This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft File: L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft (raw, json) Hash identifier: 6rZ3gherIGyzGCDBhNUwkc8k9KyI1hkiD48xV9GqLjs= Subject key identifier: 4B:88:EE:6E:69:08:C0:D6:66:FC:DC:B6:37:8A:04:8D:94:48:77:18 Authority key identifier: 2F:CC:93:46:52:84:2B:7B:D9:A7:CE:C0:02:C7:7C:1C:A1:3F:10:64 Certificate issuer: /CN=2fcc934652842b7bd9a7cec002c77c1ca13f1064 Certificate serial: 019AF31CBBC5AAF1EC6DAD0B2E17EDAD2C77 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L8yTRlKEK3vZp87AAsd8HKE_EGQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 10:02:17 +0000 Manifest this update: Sat 06 Dec 2025 10:02:17 +0000 Manifest next update: Sun 07 Dec 2025 10:02:17 +0000 Files and hashes: 1: L8yTRlKEK3vZp87AAsd8HKE_EGQ.crl (hash: wHdojoVDabVJ/VXBF6JSjip8RcWR+xJHss0E6yoDzzU=) 2: yz6_439OmIgbPGI_9SMl-hcB7SM.roa (hash: b+VVST8s13jCLV/LOSpCV8hcczaiQ8urh6lhnrg3Cso=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft rsync://rpki.ripe.net/repository/DEFAULT/L8yTRlKEK3vZp87AAsd8HKE_EGQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:bb:c5:aa:f1:ec:6d:ad:0b:2e:17:ed:ad:2c:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2fcc934652842b7bd9a7cec002c77c1ca13f1064 Validity Not Before: Dec 6 10:02:17 2025 GMT Not After : Dec 7 10:02:17 2025 GMT Subject: CN=4b88ee6e6908c0d666fcdcb6378a048d94487718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:16:f2:68:e9:7f:6d:4f:a6:d9:01:40:40:5f: cd:bd:17:19:c3:ec:61:0d:98:7b:31:65:ed:94:a2: d3:bc:29:e6:9b:4f:95:2e:84:ff:c2:21:97:7d:81: 7b:0c:4d:33:59:f6:d2:f4:f6:0c:5d:53:20:46:ee: b6:7c:f3:93:81:e7:39:50:78:74:45:e5:19:08:a9: 1b:d5:0c:d7:8c:cf:5e:bf:91:73:0e:a7:9d:7f:37: 97:b6:1b:41:ab:36:5f:df:96:6c:3d:a0:a4:5e:e0: 18:79:37:07:eb:24:1f:eb:c7:ab:03:80:b6:79:52: a4:04:c7:de:53:a5:30:a0:be:ed:d1:f9:aa:af:7c: cc:16:a4:92:5b:01:75:86:4e:6c:78:65:df:e1:95: ff:13:95:bf:26:c2:75:92:0b:b9:1d:77:3c:94:a3: 85:75:c4:83:7c:b9:13:ea:43:f7:00:c8:18:55:2a: 59:c8:b8:ea:da:d0:05:71:89:27:fb:24:44:43:b6: 88:10:76:3d:72:92:fe:41:96:f2:44:e6:59:87:ed: 7a:1c:6c:11:7c:9e:fa:2e:0d:17:a0:06:1f:33:2c: 04:51:2b:e5:fa:d1:44:c1:12:04:6f:82:42:06:a2: ad:b5:be:2e:c3:6e:da:2d:19:46:9d:cd:50:16:71: eb:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:88:EE:6E:69:08:C0:D6:66:FC:DC:B6:37:8A:04:8D:94:48:77:18 X509v3 Authority Key Identifier: keyid:2F:CC:93:46:52:84:2B:7B:D9:A7:CE:C0:02:C7:7C:1C:A1:3F:10:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L8yTRlKEK3vZp87AAsd8HKE_EGQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:c6:02:ae:05:e6:4a:94:76:22:cb:f8:c4:60:fc:9a:4e:ab: a4:f4:9d:a8:3f:7c:6f:bd:46:b4:bf:31:64:e8:c4:ef:27:30: 25:57:e8:bf:05:9e:53:ae:5e:f9:0c:70:41:48:f3:ca:9a:eb: 40:c3:60:e2:26:1c:49:52:5a:4c:09:a1:5c:d7:e6:75:5a:fe: 49:cf:12:5a:bd:4e:dc:4e:c4:5e:ae:23:19:29:8b:46:2c:fe: 1f:0c:f6:11:c5:31:fd:9c:9e:2a:4b:a8:1d:83:f3:80:22:b5: c7:dc:cc:42:3d:c6:d5:b5:5f:ef:0e:9c:64:96:79:7d:20:73: 1d:5b:e1:ae:81:42:29:eb:b0:e5:15:f3:21:90:31:3d:5d:fd: 53:f7:22:3d:7b:a8:56:fe:d5:24:1c:b8:03:74:4f:df:d1:ed: 21:1e:5e:58:6d:ef:e0:4a:44:b0:9c:9c:c6:75:d8:5a:4e:02: 94:df:7a:85:f3:00:31:8e:0d:6d:33:7e:ac:e2:83:f7:7c:9f: 9c:33:6c:58:fb:8f:6f:57:19:9b:12:be:20:c3:57:d9:14:34: 47:b9:2f:99:27:41:71:0e:cb:40:b0:3b:8b:c7:d1:33:13:6e: 20:7d:58:94:d0:ef:37:e8:dd:63:0b:3e:4b:bc:a4:7c:e1:9e: 0f:9d:bc:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHLvFqvHsba0LLhftrSx3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmY2M5MzQ2NTI4NDJiN2JkOWE3Y2VjMDAyYzc3YzFjYTEz ZjEwNjQwHhcNMjUxMjA2MTAwMjE3WhcNMjUxMjA3MTAwMjE3WjAzMTEwLwYDVQQD Eyg0Yjg4ZWU2ZTY5MDhjMGQ2NjZmY2RjYjYzNzhhMDQ4ZDk0NDg3NzE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmhbyaOl/bU+m2QFAQF/NvRcZw+xh DZh7MWXtlKLTvCnmm0+VLoT/wiGXfYF7DE0zWfbS9PYMXVMgRu62fPOTgec5UHh0 ReUZCKkb1QzXjM9ev5FzDqedfzeXthtBqzZf35ZsPaCkXuAYeTcH6yQf68erA4C2 eVKkBMfeU6UwoL7t0fmqr3zMFqSSWwF1hk5seGXf4ZX/E5W/JsJ1kgu5HXc8lKOF dcSDfLkT6kP3AMgYVSpZyLjq2tAFcYkn+yREQ7aIEHY9cpL+QZbyROZZh+16HGwR fJ76Lg0XoAYfMywEUSvl+tFEwRIEb4JCBqKttb4uw27aLRlGnc1QFnHrDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEuI7m5pCMDWZvzctjeKBI2USHcYMB8GA1UdIwQY MBaAFC/Mk0ZShCt72afOwALHfByhPxBkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDh5VFJsS0VLM3ZacDg3QUFzZDhIS0VfRUdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9iYjcwZDMtNjMyZS00ZWZmLTg0ZmYt NmRjZjdjMzg0OWJjLzEvTDh5VFJsS0VLM3ZacDg3QUFzZDhIS0VfRUdRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS9iYjcwZDMtNjMyZS00ZWZmLTg0ZmYtNmRjZjdjMzg0OWJj LzEvTDh5VFJsS0VLM3ZacDg3QUFzZDhIS0VfRUdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK8YCrgXm SpR2Isv4xGD8mk6rpPSdqD98b71GtL8xZOjE7ycwJVfovwWeU65e+QxwQUjzyprr QMNg4iYcSVJaTAmhXNfmdVr+Sc8SWr1O3E7EXq4jGSmLRiz+Hwz2EcUx/ZyeKkuo HYPzgCK1x9zMQj3G1bVf7w6cZJZ5fSBzHVvhroFCKeuw5RXzIZAxPV39U/ciPXuo Vv7VJBy4A3RP39HtIR5eWG3v4EpEsJycxnXYWk4ClN96hfMAMY4NbTN+rOKD93yf nDNsWPuPb1cZmxK+IMNX2RQ0R7kvmSdBcQ7LQLA7i8fRMxNuIH1YlNDvN+jdYws+ S7ykfOGeD528qg== -----END CERTIFICATE-----Generated at Sat Dec 6 14:25:05 2025 by rpki-client