This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/1ed883-376a-45f9-8884-b8162260124f/1/8Dd0onYhS4bgpbT6dyG9sOMi4IA.mft File: 8Dd0onYhS4bgpbT6dyG9sOMi4IA.mft (raw, json) Hash identifier: SYce34GoGyHXQt6G+LPTbLd/dbsMwiAXNsvUMyqeD+4= Subject key identifier: 80:CC:32:B7:1A:46:8D:7E:0F:EF:32:74:70:D9:1C:89:D3:63:2F:04 Authority key identifier: F0:37:74:A2:76:21:4B:86:E0:A5:B4:FA:77:21:BD:B0:E3:22:E0:80 Certificate issuer: /CN=f03774a276214b86e0a5b4fa7721bdb0e322e080 Certificate serial: 019AF19B5C8DFC6D2603D3CD9FADA5B0C633 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Dd0onYhS4bgpbT6dyG9sOMi4IA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/1ed883-376a-45f9-8884-b8162260124f/1/8Dd0onYhS4bgpbT6dyG9sOMi4IA.mft Manifest number: 0C41 Signing time: Sat 06 Dec 2025 03:01:22 +0000 Manifest this update: Sat 06 Dec 2025 03:01:22 +0000 Manifest next update: Sun 07 Dec 2025 03:01:22 +0000 Files and hashes: 1: 8Dd0onYhS4bgpbT6dyG9sOMi4IA.crl (hash: lboDF+T4JXWKdkvY13UYCwMI4olpPMfBDbZgKXYqll0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/1ed883-376a-45f9-8884-b8162260124f/1/8Dd0onYhS4bgpbT6dyG9sOMi4IA.crl rsync://rpki.ripe.net/repository/DEFAULT/90/1ed883-376a-45f9-8884-b8162260124f/1/8Dd0onYhS4bgpbT6dyG9sOMi4IA.mft rsync://rpki.ripe.net/repository/DEFAULT/8Dd0onYhS4bgpbT6dyG9sOMi4IA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:5c:8d:fc:6d:26:03:d3:cd:9f:ad:a5:b0:c6:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f03774a276214b86e0a5b4fa7721bdb0e322e080 Validity Not Before: Dec 6 03:01:22 2025 GMT Not After : Dec 7 03:01:22 2025 GMT Subject: CN=80cc32b71a468d7e0fef327470d91c89d3632f04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fb:48:5a:02:c5:c5:5d:2a:6f:c0:a9:aa:75: 89:00:05:17:ea:01:56:ab:7d:59:d3:ed:45:3f:06: 46:bf:0a:bb:2b:46:4d:7e:11:43:ef:d0:c2:02:ad: 11:9a:cf:ad:66:1d:37:e9:b8:b4:5f:2d:cd:b0:cd: 24:f4:a2:9f:65:62:7f:78:b1:5b:9f:87:99:b5:56: 2f:7a:fc:26:5b:39:71:28:dd:b0:90:0f:7b:76:dc: 57:a6:f1:83:0f:3d:a1:cc:a5:df:fe:e9:54:9f:c3: 92:d3:d8:0a:2b:c4:fb:47:62:1a:04:e9:8a:62:d7: ef:f8:37:a4:02:43:0a:59:0d:11:8d:c0:1b:ad:bc: 4a:4f:fc:22:a5:f5:8e:51:e9:6e:6b:e2:9e:e7:93: ba:43:2a:f6:8e:87:a1:1c:81:27:ae:e2:0b:9a:7e: bd:4a:5a:7f:d4:ea:99:fb:a2:92:b3:d5:8f:49:73: f3:d2:04:45:2f:7f:0a:cb:6c:b8:2b:c8:12:e1:b5: 2a:60:22:b4:ec:e9:ca:47:04:93:1b:6c:30:eb:c5: 8a:bf:29:c5:19:e3:14:db:e3:31:cf:86:f8:b7:9d: 12:d6:8c:d2:c1:d0:f8:e5:80:e1:8a:df:77:6e:7d: 6e:51:ca:29:dc:a9:7d:ff:db:5f:06:1b:ea:f6:aa: 38:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:CC:32:B7:1A:46:8D:7E:0F:EF:32:74:70:D9:1C:89:D3:63:2F:04 X509v3 Authority Key Identifier: keyid:F0:37:74:A2:76:21:4B:86:E0:A5:B4:FA:77:21:BD:B0:E3:22:E0:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Dd0onYhS4bgpbT6dyG9sOMi4IA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/1ed883-376a-45f9-8884-b8162260124f/1/8Dd0onYhS4bgpbT6dyG9sOMi4IA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/1ed883-376a-45f9-8884-b8162260124f/1/8Dd0onYhS4bgpbT6dyG9sOMi4IA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:65:50:6f:0f:ec:17:c1:82:d4:d4:68:cc:06:71:e3:5b:2e: 59:55:a9:3d:4d:f3:89:35:05:2d:30:74:ae:7e:10:46:29:44: 02:9c:68:86:4a:d3:f4:8c:d4:9c:4d:13:e2:35:aa:48:d6:09: 92:28:84:5e:64:1a:71:ec:ea:d1:b5:f0:b8:35:9a:18:cf:1b: 87:7f:30:b5:d6:a0:2c:b3:32:db:bc:0b:55:40:03:3c:9e:a7: c0:1b:09:0d:f5:c6:f0:61:45:a4:af:2d:6a:d7:b3:1d:de:1e: 6b:36:d1:9a:d5:c2:91:94:87:ae:c8:10:f5:7a:43:38:84:ca: e2:74:13:6e:41:2d:5c:e2:34:e6:bf:3e:16:8c:b9:6e:90:2c: 9a:bd:7a:cc:4f:cb:02:68:c2:54:66:41:88:fb:b4:63:a2:46: 81:8c:fc:71:0e:91:79:bb:72:d4:a7:a3:91:50:b5:be:32:d0: 27:b1:b2:5f:54:73:8f:2f:39:32:25:00:00:fd:68:dd:94:bb: 26:1d:fc:d5:75:ab:10:1f:76:89:b8:a9:48:e5:d5:b2:1b:bb: ac:9e:f2:6c:c1:ec:0c:f9:08:13:30:18:07:b2:b1:bf:82:86: ff:d3:e5:90:52:c6:26:5f:ac:e3:de:19:c8:44:00:db:fd:36: f2:d5:77:29 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm1yN/G0mA9PNn62lsMYzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwMzc3NGEyNzYyMTRiODZlMGE1YjRmYTc3MjFiZGIwZTMy MmUwODAwHhcNMjUxMjA2MDMwMTIyWhcNMjUxMjA3MDMwMTIyWjAzMTEwLwYDVQQD Eyg4MGNjMzJiNzFhNDY4ZDdlMGZlZjMyNzQ3MGQ5MWM4OWQzNjMyZjA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr/tIWgLFxV0qb8CpqnWJAAUX6gFW q31Z0+1FPwZGvwq7K0ZNfhFD79DCAq0Rms+tZh036bi0Xy3NsM0k9KKfZWJ/eLFb n4eZtVYvevwmWzlxKN2wkA97dtxXpvGDDz2hzKXf/ulUn8OS09gKK8T7R2IaBOmK Ytfv+DekAkMKWQ0RjcAbrbxKT/wipfWOUelua+Ke55O6Qyr2joehHIEnruILmn69 Slp/1OqZ+6KSs9WPSXPz0gRFL38Ky2y4K8gS4bUqYCK07OnKRwSTG2ww68WKvynF GeMU2+Mxz4b4t50S1ozSwdD45YDhit93bn1uUcop3Kl9/9tfBhvq9qo4swIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIDMMrcaRo1+D+8ydHDZHInTYy8EMB8GA1UdIwQY MBaAFPA3dKJ2IUuG4KW0+nchvbDjIuCAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOERkMG9uWWhTNGJncGJUNmR5RzlzT01pNElBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC8xZWQ4ODMtMzc2YS00NWY5LTg4ODQt YjgxNjIyNjAxMjRmLzEvOERkMG9uWWhTNGJncGJUNmR5RzlzT01pNElBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC8xZWQ4ODMtMzc2YS00NWY5LTg4ODQtYjgxNjIyNjAxMjRm LzEvOERkMG9uWWhTNGJncGJUNmR5RzlzT01pNElBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdmVQbw/s F8GC1NRozAZx41suWVWpPU3ziTUFLTB0rn4QRilEApxohkrT9IzUnE0T4jWqSNYJ kiiEXmQacezq0bXwuDWaGM8bh38wtdagLLMy27wLVUADPJ6nwBsJDfXG8GFFpK8t atezHd4eazbRmtXCkZSHrsgQ9XpDOITK4nQTbkEtXOI05r8+Foy5bpAsmr16zE/L AmjCVGZBiPu0Y6JGgYz8cQ6Rebty1KejkVC1vjLQJ7GyX1Rzjy85MiUAAP1o3ZS7 Jh381XWrEB92ibipSOXVshu7rJ7ybMHsDPkIEzAYB7Kxv4KG/9PlkFLGJl+s494Z yEQA2/028tV3KQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:26:14 2025 by rpki-client