This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/7bbad4-e15a-4bfd-ab32-76e865e2c4bd/1/8IcQ5uJObWm9XESv6vDunGftOgY.mft File: 8IcQ5uJObWm9XESv6vDunGftOgY.mft (raw, json) Hash identifier: LF/bVmLIL6NAdsUKzSHN50PjMXPrOXMO2NaKnoC5R3U= Subject key identifier: 05:46:26:59:E0:38:31:AD:CF:F3:4C:3C:5A:F7:6A:64:32:63:CA:E1 Authority key identifier: F0:87:10:E6:E2:4E:6D:69:BD:5C:44:AF:EA:F0:EE:9C:67:ED:3A:06 Certificate issuer: /CN=f08710e6e24e6d69bd5c44afeaf0ee9c67ed3a06 Certificate serial: 019AF19B659556D4796226CE0F823264864A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8IcQ5uJObWm9XESv6vDunGftOgY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/7bbad4-e15a-4bfd-ab32-76e865e2c4bd/1/8IcQ5uJObWm9XESv6vDunGftOgY.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 03:01:24 +0000 Manifest this update: Sat 06 Dec 2025 03:01:24 +0000 Manifest next update: Sun 07 Dec 2025 03:01:24 +0000 Files and hashes: 1: 8IcQ5uJObWm9XESv6vDunGftOgY.crl (hash: x6GLSHqPFqzDZKffUh7JrEkgxjGC/bAnkH5lf+c1Hi8=) 2: GSeC1Rl6mpKFcoTMI2ji-UCz9Y4.roa (hash: PbjkP2/mvOpx2a2PbKu6Uf4IiG6ZwqTripEFW9PTXoU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/7bbad4-e15a-4bfd-ab32-76e865e2c4bd/1/8IcQ5uJObWm9XESv6vDunGftOgY.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/7bbad4-e15a-4bfd-ab32-76e865e2c4bd/1/8IcQ5uJObWm9XESv6vDunGftOgY.mft rsync://rpki.ripe.net/repository/DEFAULT/8IcQ5uJObWm9XESv6vDunGftOgY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:65:95:56:d4:79:62:26:ce:0f:82:32:64:86:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f08710e6e24e6d69bd5c44afeaf0ee9c67ed3a06 Validity Not Before: Dec 6 03:01:24 2025 GMT Not After : Dec 7 03:01:24 2025 GMT Subject: CN=05462659e03831adcff34c3c5af76a643263cae1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0e:fa:b9:12:6f:b2:1c:a3:8c:48:11:c2:e9: da:a2:dc:29:df:41:2d:e7:52:73:df:c9:03:d5:c6: 23:29:c7:86:a4:a2:7b:22:e5:f5:a1:42:92:25:26: 82:cc:58:19:36:05:9f:61:63:f1:c7:ce:4d:11:bf: 60:86:84:77:cd:08:b7:87:87:0a:21:88:e5:3a:50: 74:9f:56:0d:1e:60:51:ca:d5:2f:c1:35:e9:b6:ce: 4d:e2:23:75:05:da:23:ec:ba:a3:21:91:0d:b6:0d: e4:b9:d6:41:31:5b:18:78:b2:2c:6e:84:eb:21:a6: d3:79:2c:dd:b1:1e:da:c4:d7:79:e0:a0:c2:04:26: b7:1e:ac:f8:db:a4:5a:2c:f6:ec:ea:af:f0:d2:d5: bd:6b:2d:88:b9:fa:3f:3a:9d:2e:bd:2b:4e:bf:a0: 92:bd:ca:53:52:52:e0:b0:24:1a:a1:6a:be:97:d4: fd:f5:c9:7f:47:0b:07:42:28:45:3f:ab:5b:35:82: 03:dd:28:c5:0a:25:16:fc:a4:1a:ae:fd:ae:e9:51: 0a:29:f7:55:3d:63:c9:ff:85:a4:48:ae:cb:d4:0d: 4c:ed:f1:6d:8e:e9:c4:e9:ec:41:82:61:9d:c8:28: 44:9c:a9:70:e8:57:0f:0d:77:be:a0:f7:f7:fd:32: c0:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:46:26:59:E0:38:31:AD:CF:F3:4C:3C:5A:F7:6A:64:32:63:CA:E1 X509v3 Authority Key Identifier: