This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft File: rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft (raw, json) Hash identifier: 8233SZN1GRuBTqgQ3zNKJLNxzlMG9/wcjUoqV2vAuTA= Subject key identifier: 8A:D2:03:05:76:C2:6E:F5:7D:15:A9:21:3E:0E:FE:45:D0:A4:93:DC Authority key identifier: AC:8A:0E:0B:1B:21:F0:93:33:3C:07:48:14:5B:16:28:41:8C:F2:B5 Certificate issuer: /CN=ac8a0e0b1b21f093333c0748145b1628418cf2b5 Certificate serial: 019AF6F83E4F88CA2ADA01CEB06842A748DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft Manifest number: 176C Signing time: Sun 07 Dec 2025 04:00:55 +0000 Manifest this update: Sun 07 Dec 2025 04:00:55 +0000 Manifest next update: Mon 08 Dec 2025 04:00:55 +0000 Files and hashes: 1: 7OSbUsexneQ0Q14f6d4gS3FqwKA.roa (hash: bTywqIASCFGsuBv+6N7v2D8L1Q+x4uOFKiuvSJi+2o4=) 2: BAFnA8E_-fRHFvJR66V5dNg4Xzc.roa (hash: zli04q+UUFDZ6LvNlKF4wEZntdZy+cQL9il9Oh4rSZo=) 3: rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl (hash: O2OBJiXERH3tz/EMsbn0T5r9b+QhSQCos0DRaOH/3UE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:f8:3e:4f:88:ca:2a:da:01:ce:b0:68:42:a7:48:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac8a0e0b1b21f093333c0748145b1628418cf2b5 Validity Not Before: Dec 7 04:00:55 2025 GMT Not After : Dec 8 04:00:55 2025 GMT Subject: CN=8ad2030576c26ef57d15a9213e0efe45d0a493dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:35:70:a7:31:a2:85:cf:59:ee:b6:50:68:7c: fb:b2:f4:08:c8:3f:0b:77:d8:89:49:05:40:dd:f2: 20:c4:55:17:a1:80:5b:4e:86:83:7d:bc:a5:1b:9d: b9:ef:70:c7:98:82:66:a3:ed:f0:0f:2f:0a:8e:5e: 16:2a:40:c2:9d:d9:80:b1:9c:86:98:64:b2:fb:d3: 70:b1:45:e3:1a:5e:da:e7:57:4d:31:93:ed:de:91: 5a:5d:b8:be:de:8a:37:31:93:23:b0:74:6e:f4:d3: 62:7d:fb:bd:71:24:1a:c7:15:5d:9b:be:1b:2e:2f: 75:16:e1:fb:24:d9:80:f8:56:e9:1a:13:4e:76:6e: 4a:f5:7a:13:23:d9:a3:e7:07:91:42:3a:a6:6c:22: 66:14:f9:e5:10:73:10:c4:39:b4:32:17:34:79:ba: 6a:bc:82:fb:c5:35:36:58:6c:d6:1b:25:b7:3b:cf: c3:c5:36:1c:2f:f8:4a:46:3e:7a:11:59:0e:9f:ec: a6:ab:8d:b6:db:f1:b1:a9:f0:d9:ff:75:22:84:bb: c9:b3:db:ce:57:43:22:7a:db:dc:d5:38:57:15:ad: e4:69:5f:3d:fe:d8:0e:31:8e:13:a2:d2:14:07:1f: ba:b0:f8:a7:63:a7:8c:f1:43:07:ea:21:00:82:cc: c6:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:D2:03:05:76:C2:6E:F5:7D:15:A9:21:3E:0E:FE:45:D0:A4:93:DC X509v3 Authority Key Identifier: keyid:AC:8A:0E:0B:1B:21:F0:93:33:3C:07:48:14:5B:16:28:41:8C:F2:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:4c:af:04:fa:a7:78:5c:19:8d:36:01:83:68:e4:f1:c8:70: