This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft File: AkHvRDYUJQbyZZODwW69oeKbT4Y.mft (raw, json) Hash identifier: OJWtlrcxeKAUPl3bbEvGRPyTjT4RWVzwrDnpWzvfHSQ= Subject key identifier: 58:FF:80:5F:80:5E:43:AE:BB:AF:67:E4:D8:B0:A4:43:30:C5:9D:5C Authority key identifier: 02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86 Certificate issuer: /CN=0241ef4436142506f2659383c16ebda1e29b4f86 Certificate serial: 019B35697F4E4F41AC94E478DC5B52D97477 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft Manifest number: 1047 Signing time: Fri 19 Dec 2025 07:01:04 +0000 Manifest this update: Fri 19 Dec 2025 07:01:04 +0000 Manifest next update: Sat 20 Dec 2025 07:01:04 +0000 Files and hashes: 1: AkHvRDYUJQbyZZODwW69oeKbT4Y.crl (hash: GSy9AZkutcymKlmu1DkpxU1hZWbo9qYATLdzgvUKisQ=) 2: NDyhuvBiD7Dcf-VvAcHjeKP4Wls.roa (hash: oeDnEopXVy5MJcNbGxGeEZ1ceng1jmSd304y/xLBjoc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.crl rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:69:7f:4e:4f:41:ac:94:e4:78:dc:5b:52:d9:74:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0241ef4436142506f2659383c16ebda1e29b4f86 Validity Not Before: Dec 19 07:01:04 2025 GMT Not After : Dec 20 07:01:04 2025 GMT Subject: CN=58ff805f805e43aebbaf67e4d8b0a44330c59d5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:2b:66:68:74:27:32:77:61:bf:00:c9:ee:41: 79:97:48:c9:86:6e:07:c5:a9:ef:f9:27:18:8e:d0: 83:b1:47:d7:cb:cf:db:1e:c0:88:68:b3:c8:57:fa: d6:a7:fe:51:c5:4f:72:9e:36:6d:45:09:11:04:11: 7d:fe:de:fa:03:e3:1a:b5:bd:f0:91:cc:57:6d:0f: aa:4e:25:6a:2b:17:05:ac:cd:2c:96:c8:d9:b5:57: 01:f1:2c:38:96:31:f1:94:30:16:80:2e:bf:c3:f7: 30:83:ab:fd:c5:c8:4d:3c:7e:c8:97:30:a0:b9:3c: 86:13:d6:8e:fa:44:8f:cb:89:90:7a:37:e9:a0:72: e7:bb:25:a9:8f:25:5b:fa:24:92:7a:b9:1a:72:b9: 18:bd:0d:12:f9:ae:39:cf:ae:09:09:ce:91:2f:81: 3d:e8:e0:5f:3b:b9:3e:6d:ea:47:b8:f6:e2:92:a7: 29:d1:76:26:aa:ff:34:7d:77:25:f1:49:34:73:6c: 72:73:47:3a:05:72:66:f7:f4:67:26:a0:f9:1e:d9: ba:6f:81:b6:2c:b3:7c:39:01:d2:24:0a:c9:fa:0c: bc:16:3e:ce:fc:3e:d3:5b:8c:76:d6:4f:cf:8a:33: fb:ef:c3:f0:0c:1c:30:7b:62:ff:76:e8:9c:50:7d: f4:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:FF:80:5F:80:5E:43:AE:BB:AF:67:E4:D8:B0:A4:43:30:C5:9D:5C X509v3 Authority Key Identifier: keyid:02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:da:6d:4c:d3:6a:10:ef:16:5e:ed:09:7e:05:f1:56:52:8a: 