This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft File: Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft (raw, json) Hash identifier: d3dFFTHkZGOAvXCVTt6DV4fYFdpNDjZyBMcYkhduhjw= Subject key identifier: ED:40:54:1D:4E:91:BA:65:0C:50:2B:06:9B:29:49:6B:64:B3:E1:6C Authority key identifier: 4A:EF:BC:FA:7F:05:9F:F1:07:27:EA:61:9E:59:13:9D:A3:74:18:EF Certificate issuer: /CN=4aefbcfa7f059ff10727ea619e59139da37418ef Certificate serial: 019B2B1E49EDA87FFB63A6988A00413BBA34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft Manifest number: 177B Signing time: Wed 17 Dec 2025 07:02:43 +0000 Manifest this update: Wed 17 Dec 2025 07:02:43 +0000 Manifest next update: Thu 18 Dec 2025 07:02:43 +0000 Files and hashes: 1: Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl (hash: N4JAz1GurSajo77VbLNVDGAFxfN05MHLpm0Lf9mUcvk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 07:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:1e:49:ed:a8:7f:fb:63:a6:98:8a:00:41:3b:ba:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4aefbcfa7f059ff10727ea619e59139da37418ef Validity Not Before: Dec 17 07:02:43 2025 GMT Not After : Dec 18 07:02:43 2025 GMT Subject: CN=ed40541d4e91ba650c502b069b29496b64b3e16c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a6:4f:ca:54:fe:4e:0c:ec:15:6f:ba:db:2e: 40:2e:ac:56:c7:34:8c:1d:d2:61:e4:ca:7c:17:10: af:fe:50:99:de:52:48:4a:f1:cc:68:81:ed:56:f8: cb:41:5e:39:16:ff:85:14:90:57:55:af:97:33:d3: df:3a:4f:16:4f:ab:d3:8e:2e:5b:9d:6b:55:46:7c: e0:1b:f8:37:1a:f7:5b:bb:d0:2a:83:a5:42:7d:c8: 75:a0:a5:e9:62:b7:7f:d4:f5:26:7d:e7:af:61:ee: 9c:39:5f:51:7d:48:bd:1f:68:f9:7b:c0:53:54:7a: 82:39:ba:18:7d:e7:60:99:36:ee:76:42:0f:d2:40: 69:f7:15:1a:c7:db:4f:6c:d7:7b:a4:b2:bf:21:a5: e5:e8:0c:a4:55:c2:d7:5e:59:2a:ee:d8:e1:2a:46: 81:79:65:f0:fe:dc:c5:57:c3:d4:7a:d7:55:b1:70: 9a:2a:6c:14:2f:0a:21:50:27:06:75:ac:6d:0e:0f: 0f:20:3b:6e:7c:25:27:5c:15:f1:a6:13:fb:4c:29: ce:09:b1:9e:9e:30:aa:d0:c5:08:5d:0f:2f:27:75: f2:af:71:5c:11:ca:89:d7:17:0d:99:05:66:f6:d6: 01:58:ec:c2:ef:63:72:72:13:da:3d:13:b6:23:e7: f0:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:40:54:1D:4E:91:BA:65:0C:50:2B:06:9B:29:49:6B:64:B3:E1:6C X509v3 Authority Key Identifier: keyid:4A:EF:BC:FA:7F:05:9F:F1:07:27:EA:61:9E:59:13:9D:A3:74:18:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:85:da:45:cc:c1:86:61:65:86:ca:91:d9:6a:c3:74:4e:4e: 