This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft File: AK_2tO_-fDY-8gD28-WIi5FbpoE.mft (raw, json) Hash identifier: N2yPSrzDnt0o2snADvsL7RriLaxYEBFbJbBlwj+uPvU= Subject key identifier: F0:F1:08:4B:A5:89:DF:67:D0:60:31:82:00:E8:DF:BD:CB:23:8E:95 Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81 Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681 Certificate serial: 019B262D3217A9E510F3BECABF8C0B5811F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft Manifest number: 129E Signing time: Tue 16 Dec 2025 08:00:54 +0000 Manifest this update: Tue 16 Dec 2025 08:00:54 +0000 Manifest next update: Wed 17 Dec 2025 08:00:54 +0000 Files and hashes: 1: 1-bTG4fJ9woZmiRnGA3mMnt-HFQU.roa (hash: sBL1HNYrxZcmkezvdPWd49u3uAN+SQyINP0GsQYDsEg=) 2: 1qEPEFv1rtnBwjLrj05KhcsiGsw.roa (hash: efBys1jy+DGmejYCRhYEDwHiZZBi2kJ2HO+RtvkHBG0=) 3: 4Kk7BT4GOtX1l3OKm7jdPAKUhF4.roa (hash: tjLnA4xx6xW2o8o0Nxj0RULJ3oVpDUty6jhv+XOFzV8=) 4: AK_2tO_-fDY-8gD28-WIi5FbpoE.crl (hash: pEOq9Ny717uqocDDE0ZK96QMbaAHAgvMdaGFRtKWE9o=) 5: KSQbuvMpaNtmYtn-yiQgu6gs4Xg.roa (hash: rY+o5Ow6fjFdTk2as4zdZu/IZVXbQNeVsHdG3L6c1Us=) 6: ZOyHJ4Yqv0XVd9AATFKr91oKlKQ.roa (hash: UP88f3uzMOFhKaWDsZtlJomj/zgPQgChtV7gCg0+LOM=) 7: hBIi_DQsTzzAePmcqEi9LIfGgEo.roa (hash: ixi/61RXmNoCNxlk1fG+litk/y7jlZcj22aPdgR7sWs=) 8: qsCfBgY2cAUIcPFcqfJPHH6e1Us.roa (hash: Tt7WpuJis2cX5dodwxLP2jzWdn56/MoMnk4lBKcxlds=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 08:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:26:2d:32:17:a9:e5:10:f3:be:ca:bf:8c:0b:58:11:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681 Validity Not Before: Dec 16 08:00:54 2025 GMT Not After : Dec 17 08:00:54 2025 GMT Subject: CN=f0f1084ba589df67d060318200e8dfbdcb238e95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:17:58:7c:a6:10:40:a3:67:85:58:57:50:da: 62:ed:65:e2:5a:bd:b9:cb:d0:21:f5:6e:cb:a6:47: e1:4d:08:41:5e:48:ba:5b:f7:52:3b:ca:a6:f5:68: af:c6:99:db:5a:67:14:d4:6b:c0:f2:56:88:3c:cd: 93:d8:81:53:5c:22:20:62:12:7f:b7:3a:a0:e3:df: a2:8e:27:9a:fc:8e:99:79:7e:2a:06:46:64:04:83: c0:00:da:a4:e2:b2:9b:fa:af:7e:a0:07:b9:90:85: 10:4e:1b:db:b4:51:92:5a:44:3c:6d:46:7b:5f:62: 27:b8:2c:3d:45:4b:a3:38:cf:c4:4d:43:37:9a:4b: 44:24:ca:cc:f6:87:3e:62:73:50:68:02:8a:3b:2b: 87:10:a7:73:27:17:62:3a:f9:20:b7:ba:26:80:60: 8a:86:4e:1a:e8:79:eb:28:91:e0:45:af:21:81:4b: 42:72:69:e5:8c:d9:00:26:37:5f:4b:4f:06:a0:32: 30:54:94:46:9a:5b:9f:c7:dc:7f:43:69:10:35:a0: d7:36:03:17:8b:25:4e:9a:e5:5b:71:41:00:43:96: bd:16:4b:07:76:15:62:58:88:b3:b3:e9:00:57:5d: 