keyid:F0:87:10:E6:E2:4E:6D:69:BD:5C:44:AF:EA:F0:EE:9C:67:ED:3A:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8IcQ5uJObWm9XESv6vDunGftOgY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7bbad4-e15a-4bfd-ab32-76e865e2c4bd/1/8IcQ5uJObWm9XESv6vDunGftOgY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7bbad4-e15a-4bfd-ab32-76e865e2c4bd/1/8IcQ5uJObWm9XESv6vDunGftOgY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:35:2a:93:72:26:6f:4b:85:c5:f3:44:7a:f8:4e:1d:67:f3: 99:28:a6:a9:02:a2:9a:cd:5d:ce:07:80:20:46:87:5e:b9:2e: 1a:e7:63:81:b9:bc:ce:11:16:61:a9:15:c5:74:62:83:c5:b7: 04:87:08:8b:fe:1e:20:77:38:e5:51:86:ee:2a:2e:76:fe:31: 8d:92:f0:51:dd:a1:83:ec:90:a8:04:44:04:d7:1a:c5:70:90: 00:e2:24:5b:2a:9e:59:07:8a:64:32:17:8b:ac:8e:aa:02:27: 5e:ee:fb:68:4f:fd:37:5a:12:11:cf:21:64:a8:3d:c8:80:66: 10:33:21:20:fc:4f:88:65:34:9e:79:bf:ad:57:54:85:95:ab: e8:96:3e:08:82:0b:d2:15:c7:f0:e5:a2:c6:5a:b9:0e:83:b7: 7d:4f:a8:80:9a:87:e1:27:d4:89:f3:53:f3:fa:2b:19:4b:37: b7:9d:9c:68:bb:15:6c:8f:2a:14:0c:1a:3c:2f:56:1d:90:42: 5c:73:0e:2f:79:d0:86:4c:d1:86:5a:37:a5:ab:e9:14:2f:bc: 47:ad:f5:48:01:9d:0a:47:9a:cf:52:17:94:9d:c1:2d:88:37: 1f:f2:0d:74:cd:6d:54:9d:5a:eb:74:ec:69:ea:a6:f7:32:9e: dd:82:59:7a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm2WVVtR5YibOD4IyZIZKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwODcxMGU2ZTI0ZTZkNjliZDVjNDRhZmVhZjBlZTljNjdl ZDNhMDYwHhcNMjUxMjA2MDMwMTI0WhcNMjUxMjA3MDMwMTI0WjAzMTEwLwYDVQQD EygwNTQ2MjY1OWUwMzgzMWFkY2ZmMzRjM2M1YWY3NmE2NDMyNjNjYWUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAug76uRJvshyjjEgRwunaotwp30Et 51Jz38kD1cYjKceGpKJ7IuX1oUKSJSaCzFgZNgWfYWPxx85NEb9ghoR3zQi3h4cK IYjlOlB0n1YNHmBRytUvwTXpts5N4iN1Bdoj7LqjIZENtg3kudZBMVsYeLIsboTr IabTeSzdsR7axNd54KDCBCa3Hqz426RaLPbs6q/w0tW9ay2Iufo/Op0uvStOv6CS vcpTUlLgsCQaoWq+l9T99cl/RwsHQihFP6tbNYID3SjFCiUW/KQarv2u6VEKKfdV PWPJ/4WkSK7L1A1M7fFtjunE6exBgmGdyChEnKlw6FcPDXe+oPf3/TLAhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAVGJlngODGtz/NMPFr3amQyY8rhMB8GA1UdIwQY MBaAFPCHEObiTm1pvVxEr+rw7pxn7ToGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEljUTV1Sk9iV205WEVTdjZ2RHVuR2Z0T2dZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi83YmJhZDQtZTE1YS00YmZkLWFiMzIt NzZlODY1ZTJjNGJkLzEvOEljUTV1Sk9iV205WEVTdjZ2RHVuR2Z0T2dZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi83YmJhZDQtZTE1YS00YmZkLWFiMzItNzZlODY1ZTJjNGJk LzEvOEljUTV1Sk9iV205WEVTdjZ2RHVuR2Z0T2dZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfjUqk3Im b0uFxfNEevhOHWfzmSimqQKims1dzgeAIEaHXrkuGudjgbm8zhEWYakVxXRig8W3 BIcIi/4eIHc45VGG7ioudv4xjZLwUd2hg+yQqAREBNcaxXCQAOIkWyqeWQeKZDIX i6yOqgInXu77aE/9N1oSEc8hZKg9yIBmEDMhIPxPiGU0nnm/rVdUhZWr6JY+CIIL 0hXH8OWixlq5DoO3fU+ogJqH4SfUifNT8/orGUs3t52caLsVbI8qFAwaPC9WHZBC XHMOL3nQhkzRhlo3pavpFC+8R631SAGdCkeaz1IXlJ3BLYg3H/INdM1tVJ1a63Ts aeqm9zKe3YJZeg== -----END CERTIFICATE-----Generated at Sat Dec 6 12:58:35 2025 by rpki-client