This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft File: 8iL76FrkCNN3shfU66eziyS69d0.mft (raw, json) Hash identifier: sPWiMRHSNtYhSmV+Hrh4d/Ip2aUD61PUzs5/ZdygAg0= Subject key identifier: BB:B3:1B:CD:C1:48:AE:9A:42:6A:91:18:46:3E:C7:A3:5A:D7:8A:BC Authority key identifier: F2:22:FB:E8:5A:E4:08:D3:77:B2:17:D4:EB:A7:B3:8B:24:BA:F5:DD Certificate issuer: /CN=f222fbe85ae408d377b217d4eba7b38b24baf5dd Certificate serial: 019AF23FC7F6317BCCDB3F38C3C9868CE171 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft Manifest number: 0E11 Signing time: Sat 06 Dec 2025 06:00:57 +0000 Manifest this update: Sat 06 Dec 2025 06:00:57 +0000 Manifest next update: Sun 07 Dec 2025 06:00:57 +0000 Files and hashes: 1: 5-tO1DtUPdvn-gHncHuAbgt6OiM.roa (hash: L6Z02H1tfyOJ9fsH+lsAomG7wfqgJlWMWjJh/1Ka9SI=) 2: 8iL76FrkCNN3shfU66eziyS69d0.crl (hash: k3EVWfoVIv/w//F3TdC51vdEtKWYWYgOSmZbGO1BjnE=) 3: gPE9V0tO8JPLDv8MCZH-UuWvdnQ.roa (hash: 5qjlUc3/t7psPBo135Wzs5OYxrc/B+KKSYzn0gcEaGk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:c7:f6:31:7b:cc:db:3f:38:c3:c9:86:8c:e1:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f222fbe85ae408d377b217d4eba7b38b24baf5dd Validity Not Before: Dec 6 06:00:57 2025 GMT Not After : Dec 7 06:00:57 2025 GMT Subject: CN=bbb31bcdc148ae9a426a9118463ec7a35ad78abc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:14:79:2b:7d:d7:e2:b5:bd:01:c1:de:52:10: 39:c9:33:a6:8a:24:5a:8b:75:ea:4e:65:0b:f4:42: ae:ab:30:fd:3a:5a:42:63:3e:7e:cd:49:24:90:db: 4a:cf:ca:41:4d:39:20:d3:dd:24:1e:a6:f7:a0:23: 26:74:f6:f0:5e:57:f4:83:c2:ef:b0:9b:cd:20:05: 4a:a0:53:d7:95:9c:b1:5e:7e:f6:c1:b8:b6:cf:57: 81:e6:3b:43:17:cc:bf:62:e6:0f:5f:72:b1:2b:b3: 7e:a5:07:56:1b:58:f3:05:9b:93:26:ee:67:4d:32: 4d:01:af:9a:54:9c:89:08:08:d4:8e:48:03:70:98: 65:a7:a4:2e:4c:30:86:1e:b8:30:01:f4:02:b8:7f: b8:23:99:2d:bf:0e:3a:45:c6:05:b3:0f:17:3f:79: a1:fb:e1:04:20:0f:46:ad:9c:2c:a0:62:e2:31:7e: 8a:a1:83:8d:b5:27:76:c4:80:d1:80:60:68:6d:8d: 3f:85:e0:ba:2e:ba:e6:25:5b:db:b9:5b:d6:22:50: c1:ad:e0:e7:bb:88:f8:72:1b:f7:cd:cd:d5:1e:2b: 02:03:c8:3a:dc:8c:2c:eb:de:39:d3:a0:37:85:48: 33:86:20:c2:e6:06:7d:ac:67:c5:b0:2e:a4:05:ae: 5f:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:B3:1B:CD:C1:48:AE:9A:42:6A:91:18:46:3E:C7:A3:5A:D7:8A:BC X509v3 Authority Key Identifier: keyid:F2:22:FB:E8:5A:E4:08:D3:77:B2:17:D4:EB:A7:B3:8B:24:BA:F5:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption