This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft File: AK_2tO_-fDY-8gD28-WIi5FbpoE.mft (raw, json) Hash identifier: WjjGUnuhJlahpnhzMwd8EuIgAAYGl3wr4/IHCritGdM= Subject key identifier: 5B:81:DB:C9:4E:EA:2E:DA:89:E5:D9:5C:63:6A:CF:51:78:35:65:81 Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81 Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681 Certificate serial: 019B4701D81F1CCE483C276C87CDF194FAF9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft Manifest number: 12AF Signing time: Mon 22 Dec 2025 17:01:01 +0000 Manifest this update: Mon 22 Dec 2025 17:01:01 +0000 Manifest next update: Tue 23 Dec 2025 17:01:01 +0000 Files and hashes: 1: 1-bTG4fJ9woZmiRnGA3mMnt-HFQU.roa (hash: sBL1HNYrxZcmkezvdPWd49u3uAN+SQyINP0GsQYDsEg=) 2: 1qEPEFv1rtnBwjLrj05KhcsiGsw.roa (hash: efBys1jy+DGmejYCRhYEDwHiZZBi2kJ2HO+RtvkHBG0=) 3: 4Kk7BT4GOtX1l3OKm7jdPAKUhF4.roa (hash: tjLnA4xx6xW2o8o0Nxj0RULJ3oVpDUty6jhv+XOFzV8=) 4: AK_2tO_-fDY-8gD28-WIi5FbpoE.crl (hash: Kzds1K2JvscefJsBI7VFYPK+i5sebFB/3sWx+oWrM2Y=) 5: KSQbuvMpaNtmYtn-yiQgu6gs4Xg.roa (hash: rY+o5Ow6fjFdTk2as4zdZu/IZVXbQNeVsHdG3L6c1Us=) 6: ZOyHJ4Yqv0XVd9AATFKr91oKlKQ.roa (hash: UP88f3uzMOFhKaWDsZtlJomj/zgPQgChtV7gCg0+LOM=) 7: hBIi_DQsTzzAePmcqEi9LIfGgEo.roa (hash: ixi/61RXmNoCNxlk1fG+litk/y7jlZcj22aPdgR7sWs=) 8: qsCfBgY2cAUIcPFcqfJPHH6e1Us.roa (hash: Tt7WpuJis2cX5dodwxLP2jzWdn56/MoMnk4lBKcxlds=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 17:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:47:01:d8:1f:1c:ce:48:3c:27:6c:87:cd:f1:94:fa:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681 Validity Not Before: Dec 22 17:01:01 2025 GMT Not After : Dec 23 17:01:01 2025 GMT Subject: CN=5b81dbc94eea2eda89e5d95c636acf5178356581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:cf:a4:7e:91:ab:4e:fe:7c:5f:c9:e2:d1:f3: de:60:60:f7:a1:7a:7d:5f:5b:d5:32:31:a6:47:b3: 18:ed:29:cb:92:59:f8:ca:12:c6:fc:68:6d:06:a0: dc:da:58:20:d2:4c:f1:94:fb:d8:d3:96:4e:29:e8: 27:e2:34:ae:05:55:3f:18:7d:d0:a8:93:30:6e:ae: 83:0b:9a:bf:8c:81:2f:9b:66:87:cf:f3:7e:98:8a: bd:bb:3b:9e:64:80:a6:77:2a:69:e8:1b:19:ad:09: 6d:26:29:03:01:93:e8:5b:eb:a0:eb:fa:9a:17:f6: 28:ba:27:8e:be:0b:32:6e:87:d6:8d:42:38:54:9c: 86:79:62:f8:4c:f5:be:8d:7f:f0:d8:af:e1:a5:0b: cb:ab:11:aa:e4:3f:d5:99:7b:56:9d:a4:e7:00:f0: 5d:e6:12:d4:a2:47:6c:22:34:c9:f5:23:6c:74:38: bc:aa:c7:12:bf:bc:a4:69:5d:c8:a4:53:93:75:9d: dc:9e:52:a1:d0:6c:85:ac:03:bf:63:35:07:ee:bc: fc:23:cf:c7:8b:b0:3a:e1:b0:45:95:3f:f6:72:d4: a8:52:92:05:39:a9:3c:b0:80:37:2e:69:4b:7b:52: 