9a:6c:48:0b: 00:74:96:8a:7a:6f:41:2a:57:eb:0a:e4:c7:0a:0a: 1a:d3:00:75:07:7b:f7:99:a2:d7:58:c4:86:60:7b: 74:35:06:14:ac:4f:f9:68:23:a0:a8:14:14:ec:47: 31:7e:62:5f:23:cb:83:da:a0:3a:25:f0:08:18:98: 19:45:5e:e7:da:b0:b3:20:9b:0e:3a:57:3e:4c:21: a6:88:e0:ca:6a:4c:33:5f:b6:4c:68:86:01:c8:c3: 82:2d:03:bf:d1:b5:66:7b:a2:f3:48:95:4c:4e:73: 96:5a:40:f8:21:88:15:2c:f0:dd:ff:c9:60:c2:09: 83:64:57:79:f7:f7:96:d0:00:6e:59:0c:03:4f:89: ea:94:09:ae:39:b2:6a:6f:fd:74:70:09:17:e8:e1: d2:94:a0:d6:eb:a7:5b:9a:be:91:da:ee:6e:6f:be: cb:85:0c:ac:70:88:14:a2:65:36:d0:e3:cc:24:57: 1a:d4:fa:7f:2e:6e:73:f7:93:24:5e:8f:9b:d0:c4: 57:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:E8:05:5F:A4:7E:DA:A8:EF:79:B9:B2:7A:CC:B4:E5:F3:9F:DF:AE X509v3 Authority Key Identifier: keyid:0F:C9:67:4E:D5:5F:0A:76:5C:A5:DA:1C:6F:AF:A4:DD:25:E2:A1:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:54:d3:6a:7e:ea:ce:0f:86:06:97:e7:a7:f8:64:52:b1:e7: 60:8f:9e:98:77:3d:f0:b2:a2:db:2a:bf:94:ae:fe:09:a0:09: a0:16:71:9a:d7:8b:ab:f5:be:3e:c5:fa:78:db:e2:49:b2:ba: 3b:34:c8:b5:0a:6d:c6:2b:2f:a0:f1:68:4a:f8:de:bc:55:49: e4:e5:18:de:08:3d:6f:ba:c3:d1:3a:dd:e0:d9:94:61:0a:0b: d8:59:b5:b4:b8:57:42:38:ef:37:0a:de:4b:4b:00:81:62:bc: d3:4e:73:3b:d9:dd:cc:4a:bf:15:8e:dc:c0:38:04:44:46:72: 6d:b7:a9:1c:e5:65:da:55:5d:b8:00:c1:73:c5:0b:1d:8f:31: 11:cd:cf:ba:9a:41:43:70:bb:ce:50:d6:a5:7d:1f:60:50:62: 86:6e:61:bb:95:d1:a8:1c:eb:4e:10:e5:be:4d:26:ed:aa:2a: 0a:7b:66:48:ad:9d:ad:94:e7:e3:1e:f4:f3:9f:d1:10:b0:c3: 5d:28:1c:a0:2c:9c:86:12:1b:7d:0a:a3:cc:0f:d3:17:5c:8a: 43:71:fc:58:97:3d:de:d7:99:ba:68:d6:82:63:2a:73:8b:6b: 44:ac:29:97:f2:87:59:61:79:7f:80:7a:ff:d9:79:71:e6:e8: 11:8c:32:a2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaGolzeJplh34p/co3kK/XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmYzk2NzRlZDU1ZjBhNzY1Y2E1ZGExYzZmYWZhNGRkMjVl MmExNzgwHhcNMjUxMjI2MTAwMDQ3WhcNMjUxMjI3MTAwMDQ3WjAzMTEwLwYDVQQD Eyg5M2U4MDU1ZmE0N2VkYWE4ZWY3OWI5YjI3YWNjYjRlNWYzOWZkZmFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4jXIrmfg+b/+8LZIL34Eq1hTXB0 BonXDHt8pONTrKei4OzPiSjBEZ2/bPrQ7kUOqOnErygEj5psSAsAdJaKem9BKlfr CuTHCgoa0wB1B3v3maLXWMSGYHt0NQYUrE/5aCOgqBQU7EcxfmJfI8uD2qA6JfAI GJgZRV7n2rCzIJsOOlc+TCGmiODKakwzX7ZMaIYByMOCLQO/0bVme6LzSJVMTnOW WkD4IYgVLPDd/8lgwgmDZFd59/eW0ABuWQwDT4nqlAmuObJqb/10cAkX6OHSlKDW 66dbmr6R2u5ub77LhQyscIgUomU20OPMJFca1Pp/Lm5z95MkXo+b0MRXVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJPoBV+kftqo73m5snrMtOXzn9+uMB8GA1UdIwQY MBaAFA/JZ07VXwp2XKXaHG+vpN0l4qF4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDhsblR0VmZDblpjcGRvY2I2LWszU1hpb1hnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC84YWIyYTMtMDg4ZS00ZTBjLWJlOWEt NGE5NDZjNTJmYmMyLzEvRDhsblR0VmZDblpjcGRvY2I2LWszU1hpb1hnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC84YWIyYTMtMDg4ZS00ZTBjLWJlOWEtNGE5NDZjNTJmYmMy LzEvRDhsblR0VmZDblpjcGRvY2I2LWszU1hpb1hnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd1TTan7q zg+GBpfnp/hkUrHnYI+emHc98LKi2yq/lK7+CaAJoBZxmteLq/W+PsX6eNviSbK6 OzTItQptxisvoPFoSvjevFVJ5OUY3gg9b7rD0Trd4NmUYQoL2Fm1tLhXQjjvNwre S0sAgWK8005zO9ndzEq/FY7cwDgEREZybbepHOVl2lVduADBc8ULHY8xEc3PuppB Q3C7zlDWpX0fYFBihm5hu5XRqBzrThDlvk0m7aoqCntmSK2drZTn4x7085/RELDD XSgcoCychhIbfQqjzA/TF1yKQ3H8WJc93teZumjWgmMqc4trRKwpl/KHWWF5f4B6 /9l5ceboEYwyog== -----END CERTIFICATE-----Generated at Fri Dec 26 15:45:22 2025 by rpki-client