This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/986634-c573-4fc4-ada4-7fdeb8f50503/1/aMGCS-Cxb0bS_wEsWCWmcLuTKhc.mft File: aMGCS-Cxb0bS_wEsWCWmcLuTKhc.mft (raw, json) Hash identifier: hKTTQJ4H0fZEjVsdHh9totriUmpOKfqONnvjsO1d9V8= Subject key identifier: E1:B7:51:FA:E1:31:BD:FA:24:02:72:20:D2:01:45:B0:34:28:87:25 Authority key identifier: 68:C1:82:4B:E0:B1:6F:46:D2:FF:01:2C:58:25:A6:70:BB:93:2A:17 Certificate issuer: /CN=68c1824be0b16f46d2ff012c5825a670bb932a17 Certificate serial: 019B5976CDFBEFB926B1455155DF24036722 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMGCS-Cxb0bS_wEsWCWmcLuTKhc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/986634-c573-4fc4-ada4-7fdeb8f50503/1/aMGCS-Cxb0bS_wEsWCWmcLuTKhc.mft Manifest number: 04A8 Signing time: Fri 26 Dec 2025 07:01:56 +0000 Manifest this update: Fri 26 Dec 2025 07:01:56 +0000 Manifest next update: Sat 27 Dec 2025 07:01:56 +0000 Files and hashes: 1: aMGCS-Cxb0bS_wEsWCWmcLuTKhc.crl (hash: 6+WJ7ftOfg1CvapFJKUM/0xBZ7yJRMjqrxepw06YtAE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/986634-c573-4fc4-ada4-7fdeb8f50503/1/aMGCS-Cxb0bS_wEsWCWmcLuTKhc.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/986634-c573-4fc4-ada4-7fdeb8f50503/1/aMGCS-Cxb0bS_wEsWCWmcLuTKhc.mft rsync://rpki.ripe.net/repository/DEFAULT/aMGCS-Cxb0bS_wEsWCWmcLuTKhc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:cd:fb:ef:b9:26:b1:45:51:55:df:24:03:67:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68c1824be0b16f46d2ff012c5825a670bb932a17 Validity Not Before: Dec 26 07:01:56 2025 GMT Not After : Dec 27 07:01:56 2025 GMT Subject: CN=e1b751fae131bdfa24027220d20145b034288725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:33:a5:08:f5:3d:0c:c6:53:6a:5d:c1:21:ee: 53:ed:af:b7:7c:4c:88:66:73:87:df:23:18:aa:78: 6f:53:fa:71:50:96:8b:b7:c1:f4:78:96:4e:ee:63: c2:4a:5d:f9:4c:5e:07:17:d6:4a:a5:5a:e2:9f:57: 0e:47:25:d8:52:df:9b:61:a3:a6:93:cf:e5:ac:e4: ba:1a:45:2d:1d:3d:ad:0b:a7:a1:99:02:89:1e:ca: b4:a2:89:ba:5f:7f:26:40:f7:52:11:dc:c8:c6:42: f3:77:99:d7:9f:d4:53:6c:7f:af:91:d9:51:7c:17: d2:55:3f:61:0b:67:69:18:12:d9:19:24:32:c5:63: bb:46:61:41:63:07:a3:00:b0:6b:2b:56:8d:51:db: d7:4a:9c:25:19:81:e3:b3:59:72:19:0e:d4:22:00: b9:f8:27:48:bc:38:79:3a:6d:02:51:ce:4f:5e:70: 6d:92:dc:34:8d:c1:77:98:5a:24:c5:95:ac:d6:12: d0:ff:ff:2c:79:18:50:66:f4:1e:ee:b5:1d:64:ac: 36:45:f1:a6:f7:4d:71:37:21:fa:09:43:2f:71:d8: 15:10:db:47:9c:d5:44:60:c8:21:7a:e7:66:ff:d4: ea:b4:2c:9a:b3:6b:74:4d:9c:ee:dd:5d:1f:c4:a6: 9c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:B7:51:FA:E1:31:BD:FA:24:02:72:20:D2:01:45:B0:34:28:87:25 X509v3 Authority Key Identifier: