This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft File: 8A5uimGIP2gBZbX0FUhfjw1PWo0.mft (raw, json) Hash identifier: qZsiA47gdHbxiGIwMn1u5FZyUq6Z3bPYxOosEb+PQEg= Subject key identifier: 11:81:DF:E2:AF:3D:3B:0E:F2:A8:DF:DD:1C:54:2E:69:25:24:35:91 Authority key identifier: F0:0E:6E:8A:61:88:3F:68:01:65:B5:F4:15:48:5F:8F:0D:4F:5A:8D Certificate issuer: /CN=f00e6e8a61883f680165b5f415485f8f0d4f5a8d Certificate serial: 019AF38913482842C8506B7BD26220ED15D6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft Manifest number: 145B Signing time: Sat 06 Dec 2025 12:00:37 +0000 Manifest this update: Sat 06 Dec 2025 12:00:37 +0000 Manifest next update: Sun 07 Dec 2025 12:00:37 +0000 Files and hashes: 1: 8A5uimGIP2gBZbX0FUhfjw1PWo0.crl (hash: brvbxgyaQtkyJ7/XKV60PAU/5IM4xThOASUtOboLr7c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:13:48:28:42:c8:50:6b:7b:d2:62:20:ed:15:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f00e6e8a61883f680165b5f415485f8f0d4f5a8d Validity Not Before: Dec 6 12:00:37 2025 GMT Not After : Dec 7 12:00:37 2025 GMT Subject: CN=1181dfe2af3d3b0ef2a8dfdd1c542e6925243591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d5:4c:e9:75:d5:32:3e:a6:71:2a:c3:3b:9e: 63:50:2b:43:fb:29:51:9d:58:73:c5:9d:6d:04:16: 03:0b:d1:6b:10:4d:8a:aa:fe:83:4e:24:38:75:c8: 47:73:5e:24:70:30:45:64:15:6e:ce:9b:36:6b:54: 1e:6b:fa:7c:0f:c4:3d:0a:71:f3:22:5e:49:bd:cc: b9:b3:d8:59:46:24:18:9c:f1:0b:50:62:62:63:f9: 8c:6f:7d:c5:33:61:b3:0d:44:98:e5:fc:d0:c8:8e: a9:92:b2:c5:d7:2c:85:a8:cf:01:c2:23:fa:1e:09: 1f:ab:55:43:55:57:76:2e:d6:8d:4b:ec:1d:aa:a9: 72:95:55:14:d7:c2:1e:dc:03:a0:6d:5d:69:d2:ab: 8e:ee:80:f4:07:4b:f4:9d:4b:da:2d:1a:85:9e:aa: 5f:3d:99:25:4b:cc:7f:d3:af:f9:fc:9d:f4:a8:9f: da:f2:b7:16:69:55:c8:5a:7a:66:1f:7f:5b:c1:bb: ca:82:16:ca:51:86:16:14:8b:92:0e:95:28:0c:e2: c7:7b:e7:10:00:02:4b:39:9b:81:15:ba:88:ba:7f: bd:c6:4f:36:38:94:4a:81:08:c7:6a:5d:6d:45:47: 52:14:35:07:48:e4:c9:cc:53:d5:f9:80:53:74:06: b8:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:81:DF:E2:AF:3D:3B:0E:F2:A8:DF:DD:1C:54:2E:69:25:24:35:91 X509v3 Authority Key Identifier: keyid:F0:0E:6E:8A:61:88:3F:68:01:65:B5:F4:15:48:5F:8F:0D:4F:5A:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:03:18:5f:90:13:2f:22:bd:91:32:33:0c:32:ff:20:86:fa: f1:5d:24:83:11:e1:88:90:a7:8a:68:42:82:e3:7d:d3:47:0a: 