8c:1d:bd:e7:07:8c:7c:56:d2:4c:34:c3:18:b2:db:b2:67:f7: 95:41:92:fd:4b:0b:a7:4e:f0:69:79:13:28:6c:30:c6:88:3f: 79:7e:8b:bf:d5:05:1a:08:e7:c0:ab:d1:53:df:52:70:dd:6a: cf:95:7b:47:cc:b2:4f:e3:c4:2d:a8:19:82:c6:81:96:cf:31: 1c:b8:30:69:d8:87:3a:f3:b1:4f:01:a7:fd:8a:91:21:14:12: 51:2b:ee:fc:96:9e:50:e5:35:15:df:25:6a:09:dc:55:8f:b6: 2e:d6:c6:e0:c0:cf:0c:ff:55:21:b6:6e:35:f6:60:cd:bb:43: b9:d4:fc:0e:2c:2b:8c:f6:eb:17:19:a3:43:7f:30:b1:33:d5: 3b:83:87:ae:2b:8c:01:f5:0b:99:6b:a0:fb:3c:62:ae:98:46: 72:2a:f2:c4:7d:86:48:88:08:5a:38:33:dc:55:ac:16:7e:fb: 54:5d:db:6b:2c:22:54:81:f9:68:c0:54:aa:bc:a2:f1:f3:65: b0:a0:52:3f:f7:1d:7b:82:45:37:f3:19:e1:ba:77:be:02:c5: c7:04:b2:6b:46:34:ff:06:3b:4c:57:d9:56:a3:f2:46:15:67: 5f:87:fc:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsrHkntqH/7Y6aYigBBO7o0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhZWZiY2ZhN2YwNTlmZjEwNzI3ZWE2MTllNTkxMzlkYTM3 NDE4ZWYwHhcNMjUxMjE3MDcwMjQzWhcNMjUxMjE4MDcwMjQzWjAzMTEwLwYDVQQD EyhlZDQwNTQxZDRlOTFiYTY1MGM1MDJiMDY5YjI5NDk2YjY0YjNlMTZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuqZPylT+TgzsFW+62y5ALqxWxzSM HdJh5Mp8FxCv/lCZ3lJISvHMaIHtVvjLQV45Fv+FFJBXVa+XM9PfOk8WT6vTji5b nWtVRnzgG/g3Gvdbu9Aqg6VCfch1oKXpYrd/1PUmfeevYe6cOV9RfUi9H2j5e8BT VHqCOboYfedgmTbudkIP0kBp9xUax9tPbNd7pLK/IaXl6AykVcLXXlkq7tjhKkaB eWXw/tzFV8PUetdVsXCaKmwULwohUCcGdaxtDg8PIDtufCUnXBXxphP7TCnOCbGe njCq0MUIXQ8vJ3Xyr3FcEcqJ1xcNmQVm9tYBWOzC72NychPaPRO2I+fwkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO1AVB1OkbplDFArBpspSWtks+FsMB8GA1UdIwQY MBaAFErvvPp/BZ/xByfqYZ5ZE52jdBjvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU3UtOC1uOEZuX0VISi1waG5sa1RuYU4wR084LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy82M2NmZjMtYzllYi00MjExLWI5MmUt NDVmNTZiNDJjNmFjLzEvU3UtOC1uOEZuX0VISi1waG5sa1RuYU4wR084Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy82M2NmZjMtYzllYi00MjExLWI5MmUtNDVmNTZiNDJjNmFj LzEvU3UtOC1uOEZuX0VISi1waG5sa1RuYU4wR084LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJoXaRczB hmFlhsqR2WrDdE5OjB295weMfFbSTDTDGLLbsmf3lUGS/UsLp07waXkTKGwwxog/ eX6Lv9UFGgjnwKvRU99ScN1qz5V7R8yyT+PELagZgsaBls8xHLgwadiHOvOxTwGn /YqRIRQSUSvu/JaeUOU1Fd8lagncVY+2LtbG4MDPDP9VIbZuNfZgzbtDudT8Diwr jPbrFxmjQ38wsTPVO4OHriuMAfULmWug+zxirphGciryxH2GSIgIWjgz3FWsFn77 VF3baywiVIH5aMBUqryi8fNlsKBSP/cde4JFN/MZ4bp3vgLFxwSya0Y0/wY7TFfZ VqPyRhVnX4f8yA== -----END CERTIFICATE-----Generated at Wed Dec 17 13:47:38 2025 by rpki-client