keyid:68:C1:82:4B:E0:B1:6F:46:D2:FF:01:2C:58:25:A6:70:BB:93:2A:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMGCS-Cxb0bS_wEsWCWmcLuTKhc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/986634-c573-4fc4-ada4-7fdeb8f50503/1/aMGCS-Cxb0bS_wEsWCWmcLuTKhc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/986634-c573-4fc4-ada4-7fdeb8f50503/1/aMGCS-Cxb0bS_wEsWCWmcLuTKhc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:ec:f4:e2:41:57:6c:f4:b5:72:1b:ec:8b:ad:35:06:1e:f5: 0b:f1:e1:20:4f:a4:1c:86:1b:db:6e:cc:94:60:25:e9:ae:c9: 23:f3:a9:95:2f:0e:80:b3:1a:30:a1:6c:ba:7e:5c:60:fe:43: e2:22:1f:be:0c:17:56:c6:61:41:ac:05:08:c1:ba:29:91:e3: f0:9b:2e:6a:c8:b3:11:b0:fa:a3:81:a7:f7:c4:ee:77:1a:0f: 24:b3:65:a5:4c:fa:24:e9:ca:07:c4:72:4b:5c:21:f7:ad:f8: f4:3c:7b:62:2d:ef:a6:2e:a7:ae:6f:47:8a:cd:8c:b4:b9:2a: da:b8:4b:77:62:6f:b5:8c:cc:79:25:e7:87:68:32:3c:71:ff: 54:49:ba:8c:5b:d3:7c:1d:74:40:99:db:b7:64:00:c0:fe:75: 58:a3:99:db:4c:ae:93:e9:ff:b4:21:4f:33:5d:eb:0c:32:24: 6f:ad:44:e5:c2:55:e3:82:a1:36:2a:2b:35:fa:e9:84:19:6e: f2:f9:69:d8:7a:91:53:c6:03:4c:8c:96:43:ae:08:65:b4:01: d7:24:bc:8d:e1:0c:e9:19:6a:af:60:49:16:70:ec:a5:50:b0: d9:77:ed:b9:a2:75:50:64:8e:19:1d:5e:72:15:5e:d2:ac:f6: 6d:47:ba:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZds3777kmsUVRVd8kA2ciMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4YzE4MjRiZTBiMTZmNDZkMmZmMDEyYzU4MjVhNjcwYmI5 MzJhMTcwHhcNMjUxMjI2MDcwMTU2WhcNMjUxMjI3MDcwMTU2WjAzMTEwLwYDVQQD EyhlMWI3NTFmYWUxMzFiZGZhMjQwMjcyMjBkMjAxNDViMDM0Mjg4NzI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzjOlCPU9DMZTal3BIe5T7a+3fEyI ZnOH3yMYqnhvU/pxUJaLt8H0eJZO7mPCSl35TF4HF9ZKpVrin1cORyXYUt+bYaOm k8/lrOS6GkUtHT2tC6ehmQKJHsq0oom6X38mQPdSEdzIxkLzd5nXn9RTbH+vkdlR fBfSVT9hC2dpGBLZGSQyxWO7RmFBYwejALBrK1aNUdvXSpwlGYHjs1lyGQ7UIgC5 +CdIvDh5Om0CUc5PXnBtktw0jcF3mFokxZWs1hLQ//8seRhQZvQe7rUdZKw2RfGm 901xNyH6CUMvcdgVENtHnNVEYMgheudm/9TqtCyas2t0TZzu3V0fxKacdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOG3UfrhMb36JAJyINIBRbA0KIclMB8GA1UdIwQY MBaAFGjBgkvgsW9G0v8BLFglpnC7kyoXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU1HQ1MtQ3hiMGJTX3dFc1dDV21jTHVUS2hjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC85ODY2MzQtYzU3My00ZmM0LWFkYTQt N2ZkZWI4ZjUwNTAzLzEvYU1HQ1MtQ3hiMGJTX3dFc1dDV21jTHVUS2hjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC85ODY2MzQtYzU3My00ZmM0LWFkYTQtN2ZkZWI4ZjUwNTAz LzEvYU1HQ1MtQ3hiMGJTX3dFc1dDV21jTHVUS2hjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl+z04kFX bPS1chvsi601Bh71C/HhIE+kHIYb227MlGAl6a7JI/OplS8OgLMaMKFsun5cYP5D 4iIfvgwXVsZhQawFCMG6KZHj8JsuasizEbD6o4Gn98TudxoPJLNlpUz6JOnKB8Ry S1wh96349Dx7Yi3vpi6nrm9His2MtLkq2rhLd2JvtYzMeSXnh2gyPHH/VEm6jFvT fB10QJnbt2QAwP51WKOZ20yuk+n/tCFPM13rDDIkb61E5cJV44KhNiorNfrphBlu 8vlp2HqRU8YDTIyWQ64IZbQB1yS8jeEM6Rlqr2BJFnDspVCw2XftuaJ1UGSOGR1e chVe0qz2bUe6yw== -----END CERTIFICATE-----Generated at Fri Dec 26 14:07:48 2025 by rpki-client