This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft File: A-pQioW8c6mqogOop7r5wWLm82w.mft (raw, json) Hash identifier: 02cg1D4OmjlRutnF/KkPOZKaxngmAjWJZSzUqsE3xpE= Subject key identifier: A1:F8:56:BE:E3:4B:01:96:DE:A5:9B:56:5C:54:4F:F5:59:FC:CC:D1 Authority key identifier: 03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C Certificate issuer: /CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c Certificate serial: 019B0F37C6EA984000781BBE8FA62B86636A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft Manifest number: 08E2 Signing time: Thu 11 Dec 2025 21:01:12 +0000 Manifest this update: Thu 11 Dec 2025 21:01:12 +0000 Manifest next update: Fri 12 Dec 2025 21:01:12 +0000 Files and hashes: 1: 2j9Y51xwRYelF6JrKcKDFxJ1u_0.roa (hash: 0/wxjfgZFvKq0jXNMFirhtTQajhUkEHAhxXEqfHBgNk=) 2: A-pQioW8c6mqogOop7r5wWLm82w.crl (hash: Unu14qgIFPQKIUIA0OhMLgxNHL9GMi0xzo5GPhEpCfE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:37:c6:ea:98:40:00:78:1b:be:8f:a6:2b:86:63:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c Validity Not Before: Dec 11 21:01:12 2025 GMT Not After : Dec 12 21:01:12 2025 GMT Subject: CN=a1f856bee34b0196dea59b565c544ff559fcccd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:85:3f:46:5e:35:21:47:e1:ac:9b:e1:fd:d7: 56:c4:2f:0b:46:0f:cc:2b:5c:c3:d5:34:d3:f2:46: 20:8f:af:34:a8:90:66:77:87:96:1e:5a:b0:b0:de: f8:98:7f:f3:04:3e:f8:d7:9d:06:de:78:b2:5d:19: 97:e5:20:39:40:3e:a1:1f:e5:3f:db:76:9f:37:5d: ed:77:5c:91:c9:7e:67:cf:f8:50:bc:ca:df:f0:0d: 92:32:98:c6:5a:a4:f9:e6:4a:32:1e:52:0a:43:a7: 32:ef:83:79:bc:8b:61:22:85:9a:aa:9d:a2:b0:4b: c3:c1:39:58:b5:97:f9:e7:35:23:c9:66:28:05:a5: 9e:7d:33:07:0c:62:aa:37:39:64:e1:47:2f:33:52: 85:08:8d:30:c3:03:e3:11:4a:8a:c5:ce:5f:e8:39: ab:40:96:a0:a8:ea:2b:24:09:48:a4:09:9a:f1:71: 02:54:33:7a:c5:68:66:f6:22:37:9b:62:8e:ba:e4: ea:53:21:88:74:c1:3e:c4:a2:49:de:a3:ce:a7:fe: 14:de:a4:5e:0c:c4:d8:0a:04:37:c2:36:ee:6c:de: 2b:49:79:de:14:8e:59:24:35:b6:53:e5:ed:57:29: b8:8e:53:e4:2e:0b:b8:23:3c:3e:9d:39:a7:ce:d3: 58:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:F8:56:BE:E3:4B:01:96:DE:A5:9B:56:5C:54:4F:F5:59:FC:CC:D1 X509v3 Authority Key Identifier: keyid:03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:38:1b:7d:9f:1c:95:56:cc:b7:cf:43:70:7b:6e:e4:aa:a3: 83:77:43:4b:69:22:85:bd:06:0e:1e:79:cf:da:97:b8:fb:3b: e7:b2:d9:ca:71:79:6a:12:e9:a8:b3:d9:2d:ac:05:0a:16:17: bd:58:98:c0:23:b8:44:ac:67:ec:8b:aa:bc:c7:b5:9a:6b:03: 93:49:7e:86:18:cb:91:64:53:94:88:19:5e:4f:41:9e:06:dc: 1d:a2:f6:c2:58:db:86:1a:1a:90:42:3a:98:9d:21:75:93:d9: d2:d3:c2:4b:b7:6a:de:da:fd:69:b9:3b:6f:c0:a7:00:1c:74: 36:e8:49:4a:30:fc:6c:c4:86:61:ea:ee:e5:fb:77:e3:8d:c4: e0:24:8e:ec:44:b2:c1:1b:b2:b7:a8:5a:e3:6b:b5:80:5a:d6: 8b:62:60:b0:f5:2f:75:8c:3e:af:25:a1:1b:ba:1a:2f:88:04: da:ea:33:e3:ae:8d:f5:1a:94:e4:df:ae:fe:b9:ff:eb:68:30: e4:e2:bf:ff:b6:e6:61:80:3c:65:e7:ec:bf:5d:c8:61:60:ed: 78:60:d5:75:53:2c:63:20:be:18:1d:8a:96:b1:a4:ca:44:12: a1:a7:99:d9:1c:49:db:48:63:c4:67:bf:5f:7c:9b:c2:23:bc: c1:f0:2e:03 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPN8bqmEAAeBu+j6YrhmNqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzZWE1MDhhODViYzczYTlhYWEyMDNhOGE3YmFmOWMxNjJl NmYzNmMwHhcNMjUxMjExMjEwMTEyWhcNMjUxMjEyMjEwMTEyWjAzMTEwLwYDVQQD EyhhMWY4NTZiZWUzNGIwMTk2ZGVhNTliNTY1YzU0NGZmNTU5ZmNjY2QxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtoU/Rl41IUfhrJvh/ddWxC8LRg/M K1zD1TTT8kYgj680qJBmd4eWHlqwsN74mH/zBD74150G3niyXRmX5SA5QD6hH+U/ 23afN13td1yRyX5nz/hQvMrf8A2SMpjGWqT55koyHlIKQ6cy74N5vIthIoWaqp2i sEvDwTlYtZf55zUjyWYoBaWefTMHDGKqNzlk4UcvM1KFCI0wwwPjEUqKxc5f6Dmr QJagqOorJAlIpAma8XECVDN6xWhm9iI3m2KOuuTqUyGIdME+xKJJ3qPOp/4U3qRe DMTYCgQ3wjbubN4rSXneFI5ZJDW2U+XtVym4jlPkLgu4Izw+nTmnztNYDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKH4Vr7jSwGW3qWbVlxUT/VZ/MzRMB8GA1UdIwQY MBaAFAPqUIqFvHOpqqIDqKe6+cFi5vNsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi85ZWIzNDYtN2IwNy00MTA4LTlmYjAt ZDcyNzA5MDVlOTIzLzEvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi85ZWIzNDYtN2IwNy00MTA4LTlmYjAtZDcyNzA5MDVlOTIz LzEvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnDgbfZ8c lVbMt89DcHtu5Kqjg3dDS2kihb0GDh55z9qXuPs757LZynF5ahLpqLPZLawFChYX vViYwCO4RKxn7IuqvMe1mmsDk0l+hhjLkWRTlIgZXk9BngbcHaL2wljbhhoakEI6 mJ0hdZPZ0tPCS7dq3tr9abk7b8CnABx0NuhJSjD8bMSGYeru5ft3443E4CSO7ESy wRuyt6ha42u1gFrWi2JgsPUvdYw+ryWhG7oaL4gE2uoz466N9RqU5N+u/rn/62gw 5OK//7bmYYA8Zefsv13IYWDteGDVdVMsYyC+GB2KlrGkykQSoaeZ2RxJ20hjxGe/ X3ybwiO8wfAuAw== -----END CERTIFICATE-----Generated at Thu Dec 11 23:01:25 2025 by rpki-client