This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft File: pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft (raw, json) Hash identifier: GOyuN6oP1oGfET9SQrt+nw9OgraItPCEnp9MatTzpIU= Subject key identifier: EB:81:02:AE:BC:74:22:B1:5D:C5:DE:28:54:32:6F:95:F6:C9:0B:1C Authority key identifier: A4:08:FC:92:46:04:27:51:11:0D:2E:C5:06:5D:0C:47:D1:D4:3C:D0 Certificate issuer: /CN=a408fc9246042751110d2ec5065d0c47d1d43cd0 Certificate serial: 019B1B049EC98313208898F312C6FFE37B89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft Manifest number: 0CF9 Signing time: Sun 14 Dec 2025 04:00:46 +0000 Manifest this update: Sun 14 Dec 2025 04:00:46 +0000 Manifest next update: Mon 15 Dec 2025 04:00:46 +0000 Files and hashes: 1: E8EItKN2__9iKd7VUUHBehRVQCo.roa (hash: mIn23TrAWNsxopm3nGDSwuz19rtPaaB79Dzo0Qrhuqk=) 2: pAj8kkYEJ1ERDS7FBl0MR9HUPNA.crl (hash: llJIKxLOQNrTwoPwyFqKebdAmdgWuAXesssbTP1/hdc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft rsync://rpki.ripe.net/repository/DEFAULT/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1b:04:9e:c9:83:13:20:88:98:f3:12:c6:ff:e3:7b:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a408fc9246042751110d2ec5065d0c47d1d43cd0 Validity Not Before: Dec 14 04:00:46 2025 GMT Not After : Dec 15 04:00:46 2025 GMT Subject: CN=eb8102aebc7422b15dc5de2854326f95f6c90b1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:aa:6a:23:cd:12:97:9f:9d:01:14:cc:a5:83: fc:f3:2e:a1:6b:12:03:6d:ba:f3:0d:dc:2b:68:68: 85:42:68:07:d4:0c:9d:56:12:42:bc:ea:6e:af:b5: 81:d8:be:16:68:f9:59:b6:43:cc:d6:ac:6d:82:27: 69:42:fc:3a:bb:63:8b:0e:14:01:02:fd:9c:10:38: 8f:48:90:db:e0:92:c1:e6:99:61:3e:92:63:57:9d: eb:a4:8e:0a:a3:9d:bf:05:94:b3:07:24:62:b4:84: a4:2d:8b:7d:0f:39:37:29:6e:b5:02:21:74:e6:8e: c4:88:99:8d:72:06:fd:d3:c8:8c:93:6b:81:49:ec: f0:ad:4d:89:bb:80:c7:be:21:c7:f3:7b:62:d0:80: 6e:c5:86:be:c0:47:11:49:6a:6b:08:7d:6e:8d:f3: 31:b0:f7:f6:fb:ab:79:f1:8e:9b:00:fc:b3:66:e5: 97:a8:4f:25:94:18:a9:90:81:28:38:34:a5:78:7f: bd:d8:0a:3e:09:67:0f:70:c8:8a:22:f4:2f:30:af: 51:5d:c3:1d:0b:91:1c:c2:2a:22:c6:41:e1:8a:9e: a9:94:7f:7d:d6:89:8e:ea:f6:ef:a9:71:15:af:29: d0:30:00:38:d3:b8:ea:27:53:c1:d7:5e:7f:34:bd: a7:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:81:02:AE:BC:74:22:B1:5D:C5:DE:28:54:32:6F:95:F6:C9:0B:1C X509v3 Authority Key Identifier: keyid:A4:08:FC:92:46:04:27:51:11:0D:2E:C5:06:5D:0C:47:D1:D4:3C:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:43:5f:ea:89:08:60:92:69:91:1a:52:f8:a9:ec:2b:29:55: