This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft File: S8hY5QhWNUaEpdBKPsw1klgNVI0.mft (raw, json) Hash identifier: XQsr52TS3l0ZBXM1xxF8h521RXxFKovyUJG0kewGE6U= Subject key identifier: 7E:86:24:75:03:8D:6A:BB:3C:4E:48:4A:A0:AA:FE:98:BC:F1:BD:8C Authority key identifier: 4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D Certificate issuer: /CN=4bc858e50856354684a5d04a3ecc3592580d548d Certificate serial: 019AF24004295AA2C07EDB0825AD1850351A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft Manifest number: 0A1F Signing time: Sat 06 Dec 2025 06:01:12 +0000 Manifest this update: Sat 06 Dec 2025 06:01:12 +0000 Manifest next update: Sun 07 Dec 2025 06:01:12 +0000 Files and hashes: 1: 1kPYBeHFqZcRahwRlHXvuPvT0zI.roa (hash: qhycFEi6FwqVVERso5+P+dTV24QXX6z3cT56YMpxbXU=) 2: S8hY5QhWNUaEpdBKPsw1klgNVI0.crl (hash: zES0Wlqj8FO4oRxBB4kQMoboC4Jtt02BrhRD4BVQeYg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:40:04:29:5a:a2:c0:7e:db:08:25:ad:18:50:35:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4bc858e50856354684a5d04a3ecc3592580d548d Validity Not Before: Dec 6 06:01:12 2025 GMT Not After : Dec 7 06:01:12 2025 GMT Subject: CN=7e862475038d6abb3c4e484aa0aafe98bcf1bd8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8e:20:b1:fe:07:cf:5b:be:e4:fd:d4:52:ee: f2:4b:cd:0b:1c:c0:36:02:07:cf:01:3d:3a:39:1f: 88:dc:0c:09:c5:b2:c5:7f:f0:ee:45:bc:22:70:88: cb:0a:75:ce:9f:bb:a2:86:93:5d:05:1b:d9:8a:23: 59:91:d7:47:90:26:e9:39:83:36:17:c1:0b:d1:7f: 31:18:ca:33:3d:7a:df:57:e8:19:4e:0b:76:06:29: 47:b6:28:37:ff:9d:19:38:9a:37:ef:69:0b:f9:87: dc:e5:04:dd:72:41:55:02:67:a8:b0:e7:f7:92:01: 26:6b:02:d2:7a:af:cb:09:2a:a3:3c:47:09:8d:9e: 15:eb:07:7f:01:af:6e:e2:c2:9a:57:05:45:48:ee: 28:71:7c:fc:81:e2:d0:46:af:99:f3:76:7d:d7:99: 72:14:92:d3:3f:56:07:f5:ce:97:41:f3:c0:9a:c2: 4b:3a:de:a1:dd:84:13:1a:f2:6a:e0:e8:a4:9f:25: e3:13:39:ff:71:4e:59:31:35:42:71:9f:e4:86:83: e5:63:87:cc:24:68:3c:76:1f:34:92:b1:e6:fe:92: 85:5d:25:ba:4d:0e:62:b3:2c:1c:30:39:28:dd:a1: 4a:f4:a4:62:24:7c:3e:fa:3e:38:20:84:e0:3f:f6: 75:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:86:24:75:03:8D:6A:BB:3C:4E:48:4A:A0:AA:FE:98:BC:F1:BD:8C X509v3 Authority Key Identifier: keyid:4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:8f:30:b2:fb:d7:d8:0e:2e:3c:c3:50:ba:77:6f:6d:90:5a: d5:0f:a1:eb:e1:8b:c8:76:05:c5:ee:a6:9f:d5:d3:92:e4:f5: eb:3b:ea:e7:1a:e8:58:3f:1d:38:86:a3:6f:56:9d:85:28:59: 9b:f0:e9:17:6f:af:39:b3:27:df:b9:82:48:4f:40:02:6b:ce: b5:11:30:64:1b:f6:4c:b1:c5:c1:86:7d:61:1b:2c:04:d5:9b: 2f:f1:6c:10:94:5d:27:e0:ec:d1:13:1f:c5:28:33:81:fc:4a: 20:a6:37:f4:f1:de:b6:7a:d9:cd:36:eb:eb:40:c1:0d:f4:c5: 77:7f:7c:77:14:64:77:f3:5d:35:c3:44:88:bf:94:2e:7c:93: 9e:e7:15:21:47:9c:f1:06:c3:fd:de:e7:9f:04:9c:76:6c:50: 9b:2e:e1:47:24:eb:24:9f:93:19:eb:b2:4e:ba:7f:9e:5a:30: 6a:c4:fd:72:8a:f6:3b:3c:d2:18:ce:57:f7:3c:53:55:85:72: 4a:85:24:e6:05:4b:aa:c0:95:3c:9a:9e:a5:a6:a3:c2:e5:03: 67:a2:48:4d:20:c3:1a:8b:28:11:fd:f3:42:c3:0c:8c:15:c2: 20:14:54:e3:42:f5:dc:3b:35:ce:af:a9:73:1a:31:13:2d:6c: 6b:12:4d:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryQAQpWqLAftsIJa0YUDUaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiYzg1OGU1MDg1NjM1NDY4NGE1ZDA0YTNlY2MzNTkyNTgw ZDU0OGQwHhcNMjUxMjA2MDYwMTEyWhcNMjUxMjA3MDYwMTEyWjAzMTEwLwYDVQQD Eyg3ZTg2MjQ3NTAzOGQ2YWJiM2M0ZTQ4NGFhMGFhZmU5OGJjZjFiZDhjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoo4gsf4Hz1u+5P3UUu7yS80LHMA2 AgfPAT06OR+I3AwJxbLFf/DuRbwicIjLCnXOn7uihpNdBRvZiiNZkddHkCbpOYM2 F8EL0X8xGMozPXrfV+gZTgt2BilHtig3/50ZOJo372kL+Yfc5QTdckFVAmeosOf3 kgEmawLSeq/LCSqjPEcJjZ4V6wd/Aa9u4sKaVwVFSO4ocXz8geLQRq+Z83Z915ly FJLTP1YH9c6XQfPAmsJLOt6h3YQTGvJq4OiknyXjEzn/cU5ZMTVCcZ/khoPlY4fM JGg8dh80krHm/pKFXSW6TQ5isywcMDko3aFK9KRiJHw++j44IITgP/Z1BwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH6GJHUDjWq7PE5ISqCq/pi88b2MMB8GA1UdIwQY MBaAFEvIWOUIVjVGhKXQSj7MNZJYDVSNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzhoWTVRaFdOVWFFcGRCS1BzdzFrbGdOVkkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8yNjc5NjYtZjAzOS00MTc0LTgxMGQt M2Y0ZWY4MWEyZTUzLzEvUzhoWTVRaFdOVWFFcGRCS1BzdzFrbGdOVkkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS8yNjc5NjYtZjAzOS00MTc0LTgxMGQtM2Y0ZWY4MWEyZTUz LzEvUzhoWTVRaFdOVWFFcGRCS1BzdzFrbGdOVkkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX48wsvvX 2A4uPMNQundvbZBa1Q+h6+GLyHYFxe6mn9XTkuT16zvq5xroWD8dOIajb1adhShZ m/DpF2+vObMn37mCSE9AAmvOtREwZBv2TLHFwYZ9YRssBNWbL/FsEJRdJ+Ds0RMf xSgzgfxKIKY39PHetnrZzTbr60DBDfTFd398dxRkd/NdNcNEiL+ULnyTnucVIUec 8QbD/d7nnwScdmxQmy7hRyTrJJ+TGeuyTrp/nlowasT9cor2OzzSGM5X9zxTVYVy SoUk5gVLqsCVPJqepaajwuUDZ6JITSDDGosoEf3zQsMMjBXCIBRU40L13Ds1zq+p cxoxEy1saxJNWA== -----END CERTIFICATE-----Generated at Sat Dec 6 12:11:12 2025 by rpki-client