This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft File: 8zk0PMbVHduONjgpmhu0lfRYCSE.mft (raw, json) Hash identifier: gXhLqRddiDKoXtfL7ekFhVVUQmw5vIVXv4PbP6z3RsQ= Subject key identifier: 44:CA:62:08:23:71:1E:04:D2:63:5E:CE:34:30:C5:07:3C:33:B4:19 Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21 Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921 Certificate serial: 019AF1645889BE0EA4C919362C73DC5D89BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 02:01:16 +0000 Manifest this update: Sat 06 Dec 2025 02:01:16 +0000 Manifest next update: Sun 07 Dec 2025 02:01:16 +0000 Files and hashes: 1: 8zk0PMbVHduONjgpmhu0lfRYCSE.crl (hash: i4YWTJbQdOrpPlWdCM+ylQI5GyWAUYuEqQtH+j4/IOw=) 2: foJ4QycSZoLeX5HBGEgGb3_VDbc.roa (hash: 6GL5/gRhjE26Cz785WY71i1EcVPF5j3FDcpppmWBIT8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:58:89:be:0e:a4:c9:19:36:2c:73:dc:5d:89:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921 Validity Not Before: Dec 6 02:01:16 2025 GMT Not After : Dec 7 02:01:16 2025 GMT Subject: CN=44ca620823711e04d2635ece3430c5073c33b419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:88:04:54:3a:b8:d4:6d:31:97:f8:48:a5:bc: 07:a2:c8:da:af:f6:06:fe:df:84:48:75:35:e0:df: 0f:ef:2e:7c:fd:dc:ac:9d:0b:bc:63:1c:e3:a0:24: bf:cf:ea:4a:8e:e3:b9:4e:87:2c:b9:f7:54:88:77: 7a:63:b0:f5:ac:07:20:5e:21:14:1c:49:1d:3b:55: 76:04:6c:b2:6d:18:7d:96:b4:4e:25:6c:de:30:e3: e6:d0:58:dc:65:09:d5:50:33:d8:af:d6:ec:c0:25: a3:0b:96:cf:5b:33:f4:ec:9d:b1:ed:28:1a:5b:5e: ab:8f:e5:bf:55:7c:ff:e9:c0:59:fa:2c:08:01:3f: 71:44:8d:83:11:27:29:be:bd:c7:93:8b:96:8a:7a: 75:e7:e5:5c:23:f0:2c:8e:82:50:5a:6d:eb:af:ed: 70:80:81:0c:49:09:ed:c2:c1:bf:56:a7:b5:eb:4d: f7:e8:a4:21:ed:3b:c1:d8:89:fe:16:9c:04:93:34: 23:f2:da:49:f8:f5:3b:f7:96:db:a9:eb:c3:2f:83: 1c:a2:72:32:b1:f3:98:2a:21:7b:cd:e9:4e:c8:a4: 79:ec:8b:1d:4b:15:5e:16:5c:f1:0f:72:03:ca:48: e4:aa:bb:a6:d2:b9:91:ee:8c:f2:18:73:61:cf:69: 3d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:CA:62:08:23:71:1E:04:D2:63:5E:CE:34:30:C5:07:3C:33:B4:19 X509v3 Authority Key Identifier: keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:35:1f:6b:b7:8d:1c:f0:b5:aa:05:9d:1e:72:09:16:cb:1e: ab:04:dc:5a:21:67:32:60:b9:d3:c1:1b:48:fb:29:70:14:9a: 08:55:65:b2:9f:ac:9e:e4:b4:87:bc:67:34:2f:6e:80:5c:bd: 4a:63:1b:ee:4b:d8:dd:46:df:8d:c5:70:71:ca:19:96:d4:10: b4:77:a4:7c:a1:67:8d:8e:8f:a0:e3:d9:2b:f8:b5:5c:9e:02: b0:15:c1:a4:05:f7:65:d8:ba:85:63:1c:ba:e3:f8:08:69:63: 4d:29:44:e6:69:5f:79:25:ee:4e:78:0d:d2:e9:6a:67:27:99: 59:57:71:42:9e:65:54:1a:b4:63:62:d7:6c:3d:72:70:5a:f2: c5:dc:b0:5b:53:bf:5e:60:55:bd:f0:1e:8b:15:ff:97:b7:b6: 49:22:4a:a5:72:b7:b6:4d:72:f3:f7:34:0a:4d:8d:1a:4e:ce: f2:97:5b:79:f5:e4:f2:07:f5:49:61:77:7e:73:61:ab:cb:5f: 98:7a:d9:46:1f:ba:df:91:65:34:2c:5e:14:a0:46:74:c1:84: 02:97:3a:51:76:30:9b:ca:d5:7f:ae:2e:27:15:b9:be:a4:18: 04:70:dc:f9:f4:c9:21:13:aa:cc:91:d1:c1:1f:c8:04:70:34: 6f:bf:8d:38 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZFiJvg6kyRk2LHPcXYm6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzMzkzNDNjYzZkNTFkZGI4ZTM2MzgyOTlhMWJiNDk1ZjQ1 ODA5MjEwHhcNMjUxMjA2MDIwMTE2WhcNMjUxMjA3MDIwMTE2WjAzMTEwLwYDVQQD Eyg0NGNhNjIwODIzNzExZTA0ZDI2MzVlY2UzNDMwYzUwNzNjMzNiNDE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA14gEVDq41G0xl/hIpbwHosjar/YG /t+ESHU14N8P7y58/dysnQu8YxzjoCS/z+pKjuO5TocsufdUiHd6Y7D1rAcgXiEU HEkdO1V2BGyybRh9lrROJWzeMOPm0FjcZQnVUDPYr9bswCWjC5bPWzP07J2x7Sga W16rj+W/VXz/6cBZ+iwIAT9xRI2DEScpvr3Hk4uWinp15+VcI/AsjoJQWm3rr+1w gIEMSQntwsG/Vqe160336KQh7TvB2In+FpwEkzQj8tpJ+PU795bbqevDL4MconIy sfOYKiF7zelOyKR57IsdSxVeFlzxD3IDykjkqrum0rmR7ozyGHNhz2k9oQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFETKYggjcR4E0mNezjQwxQc8M7QZMB8GA1UdIwQY MBaAFPM5NDzG1R3bjjY4KZobtJX0WAkhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81ZGU2ZGYtY2U0Zi00YjA5LTgyZDIt Mzc3ZDI1YmU1OTRkLzEvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC81ZGU2ZGYtY2U0Zi00YjA5LTgyZDItMzc3ZDI1YmU1OTRk LzEvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAezUfa7eN HPC1qgWdHnIJFsseqwTcWiFnMmC508EbSPspcBSaCFVlsp+snuS0h7xnNC9ugFy9 SmMb7kvY3UbfjcVwccoZltQQtHekfKFnjY6PoOPZK/i1XJ4CsBXBpAX3Zdi6hWMc uuP4CGljTSlE5mlfeSXuTngN0ulqZyeZWVdxQp5lVBq0Y2LXbD1ycFryxdywW1O/ XmBVvfAeixX/l7e2SSJKpXK3tk1y8/c0Ck2NGk7O8pdbefXk8gf1SWF3fnNhq8tf mHrZRh+635FlNCxeFKBGdMGEApc6UXYwm8rVf64uJxW5vqQYBHDc+fTJIROqzJHR wR/IBHA0b7+NOA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:06:40 2025 by rpki-client