This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft File: 8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft (raw, json) Hash identifier: XRqhpyfXXd/qrnqVMYUoZJIIvA39l0U4DPGZJIFdJqw= Subject key identifier: 69:2D:39:A4:A8:77:4D:51:D8:14:BE:57:13:03:D1:FB:11:20:7E:05 Authority key identifier: F0:A9:00:54:23:14:74:53:90:93:66:C6:B4:D0:9C:31:95:8A:CC:1C Certificate issuer: /CN=f0a9005423147453909366c6b4d09c31958acc1c Certificate serial: 019AF2092284139C01B51586E8D91CE1D8D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KkAVCMUdFOQk2bGtNCcMZWKzBw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft Manifest number: FA Signing time: Sat 06 Dec 2025 05:01:16 +0000 Manifest this update: Sat 06 Dec 2025 05:01:16 +0000 Manifest next update: Sun 07 Dec 2025 05:01:16 +0000 Files and hashes: 1: 4qVlaSTsE1gXSumcFtIoCSI6_Ds.roa (hash: gxiJkMzAgslpclu4FVxFkwBMuCJhHIk77n6WLMjRt50=) 2: 8KkAVCMUdFOQk2bGtNCcMZWKzBw.crl (hash: hG6AZl9+4awPMfbMRpWgqbN2Qk2JHyPipJw0Ts+PI9g=) 3: JPM4YH3p4W-kOC7R4fma0DgmIZQ.roa (hash: 1rs/yihW/LgAGtoac03H1xBXx8dUEUTLq50/L4CH5AA=) 4: kqgGhTxJAHOFMUNL3EFp83GA7Xo.roa (hash: YbWtoAqUQYcbJzxbPZ7TL2mv+/kqmj3HAGafEmcOApM=) 5: zWLkf9J7tc5E8tsLSE-YhUD6XZY.roa (hash: +Totm03QQJ2SJRLIDXG7rNkdSX+/Y9DffvcFrN9L3w4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.crl rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft rsync://rpki.ripe.net/repository/DEFAULT/8KkAVCMUdFOQk2bGtNCcMZWKzBw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:22:84:13:9c:01:b5:15:86:e8:d9:1c:e1:d8:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f0a9005423147453909366c6b4d09c31958acc1c Validity Not Before: Dec 6 05:01:16 2025 GMT Not After : Dec 7 05:01:16 2025 GMT Subject: CN=692d39a4a8774d51d814be571303d1fb11207e05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:6b:b7:ce:3f:8f:18:4d:26:f3:a8:9f:8a:12: cc:07:5d:e6:2d:e5:67:74:32:6b:14:bf:6b:a4:4b: 88:06:0b:bf:78:54:c8:cb:01:1d:0b:47:55:f0:1d: 45:6b:4a:29:56:f9:76:14:70:e9:63:66:3e:59:6c: bc:96:f8:41:62:19:75:39:7b:42:75:b5:ee:18:aa: a5:0c:52:cb:b6:94:0b:f1:9f:8b:55:82:54:6f:ba: fe:8a:11:60:65:02:be:31:e9:e0:97:91:b9:4a:6b: f2:28:ce:6c:87:47:d0:8c:c3:2b:77:0d:6c:9a:d3: 84:88:ba:03:a6:f4:16:78:07:1a:9b:7c:ae:d5:ba: d5:7b:96:15:c1:36:3f:88:99:c6:7b:24:8a:52:00: 58:4d:9d:bf:50:da:68:07:c4:d5:91:ec:85:83:f2: fa:15:6c:52:8a:dc:d6:02:bf:b4:79:a5:91:bb:a4: 0d:54:ea:ab:5b:14:60:59:70:81:cf:9b:2b:89:1a: 2c:86:3a:63:17:94:5b:c0:2a:4c:1a:1f:73:3b:17: 84:b4:85:b6:11:fa:2e:52:2b:3e:f3:d0:f6:e0:ab: bd:d9:9d:5e:a4:59:d9:3d:6c:82:e1:fc:92:a3:6d: 64:e1:df:0f:91:59:90:f7:e7:bd:3b:1d:d7:ad:f5: b0:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:2D:39:A4:A8:77:4D:51:D8:14:BE:57:13:03:D1:FB:11:20:7E:05 