14:01:6a:5d:12:17:ea:ae:c1:90:a6:67:a8:6c:6d:0f:ad:1d: 8b:aa:12:74:31:59:0a:0f:e8:83:e4:27:ce:ea:24:36:96:53: c2:ac:4e:5d:00:fd:8b:42:0f:10:80:4e:65:38:3b:59:39:75: 23:58:c1:ee:9d:b5:94:cc:29:8f:50:59:2e:35:91:89:1d:2b: 3d:f1:35:3a:dd:b1:c4:9d:d5:ee:cb:de:89:fe:b0:33:4f:9a: 89:da:25:37:47:55:d5:c8:a4:50:d1:69:41:26:63:3f:e7:00: 74:ce:d3:a2:2e:17:eb:1f:75:af:c7:d9:69:e1:ee:61:42:95: 37:37:af:8a:82:e2:23:25:a5:93:a9:3f:81:b4:e3:8a:db:0e: 13:a8:5e:7b:ac:cf:74:95:67:e9:a5:69:e8:be:fc:72:7a:c1: 62:a8:25:94:7d:35:fb:d6:96:32:61:59:e7:d2:2c:b0:1b:83: 0a:ec:15:a8:ef:7b:bd:ae:34:9c:b8:99:5f:2c:c1:1f:29:d8: c5:ea:12:97:b6:6c:14:1b:a3:87:a3:bb:04:57:76:8f:01:c6: 89:d6:d0:5e:45:21:d9:54:4d:82:65:47:b6:f6:c7:86:b3:0e: 6c:1a:07:65 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1aX9OT0GslOR43FtS2XR3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyNDFlZjQ0MzYxNDI1MDZmMjY1OTM4M2MxNmViZGExZTI5 YjRmODYwHhcNMjUxMjE5MDcwMTA0WhcNMjUxMjIwMDcwMTA0WjAzMTEwLwYDVQQD Eyg1OGZmODA1ZjgwNWU0M2FlYmJhZjY3ZTRkOGIwYTQ0MzMwYzU5ZDVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmitmaHQnMndhvwDJ7kF5l0jJhm4H xanv+ScYjtCDsUfXy8/bHsCIaLPIV/rWp/5RxU9ynjZtRQkRBBF9/t76A+Matb3w kcxXbQ+qTiVqKxcFrM0slsjZtVcB8Sw4ljHxlDAWgC6/w/cwg6v9xchNPH7IlzCg uTyGE9aO+kSPy4mQejfpoHLnuyWpjyVb+iSSerkacrkYvQ0S+a45z64JCc6RL4E9 6OBfO7k+bepHuPbikqcp0XYmqv80fXcl8Uk0c2xyc0c6BXJm9/RnJqD5Htm6b4G2 LLN8OQHSJArJ+gy8Fj7O/D7TW4x21k/PijP778PwDBwwe2L/duicUH30tQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFj/gF+AXkOuu69n5NiwpEMwxZ1cMB8GA1UdIwQY MBaAFAJB70Q2FCUG8mWTg8FuvaHim0+GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWtIdlJEWVVKUWJ5WlpPRHdXNjlvZUtiVDRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85ZWUyMDItYjliMy00N2YwLThjOWEt OWZkZjRjMTVmOWE2LzEvQWtIdlJEWVVKUWJ5WlpPRHdXNjlvZUtiVDRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC85ZWUyMDItYjliMy00N2YwLThjOWEtOWZkZjRjMTVmOWE2 LzEvQWtIdlJEWVVKUWJ5WlpPRHdXNjlvZUtiVDRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVdptTNNq EO8WXu0JfgXxVlKKFAFqXRIX6q7BkKZnqGxtD60di6oSdDFZCg/og+QnzuokNpZT wqxOXQD9i0IPEIBOZTg7WTl1I1jB7p21lMwpj1BZLjWRiR0rPfE1Ot2xxJ3V7sve if6wM0+aidolN0dV1cikUNFpQSZjP+cAdM7Toi4X6x91r8fZaeHuYUKVNzevioLi IyWlk6k/gbTjitsOE6hee6zPdJVn6aVp6L78cnrBYqgllH01+9aWMmFZ59IssBuD CuwVqO97va40nLiZXyzBHynYxeoSl7ZsFBujh6O7BFd2jwHGidbQXkUh2VRNgmVH tvbHhrMObBoHZQ== -----END CERTIFICATE-----Generated at Fri Dec 19 10:40:49 2025 by rpki-client