This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft File: i8Wo923xVof4NEHJprVUV48831c.mft (raw, json) Hash identifier: PKW0sHijEM9XbPrEjxUsZVCxC15EQO+66QlGpKBzPS4= Subject key identifier: E2:8C:49:BB:E1:EB:48:4E:06:9B:53:FA:2F:CF:A4:21:D8:42:00:AF Authority key identifier: 8B:C5:A8:F7:6D:F1:56:87:F8:34:41:C9:A6:B5:54:57:8F:3C:DF:57 Certificate issuer: /CN=8bc5a8f76df15687f83441c9a6b554578f3cdf57 Certificate serial: 019AF1648D02E19D0454586E06821DC93340 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft Manifest number: 03FF Signing time: Sat 06 Dec 2025 02:01:29 +0000 Manifest this update: Sat 06 Dec 2025 02:01:29 +0000 Manifest next update: Sun 07 Dec 2025 02:01:29 +0000 Files and hashes: 1: i8Wo923xVof4NEHJprVUV48831c.crl (hash: pA8L7hoAKMEeNn40o9x/bdfU9oWi7gQdIrSLetFerr0=) 2: xqruQTCgxIM4PNAxf9wXVycyPyQ.roa (hash: hdKTf9nYGB8AkPxxLnuI6L7FG/INFNDmxrZRzLc1Xt0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.crl rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:8d:02:e1:9d:04:54:58:6e:06:82:1d:c9:33:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8bc5a8f76df15687f83441c9a6b554578f3cdf57 Validity Not Before: Dec 6 02:01:29 2025 GMT Not After : Dec 7 02:01:29 2025 GMT Subject: CN=e28c49bbe1eb484e069b53fa2fcfa421d84200af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3a:3a:65:45:e2:7e:f0:3d:00:eb:99:47:44: 51:78:60:95:29:90:58:82:65:c8:81:a2:68:3c:cb: 40:33:77:ce:0b:e6:22:db:f7:70:dd:4f:05:f9:4f: ad:e2:81:b5:11:e4:ce:db:f7:74:9d:56:79:92:9d: dc:eb:bb:11:23:d7:53:23:45:09:06:53:99:29:11: bf:39:67:c9:ef:8d:dd:52:fa:1a:ee:55:82:64:91: 15:76:b1:5a:3d:82:58:ed:13:19:9d:53:c2:0c:1f: 95:91:7d:fd:fa:82:68:e3:99:c5:58:89:65:31:66: bc:f3:68:a9:fa:f4:34:45:4a:97:5e:a4:11:8f:43: ae:0c:1d:e1:ac:7e:dc:79:09:be:c1:b3:93:eb:00: 62:f7:d5:50:52:ad:4c:45:8f:c6:89:ce:b0:27:03: 02:e5:18:72:93:6e:cc:24:91:01:e7:49:25:1a:f2: b9:9a:7b:ec:89:03:b6:67:35:06:c4:ad:8f:d2:38: cc:ea:69:5a:c1:ff:dc:db:93:bc:d6:89:cc:92:2b: 2c:9d:1c:90:da:11:a3:d4:6e:cf:a1:52:f1:98:f3: 72:0e:52:b6:61:8e:9f:dc:d7:50:ac:26:6d:9a:38: 9c:46:95:1c:82:40:22:2e:68:fa:df:a1:e2:d3:06: 7f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:8C:49:BB:E1:EB:48:4E:06:9B:53:FA:2F:CF:A4:21:D8:42:00:AF X509v3 Authority Key Identifier: keyid:8B:C5:A8:F7:6D:F1:56:87:F8:34:41:C9:A6:B5:54:57:8F:3C:DF:57 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:7d:58:ea:20:f5:51:cc:7a:5a:5c:1d:e7:3a:5c:3b:b2:94: 