This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft File: AlO5GdddwgTZyjjbeyihdINLOz0.mft (raw, json) Hash identifier: 8CwrPhZiatPqkb3dwVIzVUzznMIIi7vekquUgy8Z4ic= Subject key identifier: 98:09:A8:13:8E:26:49:29:F2:39:C7:89:1F:8D:FC:AA:49:01:E9:82 Authority key identifier: 02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D Certificate issuer: /CN=0253b919d75dc204d9ca38db7b28a174834b3b3d Certificate serial: 019B0FA5AD6906D14B9E77B320CFA70AE486 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft Manifest number: 0792 Signing time: Thu 11 Dec 2025 23:01:14 +0000 Manifest this update: Thu 11 Dec 2025 23:01:14 +0000 Manifest next update: Fri 12 Dec 2025 23:01:14 +0000 Files and hashes: 1: AlO5GdddwgTZyjjbeyihdINLOz0.crl (hash: eFZD1buLc3NxDetMPCQfiaZ7YVsXgj0t7Mn8IDmrzHQ=) 2: nHJdEaQAZSSucNQfqLdmnzvaEhg.roa (hash: PyiLEuElU0BAtn89yNXkLzFcjN6+3nnt5xk1DxkgTgc=) 3: uTJHpPw8MiXzvmoOasbIM18rO48.roa (hash: 417uE377R+rkUzMmjx7quT0IM4A+QC6t0Oyj6z4KxVE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:a5:ad:69:06:d1:4b:9e:77:b3:20:cf:a7:0a:e4:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0253b919d75dc204d9ca38db7b28a174834b3b3d Validity Not Before: Dec 11 23:01:14 2025 GMT Not After : Dec 12 23:01:14 2025 GMT Subject: CN=9809a8138e264929f239c7891f8dfcaa4901e982 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8b:39:be:de:85:a3:c2:b6:c5:4c:22:5c:81: fe:6e:54:3b:40:2e:8f:78:a0:d2:53:ab:53:0b:8b: 6d:63:73:64:cd:28:0d:b7:2f:d3:d4:35:a3:67:72: 8e:e3:db:7e:74:0b:fb:c2:91:e4:f5:39:3b:7d:b2: 0f:c1:12:7b:00:d0:d6:74:4f:70:c0:1a:4c:8b:3f: 07:1a:4c:4a:fb:5f:56:ef:03:1a:a0:10:db:33:e2: 83:dd:e0:f6:d2:b0:c5:fa:6f:a3:5a:c9:f1:00:43: 3f:13:84:a9:6a:bb:71:a0:77:30:91:1e:d8:c6:8b: 6f:7c:69:d6:98:4e:d1:ee:66:76:0c:93:81:d7:15: 94:0b:ff:c2:9d:a8:89:80:d8:2d:9d:4d:d7:1a:ff: 99:47:b4:05:60:7c:33:2c:e0:5e:10:5a:19:ee:25: 94:4c:1d:93:98:29:9d:77:81:35:11:ca:a8:94:e3: 10:4d:81:61:d9:c2:40:25:19:90:88:6c:69:85:c1: 15:aa:99:24:15:7d:2e:46:38:d4:4d:5c:85:54:dc: db:0a:f4:34:ca:34:3d:58:a3:86:da:5d:96:a2:52: 1d:6c:f7:6a:07:45:14:bc:f4:19:bd:d4:9c:61:6d: 43:fa:d1:d7:63:2a:a1:28:b5:d7:bb:32:d5:6e:c8: f8:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:09:A8:13:8E:26:49:29:F2:39:C7:89:1F:8D:FC:AA:49:01:E9:82 X509v3 Authority Key Identifier: keyid:02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b0:00:b5:f5:eb:7b:57:7d:bc:81:2e:aa:0a:c4:1d:af:5f:02: 