This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft File: AJpjcoKz0KD8pKVU9pNvffQugWU.mft (raw, json) Hash identifier: ZnvQaTXxM/hhdt4/VOxC2VSCdtaSnbjxA8Jz25BDSoU= Subject key identifier: 66:F6:B3:01:88:67:D8:A3:DA:42:31:AE:1A:4B:BC:A8:28:93:A8:6C Authority key identifier: 00:9A:63:72:82:B3:D0:A0:FC:A4:A5:54:F6:93:6F:7D:F4:2E:81:65 Certificate issuer: /CN=009a637282b3d0a0fca4a554f6936f7df42e8165 Certificate serial: 019B18714386C96795502D18C201A2180DE3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AJpjcoKz0KD8pKVU9pNvffQugWU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft Manifest number: 0D4F Signing time: Sat 13 Dec 2025 16:00:34 +0000 Manifest this update: Sat 13 Dec 2025 16:00:34 +0000 Manifest next update: Sun 14 Dec 2025 16:00:34 +0000 Files and hashes: 1: 2KtTnEqgfSqztCd7tujgpeMQKiY.roa (hash: PzcW2SmGhKzM/HWv9p7Gvr3dpPmkVhm+gAuqFa6OHHQ=) 2: AJpjcoKz0KD8pKVU9pNvffQugWU.crl (hash: 4QsqAKpDEM32j3MhsyD0FWw4MUDb7mCSEm9IycdPlHc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft rsync://rpki.ripe.net/repository/DEFAULT/AJpjcoKz0KD8pKVU9pNvffQugWU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 16:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:18:71:43:86:c9:67:95:50:2d:18:c2:01:a2:18:0d:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=009a637282b3d0a0fca4a554f6936f7df42e8165 Validity Not Before: Dec 13 16:00:34 2025 GMT Not After : Dec 14 16:00:34 2025 GMT Subject: CN=66f6b3018867d8a3da4231ae1a4bbca82893a86c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:03:34:86:d6:cc:16:7d:68:5f:fc:0d:98:d5: e9:58:4f:e8:b9:17:c5:6c:b7:5f:ef:cc:81:de:ce: c3:c3:1e:c8:75:f5:7d:3b:48:37:31:7b:4d:06:8b: eb:c6:5b:58:dd:ed:d7:74:c9:6c:c9:bb:86:8e:75: 2e:3d:a8:6b:a1:8d:57:89:fd:26:e9:45:3f:bd:8b: b1:31:6f:d5:50:9a:87:f6:73:79:a5:d7:b4:8e:cb: 93:8d:10:48:d8:8f:0a:80:49:32:26:2d:45:72:83: b2:f4:f0:21:dd:39:7c:79:39:4e:3f:e0:37:a0:91: bf:88:07:38:1a:6f:55:8c:44:67:4d:08:bd:ba:4c: af:e2:6c:ac:86:3a:18:a3:95:0c:48:31:36:a8:19: 1b:71:47:7b:6f:3f:87:cc:41:e8:f4:a7:f0:4d:64: ee:b1:13:57:b2:3e:a3:65:42:56:9f:bb:ba:b0:7a: 7c:40:f9:99:ff:4f:a2:77:54:dc:5f:31:6b:54:29: bf:60:d9:04:15:11:dc:77:18:72:9a:52:cc:25:15: bb:9c:07:da:4c:05:fe:9e:c6:8f:34:2f:02:66:b5: be:26:a1:98:63:5b:38:b0:a6:86:38:1e:fe:37:67: b6:60:d3:70:6f:f3:62:85:70:bf:93:b4:21:0d:ef: ff:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:F6:B3:01:88:67:D8:A3:DA:42:31:AE:1A:4B:BC:A8:28:93:A8:6C X509v3 Authority Key Identifier: keyid:00:9A:63:72:82:B3:D0:A0:FC:A4:A5:54:F6:93:6F:7D:F4:2E:81:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AJpjcoKz0KD8pKVU9pNvffQugWU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:c7:46:d4:f0:76:90:78:14:41:08:e8:8f:d8:ee:13:9c:dc: 8c:05:65:16:6b:d1:22:de:68:5d:00:bc:94:64:3b:80:a5:b1: b2:96:15:86:34:7e:57:5b:14:43:9f:01:7b:54:d2:8b:1f:30: 92:ff:45:56:4e:2d:c4:84:78:1c:e2:33:d2:74:0d:cc:ac:ae: 11:d3:69:cf:e8:e4:50:48:cc:b1:16:9c:63:2a:9b:46:51:94: 55:47:1d:65:0b:4b:e7:90:2a:8b:8a:3e:9f:d7:ce:6c:0d:e6: 58:3e:ce:54:35:97:74:b1:d7:1d:34:06:6d:dc:19:5f:30:49: 00:0c:12:e1:2f:f8:13:cb:26:65:8a:e4:01:b7:2c:a9:22:40: c2:19:fe:22:02:75:ed:05:7b:d0:ac:43:ab:74:0e:2c:b9:a9: 9e:5b:46:3e:94:76:c5:0a:0a:13:e7:88:ec:e4:65:b6:d8:88: 58:96:49:7f:61:75:26:fe:bf:2a:c0:c9:58:a0:da:81:e7:f8: f8:d6:4a:56:b1:f6:2f:f6:91:5b:70:59:33:3d:4d:cb:f5:bd: f0:49:a6:07:19:d1:10:f3:fa:42:dc:01:4a:e1:e9:24:48:4a: e6:d5:83:f5:a8:63:15:0c:2d:c0:c9:e7:c6:7f:4e:51:fe:5a: de:a1:c7:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsYcUOGyWeVUC0YwgGiGA3jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwOWE2MzcyODJiM2QwYTBmY2E0YTU1NGY2OTM2ZjdkZjQy ZTgxNjUwHhcNMjUxMjEzMTYwMDM0WhcNMjUxMjE0MTYwMDM0WjAzMTEwLwYDVQQD Eyg2NmY2YjMwMTg4NjdkOGEzZGE0MjMxYWUxYTRiYmNhODI4OTNhODZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqQM0htbMFn1oX/wNmNXpWE/ouRfF bLdf78yB3s7Dwx7IdfV9O0g3MXtNBovrxltY3e3XdMlsybuGjnUuPahroY1Xif0m 6UU/vYuxMW/VUJqH9nN5pde0jsuTjRBI2I8KgEkyJi1FcoOy9PAh3Tl8eTlOP+A3 oJG/iAc4Gm9VjERnTQi9ukyv4myshjoYo5UMSDE2qBkbcUd7bz+HzEHo9KfwTWTu sRNXsj6jZUJWn7u6sHp8QPmZ/0+id1TcXzFrVCm/YNkEFRHcdxhymlLMJRW7nAfa TAX+nsaPNC8CZrW+JqGYY1s4sKaGOB7+N2e2YNNwb/NihXC/k7QhDe//CwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGb2swGIZ9ij2kIxrhpLvKgok6hsMB8GA1UdIwQY MBaAFACaY3KCs9Cg/KSlVPaTb330LoFlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUpwamNvS3owS0Q4cEtWVTlwTnZmZlF1Z1dVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi9kZGMzNDQtNjRjNi00NmM4LWEyNWMt ZDRlZGMwZWIzZTBhLzEvQUpwamNvS3owS0Q4cEtWVTlwTnZmZlF1Z1dVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi9kZGMzNDQtNjRjNi00NmM4LWEyNWMtZDRlZGMwZWIzZTBh LzEvQUpwamNvS3owS0Q4cEtWVTlwTnZmZlF1Z1dVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAksdG1PB2 kHgUQQjoj9juE5zcjAVlFmvRIt5oXQC8lGQ7gKWxspYVhjR+V1sUQ58Be1TSix8w kv9FVk4txIR4HOIz0nQNzKyuEdNpz+jkUEjMsRacYyqbRlGUVUcdZQtL55Aqi4o+ n9fObA3mWD7OVDWXdLHXHTQGbdwZXzBJAAwS4S/4E8smZYrkAbcsqSJAwhn+IgJ1 7QV70KxDq3QOLLmpnltGPpR2xQoKE+eI7ORlttiIWJZJf2F1Jv6/KsDJWKDagef4 +NZKVrH2L/aRW3BZMz1Ny/W98EmmBxnREPP6QtwBSuHpJEhK5tWD9ahjFQwtwMnn xn9OUf5a3qHHWA== -----END CERTIFICATE-----Generated at Sun Dec 14 01:57:08 2025 by rpki-client