This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.mft File: AguJY5thIAOqgSvktlIbVnhFao4.mft (raw, json) Hash identifier: Nh3Wd3ksHPLAdJP4dVMkmpN4kXj8F0ADILLwluLeswc= Subject key identifier: 16:77:D1:6E:26:CD:1F:63:79:C6:A0:DC:11:4D:8F:64:06:44:27:A7 Authority key identifier: 02:0B:89:63:9B:61:20:03:AA:81:2B:E4:B6:52:1B:56:78:45:6A:8E Certificate issuer: /CN=020b89639b612003aa812be4b6521b5678456a8e Certificate serial: 019B3A218F04F95D76F84BED61412E5C803E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AguJY5thIAOqgSvktlIbVnhFao4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.mft Manifest number: 04E8 Signing time: Sat 20 Dec 2025 05:00:36 +0000 Manifest this update: Sat 20 Dec 2025 05:00:36 +0000 Manifest next update: Sun 21 Dec 2025 05:00:36 +0000 Files and hashes: 1: AguJY5thIAOqgSvktlIbVnhFao4.crl (hash: PIrymA6Nk/PRPECGKlUi2mOFvXYlroSA7G0TsNmu1HM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.mft rsync://rpki.ripe.net/repository/DEFAULT/AguJY5thIAOqgSvktlIbVnhFao4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:21:8f:04:f9:5d:76:f8:4b:ed:61:41:2e:5c:80:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=020b89639b612003aa812be4b6521b5678456a8e Validity Not Before: Dec 20 05:00:36 2025 GMT Not After : Dec 21 05:00:36 2025 GMT Subject: CN=1677d16e26cd1f6379c6a0dc114d8f64064427a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5e:bd:d3:84:f6:c7:c2:5a:0e:b1:50:ab:df: 43:65:76:1e:68:81:2f:a5:c2:d2:d1:df:68:45:7c: f5:74:b3:4f:c8:21:b7:25:4a:88:f4:b0:45:4e:27: 56:47:c2:71:c5:2d:1d:08:d1:ec:d5:c9:92:b2:19: 4e:cb:47:36:5e:da:87:d8:e7:ae:8b:4c:94:4f:2a: 3c:ab:f5:2f:83:be:b8:39:0a:8a:82:24:6f:52:6e: 45:ac:7d:6c:6b:4e:a0:47:df:3a:39:70:72:2b:fb: 14:ab:81:5f:9d:40:bf:fd:c4:f8:fa:66:f2:00:57: 02:1d:24:be:01:f9:60:10:7a:2e:19:0c:06:98:de: 84:c6:ae:e8:3f:8e:0e:b9:c4:5a:57:a5:a2:ef:53: 4c:94:c9:13:22:28:8f:c5:09:a1:d3:a1:6c:13:81: 12:95:c4:6b:f8:d4:7e:f3:9f:a5:37:63:55:75:16: a1:16:99:d9:fd:d8:66:90:87:d3:57:56:bf:f0:b1: 5d:18:1c:71:14:ab:6d:07:ef:12:d0:80:c5:96:2f: e1:5b:62:57:fb:41:5a:88:39:b8:38:a9:44:66:6b: 03:f5:40:e3:aa:72:64:ea:64:27:07:1f:75:39:12: 90:20:cd:7c:ab:db:70:3a:13:09:bd:e3:14:c8:4b: 4e:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:77:D1:6E:26:CD:1F:63:79:C6:A0:DC:11:4D:8F:64:06:44:27:A7 X509v3 Authority Key Identifier: keyid:02:0B:89:63:9B:61:20:03:AA:81:2B:E4:B6:52:1B:56:78:45:6A:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AguJY5thIAOqgSvktlIbVnhFao4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:f6:99:bc:3b:60:1f:7a:23:1f:6d:09:88:c2:ad:10:ec:60: 