ac:18:d9:54:ff:a6:27:20:4f:1f:ea:cc:03:0c:db:fa:2a:ba: 73:8e:9c:4a:e1:be:d0:b9:e3:fe:77:9e:59:60:12:5f:6f:eb: 0c:b5:95:e5:cf:1c:aa:25:9e:ff:f5:42:4a:35:85:99:40:13: be:18:e6:59:d4:78:cb:0c:a7:cb:21:50:89:6f:02:9e:9c:58: 42:ae:9c:f9:49:c9:4f:68:5b:b5:1e:5e:ca:05:79:8c:e9:18: e7:9c:15:28:2a:0f:2f:7e:8c:27:76:67:45:5a:09:c7:11:2b: 6b:42:8b:48:57:d7:82:fd:c7:e9:09:f8:59:bf:c2:f8:6a:04: 98:1a:ee:25:1e:0e:00:61:ca:1a:14:c3:ac:df:2b:47:14:10: 6b:70:ec:9e:62:7e:73:78:34:f0:e1:69:b1:8d:4f:b8:a5:0f: 8a:36:d9:7f:46:d6:39:88:7d:a8:62:9c:fb:08:7a:ec:22:e1: 2d:98:e1:ec:98:a9:a9:d0:62:c5:b6:db:2c:5a:5a:d8:05:88: a6:00:a7:50:fe:f1:86:f9:cb:e9:de:0c:fc:91:45:92:e0:ef: 99:b7:2c:d6:41:8a:f1:33:3c:59:f7:d8:42:ff:05:39:53:aa: c6:30:ee:50 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2+D5PiMoq2gHOsGhCp0jcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjOGEwZTBiMWIyMWYwOTMzMzNjMDc0ODE0NWIxNjI4NDE4 Y2YyYjUwHhcNMjUxMjA3MDQwMDU1WhcNMjUxMjA4MDQwMDU1WjAzMTEwLwYDVQQD Eyg4YWQyMDMwNTc2YzI2ZWY1N2QxNWE5MjEzZTBlZmU0NWQwYTQ5M2RjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsDVwpzGihc9Z7rZQaHz7svQIyD8L d9iJSQVA3fIgxFUXoYBbToaDfbylG52573DHmIJmo+3wDy8Kjl4WKkDCndmAsZyG mGSy+9NwsUXjGl7a51dNMZPt3pFaXbi+3oo3MZMjsHRu9NNiffu9cSQaxxVdm74b Li91FuH7JNmA+FbpGhNOdm5K9XoTI9mj5weRQjqmbCJmFPnlEHMQxDm0Mhc0ebpq vIL7xTU2WGzWGyW3O8/DxTYcL/hKRj56EVkOn+ymq4222/GxqfDZ/3UihLvJs9vO V0Mietvc1ThXFa3kaV89/tgOMY4TotIUBx+6sPinY6eM8UMH6iEAgszG+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIrSAwV2wm71fRWpIT4O/kXQpJPcMB8GA1UdIwQY MBaAFKyKDgsbIfCTMzwHSBRbFihBjPK1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcklvT0N4c2g4Sk16UEFkSUZGc1dLRUdNOHJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84Y2U2YTEtMTMwYy00ODBlLWE5MDMt ZGI4ZWZmMWIxMWEwLzEvcklvT0N4c2g4Sk16UEFkSUZGc1dLRUdNOHJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy84Y2U2YTEtMTMwYy00ODBlLWE5MDMtZGI4ZWZmMWIxMWEw LzEvcklvT0N4c2g4Sk16UEFkSUZGc1dLRUdNOHJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL0yvBPqn eFwZjTYBg2jk8chwrBjZVP+mJyBPH+rMAwzb+iq6c46cSuG+0Lnj/neeWWASX2/r DLWV5c8cqiWe//VCSjWFmUATvhjmWdR4ywynyyFQiW8CnpxYQq6c+UnJT2hbtR5e ygV5jOkY55wVKCoPL36MJ3ZnRVoJxxEra0KLSFfXgv3H6Qn4Wb/C+GoEmBruJR4O AGHKGhTDrN8rRxQQa3DsnmJ+c3g08OFpsY1PuKUPijbZf0bWOYh9qGKc+wh67CLh LZjh7JipqdBixbbbLFpa2AWIpgCnUP7xhvnL6d4M/JFFkuDvmbcs1kGK8TM8WffY Qv8FOVOqxjDuUA== -----END CERTIFICATE-----Generated at Sun Dec 7 07:44:07 2025 by rpki-client