This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft File: 8lizqXQbQx177NZChrnmvODpddo.mft (raw, json) Hash identifier: Cn/sk0+3J+nlod7BBNTR8zzc2TxuJkoOtb8qgxq8Rds= Subject key identifier: F6:5F:B9:F8:9B:F0:5D:7A:D9:D8:1C:7C:ED:4E:24:4B:AC:43:8B:20 Authority key identifier: F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA Certificate issuer: /CN=f258b3a9741b431d7becd64286b9e6bce0e975da Certificate serial: 019AF61CAB1373DF78D0AD01A767B1A0E030 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft Manifest number: 1732 Signing time: Sun 07 Dec 2025 00:01:05 +0000 Manifest this update: Sun 07 Dec 2025 00:01:05 +0000 Manifest next update: Mon 08 Dec 2025 00:01:05 +0000 Files and hashes: 1: 8lizqXQbQx177NZChrnmvODpddo.crl (hash: t9rGUaMS1DFmd+ObU5/kSDXVsh1ooXDvfUJLZifYJ60=) 2: LSDLxpYG9vUS-ynb5NuKXC0hxwk.roa (hash: iU/GAJxLreLcqJkb0jyy5NFNWuEEVZB548A5w51V+6U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:1c:ab:13:73:df:78:d0:ad:01:a7:67:b1:a0:e0:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f258b3a9741b431d7becd64286b9e6bce0e975da Validity Not Before: Dec 7 00:01:05 2025 GMT Not After : Dec 8 00:01:05 2025 GMT Subject: CN=f65fb9f89bf05d7ad9d81c7ced4e244bac438b20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5b:97:21:63:43:27:ac:b5:79:30:80:1e:9f: e3:81:44:c9:8d:93:c4:0a:7d:0f:70:f3:bf:fa:f8: ca:14:cb:52:05:bd:b0:7f:22:33:3d:67:f4:64:9a: 1e:15:6b:c8:7f:f9:fb:f1:3a:11:bf:d4:8b:24:8c: 65:23:ce:31:5e:bf:1e:56:2b:7a:b0:9e:a5:5a:0b: ad:17:8e:39:4b:5b:f9:a5:ee:ce:58:7c:07:e5:e4: da:2f:0d:d8:4e:f4:6a:db:8e:b7:56:bb:0e:fc:9a: f8:bd:9b:67:c4:09:8d:7a:4d:f0:c4:25:b9:6b:f1: e8:66:2d:69:32:2c:b6:94:5a:5d:d7:0f:40:bd:25: db:11:41:6d:f2:80:32:c0:bf:2d:e4:b5:2d:86:ee: 22:1b:b5:ee:bc:b7:41:d9:c8:32:33:34:50:b0:3c: 63:82:d5:21:3a:12:8d:9b:74:92:7a:0a:61:68:a0: 97:81:19:e8:cf:5d:33:fe:8e:73:6d:b7:17:f2:b4: 14:f6:10:65:3a:b2:d9:97:22:b9:a4:76:68:0b:27: 26:44:3d:7f:fd:19:c7:21:25:1c:e3:b0:40:40:44: 7b:fb:f6:8f:8e:d1:d8:ba:05:39:cc:ef:4b:4e:ae: de:84:69:2a:b2:19:7a:a9:08:73:ef:6e:aa:79:53: 2e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:5F:B9:F8:9B:F0:5D:7A:D9:D8:1C:7C:ED:4E:24:4B:AC:43:8B:20 X509v3 Authority Key Identifier: keyid:F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:29:0e:9e:06:e1:4c:5a:f5:d4:02:bd:73:0d:54:f7:0b:47: f9:12:f4:23:7b:43:0b:42:cb:18:ef:90:b4:d5:ba:84:24:aa: 