4a:fd:4a:b5:e9:71:c0:44:5b:be:ac:25:78:3f:ed: 39:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:F1:08:4B:A5:89:DF:67:D0:60:31:82:00:E8:DF:BD:CB:23:8E:95 X509v3 Authority Key Identifier: keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:24:7e:24:60:31:b4:18:3d:c5:31:10:81:83:06:e3:c3:bd: 9e:0a:bc:f3:c6:02:8f:71:ab:01:3f:04:29:42:de:be:f8:5a: 78:3a:ef:57:ea:3d:be:b5:7d:49:2e:f9:b2:1d:eb:90:7a:40: fd:28:74:3d:b3:54:2b:81:cf:a3:3a:1b:a4:bb:eb:fe:ef:fd: e8:4e:f1:37:13:18:a9:e1:27:35:43:f2:c7:d5:24:39:08:06: 30:79:96:b1:35:10:12:cf:c7:98:21:bc:4f:48:61:89:fc:16: 2f:8c:ce:a7:a8:e2:fd:dd:be:f6:04:04:b0:55:51:59:0e:4c: df:8a:b3:fe:dd:f8:c1:42:ff:f1:5e:44:71:2c:d7:a4:da:90: b5:18:70:cf:24:7e:45:5e:95:77:83:6f:4a:db:aa:b2:bb:e8: 4d:bb:9e:ee:30:5d:2d:94:e5:7c:0b:d2:39:cd:80:8f:e9:d3: 82:07:5e:db:4d:84:8b:5d:f0:b5:f3:14:a8:45:64:8a:fd:31: bc:60:a6:77:79:61:31:a3:28:b7:43:e9:cf:b8:63:77:95:20: 35:9e:1b:ed:3b:45:35:66:0a:a2:57:a8:25:3b:1e:5a:45:fe: 0f:02:30:20:a1:f2:f0:f2:9a:14:d8:19:13:bf:14:b4:15:91: 01:23:fa:0c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsmLTIXqeUQ877Kv4wLWBH1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwYWZmNmI0ZWZmZTdjMzYzZWYyMDBmNmYzZTU4ODhiOTE1 YmE2ODEwHhcNMjUxMjE2MDgwMDU0WhcNMjUxMjE3MDgwMDU0WjAzMTEwLwYDVQQD EyhmMGYxMDg0YmE1ODlkZjY3ZDA2MDMxODIwMGU4ZGZiZGNiMjM4ZTk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxdYfKYQQKNnhVhXUNpi7WXiWr25 y9Ah9W7LpkfhTQhBXki6W/dSO8qm9WivxpnbWmcU1GvA8laIPM2T2IFTXCIgYhJ/ tzqg49+ijiea/I6ZeX4qBkZkBIPAANqk4rKb+q9+oAe5kIUQThvbtFGSWkQ8bUZ7 X2InuCw9RUujOM/ETUM3mktEJMrM9oc+YnNQaAKKOyuHEKdzJxdiOvkgt7omgGCK hk4a6HnrKJHgRa8hgUtCcmnljNkAJjdfS08GoDIwVJRGmlufx9x/Q2kQNaDXNgMX iyVOmuVbcUEAQ5a9FksHdhViWIizs+kAV11K/Uq16XHARFu+rCV4P+059QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPDxCEulid9n0GAxggDo373LI46VMB8GA1UdIwQY MBaAFACv9rTv/nw2PvIA9vPliIuRW6aBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMt YTg3NzNkZTc2OGY3LzEvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMtYTg3NzNkZTc2OGY3 LzEvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPiR+JGAx tBg9xTEQgYMG48O9ngq888YCj3GrAT8EKULevvhaeDrvV+o9vrV9SS75sh3rkHpA /Sh0PbNUK4HPozobpLvr/u/96E7xNxMYqeEnNUPyx9UkOQgGMHmWsTUQEs/HmCG8 T0hhifwWL4zOp6ji/d2+9gQEsFVRWQ5M34qz/t34wUL/8V5EcSzXpNqQtRhwzyR+ RV6Vd4NvStuqsrvoTbue7jBdLZTlfAvSOc2Aj+nTggde202Ei13wtfMUqEVkiv0x vGCmd3lhMaMot0Ppz7hjd5UgNZ4b7TtFNWYKoleoJTseWkX+DwIwIKHy8PKaFNgZ E78UtBWRASP6DA== -----END CERTIFICATE-----Generated at Tue Dec 16 13:48:41 2025 by rpki-client