This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.mft File: 1I8MKyrRn4wGtOEkkdYSmGRHHKg.mft (raw, json) Hash identifier: gpIyIvXYtlzl1f7vXSmwEuBzyFqq9XjBKBFGJ66wNc8= Subject key identifier: 9A:1F:DE:AD:C9:B2:8C:C4:44:0E:05:C6:20:F0:8A:36:32:63:53:43 Authority key identifier: D4:8F:0C:2B:2A:D1:9F:8C:06:B4:E1:24:91:D6:12:98:64:47:1C:A8 Certificate issuer: /CN=d48f0c2b2ad19f8c06b4e12491d6129864471ca8 Certificate serial: 019AF5E5BBDC393C5A6160380CEBB5C9C1BB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1I8MKyrRn4wGtOEkkdYSmGRHHKg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.mft Manifest number: 010F Signing time: Sat 06 Dec 2025 23:01:04 +0000 Manifest this update: Sat 06 Dec 2025 23:01:04 +0000 Manifest next update: Sun 07 Dec 2025 23:01:04 +0000 Files and hashes: 1: 1I8MKyrRn4wGtOEkkdYSmGRHHKg.crl (hash: jssQ4diqp3ViXi4W4bLlpK4oO8BcSOjWs2ndmS62AeM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.crl rsync://rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.mft rsync://rpki.ripe.net/repository/DEFAULT/1I8MKyrRn4wGtOEkkdYSmGRHHKg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:e5:bb:dc:39:3c:5a:61:60:38:0c:eb:b5:c9:c1:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d48f0c2b2ad19f8c06b4e12491d6129864471ca8 Validity Not Before: Dec 6 23:01:04 2025 GMT Not After : Dec 7 23:01:04 2025 GMT Subject: CN=9a1fdeadc9b28cc4440e05c620f08a3632635343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:82:ce:e8:d9:89:72:ff:f7:48:10:15:c1:28: 26:eb:3b:ea:c7:f6:0b:5c:d5:de:ce:f5:09:e6:a4: 7c:d1:04:5c:43:52:47:ed:f2:aa:cd:13:85:76:54: 3a:5e:89:bf:74:f5:96:3d:5a:bf:ec:d6:ed:a0:cc: 4f:d7:29:c1:b8:01:15:4f:15:b7:f8:ec:50:fb:66: b1:0a:9b:7a:4d:24:28:43:31:66:47:70:ce:bc:f8: 62:e8:15:bf:12:83:9a:bd:bc:3e:c7:3b:5b:cc:bd: 71:aa:a5:aa:3d:6e:d1:93:8b:7b:be:b1:48:d0:8a: 8c:3a:f5:e4:32:d2:f2:eb:4c:fd:cc:04:84:8b:96: 94:11:3a:4a:8b:3f:a4:0a:57:50:f7:22:33:4b:9e: e7:76:fb:fe:64:77:0f:a1:91:47:99:cb:fd:5a:f0: 32:36:f8:9d:51:f6:3b:d8:69:70:21:47:e8:bd:34: be:f4:30:86:4b:c7:91:43:0c:1e:de:85:fe:b9:4d: 2d:ca:e6:04:4b:df:80:13:21:3c:e9:8c:28:1c:b4: 03:32:00:e4:ab:b1:f6:17:33:53:3b:91:2d:2c:56: d1:34:0f:50:1a:c7:70:4e:d7:0f:03:0a:b4:7b:22: 35:ff:c8:c2:22:bd:0f:ff:50:ab:02:d2:bc:16:fa: 3f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:1F:DE:AD:C9:B2:8C:C4:44:0E:05:C6:20:F0:8A:36:32:63:53:43 X509v3 Authority Key Identifier: keyid:D4:8F:0C:2B:2A:D1:9F:8C:06:B4:E1:24:91:D6:12:98:64:47:1C:A8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1I8MKyrRn4wGtOEkkdYSmGRHHKg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:f3:8c:db:61:c5:c3:79:4f:d7:06:b3:85:a6:7d:49:88:79: 