71:27:e0:f3:fc:93:ca:9c:02:82:e3:c7:c9:ec:e3:0c:6e:24: e3:47:de:ac:b2:44:c6:5f:be:4d:ec:f8:27:83:61:5a:13:10: a8:3f:b7:3c:8b:bf:19:2d:a5:9a:1c:c0:2c:b9:95:47:5b:2f: 9d:4d:47:1f:3c:f1:69:0a:5f:a6:0a:66:1a:80:12:ff:7e:e0: 10:70:11:3a:86:e5:47:94:f9:31:29:3c:07:05:23:de:6a:58: ce:c8:9c:ce:91:e9:12:95:e9:6e:9d:23:b5:79:19:9c:41:46: 62:89:b9:b6:13:c3:72:86:de:7d:18:44:8c:58:2f:fd:e7:40: 25:de:86:a0:dd:3c:59:48:f6:8b:d8:ae:35:61:7b:c5:ef:93: 88:42:69:9f:8e:47:83:b6:ab:e0:b3:68:07:79:f6:21:90:29: ce:63:8e:48:2c:16:27:11:87:43:bd:e7:a4:88:2a:e5:47:d5: c5:de:d8:d2:dc:2f:50:be:9d:ba:bb:e6:52:1d:97:a8:87:e8: 1f:0c:c3:7b:53:bf:94:e5:44:a4:6c:15:d2:4c:1e:e4:33:d1: 46:24:1f:28:f3:3c:7b:c9:e2:f3:5b:0f:18:e7:18:7a:c8:4d: 24:77:22:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPpa1pBtFLnnezIM+nCuSGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyNTNiOTE5ZDc1ZGMyMDRkOWNhMzhkYjdiMjhhMTc0ODM0 YjNiM2QwHhcNMjUxMjExMjMwMTE0WhcNMjUxMjEyMjMwMTE0WjAzMTEwLwYDVQQD Eyg5ODA5YTgxMzhlMjY0OTI5ZjIzOWM3ODkxZjhkZmNhYTQ5MDFlOTgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArIs5vt6Fo8K2xUwiXIH+blQ7QC6P eKDSU6tTC4ttY3NkzSgNty/T1DWjZ3KO49t+dAv7wpHk9Tk7fbIPwRJ7ANDWdE9w wBpMiz8HGkxK+19W7wMaoBDbM+KD3eD20rDF+m+jWsnxAEM/E4SpartxoHcwkR7Y xotvfGnWmE7R7mZ2DJOB1xWUC//CnaiJgNgtnU3XGv+ZR7QFYHwzLOBeEFoZ7iWU TB2TmCmdd4E1EcqolOMQTYFh2cJAJRmQiGxphcEVqpkkFX0uRjjUTVyFVNzbCvQ0 yjQ9WKOG2l2WolIdbPdqB0UUvPQZvdScYW1D+tHXYyqhKLXXuzLVbsj4LwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJgJqBOOJkkp8jnHiR+N/KpJAemCMB8GA1UdIwQY MBaAFAJTuRnXXcIE2co423sooXSDSzs9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWxPNUdkZGR3Z1RaeWpqYmV5aWhkSU5MT3owLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS8zYmFmZDgtYzM0ZS00ODkwLWI0Y2Yt NzNkYjBmMjg0MWM5LzEvQWxPNUdkZGR3Z1RaeWpqYmV5aWhkSU5MT3owLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS8zYmFmZDgtYzM0ZS00ODkwLWI0Y2YtNzNkYjBmMjg0MWM5 LzEvQWxPNUdkZGR3Z1RaeWpqYmV5aWhkSU5MT3owLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsAC19et7 V328gS6qCsQdr18CcSfg8/yTypwCguPHyezjDG4k40ferLJExl++Tez4J4NhWhMQ qD+3PIu/GS2lmhzALLmVR1svnU1HHzzxaQpfpgpmGoAS/37gEHAROoblR5T5MSk8 BwUj3mpYzsiczpHpEpXpbp0jtXkZnEFGYom5thPDcobefRhEjFgv/edAJd6GoN08 WUj2i9iuNWF7xe+TiEJpn45Hg7ar4LNoB3n2IZApzmOOSCwWJxGHQ73npIgq5UfV xd7Y0twvUL6durvmUh2XqIfoHwzDe1O/lOVEpGwV0kwe5DPRRiQfKPM8e8ni81sP GOcYeshNJHcilQ== -----END CERTIFICATE-----Generated at Fri Dec 12 06:31:20 2025 by rpki-client