This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft File: K8hpV3Lw5k87mhYhczzAJQb3RwI.mft (raw, json) Hash identifier: ejnkENY4eeK+3+SgX8YA9NV5VewSuN7o9tCFt2wFd8Q= Subject key identifier: 54:7E:33:54:DC:85:2D:17:38:5D:5D:B0:F4:93:0D:69:7D:97:19:D9 Authority key identifier: 2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02 Certificate issuer: /CN=2bc8695772f0e64f3b9a1621733cc02506f74702 Certificate serial: 019AF163FB895F9B36924535D031C88615BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft Manifest number: 1775 Signing time: Sat 06 Dec 2025 02:00:52 +0000 Manifest this update: Sat 06 Dec 2025 02:00:52 +0000 Manifest next update: Sun 07 Dec 2025 02:00:52 +0000 Files and hashes: 1: 0_EpdViy3Y27mqejc66l1--sjBk.roa (hash: 5pxFxSH3+mNeuLlB3lfUr3Q81qL23oDYt7nqdhFYvqU=) 2: K8hpV3Lw5k87mhYhczzAJQb3RwI.crl (hash: /L+qIiOQiie3B3GCyCvCVpRVIBk/Ur2zKOx+VMucaO8=) 3: LcFyOrobUrG-q36ENaVBWkIxyec.roa (hash: aiGhAwWl1vo/+1mZ5amS0ElRqf0Ru78HcL61kI16D7M=) 4: mJjYnvCF0aJWwcOO87dJLulTej8.roa (hash: cyYF0//qn6HDiGNvk9163fm1e6ldk0sS9GYuhZI3HqU=) 5: oOM7QrbyKmK3sX9tSspvcF4LQYc.roa (hash: FI0q4cfrXLcPzOiQWzP6cR+1RIpvdT5irQXBJq3jipE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:63:fb:89:5f:9b:36:92:45:35:d0:31:c8:86:15:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2bc8695772f0e64f3b9a1621733cc02506f74702 Validity Not Before: Dec 6 02:00:52 2025 GMT Not After : Dec 7 02:00:52 2025 GMT Subject: CN=547e3354dc852d17385d5db0f4930d697d9719d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:95:b5:52:4d:c2:2f:0a:db:d4:27:56:0e:5a: b6:0e:7e:96:f1:6f:86:55:9f:d4:92:c7:6d:15:cc: 11:f8:80:4f:bd:3a:c0:a2:17:85:95:5a:37:0a:8d: ca:4e:e7:6d:56:29:63:f9:b7:81:f2:cc:c7:d6:e3: 8a:88:e3:aa:0f:1f:b5:ac:d7:3e:40:0a:d9:75:36: 0e:a9:e9:04:9a:13:b4:ec:d4:29:53:74:69:af:3a: 87:26:39:64:e3:b8:af:7f:dc:10:f8:f3:22:6e:53: d6:c8:34:07:4b:a3:18:35:60:c3:96:14:07:cc:b7: f4:8d:c0:8f:51:6d:d9:9e:f6:69:6c:b1:b0:3d:7d: 79:9f:98:c6:26:2c:35:18:b4:eb:3e:79:ac:40:af: 30:e8:af:07:7e:6b:be:5e:76:ce:79:f4:bf:d1:ac: e8:5e:a7:1d:bc:bf:22:47:16:cf:81:4c:ca:93:af: b5:51:51:30:6f:6e:19:2a:6c:b5:f5:7f:3b:77:fa: e8:7a:76:78:8a:5f:68:15:f9:42:ca:f6:5d:9e:db: b0:08:6f:eb:86:19:4f:3a:3e:fa:39:43:38:83:01: 00:50:23:4a:e3:f6:85:9e:af:d4:bd:32:04:f3:ab: 05:2e:3d:8d:4c:e2:34:73:47:58:46:00:84:3f:dd: a2:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:7E:33:54:DC:85:2D:17:38:5D:5D:B0:F4:93:0D:69:7D:97:19:D9 X509v3 Authority Key Identifier: keyid:2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:1e:19:0a:b8:b1:44:b6:09:ae:d8:08:c1:72:6c:f3:f9:60: 72:95:0b:11:6b:21:19:5f:9d:6e:4f:81:34:44:f8:67:ef:16: 9d:e3:66:e8:ea:41:98:8f:1c:54:dc:1b:25:8d:d4:ba:85:85: bd:c8:a1:2d:39:7d:87:5c:80:a0:14:be:9c:f7:12:b4:70:1b: 1a:ac:a1:12:24:ee:20:59:44:55:7d:71:b8:5c:ca:3c:de:24: 47:e0:bf:82:97:29:8f:00:9e:c7:43:fa:04:34:f8:1b:92:05: 97:f5:ac:91:65:0c:e3:f2:b2:5d:e7:41:40:52:3b:72:9f:e7: 8c:f1:3d:6f:56:12:1d:0d:8e:96:9a:aa:5f:88:1d:0a:16:71: dc:fa:bd:24:55:f8:00:df:59:4b:a8:bb:f1:0b:a1:fa:ec:27: 78:31:1e:61:80:58:74:75:bb:19:f5:46:ff:7b:aa:64:e7:9e: 03:4b:8e:73:3c:57:93:54:ab:c8:b0:1c:03:16:0c:09:5f:84: 92:08:08:ac:4b:8f:de:c1:23:01:15:6d:3c:d4:4a:97:99:ab: 59:51:76:a7:3e:92:9f:4b:52:f9:7f:d3:48:ba:da:d5:b0:c9: 4a:7d:41:f1:59:d1:c1:4e:32:f5:e4:f0:34:74:3f:ca:9f:12: 0b:9f:ad:c9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxY/uJX5s2kkU10DHIhhW/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiYzg2OTU3NzJmMGU2NGYzYjlhMTYyMTczM2NjMDI1MDZm NzQ3MDIwHhcNMjUxMjA2MDIwMDUyWhcNMjUxMjA3MDIwMDUyWjAzMTEwLwYDVQQD Eyg1NDdlMzM1NGRjODUyZDE3Mzg1ZDVkYjBmNDkzMGQ2OTdkOTcxOWQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJW1Uk3CLwrb1CdWDlq2Dn6W8W+G VZ/UksdtFcwR+IBPvTrAoheFlVo3Co3KTudtVilj+beB8szH1uOKiOOqDx+1rNc+ QArZdTYOqekEmhO07NQpU3RprzqHJjlk47ivf9wQ+PMiblPWyDQHS6MYNWDDlhQH zLf0jcCPUW3ZnvZpbLGwPX15n5jGJiw1GLTrPnmsQK8w6K8Hfmu+XnbOefS/0azo XqcdvL8iRxbPgUzKk6+1UVEwb24ZKmy19X87d/roenZ4il9oFflCyvZdntuwCG/r hhlPOj76OUM4gwEAUCNK4/aFnq/UvTIE86sFLj2NTOI0c0dYRgCEP92iQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFR+M1TchS0XOF1dsPSTDWl9lxnZMB8GA1UdIwQY MBaAFCvIaVdy8OZPO5oWIXM8wCUG90cCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSzhocFYzTHc1azg3bWhZaGN6ekFKUWIzUndJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9jYmZhOWItMDI5MS00OGUzLTgwNWMt NDNkNjZhMDMzMWVjLzEvSzhocFYzTHc1azg3bWhZaGN6ekFKUWIzUndJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS9jYmZhOWItMDI5MS00OGUzLTgwNWMtNDNkNjZhMDMzMWVj LzEvSzhocFYzTHc1azg3bWhZaGN6ekFKUWIzUndJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATR4ZCrix RLYJrtgIwXJs8/lgcpULEWshGV+dbk+BNET4Z+8WneNm6OpBmI8cVNwbJY3UuoWF vcihLTl9h1yAoBS+nPcStHAbGqyhEiTuIFlEVX1xuFzKPN4kR+C/gpcpjwCex0P6 BDT4G5IFl/WskWUM4/KyXedBQFI7cp/njPE9b1YSHQ2OlpqqX4gdChZx3Pq9JFX4 AN9ZS6i78Quh+uwneDEeYYBYdHW7GfVG/3uqZOeeA0uOczxXk1SryLAcAxYMCV+E kggIrEuP3sEjARVtPNRKl5mrWVF2pz6Sn0tS+X/TSLra1bDJSn1B8VnRwU4y9eTw NHQ/yp8SC5+tyQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:20:28 2025 by rpki-client