7f:0f:63:d1:b7:a6:ac:40:9d:ba:01:ad:6f:de:96:1d:d0:e3: bc:cc:a5:2d:8e:b2:8b:d4:73:6b:34:22:e3:09:08:f7:c9:88: e9:9f:85:31:a0:3f:69:e3:93:c4:0a:79:71:5a:8c:10:f1:31: 58:2f:38:33:04:2d:fe:52:d5:eb:3e:49:a4:97:5e:1b:0d:16: cd:27:9a:e6:24:fa:43:0f:1e:0a:3e:29:a5:1d:39:b0:a5:fc: 63:91:0a:5f:a8:5c:6f:d0:d0:4b:f0:03:71:5f:b8:10:48:e4: 4b:b8:26:ff:6a:f4:8d:e8:30:9a:10:ea:2d:18:62:ec:0a:f3: 1e:5a:7d:57:e3:4a:97:07:7c:26:a2:d2:d6:9a:ef:93:11:6c: 6e:68:cc:01:c0:e5:94:a1:00:5c:28:5d:1b:0d:c6:66:b1:e6: db:ae:e9:78:d6:ef:45:d7:86:e2:dd:3a:a4:5a:f1:c8:45:c1: 6e:b0:31:0d:93:14:91:b8:9c:90:d2:ca:f6:4c:5c:39:81:22: 03:04:1b:7a:c8:85:92:b2:dd:39:a6:de:aa:61:5e:95:c1:54: f8:e9:45:61:2e:c6:7f:04:b2:78:c1:0b:94:1e:27:92:b7:47: 91:11:30:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZI0C4Z0EVFhuBoIdyTNAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiYzVhOGY3NmRmMTU2ODdmODM0NDFjOWE2YjU1NDU3OGYz Y2RmNTcwHhcNMjUxMjA2MDIwMTI5WhcNMjUxMjA3MDIwMTI5WjAzMTEwLwYDVQQD EyhlMjhjNDliYmUxZWI0ODRlMDY5YjUzZmEyZmNmYTQyMWQ4NDIwMGFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Do6ZUXifvA9AOuZR0RReGCVKZBY gmXIgaJoPMtAM3fOC+Yi2/dw3U8F+U+t4oG1EeTO2/d0nVZ5kp3c67sRI9dTI0UJ BlOZKRG/OWfJ743dUvoa7lWCZJEVdrFaPYJY7RMZnVPCDB+VkX39+oJo45nFWIll MWa882ip+vQ0RUqXXqQRj0OuDB3hrH7ceQm+wbOT6wBi99VQUq1MRY/Gic6wJwMC 5Rhyk27MJJEB50klGvK5mnvsiQO2ZzUGxK2P0jjM6mlawf/c25O81onMkissnRyQ 2hGj1G7PoVLxmPNyDlK2YY6f3NdQrCZtmjicRpUcgkAiLmj636Hi0wZ/1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOKMSbvh60hOBptT+i/PpCHYQgCvMB8GA1UdIwQY MBaAFIvFqPdt8VaH+DRByaa1VFePPN9XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaThXbzkyM3hWb2Y0TkVISnByVlVWNDg4MzFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS8yNWU4M2QtMjM2NS00MTI2LTlhYTct OTRiOWNmMmNkMmVmLzEvaThXbzkyM3hWb2Y0TkVISnByVlVWNDg4MzFjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS8yNWU4M2QtMjM2NS00MTI2LTlhYTctOTRiOWNmMmNkMmVm LzEvaThXbzkyM3hWb2Y0TkVISnByVlVWNDg4MzFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi31Y6iD1 Ucx6Wlwd5zpcO7KUfw9j0bemrECdugGtb96WHdDjvMylLY6yi9RzazQi4wkI98mI 6Z+FMaA/aeOTxAp5cVqMEPExWC84MwQt/lLV6z5JpJdeGw0WzSea5iT6Qw8eCj4p pR05sKX8Y5EKX6hcb9DQS/ADcV+4EEjkS7gm/2r0jegwmhDqLRhi7ArzHlp9V+NK lwd8JqLS1prvkxFsbmjMAcDllKEAXChdGw3GZrHm267peNbvRdeG4t06pFrxyEXB brAxDZMUkbickNLK9kxcOYEiAwQbesiFkrLdOabeqmFelcFU+OlFYS7GfwSyeMEL lB4nkrdHkREw5Q== -----END CERTIFICATE-----Generated at Sat Dec 6 12:33:48 2025 by rpki-client