63:04:d7:85:d5:7b:db:87:d4:db:db:14:bd:ae:3a:ba:4d:6a: 65:48:3e:df:bd:86:4e:e8:48:f0:15:fd:84:25:34:f0:07:98: 65:7b:75:f5:d5:a8:8d:4b:ae:c0:1d:60:3c:0a:00:0f:41:35: 7d:15:36:c6:26:4e:b4:9a:82:b6:22:b9:f1:fa:ce:55:09:e8: 42:e4:86:36:15:e7:d1:60:12:66:41:4d:e4:55:88:ae:e8:b6: 26:76:e4:68:92:8f:ac:1c:03:14:53:1d:d3:68:f2:2c:c4:9d: 4a:a5:74:79:da:ee:70:61:29:17:36:1b:d2:07:ce:e3:c0:bf: af:8f:fe:f5:c6:f6:3a:79:86:ec:b0:e4:41:ad:0c:29:dd:99: 68:f7:ed:06:4f:e5:89:63:f0:a8:06:85:55:df:14:69:a2:58: 4a:4a:b7:1e:e8:9a:4f:41:70:bd:75:a1:f9:42:de:61:1d:80: 1d:ad:79:60:6d:e2:e5:15:0a:78:59:c5:7f:4d:b3:9b:ae:04: 6a:23:ea:15:a7:5d:83:dc:26:b2:0e:2e:17:00:eb:49:05:5b: f7:0f:fd:88:d5:ac:ba:87:4d:f5:6f:48:74:99:34:5f:81:73: 57:e8:55:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr15bvcOTxaYWA4DOu1ycG7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0OGYwYzJiMmFkMTlmOGMwNmI0ZTEyNDkxZDYxMjk4NjQ0 NzFjYTgwHhcNMjUxMjA2MjMwMTA0WhcNMjUxMjA3MjMwMTA0WjAzMTEwLwYDVQQD Eyg5YTFmZGVhZGM5YjI4Y2M0NDQwZTA1YzYyMGYwOGEzNjMyNjM1MzQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwILO6NmJcv/3SBAVwSgm6zvqx/YL XNXezvUJ5qR80QRcQ1JH7fKqzROFdlQ6Xom/dPWWPVq/7NbtoMxP1ynBuAEVTxW3 +OxQ+2axCpt6TSQoQzFmR3DOvPhi6BW/EoOavbw+xztbzL1xqqWqPW7Rk4t7vrFI 0IqMOvXkMtLy60z9zASEi5aUETpKiz+kCldQ9yIzS57ndvv+ZHcPoZFHmcv9WvAy NvidUfY72GlwIUfovTS+9DCGS8eRQwwe3oX+uU0tyuYES9+AEyE86YwoHLQDMgDk q7H2FzNTO5EtLFbRNA9QGsdwTtcPAwq0eyI1/8jCIr0P/1CrAtK8Fvo/UwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJof3q3JsozERA4FxiDwijYyY1NDMB8GA1UdIwQY MBaAFNSPDCsq0Z+MBrThJJHWEphkRxyoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUk4TUt5clJuNHdHdE9Fa2tkWVNtR1JISEtnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8zMDVlZGEtZjhiYS00NjkxLTg5NjAt OTM2MTk2NzRhNDJlLzEvMUk4TUt5clJuNHdHdE9Fa2tkWVNtR1JISEtnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy8zMDVlZGEtZjhiYS00NjkxLTg5NjAtOTM2MTk2NzRhNDJl LzEvMUk4TUt5clJuNHdHdE9Fa2tkWVNtR1JISEtnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVfOM22HF w3lP1wazhaZ9SYh5YwTXhdV724fU29sUva46uk1qZUg+372GTuhI8BX9hCU08AeY ZXt19dWojUuuwB1gPAoAD0E1fRU2xiZOtJqCtiK58frOVQnoQuSGNhXn0WASZkFN 5FWIrui2JnbkaJKPrBwDFFMd02jyLMSdSqV0edrucGEpFzYb0gfO48C/r4/+9cb2 OnmG7LDkQa0MKd2ZaPftBk/liWPwqAaFVd8UaaJYSkq3HuiaT0FwvXWh+ULeYR2A Ha15YG3i5RUKeFnFf02zm64EaiPqFaddg9wmsg4uFwDrSQVb9w/9iNWsuodN9W9I dJk0X4FzV+hVSQ== -----END CERTIFICATE-----Generated at Sun Dec 7 01:54:38 2025 by rpki-client