This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.mft File: 8bmuyqN97cDywE9RvJY_zS5KrMw.mft (raw, json) Hash identifier: XKXA098pK3V2Vnio3VhGotrVx/VNCUaqW9spEoU7Pnc= Subject key identifier: 30:33:16:7F:FC:1D:8F:96:DE:89:FA:2A:51:1E:3E:D9:62:22:09:3D Authority key identifier: F1:B9:AE:CA:A3:7D:ED:C0:F2:C0:4F:51:BC:96:3F:CD:2E:4A:AC:CC Certificate issuer: /CN=f1b9aecaa37dedc0f2c04f51bc963fcd2e4aaccc Certificate serial: 019AF31B2F9AFBB6ED105C53DAA64D3CB4D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8bmuyqN97cDywE9RvJY_zS5KrMw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.mft Manifest number: 0563 Signing time: Sat 06 Dec 2025 10:00:36 +0000 Manifest this update: Sat 06 Dec 2025 10:00:36 +0000 Manifest next update: Sun 07 Dec 2025 10:00:36 +0000 Files and hashes: 1: 8bmuyqN97cDywE9RvJY_zS5KrMw.crl (hash: UdslpjeeJFnQGkOB17Xwjcpk12ucOF9XA47uicRWApM=) 2: wN3I7D42_Scvh3kTX6wbZgc3STg.roa (hash: +5WZ8eZml5reiYd5KuhYrJcZjNCC9ofGPFNFq+2Hrx4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.crl rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.mft rsync://rpki.ripe.net/repository/DEFAULT/8bmuyqN97cDywE9RvJY_zS5KrMw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:2f:9a:fb:b6:ed:10:5c:53:da:a6:4d:3c:b4:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f1b9aecaa37dedc0f2c04f51bc963fcd2e4aaccc Validity Not Before: Dec 6 10:00:36 2025 GMT Not After : Dec 7 10:00:36 2025 GMT Subject: CN=3033167ffc1d8f96de89fa2a511e3ed96222093d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a2:5c:7d:84:ec:ff:0d:24:e7:50:01:d5:18: 05:36:cd:35:eb:8a:23:27:e2:c8:d9:2a:d3:ee:92: ab:be:11:60:63:24:30:61:3f:be:91:16:e9:db:da: 93:2b:80:32:97:60:a2:e0:d1:35:59:57:f8:bd:90: af:56:9e:30:f3:b4:af:43:c2:a1:c3:74:51:18:80: e1:a2:02:46:55:3b:5c:1a:4b:c6:01:87:6b:35:c3: de:1b:24:12:da:e7:e5:f6:32:47:4c:b5:98:12:72: a3:55:63:32:36:95:e1:ed:77:71:9b:40:01:48:bc: 3d:16:27:ac:24:c1:9a:ec:aa:84:82:e9:6f:15:f7: 6a:cb:d8:8b:ad:29:24:5d:78:ed:0c:c9:97:8c:c5: 81:cd:0a:54:ec:09:7a:19:a4:bf:dc:dc:b8:72:52: f5:30:f9:13:68:a2:87:21:d7:d7:3c:1e:48:ee:5d: 33:1a:8a:ff:ff:38:f1:35:ce:e8:ef:54:ce:4a:02: a4:3b:e5:1f:4b:23:fb:62:fc:df:4f:88:2c:77:df: e2:9f:09:c0:e2:61:43:61:9c:00:74:07:31:54:a5: ce:4f:6d:91:b7:ca:47:eb:20:90:5d:7d:dd:b1:b2: 4d:28:29:29:2e:15:de:d6:c0:82:14:a6:6e:62:3a: 1a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:33:16:7F:FC:1D:8F:96:DE:89:FA:2A:51:1E:3E:D9:62:22:09:3D X509v3 Authority Key Identifier: