This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft File: 10AeAklBizV1RyaIJPYkSSXY2zk.mft (raw, json) Hash identifier: IsaZsl1Tc0KgEF7RlNy9dXYKdI9lqxuqFIhpAZhpbFk= Subject key identifier: CC:ED:F9:E1:B7:2B:D7:B5:2F:75:08:C6:7F:F4:8D:1A:6D:89:0F:A3 Authority key identifier: D7:40:1E:02:49:41:8B:35:75:47:26:88:24:F6:24:49:25:D8:DB:39 Certificate issuer: /CN=d7401e0249418b357547268824f6244925d8db39 Certificate serial: 019B39EB23491A59B3D2D19F97A3C5386CA2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft Manifest number: 0907 Signing time: Sat 20 Dec 2025 04:01:09 +0000 Manifest this update: Sat 20 Dec 2025 04:01:09 +0000 Manifest next update: Sun 21 Dec 2025 04:01:09 +0000 Files and hashes: 1: 10AeAklBizV1RyaIJPYkSSXY2zk.crl (hash: LadwWIiK5ErDmAD/1yGnzpL/+OCUwrv65zf/+JTCAEA=) 2: RjYX-V2efI1Zqu_dPnOuCSQqr1I.roa (hash: +pG1/ZRTZezQr6XfSyRunIJDq4WCFmSkYW6ipsa40Rw=) 3: cBlGJ5bNODNILYzK1oNt3QzAw7M.roa (hash: 7wWvEWZaVuq+kybNFqA4kbf75m0LmBkO8WIx9pDUDFw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 04:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:eb:23:49:1a:59:b3:d2:d1:9f:97:a3:c5:38:6c:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d7401e0249418b357547268824f6244925d8db39 Validity Not Before: Dec 20 04:01:09 2025 GMT Not After : Dec 21 04:01:09 2025 GMT Subject: CN=ccedf9e1b72bd7b52f7508c67ff48d1a6d890fa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4d:51:75:10:50:d4:d2:62:6c:a0:e5:64:ff: 96:bf:bb:cf:f2:c3:cf:7b:34:b3:7e:86:72:f9:49: c3:e8:f5:40:7c:38:36:ef:0d:52:ee:11:09:aa:3d: 79:65:96:5b:32:fc:47:8e:83:f3:c4:2d:6a:32:8d: ad:cc:71:57:2d:ab:4f:f5:71:4c:d7:9f:12:da:34: 31:8b:2b:60:b8:16:0a:a8:8a:56:7b:d7:92:0d:a8: 14:61:28:f6:7d:92:19:1a:8d:01:68:d1:4c:12:bf: 7a:8d:af:54:5b:f6:c3:55:b6:83:e9:af:e0:e8:7e: d3:f5:1a:fe:0a:ea:12:f9:ec:5a:c1:f7:a5:32:8d: 32:fd:52:9f:60:d8:83:66:11:f3:e4:d9:ce:b2:56: 40:2f:cd:29:78:0a:b0:22:de:6a:17:a8:69:5d:d2: 0b:7a:8e:f7:4f:47:17:9e:69:dd:d7:21:e2:2c:72: d0:f4:48:53:4c:7c:9f:8c:55:80:f0:a9:1f:9f:3f: 7a:eb:8a:ee:5f:fa:06:3b:a4:0a:84:25:eb:d5:bc: 1f:fc:40:b4:dd:5d:62:29:64:95:7a:f0:13:99:a7: 33:5b:25:80:46:25:db:7e:94:06:98:d9:0e:0e:a4: 51:7c:f1:a2:60:95:46:bd:f4:1d:0b:f7:57:1d:04: 4f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:ED:F9:E1:B7:2B:D7:B5:2F:75:08:C6:7F:F4:8D:1A:6D:89:0F:A3 X509v3 Authority Key Identifier: keyid:D7:40:1E:02:49:41:8B:35:75:47:26:88:24:F6:24:49:25:D8:DB:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:6a:1a:6b:79:56:a9:f0:50:10:ae:34:45:f2:77:97:5f:f0: c6:d3:e2:8c:13:a3:d5:7c:ef:6d:ef:21:bf:48:06:e1:fb:4f: 28:14:b5:d7:62:5b:5b:71:cd:54:3d:f5:c2:c6:b3:0d:f9:a3: f8:f8:b7:ee:a2:07:e6:30:70:4e:8e:dd:7d:20:4b:78:fd:37: 35:94:51:05:cb:b1:9e:0b:e1:7b:fc:9d:37:f3:5e:e6:26:33: b8:0a:f5:af:7d:c3:ce:7c:56:60:0f:a6:9b:6d:8b:75:f8:df: 59:d9:79:c9:30:77:4a:dc:0e:ab:6e:2d:31:14:3e:74:64:0f: 07:85:30:c9:9a:cb:55:00:1b:39:81:c3:c8:13:f8:57:3f:4c: f5:45:b3:ce:2c:31:ec:03:c9:1a:74:a2:62:f3:bf:e7:69:a2: f4:fb:35:f2:82:5e:63:85:8a:4c:ac:ac:d7:e0:88:d8:c3:f6: eb:6b:4c:97:89:54:d3:9e:7e:5f:9c:4c:2b:c8:7a:1e:6d:90: 9d:95:ee:8f:56:75:84:93:9f:5a:15:c9:cd:72:0d:7d:b9:0c: b8:7d:d0:0b:11:4d:85:c4:8f:ae:8a:0a:2f:62:87:da:6d:5f: 51:bb:21:6a:50:12:d6:6b:1b:96:a3:9f:66:e2:b9:52:97:a7: 21:cd:2d:ec -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs56yNJGlmz0tGfl6PFOGyiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ3NDAxZTAyNDk0MThiMzU3NTQ3MjY4ODI0ZjYyNDQ5MjVk OGRiMzkwHhcNMjUxMjIwMDQwMTA5WhcNMjUxMjIxMDQwMTA5WjAzMTEwLwYDVQQD EyhjY2VkZjllMWI3MmJkN2I1MmY3NTA4YzY3ZmY0OGQxYTZkODkwZmEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq01RdRBQ1NJibKDlZP+Wv7vP8sPP ezSzfoZy+UnD6PVAfDg27w1S7hEJqj15ZZZbMvxHjoPzxC1qMo2tzHFXLatP9XFM 158S2jQxiytguBYKqIpWe9eSDagUYSj2fZIZGo0BaNFMEr96ja9UW/bDVbaD6a/g 6H7T9Rr+CuoS+exawfelMo0y/VKfYNiDZhHz5NnOslZAL80peAqwIt5qF6hpXdIL eo73T0cXnmnd1yHiLHLQ9EhTTHyfjFWA8Kkfnz9664ruX/oGO6QKhCXr1bwf/EC0 3V1iKWSVevATmaczWyWARiXbfpQGmNkODqRRfPGiYJVGvfQdC/dXHQRPYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMzt+eG3K9e1L3UIxn/0jRptiQ+jMB8GA1UdIwQY MBaAFNdAHgJJQYs1dUcmiCT2JEkl2Ns5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMTBBZUFrbEJpelYxUnlhSUpQWWtTU1hZMnprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC9kNzMxMzctYjA4OS00ZGI0LWI2YjIt NTA3ODkxMzk1NDE3LzEvMTBBZUFrbEJpelYxUnlhSUpQWWtTU1hZMnprLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC9kNzMxMzctYjA4OS00ZGI0LWI2YjItNTA3ODkxMzk1NDE3 LzEvMTBBZUFrbEJpelYxUnlhSUpQWWtTU1hZMnprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcGoaa3lW qfBQEK40RfJ3l1/wxtPijBOj1Xzvbe8hv0gG4ftPKBS112JbW3HNVD31wsazDfmj +Pi37qIH5jBwTo7dfSBLeP03NZRRBcuxngvhe/ydN/Ne5iYzuAr1r33DznxWYA+m m22LdfjfWdl5yTB3StwOq24tMRQ+dGQPB4UwyZrLVQAbOYHDyBP4Vz9M9UWzziwx 7APJGnSiYvO/52mi9Ps18oJeY4WKTKys1+CI2MP262tMl4lU055+X5xMK8h6Hm2Q nZXuj1Z1hJOfWhXJzXINfbkMuH3QCxFNhcSProoKL2KH2m1fUbshalAS1msblqOf ZuK5UpenIc0t7A== -----END CERTIFICATE-----Generated at Sat Dec 20 12:25:51 2025 by rpki-client