67:04:c7:96:40:f7:70:84:fc:d4:33:49:5a:bf:08:64:f9:30: fa:c8:89:85:4e:c5:3f:44:fa:46:ef:d0:ef:ca:fe:18:08:13: b9:b0:32:26:96:ee:e0:c6:ea:8e:7f:37:ce:36:2f:34:67:e8: 80:95:4c:40:2c:b7:27:9b:31:3e:a0:21:06:92:43:ee:11:57: 61:be:23:0c:5c:70:f8:c9:86:8c:d3:c6:8c:47:51:21:da:2c: 98:bf:c9:22:da:09:18:c2:76:80:0f:34:e9:51:55:2e:9e:50: 19:3f:fc:08:87:07:21:89:12:31:c5:c8:68:04:10:7a:78:4e: 20:5d:4b:a2:d1:5f:77:dd:4e:d0:46:d4:c1:75:0a:ef:20:73: 3d:4e:c5:a6:ca:e1:e7:46:26:4b:74:10:ef:46:f7:4d:21:42: 5e:f9:4c:f4:dd:b6:19:62:c4:1d:a2:2a:2e:e0:ae:7e:df:da: 06:4b:ed:8d:3a:64:89:a9:01:e9:07:9c:5c:95:26:43:f8:7b: b7:e6:5e:a4:99:49:8f:88:ba:d9:ac:fb:9a:12:be:9a:0c:c6: fc:33:9a:24:1d:9b:37:7a:9f:61:a6:3f:a6:ac:f9:82:22:24: c2:00:33:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6IY8E+V12+EvtYUEuXIA+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyMGI4OTYzOWI2MTIwMDNhYTgxMmJlNGI2NTIxYjU2Nzg0 NTZhOGUwHhcNMjUxMjIwMDUwMDM2WhcNMjUxMjIxMDUwMDM2WjAzMTEwLwYDVQQD EygxNjc3ZDE2ZTI2Y2QxZjYzNzljNmEwZGMxMTRkOGY2NDA2NDQyN2E3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsF6904T2x8JaDrFQq99DZXYeaIEv pcLS0d9oRXz1dLNPyCG3JUqI9LBFTidWR8JxxS0dCNHs1cmSshlOy0c2XtqH2Oeu i0yUTyo8q/Uvg764OQqKgiRvUm5FrH1sa06gR986OXByK/sUq4FfnUC//cT4+mby AFcCHSS+AflgEHouGQwGmN6Exq7oP44OucRaV6Wi71NMlMkTIiiPxQmh06FsE4ES lcRr+NR+85+lN2NVdRahFpnZ/dhmkIfTV1a/8LFdGBxxFKttB+8S0IDFli/hW2JX +0FaiDm4OKlEZmsD9UDjqnJk6mQnBx91ORKQIM18q9twOhMJveMUyEtOpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBZ30W4mzR9jecag3BFNj2QGRCenMB8GA1UdIwQY MBaAFAILiWObYSADqoEr5LZSG1Z4RWqOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWd1Slk1dGhJQU9xZ1N2a3RsSWJWbmhGYW80LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi83N2U5YzUtYWJjMi00YzM5LWI1MDIt ZWJmMzI5ZTk2ODQ2LzEvQWd1Slk1dGhJQU9xZ1N2a3RsSWJWbmhGYW80Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi83N2U5YzUtYWJjMi00YzM5LWI1MDItZWJmMzI5ZTk2ODQ2 LzEvQWd1Slk1dGhJQU9xZ1N2a3RsSWJWbmhGYW80LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWPaZvDtg H3ojH20JiMKtEOxgZwTHlkD3cIT81DNJWr8IZPkw+siJhU7FP0T6Ru/Q78r+GAgT ubAyJpbu4Mbqjn83zjYvNGfogJVMQCy3J5sxPqAhBpJD7hFXYb4jDFxw+MmGjNPG jEdRIdosmL/JItoJGMJ2gA806VFVLp5QGT/8CIcHIYkSMcXIaAQQenhOIF1LotFf d91O0EbUwXUK7yBzPU7Fpsrh50YmS3QQ70b3TSFCXvlM9N22GWLEHaIqLuCuft/a BkvtjTpkiakB6QecXJUmQ/h7t+ZepJlJj4i62az7mhK+mgzG/DOaJB2bN3qfYaY/ pqz5giIkwgAzxw== -----END CERTIFICATE-----Generated at Sat Dec 20 10:48:53 2025 by rpki-client