39:8d:e2:b1:59:fe:e6:1f:00:8f:1f:03:20:db:c9:dc:68:a4: b9:f8:80:cf:32:89:6b:cf:3a:dd:d3:12:ff:04:27:ce:cd:a1: 30:42:d7:bd:4c:45:91:73:8b:a5:4d:4a:56:79:bb:eb:95:fc: 96:6c:7b:e3:27:a4:cd:7b:bc:6f:f8:06:6e:05:8d:88:c5:b5: 3e:59:a3:17:bb:e9:32:e1:1e:ab:3e:ac:c4:0a:1e:ec:cf:04: 0e:0c:6f:b4:a4:a2:b1:21:ca:15:27:ac:61:cf:b9:36:09:33: df:17:2b:3e:44:15:1d:0d:d3:ee:8f:d9:e1:fb:c7:9b:d3:33: 75:d5:79:97:a1:ce:b1:c2:50:3c:66:88:54:87:7c:94:d5:a7: f3:82:f6:06:a2:60:19:45:2d:2f:ab:38:dd:64:e2:47:a1:92: 45:63:14:76:13:14:ab:6a:61:23:9a:e5:ba:76:fc:d2:1d:eb: c8:46:e8:25:44:6b:3a:69:f9:88:df:ca:63:16:eb:2d:c1:35: e3:90:18:7b:12:25:11:9f:0f:ed:e9:a0:17:bf:d5:ab:e9:06: 08:4e:83:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziRNIKELIUGt70mIg7RXWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwMGU2ZThhNjE4ODNmNjgwMTY1YjVmNDE1NDg1ZjhmMGQ0 ZjVhOGQwHhcNMjUxMjA2MTIwMDM3WhcNMjUxMjA3MTIwMDM3WjAzMTEwLwYDVQQD EygxMTgxZGZlMmFmM2QzYjBlZjJhOGRmZGQxYzU0MmU2OTI1MjQzNTkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwtVM6XXVMj6mcSrDO55jUCtD+ylR nVhzxZ1tBBYDC9FrEE2Kqv6DTiQ4dchHc14kcDBFZBVuzps2a1Qea/p8D8Q9CnHz Il5Jvcy5s9hZRiQYnPELUGJiY/mMb33FM2GzDUSY5fzQyI6pkrLF1yyFqM8BwiP6 Hgkfq1VDVVd2LtaNS+wdqqlylVUU18Ie3AOgbV1p0quO7oD0B0v0nUvaLRqFnqpf PZklS8x/06/5/J30qJ/a8rcWaVXIWnpmH39bwbvKghbKUYYWFIuSDpUoDOLHe+cQ AAJLOZuBFbqIun+9xk82OJRKgQjHal1tRUdSFDUHSOTJzFPV+YBTdAa4zwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBGB3+KvPTsO8qjf3RxULmklJDWRMB8GA1UdIwQY MBaAFPAObophiD9oAWW19BVIX48NT1qNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEE1dWltR0lQMmdCWmJYMEZVaGZqdzFQV28wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS84NDI4MTUtMTM4YS00M2RhLTg3MmMt M2NmZjE0ODI4ZGZkLzEvOEE1dWltR0lQMmdCWmJYMEZVaGZqdzFQV28wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS84NDI4MTUtMTM4YS00M2RhLTg3MmMtM2NmZjE0ODI4ZGZk LzEvOEE1dWltR0lQMmdCWmJYMEZVaGZqdzFQV28wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuQMYX5AT LyK9kTIzDDL/IIb68V0kgxHhiJCnimhCguN900cKOY3isVn+5h8Ajx8DINvJ3Gik ufiAzzKJa8863dMS/wQnzs2hMELXvUxFkXOLpU1KVnm765X8lmx74yekzXu8b/gG bgWNiMW1PlmjF7vpMuEeqz6sxAoe7M8EDgxvtKSisSHKFSesYc+5Ngkz3xcrPkQV HQ3T7o/Z4fvHm9MzddV5l6HOscJQPGaIVId8lNWn84L2BqJgGUUtL6s43WTiR6GS RWMUdhMUq2phI5rlunb80h3ryEboJURrOmn5iN/KYxbrLcE145AYexIlEZ8P7emg F7/Vq+kGCE6DKg== -----END CERTIFICATE-----Generated at Sat Dec 6 14:53:14 2025 by rpki-client