This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/9c826d-93b8-4c3a-a21f-513403e3d820/1/8p5p65n-wSVjcxHUMFL3kx2P3TI.mft File: 8p5p65n-wSVjcxHUMFL3kx2P3TI.mft (raw, json) Hash identifier: aiFqgoBYy8RJDCrpRc0A2wHVEiwGZ46AiLsEXFJzRsE= Subject key identifier: 77:9A:DB:6E:AC:0E:09:C4:F8:31:80:D1:D7:C5:74:41:3D:C1:62:B4 Authority key identifier: F2:9E:69:EB:99:FE:C1:25:63:73:11:D4:30:52:F7:93:1D:8F:DD:32 Certificate issuer: /CN=f29e69eb99fec125637311d43052f7931d8fdd32 Certificate serial: 019AF5786AF160B23F6527E37ABB393BF7F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8p5p65n-wSVjcxHUMFL3kx2P3TI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/9c826d-93b8-4c3a-a21f-513403e3d820/1/8p5p65n-wSVjcxHUMFL3kx2P3TI.mft Manifest number: 06FD Signing time: Sat 06 Dec 2025 21:01:40 +0000 Manifest this update: Sat 06 Dec 2025 21:01:40 +0000 Manifest next update: Sun 07 Dec 2025 21:01:40 +0000 Files and hashes: 1: 8p5p65n-wSVjcxHUMFL3kx2P3TI.crl (hash: 5IMdmQqkZJ97yQSc05f8sLvbT1ASrbdxM+H24LZF+7Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/9c826d-93b8-4c3a-a21f-513403e3d820/1/8p5p65n-wSVjcxHUMFL3kx2P3TI.crl rsync://rpki.ripe.net/repository/DEFAULT/40/9c826d-93b8-4c3a-a21f-513403e3d820/1/8p5p65n-wSVjcxHUMFL3kx2P3TI.mft rsync://rpki.ripe.net/repository/DEFAULT/8p5p65n-wSVjcxHUMFL3kx2P3TI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:78:6a:f1:60:b2:3f:65:27:e3:7a:bb:39:3b:f7:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f29e69eb99fec125637311d43052f7931d8fdd32 Validity Not Before: Dec 6 21:01:40 2025 GMT Not After : Dec 7 21:01:40 2025 GMT Subject: CN=779adb6eac0e09c4f83180d1d7c574413dc162b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6f:40:32:58:dd:50:5d:35:d1:60:e0:96:d8: 0b:bd:08:a3:41:82:d2:17:02:9e:a5:ef:b9:27:c4: 0c:62:e1:cb:63:ed:e7:54:55:be:f6:44:d6:d9:1b: 7e:69:c4:06:33:22:f8:f8:76:6f:30:99:70:27:d6: a2:95:44:9c:a3:4d:81:a3:02:89:19:8d:dc:34:88: e8:21:6a:06:c9:72:db:d6:d1:f3:ed:18:c3:04:54: 8e:72:f9:ae:eb:91:dc:ed:c3:e6:e4:ba:02:dd:cf: 28:98:c4:e3:48:82:d9:4e:4d:92:3e:c1:4d:f9:4f: 36:35:ef:04:57:61:fa:5e:52:ea:72:02:c7:8d:d0: b4:ef:42:5b:22:cc:5b:0a:8f:f1:ca:2f:f8:dd:b4: fa:71:0c:dd:a4:26:53:3c:44:55:66:ad:1f:72:25: 81:8f:c5:74:79:59:2e:b4:9e:80:21:5b:17:d5:90: 90:24:31:cd:9d:67:e6:65:3e:ba:56:6b:68:b6:dd: 91:13:82:19:78:96:1a:f1:2c:ca:84:ad:89:4c:30: 44:96:aa:2b:3d:97:64:27:d9:9e:66:1c:47:bc:2f: 10:9c:9b:0f:d4:73:44:cb:6b:77:b2:5c:d2:69:37: 37:d0:e5:5d:f0:40:57:bd:29:73:dd:23:12:c0:00: 29:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:9A:DB:6E:AC:0E:09:C4:F8:31:80:D1:D7:C5:74:41:3D:C1:62:B4 X509v3 Authority Key Identifier: keyid:F2:9E:69:EB:99:FE:C1:25:63:73:11:D4:30:52:F7:93:1D:8F:DD:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8p5p65n-wSVjcxHUMFL3kx2P3TI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/9c826d-93b8-4c3a-a21f-513403e3d820/1/8p5p65n-wSVjcxHUMFL3kx2P3TI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/9c826d-93b8-4c3a-a21f-513403e3d820/1/8p5p65n-wSVjcxHUMFL3kx2P3TI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:e2:64:53:f2:34:1d:0c:c8:75:c5:a6:28:1e:44:36:ea:ef: 85:47:7c:83:df:92:89:88:b0:3f:8f:94:b3:63:df:6f:5e:7a: 0f:50:84:51:f5:05:b0:9a:b2:4a:36:9d:f4:dc:99:3d:32:4d: 75:0a:f5:04:ad:87:35:bd:5f:fc:71:a7:fe:67:0b:be:13:9b: 34:41:03:52:95:71:00:9b:64:ba:25:63:d2:24:39:6d:83:b1: 5c:ef:4d:f4:43:39:2b:67:43:6a:dd:bd:74:06:b3:1a:46:4b: 7c:3c:12:c5:ad:55:c3:a6:e4:87:b1:00:6b:f6:84:84:8a:d0: 66:b7:72:bf:9d:1f:e3:ca:30:df:1d:36:f6:3e:c5:99:47:7c: e6:a4:a1:df:d7:8e:bd:cf:94:b9:ad:ea:16:e7:0a:c2:cf:94: c7:9f:1b:4e:ed:0c:b3:86:47:f5:8a:d0:a1:32:27:f7:21:e9: 40:15:26:c4:a8:96:ce:8c:45:5a:0d:0e:6f:6e:c5:ef:f1:1a: 48:89:af:dd:4f:aa:09:29:bf:f6:83:62:5f:36:84:7c:03:ae: 08:8e:12:eb:0d:b1:5f:7b:4f:bf:13:31:fc:ec:65:7c:8c:30: 76:2a:f4:7a:b6:37:db:20:52:b8:2f:45:54:a1:56:3b:54:df: 1e:67:36:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1eGrxYLI/ZSfjers5O/fxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYyOWU2OWViOTlmZWMxMjU2MzczMTFkNDMwNTJmNzkzMWQ4 ZmRkMzIwHhcNMjUxMjA2MjEwMTQwWhcNMjUxMjA3MjEwMTQwWjAzMTEwLwYDVQQD Eyg3NzlhZGI2ZWFjMGUwOWM0ZjgzMTgwZDFkN2M1NzQ0MTNkYzE2MmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtW9AMljdUF010WDgltgLvQijQYLS FwKepe+5J8QMYuHLY+3nVFW+9kTW2Rt+acQGMyL4+HZvMJlwJ9ailUSco02BowKJ GY3cNIjoIWoGyXLb1tHz7RjDBFSOcvmu65Hc7cPm5LoC3c8omMTjSILZTk2SPsFN +U82Ne8EV2H6XlLqcgLHjdC070JbIsxbCo/xyi/43bT6cQzdpCZTPERVZq0fciWB j8V0eVkutJ6AIVsX1ZCQJDHNnWfmZT66Vmtott2RE4IZeJYa8SzKhK2JTDBElqor PZdkJ9meZhxHvC8QnJsP1HNEy2t3slzSaTc30OVd8EBXvSlz3SMSwAApWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHea226sDgnE+DGA0dfFdEE9wWK0MB8GA1UdIwQY MBaAFPKeaeuZ/sElY3MR1DBS95Mdj90yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOHA1cDY1bi13U1ZqY3hIVU1GTDNreDJQM1RJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC85YzgyNmQtOTNiOC00YzNhLWEyMWYt NTEzNDAzZTNkODIwLzEvOHA1cDY1bi13U1ZqY3hIVU1GTDNreDJQM1RJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC85YzgyNmQtOTNiOC00YzNhLWEyMWYtNTEzNDAzZTNkODIw LzEvOHA1cDY1bi13U1ZqY3hIVU1GTDNreDJQM1RJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAheJkU/I0 HQzIdcWmKB5ENurvhUd8g9+SiYiwP4+Us2Pfb156D1CEUfUFsJqySjad9NyZPTJN dQr1BK2HNb1f/HGn/mcLvhObNEEDUpVxAJtkuiVj0iQ5bYOxXO9N9EM5K2dDat29 dAazGkZLfDwSxa1Vw6bkh7EAa/aEhIrQZrdyv50f48ow3x029j7FmUd85qSh39eO vc+Uua3qFucKws+Ux58bTu0Ms4ZH9YrQoTIn9yHpQBUmxKiWzoxFWg0Ob27F7/Ea SImv3U+qCSm/9oNiXzaEfAOuCI4S6w2xX3tPvxMx/OxlfIwwdir0erY32yBSuC9F VKFWO1TfHmc2JA== -----END CERTIFICATE-----Generated at Sun Dec 7 03:20:32 2025 by rpki-client