15:6a:8b:8b:d5:d2:ec:70:b0:87:1b:1a:a3:d5:61:7e:9e:39: 6c:94:52:81:85:af:4e:0a:bd:4c:83:b6:f0:98:07:e5:a4:f6: 07:d3:db:0b:c8:d6:4b:70:99:cf:20:41:d3:d9:a2:c5:1c:00: cb:04:fa:f3:83:21:ca:3d:e0:6d:80:31:00:5d:ad:39:ed:93: bd:9c:b8:ca:1a:af:87:e2:b9:3e:54:43:99:9a:2b:6d:0d:97: 88:1d:6b:5c:0f:b7:f4:f3:8e:fe:6a:fc:90:52:c2:a2:33:9b: 1a:bf:88:90:04:e8:42:e4:90:55:99:2d:78:5a:98:42:c0:f5: a4:f2:6c:8b:17:f6:a3:57:2b:f8:ec:ab:90:11:81:cf:61:cd: 5c:7b:e7:f9:85:c5:78:80:f4:fe:c0:f0:73:f6:d9:4c:91:7f: 30:72:ca:5f:e8:ef:05:6c:4b:a7:73:68:18:30:05:fd:8c:3e: 9a:56:a1:df:1c:2a:e5:5d:22:85:d3:85:6d:f8:11:dd:a4:87: 46:eb:a5:ec:79:b9:bb:01:ce:e0:a0:1f:19:9b:c6:3f:fe:01: 04:95:ff:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2HKsTc9940K0Bp2exoOAwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYyNThiM2E5NzQxYjQzMWQ3YmVjZDY0Mjg2YjllNmJjZTBl OTc1ZGEwHhcNMjUxMjA3MDAwMTA1WhcNMjUxMjA4MDAwMTA1WjAzMTEwLwYDVQQD EyhmNjVmYjlmODliZjA1ZDdhZDlkODFjN2NlZDRlMjQ0YmFjNDM4YjIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyluXIWNDJ6y1eTCAHp/jgUTJjZPE Cn0PcPO/+vjKFMtSBb2wfyIzPWf0ZJoeFWvIf/n78ToRv9SLJIxlI84xXr8eVit6 sJ6lWgutF445S1v5pe7OWHwH5eTaLw3YTvRq2463VrsO/Jr4vZtnxAmNek3wxCW5 a/HoZi1pMiy2lFpd1w9AvSXbEUFt8oAywL8t5LUthu4iG7XuvLdB2cgyMzRQsDxj gtUhOhKNm3SSegphaKCXgRnoz10z/o5zbbcX8rQU9hBlOrLZlyK5pHZoCycmRD1/ /RnHISUc47BAQER7+/aPjtHYugU5zO9LTq7ehGkqshl6qQhz726qeVMuPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPZfufib8F162dgcfO1OJEusQ4sgMB8GA1UdIwQY MBaAFPJYs6l0G0Mde+zWQoa55rzg6XXaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOGxpenFYUWJReDE3N05aQ2hybm12T0RwZGRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8wOTVkNWYtMjY5My00MTgyLTkzOTct Y2RhOTRmYjc5NmQxLzEvOGxpenFYUWJReDE3N05aQ2hybm12T0RwZGRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8wOTVkNWYtMjY5My00MTgyLTkzOTctY2RhOTRmYjc5NmQx LzEvOGxpenFYUWJReDE3N05aQ2hybm12T0RwZGRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHSkOngbh TFr11AK9cw1U9wtH+RL0I3tDC0LLGO+QtNW6hCSqFWqLi9XS7HCwhxsao9Vhfp45 bJRSgYWvTgq9TIO28JgH5aT2B9PbC8jWS3CZzyBB09mixRwAywT684Mhyj3gbYAx AF2tOe2TvZy4yhqvh+K5PlRDmZorbQ2XiB1rXA+39POO/mr8kFLCojObGr+IkATo QuSQVZkteFqYQsD1pPJsixf2o1cr+OyrkBGBz2HNXHvn+YXFeID0/sDwc/bZTJF/ MHLKX+jvBWxLp3NoGDAF/Yw+mlah3xwq5V0ihdOFbfgR3aSHRuul7Hm5uwHO4KAf GZvGP/4BBJX/RA== -----END CERTIFICATE-----Generated at Sun Dec 7 02:36:42 2025 by rpki-client