ba:e9:37:17:9e:9e:a8:1a:b7:ff:11:68:b0:82:59:e3:e3:7b: c9:f4:f9:d2:5f:84:7c:62:09:cb:87:93:6f:b2:7f:15:c6:d2: e2:fd:63:8c:4a:3c:dc:03:63:e8:6c:75:dc:0b:e3:1f:bf:8d: 53:a8:02:e4:f1:38:79:4f:c3:3f:cb:4a:21:f9:da:ee:3f:b5: 04:23:31:c2:09:ec:90:80:e0:79:8d:32:11:62:c4:72:f9:08: 99:85:59:ec:a6:20:6d:60:d0:9c:d0:14:0f:b4:af:0f:26:06: 30:1a:4a:d9:3e:f3:df:82:2a:7a:c7:e5:11:b0:3a:4e:bd:2b: b1:5c:81:13:45:f6:2d:ab:a8:2f:b6:f4:fe:f5:62:41:bb:8c: b2:93:d5:c5:1f:28:6c:95:b2:ca:24:d5:5c:d7:96:69:3d:a3: 09:32:8b:45:8a:7d:17:4a:23:e5:47:cb:c9:59:9b:ee:c6:0a: e1:88:f7:6e:3c:70:8c:37:32:57:1a:c1:cb:46:33:2f:f4:57: 99:97:29:42:5a:a3:c9:cc:3f:80:92:a0:e6:89:1e:61:32:64: 3c:57:20:39:11:c7:2a:f2:13:e5:94:40:a7:c4:f3:f8:a2:08: 2b:fe:94:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsbBJ7JgxMgiJjzEsb/43uJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0MDhmYzkyNDYwNDI3NTExMTBkMmVjNTA2NWQwYzQ3ZDFk NDNjZDAwHhcNMjUxMjE0MDQwMDQ2WhcNMjUxMjE1MDQwMDQ2WjAzMTEwLwYDVQQD EyhlYjgxMDJhZWJjNzQyMmIxNWRjNWRlMjg1NDMyNmY5NWY2YzkwYjFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA16pqI80Sl5+dARTMpYP88y6haxID bbrzDdwraGiFQmgH1AydVhJCvOpur7WB2L4WaPlZtkPM1qxtgidpQvw6u2OLDhQB Av2cEDiPSJDb4JLB5plhPpJjV53rpI4Ko52/BZSzByRitISkLYt9Dzk3KW61AiF0 5o7EiJmNcgb908iMk2uBSezwrU2Ju4DHviHH83ti0IBuxYa+wEcRSWprCH1ujfMx sPf2+6t58Y6bAPyzZuWXqE8llBipkIEoODSleH+92Ao+CWcPcMiKIvQvMK9RXcMd C5EcwioixkHhip6plH991omO6vbvqXEVrynQMAA407jqJ1PB115/NL2nowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOuBAq68dCKxXcXeKFQyb5X2yQscMB8GA1UdIwQY MBaAFKQI/JJGBCdREQ0uxQZdDEfR1DzQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcEFqOGtrWUVKMUVSRFM3RkJsME1SOUhVUE5BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9hNTk3YzUtM2VjNC00YjQ2LThjN2It ZDkyMjQ4YWFiZTJkLzEvcEFqOGtrWUVKMUVSRFM3RkJsME1SOUhVUE5BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi9hNTk3YzUtM2VjNC00YjQ2LThjN2ItZDkyMjQ4YWFiZTJk LzEvcEFqOGtrWUVKMUVSRFM3RkJsME1SOUhVUE5BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgUNf6okI YJJpkRpS+KnsKylVuuk3F56eqBq3/xFosIJZ4+N7yfT50l+EfGIJy4eTb7J/FcbS 4v1jjEo83ANj6Gx13AvjH7+NU6gC5PE4eU/DP8tKIfna7j+1BCMxwgnskIDgeY0y EWLEcvkImYVZ7KYgbWDQnNAUD7SvDyYGMBpK2T7z34IqesflEbA6Tr0rsVyBE0X2 LauoL7b0/vViQbuMspPVxR8obJWyyiTVXNeWaT2jCTKLRYp9F0oj5UfLyVmb7sYK 4Yj3bjxwjDcyVxrBy0YzL/RXmZcpQlqjycw/gJKg5okeYTJkPFcgORHHKvIT5ZRA p8Tz+KIIK/6U9Q== -----END CERTIFICATE-----Generated at Sun Dec 14 09:32:45 2025 by rpki-client