keyid:F1:B9:AE:CA:A3:7D:ED:C0:F2:C0:4F:51:BC:96:3F:CD:2E:4A:AC:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8bmuyqN97cDywE9RvJY_zS5KrMw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:bc:e2:ef:92:57:27:e2:c2:19:e3:db:df:8b:ca:dc:4e:e7: d9:01:0b:88:2d:00:f7:70:38:59:ac:d0:dc:5a:0e:f1:ab:1b: 4e:7e:0b:2b:ca:70:c5:71:ad:50:03:cd:21:b9:7d:e9:e6:4a: 22:cc:05:5d:23:fa:3c:63:34:44:3b:7a:6f:3b:2b:eb:58:af: aa:57:7f:01:f9:0b:0c:26:30:f5:fe:e3:09:10:55:7c:4a:fd: cc:58:e2:a0:f2:ac:cf:cb:e6:4c:f4:bb:9e:5b:01:49:31:64: e6:80:54:46:12:64:92:74:2d:fb:30:5b:a0:f8:71:9a:71:85: 21:71:2b:ef:08:b6:c5:31:af:e4:a6:24:0f:18:c1:87:1f:37: 38:5f:5d:a8:9a:88:3e:bb:0b:21:13:77:3c:de:14:7d:80:d4: e2:d9:af:a4:89:10:2d:89:1a:6d:b7:6a:a2:a0:3a:5d:62:5c: 57:a8:9e:39:67:28:02:3b:a3:5e:4a:2d:16:52:af:9a:2d:8c: 48:6b:9c:35:fa:84:ed:17:89:00:3c:70:52:11:6e:9f:a3:64: 13:ab:d3:fa:af:bc:c8:a7:f1:dd:e7:b0:87:df:16:e8:a8:04: 3f:dd:00:10:da:df:f9:a1:96:6d:2e:5b:3c:82:e2:45:f4:92: 7d:7a:5f:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzGy+a+7btEFxT2qZNPLTVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYxYjlhZWNhYTM3ZGVkYzBmMmMwNGY1MWJjOTYzZmNkMmU0 YWFjY2MwHhcNMjUxMjA2MTAwMDM2WhcNMjUxMjA3MTAwMDM2WjAzMTEwLwYDVQQD EygzMDMzMTY3ZmZjMWQ4Zjk2ZGU4OWZhMmE1MTFlM2VkOTYyMjIwOTNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApKJcfYTs/w0k51AB1RgFNs0164oj J+LI2SrT7pKrvhFgYyQwYT++kRbp29qTK4Ayl2Ci4NE1WVf4vZCvVp4w87SvQ8Kh w3RRGIDhogJGVTtcGkvGAYdrNcPeGyQS2ufl9jJHTLWYEnKjVWMyNpXh7Xdxm0AB SLw9FiesJMGa7KqEgulvFfdqy9iLrSkkXXjtDMmXjMWBzQpU7Al6GaS/3Ny4clL1 MPkTaKKHIdfXPB5I7l0zGor//zjxNc7o71TOSgKkO+UfSyP7YvzfT4gsd9/inwnA 4mFDYZwAdAcxVKXOT22Rt8pH6yCQXX3dsbJNKCkpLhXe1sCCFKZuYjoaIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDAzFn/8HY+W3on6KlEePtliIgk9MB8GA1UdIwQY MBaAFPG5rsqjfe3A8sBPUbyWP80uSqzMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOGJtdXlxTjk3Y0R5d0U5UnZKWV96UzVLck13LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC80YmQ3MGMtMDk0YS00M2QwLWFkZGEt MDRmYmQ2ODE4OTZhLzEvOGJtdXlxTjk3Y0R5d0U5UnZKWV96UzVLck13Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC80YmQ3MGMtMDk0YS00M2QwLWFkZGEtMDRmYmQ2ODE4OTZh LzEvOGJtdXlxTjk3Y0R5d0U5UnZKWV96UzVLck13LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUbzi75JX J+LCGePb34vK3E7n2QELiC0A93A4WazQ3FoO8asbTn4LK8pwxXGtUAPNIbl96eZK IswFXSP6PGM0RDt6bzsr61ivqld/AfkLDCYw9f7jCRBVfEr9zFjioPKsz8vmTPS7 nlsBSTFk5oBURhJkknQt+zBboPhxmnGFIXEr7wi2xTGv5KYkDxjBhx83OF9dqJqI PrsLIRN3PN4UfYDU4tmvpIkQLYkabbdqoqA6XWJcV6ieOWcoAjujXkotFlKvmi2M SGucNfqE7ReJADxwUhFun6NkE6vT+q+8yKfx3eewh98W6KgEP90AENrf+aGWbS5b PILiRfSSfXpf2Q== -----END CERTIFICATE-----Generated at Sat Dec 6 14:34:16 2025 by rpki-client