af:e1:6d:3e:59:4f:48:4c:5a:d3:5d:67:9c:b6:f7:67:18:20: 88:b4:33:e0:c6:e1:4e:bc:89:6d:f9:ca:32:11:ef:49:e0:33: 40:eb:a8:f7:d1:8f:8f:02:1f:d3:f7:0b:90:f4:64:c9:0c:64: d9:d1:a1:1f:ec:f6:1b:82:c1:bc:cf:ad:1b:f8:38:3a:c7:17: 7a:bc:af:11:67:44:0b:0c:45:61:06:84:34:67:97:d7:60:66: 27:5e:20:12:74:d3:cc:3a:02:12:bd:63:a1:e1:82:22:3b:58: 52:b0:be:cd:23:19:cf:99:c7:ab:d5:2b:15:7b:50:ce:59:84: f3:16:5e:46:7b:14:eb:3b:f3:4b:38:13:09:d7:e3:66:7d:0f: a7:f8:4c:58:bf:5a:c5:c3:6a:bd:35:92:7b:9d:83:ce:20:2d: 4f:e2:69:f8:70:30:72:27:f5:42:c2:be:37:18:b5:49:29:cd: 33:4b:1a:ee:4a:fd:43:04:6e:fc:06:b3:24:71:84:db:ab:7b: ae:60:f1:08:e6:99:73:91:e6:03:68:4f:ff:f2:37:13:18:1b: 9c:b7:4c:86:70:4c:c7:d7:e8:61:c7:5b:3c:26:ff:db:61:0b: c6:7d:09:b1:82:de:a7:b7:86:d3:2d:e7:dd:2b:03:33:f9:41: bc:44:b2:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP8f2MXvM2z84w8mGjOFxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYyMjJmYmU4NWFlNDA4ZDM3N2IyMTdkNGViYTdiMzhiMjRi YWY1ZGQwHhcNMjUxMjA2MDYwMDU3WhcNMjUxMjA3MDYwMDU3WjAzMTEwLwYDVQQD EyhiYmIzMWJjZGMxNDhhZTlhNDI2YTkxMTg0NjNlYzdhMzVhZDc4YWJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6xR5K33X4rW9AcHeUhA5yTOmiiRa i3XqTmUL9EKuqzD9OlpCYz5+zUkkkNtKz8pBTTkg090kHqb3oCMmdPbwXlf0g8Lv sJvNIAVKoFPXlZyxXn72wbi2z1eB5jtDF8y/YuYPX3KxK7N+pQdWG1jzBZuTJu5n TTJNAa+aVJyJCAjUjkgDcJhlp6QuTDCGHrgwAfQCuH+4I5ktvw46RcYFsw8XP3mh ++EEIA9GrZwsoGLiMX6KoYONtSd2xIDRgGBobY0/heC6LrrmJVvbuVvWIlDBreDn u4j4chv3zc3VHisCA8g63Iws694506A3hUgzhiDC5gZ9rGfFsC6kBa5fAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLuzG83BSK6aQmqRGEY+x6Na14q8MB8GA1UdIwQY MBaAFPIi++ha5AjTd7IX1Ouns4skuvXdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOGlMNzZGcmtDTk4zc2hmVTY2ZXppeVM2OWQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8xYWE4NzUtMDNiNS00YzE3LWJiMzkt YjBjMWUzMzA0ZTc0LzEvOGlMNzZGcmtDTk4zc2hmVTY2ZXppeVM2OWQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi8xYWE4NzUtMDNiNS00YzE3LWJiMzktYjBjMWUzMzA0ZTc0 LzEvOGlMNzZGcmtDTk4zc2hmVTY2ZXppeVM2OWQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAr+FtPllP SExa011nnLb3ZxggiLQz4MbhTryJbfnKMhHvSeAzQOuo99GPjwIf0/cLkPRkyQxk 2dGhH+z2G4LBvM+tG/g4OscXeryvEWdECwxFYQaENGeX12BmJ14gEnTTzDoCEr1j oeGCIjtYUrC+zSMZz5nHq9UrFXtQzlmE8xZeRnsU6zvzSzgTCdfjZn0Pp/hMWL9a xcNqvTWSe52DziAtT+Jp+HAwcif1QsK+Nxi1SSnNM0sa7kr9QwRu/AazJHGE26t7 rmDxCOaZc5HmA2hP//I3ExgbnLdMhnBMx9foYcdbPCb/22ELxn0JsYLep7eG0y3n 3SsDM/lBvESypQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:58:46 2025 by rpki-client