This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft File: Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft (raw, json) Hash identifier: T38jZoU5EKxDhk16FfZmR3HuZM+XFkaL/Y1jxKgw9EY= Subject key identifier: 14:C1:93:F8:75:A9:42:90:83:F8:D5:FC:07:3E:5B:2A:C2:42:31:D7 Authority key identifier: 02:8F:DF:71:9D:47:A1:00:33:45:1A:83:38:4A:6D:B6:8D:BD:5B:0F Certificate issuer: /CN=028fdf719d47a10033451a83384a6db68dbd5b0f Certificate serial: 019B4FCF9A0F1EC9119C2507080063B894F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ao_fcZ1HoQAzRRqDOEptto29Ww8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft Manifest number: 0D9A Signing time: Wed 24 Dec 2025 10:02:43 +0000 Manifest this update: Wed 24 Dec 2025 10:02:43 +0000 Manifest next update: Thu 25 Dec 2025 10:02:43 +0000 Files and hashes: 1: Ao_fcZ1HoQAzRRqDOEptto29Ww8.crl (hash: aCMRBcJYrs88LyN+brq7zl5DIiqbO7y5XPp5Y2a+o+E=) 2: PF_eVnR65kNetKj7PMmx-v4rMFw.roa (hash: /4k6yxxkJCQSm4rG3gdwumQHjo0wfUW3Pw4ZNvKY7P0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft rsync://rpki.ripe.net/repository/DEFAULT/Ao_fcZ1HoQAzRRqDOEptto29Ww8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 09:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4f:cf:9a:0f:1e:c9:11:9c:25:07:08:00:63:b8:94:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=028fdf719d47a10033451a83384a6db68dbd5b0f Validity Not Before: Dec 24 10:02:43 2025 GMT Not After : Dec 25 10:02:43 2025 GMT Subject: CN=14c193f875a9429083f8d5fc073e5b2ac24231d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c9:1a:7a:5f:4e:58:1d:10:a6:8f:a6:86:ab: e9:eb:3f:9a:39:ad:09:9f:04:46:36:dd:22:f0:5d: 47:c7:2b:59:70:ee:5d:88:da:9a:4a:96:f2:a7:e0: 50:79:4d:a8:ed:26:48:06:9e:e7:35:6b:f7:42:97: 14:7c:58:48:15:91:7e:f4:1f:55:45:6a:f1:66:73: ef:c0:86:7b:f1:82:d0:69:99:58:52:ec:40:1a:d4: 26:1c:ce:14:24:03:d2:6a:e3:48:c0:c7:3b:bb:23: 6d:1a:5d:d8:37:4c:4b:e0:cf:fe:d9:ca:c3:73:4a: 14:4b:23:28:ef:0b:ed:d1:30:f7:66:3f:04:34:77: b9:b8:6c:20:88:ab:ff:b6:77:34:b5:5d:33:be:d6: d1:21:d0:46:79:24:e4:4d:97:6f:73:27:21:ed:41: 00:56:66:f5:26:8f:4a:7c:57:d3:66:cd:3d:d1:9f: 54:88:b5:2e:30:2d:0e:3c:3a:38:d8:a6:12:74:ab: 00:da:b4:e0:e2:9e:97:14:34:20:fd:1f:fe:67:70: 32:38:07:4a:53:78:f0:28:74:be:d1:46:99:02:c4: 45:f1:b5:76:b8:91:b6:e4:ff:73:06:b1:0c:84:4f: 5a:73:69:39:b1:9c:b6:85:56:20:47:fc:0f:78:1e: ec:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:C1:93:F8:75:A9:42:90:83:F8:D5:FC:07:3E:5B:2A:C2:42:31:D7 X509v3 Authority Key Identifier: keyid:02:8F:DF:71:9D:47:A1:00:33:45:1A:83:38:4A:6D:B6:8D:BD:5B:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ao_fcZ1HoQAzRRqDOEptto29Ww8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:f2:4e:01:ef:74:60:3b:e1:75:ff:0e:2a:d7:22:fb:d5:9c: d3:cf:10:f1:52:49:6a:1f:d6:5c:50:68:77:a8:00:38:a6:ef: be:91:09:48:b8:a0:99:46:99:f0:e6:ea:c5:ee:df:59:0f:34: ab:c3:12:d1:50:e5:94:1f:95:23:6f:3d:05:47:c7:a4:8a:d3: 7e:fc:0e:fa:78:c0:4c:1f:47:6c:8e:2d:d6:f5:78:cc:00:a0: 02:b9:23:ab:18:43:58:79:56:76:99:c7:0e:f2:bd:2c:6e:f4: e0:be:9c:83:22:3c:6a:89:4c:be:63:15:49:8d:5b:8a:44:d3: 93:32:91:c7:da:57:24:14:34:b7:07:62:b7:89:d8:8b:68:c2: 83:ee:ba:f9:19:e7:9d:5d:e4:2d:85:2d:d9:c0:dd:91:b5:5b: 69:9b:f0:73:61:13:7f:ea:5f:e3:69:e6:74:8d:a9:89:a7:b2: c8:01:b9:74:47:38:97:ce:2d:4e:b5:21:8d:fe:92:24:ee:c5: c0:dc:85:c0:2b:f5:f1:1b:89:ae:3b:db:46:82:cc:77:43:52: a2:b5:2c:cb:9d:08:cf:ca:2d:ce:c0:55:61:43:43:c8:70:8b: 2c:7d:40:8e:e7:6b:00:6c:32:91:dd:4b:0b:ad:19:d4:cb:c4: cd:6f:d8:7b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtPz5oPHskRnCUHCABjuJTzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyOGZkZjcxOWQ0N2ExMDAzMzQ1MWE4MzM4NGE2ZGI2OGRi ZDViMGYwHhcNMjUxMjI0MTAwMjQzWhcNMjUxMjI1MTAwMjQzWjAzMTEwLwYDVQQD EygxNGMxOTNmODc1YTk0MjkwODNmOGQ1ZmMwNzNlNWIyYWMyNDIzMWQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu8kael9OWB0Qpo+mhqvp6z+aOa0J nwRGNt0i8F1HxytZcO5diNqaSpbyp+BQeU2o7SZIBp7nNWv3QpcUfFhIFZF+9B9V RWrxZnPvwIZ78YLQaZlYUuxAGtQmHM4UJAPSauNIwMc7uyNtGl3YN0xL4M/+2crD c0oUSyMo7wvt0TD3Zj8ENHe5uGwgiKv/tnc0tV0zvtbRIdBGeSTkTZdvcych7UEA Vmb1Jo9KfFfTZs090Z9UiLUuMC0OPDo42KYSdKsA2rTg4p6XFDQg/R/+Z3AyOAdK U3jwKHS+0UaZAsRF8bV2uJG25P9zBrEMhE9ac2k5sZy2hVYgR/wPeB7seQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBTBk/h1qUKQg/jV/Ac+WyrCQjHXMB8GA1UdIwQY MBaAFAKP33GdR6EAM0UagzhKbbaNvVsPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQW9fZmNaMUhvUUF6UlJxRE9FcHR0bzI5V3c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9kNDlkNTItNTBiMS00OTQ4LWIxZjct MDU1YTljYWQ4ZGY3LzEvQW9fZmNaMUhvUUF6UlJxRE9FcHR0bzI5V3c4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi9kNDlkNTItNTBiMS00OTQ4LWIxZjctMDU1YTljYWQ4ZGY3 LzEvQW9fZmNaMUhvUUF6UlJxRE9FcHR0bzI5V3c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA/JOAe90 YDvhdf8OKtci+9Wc088Q8VJJah/WXFBod6gAOKbvvpEJSLigmUaZ8Obqxe7fWQ80 q8MS0VDllB+VI289BUfHpIrTfvwO+njATB9HbI4t1vV4zACgArkjqxhDWHlWdpnH DvK9LG704L6cgyI8aolMvmMVSY1bikTTkzKRx9pXJBQ0twdit4nYi2jCg+66+Rnn nV3kLYUt2cDdkbVbaZvwc2ETf+pf42nmdI2piaeyyAG5dEc4l84tTrUhjf6SJO7F wNyFwCv18RuJrjvbRoLMd0NSorUsy50Iz8otzsBVYUNDyHCLLH1AjudrAGwykd1L C60Z1MvEzW/Yew== -----END CERTIFICATE-----Generated at Wed Dec 24 15:44:56 2025 by rpki-client