X509v3 Authority Key Identifier: keyid:F0:A9:00:54:23:14:74:53:90:93:66:C6:B4:D0:9C:31:95:8A:CC:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KkAVCMUdFOQk2bGtNCcMZWKzBw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:06:1f:4f:55:22:5f:f5:e4:c2:90:23:6d:ec:31:3e:a6:ae: 72:83:03:b3:e2:3c:53:ee:44:9d:11:91:c4:8b:92:b4:08:c1: 60:ef:33:73:cf:3b:a7:3f:56:20:45:9f:80:81:55:44:90:2a: b8:23:93:70:3f:e9:73:38:e1:46:06:c9:b1:49:7e:21:60:9d: b1:7e:c5:7d:d9:14:29:e2:0e:d2:5c:ac:2c:ef:92:1a:58:ea: 9f:a9:fa:cd:e3:85:dd:d4:79:e6:e4:6c:57:33:c2:b5:3f:4f: eb:aa:6d:39:89:70:92:de:f3:3d:3b:47:69:58:4a:b4:fc:2d: b5:99:13:6a:72:3c:c6:9b:3b:bf:d1:ec:94:ee:ac:56:04:82: aa:65:54:a4:f7:a1:3d:39:ab:00:72:72:f3:66:a1:54:6c:19: e8:c7:6a:f8:ca:f5:f7:cb:4a:01:22:0a:7b:af:d6:82:50:73: fb:0b:10:e6:53:6a:41:f3:dd:d5:dc:3d:69:ca:df:c6:7a:e8: 31:75:57:1a:63:e4:e1:da:b6:ef:1a:37:1c:2d:e2:60:04:3d: 6f:93:7a:04:8d:4b:36:5e:8b:26:34:75:2f:db:b0:db:6c:62: 61:d9:2c:b4:7a:2d:b9:18:4a:72:d2:64:27:1a:f4:5c:34:52: 96:2f:34:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCSKEE5wBtRWG6Nkc4djTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwYTkwMDU0MjMxNDc0NTM5MDkzNjZjNmI0ZDA5YzMxOTU4 YWNjMWMwHhcNMjUxMjA2MDUwMTE2WhcNMjUxMjA3MDUwMTE2WjAzMTEwLwYDVQQD Eyg2OTJkMzlhNGE4Nzc0ZDUxZDgxNGJlNTcxMzAzZDFmYjExMjA3ZTA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Wu3zj+PGE0m86ifihLMB13mLeVn dDJrFL9rpEuIBgu/eFTIywEdC0dV8B1Fa0opVvl2FHDpY2Y+WWy8lvhBYhl1OXtC dbXuGKqlDFLLtpQL8Z+LVYJUb7r+ihFgZQK+Mengl5G5SmvyKM5sh0fQjMMrdw1s mtOEiLoDpvQWeAcam3yu1brVe5YVwTY/iJnGeySKUgBYTZ2/UNpoB8TVkeyFg/L6 FWxSitzWAr+0eaWRu6QNVOqrWxRgWXCBz5sriRoshjpjF5RbwCpMGh9zOxeEtIW2 EfouUis+89D24Ku92Z1epFnZPWyC4fySo21k4d8PkVmQ9+e9Ox3XrfWwIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGktOaSod01R2BS+VxMD0fsRIH4FMB8GA1UdIwQY MBaAFPCpAFQjFHRTkJNmxrTQnDGViswcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEtrQVZDTVVkRk9RazJiR3ROQ2NNWldLekJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny8xNTdhZjYtY2NlMi00ZTZkLWJjMjMt MzBkNzlmOWFhODc3LzEvOEtrQVZDTVVkRk9RazJiR3ROQ2NNWldLekJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny8xNTdhZjYtY2NlMi00ZTZkLWJjMjMtMzBkNzlmOWFhODc3 LzEvOEtrQVZDTVVkRk9RazJiR3ROQ2NNWldLekJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXAYfT1Ui X/XkwpAjbewxPqaucoMDs+I8U+5EnRGRxIuStAjBYO8zc887pz9WIEWfgIFVRJAq uCOTcD/pczjhRgbJsUl+IWCdsX7FfdkUKeIO0lysLO+SGljqn6n6zeOF3dR55uRs VzPCtT9P66ptOYlwkt7zPTtHaVhKtPwttZkTanI8xps7v9HslO6sVgSCqmVUpPeh PTmrAHJy82ahVGwZ6Mdq+Mr198tKASIKe6/WglBz+wsQ5lNqQfPd1dw9acrfxnro MXVXGmPk4dq27xo3HC3iYAQ9b5N6BI1LNl6LJjR1L9uw22xiYdkstHotuRhKctJk Jxr0XDRSli80tg== -----END CERTIFICATE-----Generated at Sat Dec 6 12:01:30 2025 by rpki-client