03:0f:be:4b:22:32:10:80:03:d8:58:d9:bc:f7:87: 51:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:81:DB:C9:4E:EA:2E:DA:89:E5:D9:5C:63:6A:CF:51:78:35:65:81 X509v3 Authority Key Identifier: keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:b6:53:5a:76:91:b7:aa:10:c5:09:8e:31:89:86:c2:08:ac: ee:7e:c7:fe:d3:ae:c1:41:28:09:7d:51:20:6a:7f:eb:74:1f: ba:8e:71:1f:10:4e:6c:c8:92:84:33:f0:bf:88:57:91:83:db: ad:bc:2b:8c:74:54:02:a7:0e:f8:0c:da:30:f3:66:e7:52:06: d1:0c:1b:4b:9e:7c:90:19:35:6a:05:70:ce:01:d4:f5:da:d4: 03:8c:f4:34:19:ef:8b:1b:6e:42:97:e3:5c:b7:85:9f:06:46: b0:ff:34:3d:9c:86:02:9a:45:7d:64:ab:13:94:49:2d:37:a9: bf:29:0a:b1:24:e8:59:91:33:f5:4c:24:78:75:94:97:d1:e7: 77:a1:50:49:09:aa:9d:a9:50:a6:c9:5a:de:03:af:3c:30:2b: cd:42:45:41:02:ae:14:9c:b0:38:67:b6:aa:e3:0a:c3:e0:f6: 13:50:17:54:9e:13:8f:3f:60:97:73:85:0f:40:45:9f:f2:dc: 24:b1:f8:02:df:be:cd:9d:29:b6:0d:e1:a7:8a:5d:f1:a9:03: 79:40:5b:31:02:4a:8c:9f:2b:52:b5:eb:fb:07:4e:62:02:ac: f2:8e:a7:2f:65:c2:1d:29:42:13:5f:cc:20:0a:d6:ce:7b:17: ed:3f:23:82 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtHAdgfHM5IPCdsh83xlPr5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwYWZmNmI0ZWZmZTdjMzYzZWYyMDBmNmYzZTU4ODhiOTE1 YmE2ODEwHhcNMjUxMjIyMTcwMTAxWhcNMjUxMjIzMTcwMTAxWjAzMTEwLwYDVQQD Eyg1YjgxZGJjOTRlZWEyZWRhODllNWQ5NWM2MzZhY2Y1MTc4MzU2NTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAys+kfpGrTv58X8ni0fPeYGD3oXp9 X1vVMjGmR7MY7SnLkln4yhLG/GhtBqDc2lgg0kzxlPvY05ZOKegn4jSuBVU/GH3Q qJMwbq6DC5q/jIEvm2aHz/N+mIq9uzueZICmdypp6BsZrQltJikDAZPoW+ug6/qa F/YouieOvgsybofWjUI4VJyGeWL4TPW+jX/w2K/hpQvLqxGq5D/VmXtWnaTnAPBd 5hLUokdsIjTJ9SNsdDi8qscSv7ykaV3IpFOTdZ3cnlKh0GyFrAO/YzUH7rz8I8/H i7A64bBFlT/2ctSoUpIFOak8sIA3LmlLe1IDD75LIjIQgAPYWNm894dR+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFuB28lO6i7aieXZXGNqz1F4NWWBMB8GA1UdIwQY MBaAFACv9rTv/nw2PvIA9vPliIuRW6aBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMt YTg3NzNkZTc2OGY3LzEvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMtYTg3NzNkZTc2OGY3 LzEvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfLZTWnaR t6oQxQmOMYmGwgis7n7H/tOuwUEoCX1RIGp/63Qfuo5xHxBObMiShDPwv4hXkYPb rbwrjHRUAqcO+AzaMPNm51IG0QwbS558kBk1agVwzgHU9drUA4z0NBnvixtuQpfj XLeFnwZGsP80PZyGAppFfWSrE5RJLTepvykKsSToWZEz9UwkeHWUl9Hnd6FQSQmq nalQpsla3gOvPDArzUJFQQKuFJywOGe2quMKw+D2E1AXVJ4Tjz9gl3OFD0BFn/Lc JLH4At++zZ0ptg3hp4pd8akDeUBbMQJKjJ8rUrXr+wdOYgKs8o6nL2XCHSlCE1/M IArWznsX7T8jgg== -----END CERTIFICATE-----Generated at Tue Dec 23 02:10:48 2025 by rpki-client