This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.mft File: 8mH6H-bcCfpU0a9ZwuEAzRQSx_A.mft (raw, json) Hash identifier: ewGO0cCWYBEKNqaikcpd73fnchhqWhVcJFGjcIL3skI= Subject key identifier: D5:84:AC:D8:1C:10:58:2D:47:9A:B6:1E:92:46:8D:28:68:97:63:89 Authority key identifier: F2:61:FA:1F:E6:DC:09:FA:54:D1:AF:59:C2:E1:00:CD:14:12:C7:F0 Certificate issuer: /CN=f261fa1fe6dc09fa54d1af59c2e100cd1412c7f0 Certificate serial: 019AF31C9D92B823B19462394AE9E4DF7522 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 10:02:10 +0000 Manifest this update: Sat 06 Dec 2025 10:02:10 +0000 Manifest next update: Sun 07 Dec 2025 10:02:10 +0000 Files and hashes: 1: 8mH6H-bcCfpU0a9ZwuEAzRQSx_A.crl (hash: qKidC7j1BT/kRzsg5oCvOUPsW8vt3PpovQYo4OqRBaY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.crl rsync://rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.mft rsync://rpki.ripe.net/repository/DEFAULT/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:9d:92:b8:23:b1:94:62:39:4a:e9:e4:df:75:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f261fa1fe6dc09fa54d1af59c2e100cd1412c7f0 Validity Not Before: Dec 6 10:02:10 2025 GMT Not After : Dec 7 10:02:10 2025 GMT Subject: CN=d584acd81c10582d479ab61e92468d2868976389 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4d:1b:6e:23:8e:55:19:11:e2:fc:52:ea:25: 85:80:fa:2b:41:72:21:cb:03:f0:be:bb:d5:9b:16: 3e:0d:f7:b9:4d:a5:16:91:6c:45:de:a7:cc:f2:ee: b3:8b:1c:9e:4c:2b:4f:1f:de:6e:92:0c:8a:fa:01: f6:ac:55:0e:01:7d:ba:03:2b:e9:19:74:87:2a:67: 82:75:b7:6e:92:9e:4a:69:e5:61:d2:db:f5:64:d8: 80:5a:68:78:39:e3:89:c7:35:80:ac:31:29:78:8c: 3e:8b:ee:23:17:44:88:c1:5f:d8:98:f1:bd:b9:20: fc:b5:23:13:ac:01:eb:ff:d9:a1:20:e7:f9:e1:5e: 29:65:6b:94:df:36:5f:71:4a:86:f7:18:3b:b4:1c: 1d:b9:79:09:6e:b8:85:01:53:2b:3a:de:92:60:ba: d4:c4:95:a4:db:00:76:03:6f:aa:3c:da:37:d6:c8: 85:8f:2e:04:43:4c:86:0e:28:ad:d0:c2:91:a7:56: 08:c2:99:1e:df:5b:2c:b6:df:3f:c2:50:62:fc:12: ea:25:d4:c1:ce:ef:46:23:47:c8:69:76:bb:d9:97: 4e:11:50:e7:20:67:39:8a:57:06:23:f7:12:da:0a: 90:59:93:14:7c:41:05:40:1a:30:b9:3e:1a:77:49: 82:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:84:AC:D8:1C:10:58:2D:47:9A:B6:1E:92:46:8D:28:68:97:63:89 X509v3 Authority Key Identifier: keyid:F2:61:FA:1F:E6:DC:09:FA:54:D1:AF:59:C2:E1:00:CD:14:12:C7:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:f7:a5:f8:c9:71:4e:4f:a5:e4:74:d8:63:d0:45:c8:d3:81: a8:5f:d8:90:e1:c2:d3:7b:68:a3:5a:e9:8e:26:6f:75:d9:ff: 83:bf:92:cd:87:1d:c3:cb:72:23:16:a7:df:0b:c4:4b:c5:4f: 43:09:b0:54:23:57:e6:96:95:66:9b:67:e2:09:6e:f7:d4:c4: 58:b5:07:3a:e7:f3:cf:0d:b8:d7:57:3a:bc:fa:4b:c3:ed:e3: e3:92:dd:7f:bc:03:4e:a9:61:75:0c:1e:28:21:e2:07:c7:13: 8f:db:40:2e:2a:63:30:b6:92:f7:57:7b:a2:d7:6a:ce:f8:cb: 14:12:2b:5c:6f:b9:72:c5:2a:03:96:7e:e0:d1:1b:ac:8e:fd: bc:9b:d6:00:68:d7:9b:6d:88:7b:fb:a2:d2:88:33:d0:cc:7b: 8b:ed:ac:ff:44:a0:2a:5a:ce:ea:1a:dd:e1:f0:2b:98:b0:4c: a2:07:78:b6:2e:29:26:ae:b7:78:ef:95:14:db:2f:af:bf:b0: e5:57:d6:08:f0:a1:9b:34:2c:4e:63:6e:c4:d9:75:fe:3d:4b: 67:63:66:cc:99:94:52:ea:3e:c7:bf:82:70:af:f2:76:20:67: fe:e4:1b:62:31:b2:35:70:01:ab:51:51:c2:94:58:ee:56:5e: 65:f5:0f:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHJ2SuCOxlGI5Sunk33UiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYyNjFmYTFmZTZkYzA5ZmE1NGQxYWY1OWMyZTEwMGNkMTQx MmM3ZjAwHhcNMjUxMjA2MTAwMjEwWhcNMjUxMjA3MTAwMjEwWjAzMTEwLwYDVQQD EyhkNTg0YWNkODFjMTA1ODJkNDc5YWI2MWU5MjQ2OGQyODY4OTc2Mzg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsU0bbiOOVRkR4vxS6iWFgPorQXIh ywPwvrvVmxY+Dfe5TaUWkWxF3qfM8u6zixyeTCtPH95ukgyK+gH2rFUOAX26Ayvp GXSHKmeCdbdukp5KaeVh0tv1ZNiAWmh4OeOJxzWArDEpeIw+i+4jF0SIwV/YmPG9 uSD8tSMTrAHr/9mhIOf54V4pZWuU3zZfcUqG9xg7tBwduXkJbriFAVMrOt6SYLrU xJWk2wB2A2+qPNo31siFjy4EQ0yGDiit0MKRp1YIwpke31sstt8/wlBi/BLqJdTB zu9GI0fIaXa72ZdOEVDnIGc5ilcGI/cS2gqQWZMUfEEFQBowuT4ad0mCpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNWErNgcEFgtR5q2HpJGjShol2OJMB8GA1UdIwQY MBaAFPJh+h/m3An6VNGvWcLhAM0UEsfwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOG1INkgtYmNDZnBVMGE5Wnd1RUF6UlFTeF9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi81ZTBlNGYtNzQ2Yy00OTA4LTg1NWQt ZTc3ZTBlMjFiMTZhLzEvOG1INkgtYmNDZnBVMGE5Wnd1RUF6UlFTeF9BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi81ZTBlNGYtNzQ2Yy00OTA4LTg1NWQtZTc3ZTBlMjFiMTZh LzEvOG1INkgtYmNDZnBVMGE5Wnd1RUF6UlFTeF9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAfel+Mlx Tk+l5HTYY9BFyNOBqF/YkOHC03too1rpjiZvddn/g7+SzYcdw8tyIxan3wvES8VP QwmwVCNX5paVZptn4glu99TEWLUHOufzzw2411c6vPpLw+3j45Ldf7wDTqlhdQwe KCHiB8cTj9tALipjMLaS91d7otdqzvjLFBIrXG+5csUqA5Z+4NEbrI79vJvWAGjX m22Ie/ui0ogz0Mx7i+2s/0SgKlrO6hrd4fArmLBMogd4ti4pJq63eO+VFNsvr7+w 5VfWCPChmzQsTmNuxNl1/j1LZ2NmzJmUUuo+x7+CcK/ydiBn/uQbYjGyNXABq1FR wpRY7lZeZfUPng== -----END CERTIFICATE-----Generated at Sat Dec 6 14:57:45 2025 by rpki-client