This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.mft File: AFetCa6aGpgBInWFGqvmnk4VovQ.mft (raw, json) Hash identifier: O94ck+x8qBB/Omg+rJESqRXh8n3boGeO8ZOUDoKf6ng= Subject key identifier: C2:A6:2A:DB:99:D6:90:48:B1:C9:D3:47:95:3F:87:79:7E:18:67:F8 Authority key identifier: 00:57:AD:09:AE:9A:1A:98:01:22:75:85:1A:AB:E6:9E:4E:15:A2:F4 Certificate issuer: /CN=0057ad09ae9a1a98012275851aabe69e4e15a2f4 Certificate serial: 019B5976484A34D38AAA8303C820EC1547FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AFetCa6aGpgBInWFGqvmnk4VovQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.mft Manifest number: 107F Signing time: Fri 26 Dec 2025 07:01:22 +0000 Manifest this update: Fri 26 Dec 2025 07:01:22 +0000 Manifest next update: Sat 27 Dec 2025 07:01:22 +0000 Files and hashes: 1: AFetCa6aGpgBInWFGqvmnk4VovQ.crl (hash: mt8QaYlbTcs5mnduY4YgUWlfSTetzbKMsp9AP2K21Ho=) 2: uxPm2jgrGB9aUpoVSqtxOrk6oLc.roa (hash: jnz+6TEphg6WeFVMNjeLnKwOXT2+7WslFFXVeACqJbs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.crl rsync://rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.mft rsync://rpki.ripe.net/repository/DEFAULT/AFetCa6aGpgBInWFGqvmnk4VovQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:48:4a:34:d3:8a:aa:83:03:c8:20:ec:15:47:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0057ad09ae9a1a98012275851aabe69e4e15a2f4 Validity Not Before: Dec 26 07:01:22 2025 GMT Not After : Dec 27 07:01:22 2025 GMT Subject: CN=c2a62adb99d69048b1c9d347953f87797e1867f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e5:e6:07:4c:cc:83:3e:d7:26:3c:95:3e:86: 39:02:94:39:88:58:50:e6:6c:9b:ae:77:52:69:14: a6:6b:fa:bd:e4:06:57:d0:4a:35:f3:d9:33:f2:20: a7:8b:d7:2b:fe:a3:10:7c:d0:f1:a2:7d:18:a8:66: 26:cb:9f:6b:1d:05:15:66:7d:cd:4c:fe:92:d7:dd: 45:71:df:34:e1:d1:80:f4:a1:69:08:b7:43:f5:8b: a2:65:68:d5:51:f1:cc:f1:a5:bd:74:06:96:25:bb: 51:22:0c:b8:e5:96:fe:a0:f8:52:ce:75:d0:1b:79: ea:94:01:a3:08:1d:09:18:fd:fa:e1:55:ba:42:df: 2f:8b:fa:72:cd:ee:34:47:60:f9:7b:b6:34:8a:2e: 6f:a6:32:95:fd:d7:21:8e:3e:02:c2:e6:b2:27:e8: fc:8b:31:85:3a:ed:27:3f:b7:39:45:24:a1:ed:43: cb:f1:9f:f2:27:cf:9c:fc:64:b5:32:35:84:07:16: 79:7d:f9:32:48:7a:fc:57:60:e2:30:61:5f:c7:c8: 6a:37:d1:15:12:8e:94:7e:62:c7:74:82:5b:ef:59: 78:54:10:68:b3:a6:00:0d:80:b7:56:fe:03:27:54: 6e:9d:4a:63:4e:30:e7:c9:0e:a5:fb:55:fd:c4:bb: ed:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:A6:2A:DB:99:D6:90:48:B1:C9:D3:47:95:3F:87:79:7E:18:67:F8 X509v3 Authority Key Identifier: keyid:00:57:AD:09:AE:9A:1A:98:01:22:75:85:1A:AB:E6:9E:4E:15:A2:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AFetCa6aGpgBInWFGqvmnk4VovQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b5:5b:60:1c:28:e1:92:fd:a4:dc:da:54:c2:47:7a:ea:c3:18: f7:bc:f5:4e:aa:06:29:5c:1e:3f:c3:49:48:4f:3e:33:43:c3: 9b:c6:30:a5:54:4a:92:bc:c4:39:74:8b:ee:22:65:82:97:20: b0:4d:7a:22:2d:4f:a5:8f:77:29:87:30:b9:92:0a:40:1a:a4: f4:bd:9d:cb:3f:01:e7:05:e0:97:b8:df:c3:2d:8f:95:d4:d8: ad:f6:2d:47:28:e6:97:72:06:fa:91:93:4b:cc:89:4e:9d:92: da:60:d7:cd:03:c7:e0:2c:7d:c8:68:7d:70:28:d3:19:42:1c: c6:a2:c0:5d:4a:fa:36:5a:07:1e:10:5d:6a:6d:4f:f9:68:c3: 08:bc:c5:df:72:b3:0d:6d:aa:9d:c2:5f:43:4d:dc:0d:97:1e: 44:e0:2e:b1:2e:38:7a:34:67:61:99:02:81:04:97:8d:1c:6b: bb:7b:45:03:22:f1:1a:41:86:17:cb:58:e4:aa:9c:6f:ae:02: 11:22:cf:87:f2:8b:0a:61:fe:db:a1:47:07:8e:b3:33:68:e9: c6:a1:b2:d2:4c:ec:e4:ba:fb:75:c9:51:65:7e:3b:21:ce:f5: 7e:68:45:69:17:d6:7b:54:08:89:61:18:27:4f:99:e5:bc:9f: cc:f3:82:5e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdkhKNNOKqoMDyCDsFUf9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwNTdhZDA5YWU5YTFhOTgwMTIyNzU4NTFhYWJlNjllNGUx NWEyZjQwHhcNMjUxMjI2MDcwMTIyWhcNMjUxMjI3MDcwMTIyWjAzMTEwLwYDVQQD EyhjMmE2MmFkYjk5ZDY5MDQ4YjFjOWQzNDc5NTNmODc3OTdlMTg2N2Y4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx+XmB0zMgz7XJjyVPoY5ApQ5iFhQ 5mybrndSaRSma/q95AZX0Eo189kz8iCni9cr/qMQfNDxon0YqGYmy59rHQUVZn3N TP6S191Fcd804dGA9KFpCLdD9YuiZWjVUfHM8aW9dAaWJbtRIgy45Zb+oPhSznXQ G3nqlAGjCB0JGP364VW6Qt8vi/pyze40R2D5e7Y0ii5vpjKV/dchjj4CwuayJ+j8 izGFOu0nP7c5RSSh7UPL8Z/yJ8+c/GS1MjWEBxZ5ffkySHr8V2DiMGFfx8hqN9EV Eo6UfmLHdIJb71l4VBBos6YADYC3Vv4DJ1RunUpjTjDnyQ6l+1X9xLvt7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMKmKtuZ1pBIscnTR5U/h3l+GGf4MB8GA1UdIwQY MBaAFABXrQmumhqYASJ1hRqr5p5OFaL0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUZldENhNmFHcGdCSW5XRkdxdm1uazRWb3ZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy80YzMyYjktZjc3NS00ODY4LTkyM2Qt ZGNhMzhkNTlhMTU4LzEvQUZldENhNmFHcGdCSW5XRkdxdm1uazRWb3ZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy80YzMyYjktZjc3NS00ODY4LTkyM2QtZGNhMzhkNTlhMTU4 LzEvQUZldENhNmFHcGdCSW5XRkdxdm1uazRWb3ZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtVtgHCjh kv2k3NpUwkd66sMY97z1TqoGKVweP8NJSE8+M0PDm8YwpVRKkrzEOXSL7iJlgpcg sE16Ii1PpY93KYcwuZIKQBqk9L2dyz8B5wXgl7jfwy2PldTYrfYtRyjml3IG+pGT S8yJTp2S2mDXzQPH4Cx9yGh9cCjTGUIcxqLAXUr6NloHHhBdam1P+WjDCLzF33Kz DW2qncJfQ03cDZceROAusS44ejRnYZkCgQSXjRxru3tFAyLxGkGGF8tY5Kqcb64C ESLPh/KLCmH+26FHB46zM2jpxqGy0kzs5Lr7dclRZX47Ic71fmhFaRfWe1QIiWEY J0+Z5byfzPOCXg== -----END CERTIFICATE-----Generated at Fri Dec 26 15:47:08 2025 by rpki-client