This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.mft File: afY2pbazoordg_l0Rtewg7lMPa4.mft (raw, json) Hash identifier: AztU2As6Pz8fASjbJuNGSntM/mAKgzbfibmi20lUMy8= Subject key identifier: D6:A6:11:A8:AC:F5:BE:53:A4:F9:7D:73:E0:7C:CB:42:31:4E:CF:5C Authority key identifier: 69:F6:36:A5:B6:B3:A2:8A:DD:83:F9:74:46:D7:B0:83:B9:4C:3D:AE Certificate issuer: /CN=69f636a5b6b3a28add83f97446d7b083b94c3dae Certificate serial: 019B590866E48B68FDDF093AE384605DED7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/afY2pbazoordg_l0Rtewg7lMPa4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.mft Manifest number: 0766 Signing time: Fri 26 Dec 2025 05:01:21 +0000 Manifest this update: Fri 26 Dec 2025 05:01:21 +0000 Manifest next update: Sat 27 Dec 2025 05:01:21 +0000 Files and hashes: 1: Uq41S_TL-4cdbHQOXq-81k1Y6B0.roa (hash: imvcawPVkLTN2rqi9GrM6dLepGLRmW6IgQsJl3oa4vo=) 2: afY2pbazoordg_l0Rtewg7lMPa4.crl (hash: AYOCwNgLuHzpXH7OcTlBpXYlOM4TA8lilTwHsmqw74c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.crl rsync://rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.mft rsync://rpki.ripe.net/repository/DEFAULT/afY2pbazoordg_l0Rtewg7lMPa4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 05:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:08:66:e4:8b:68:fd:df:09:3a:e3:84:60:5d:ed:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69f636a5b6b3a28add83f97446d7b083b94c3dae Validity Not Before: Dec 26 05:01:21 2025 GMT Not After : Dec 27 05:01:21 2025 GMT Subject: CN=d6a611a8acf5be53a4f97d73e07ccb42314ecf5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:56:9b:5a:e3:82:82:48:1d:19:f1:67:8f:f6: e4:d1:82:15:57:53:d0:df:e2:a5:21:dc:6d:c3:02: 97:03:71:9d:b5:4b:dc:b0:3f:be:25:9b:da:a0:28: 86:17:5a:8c:9c:72:a9:3e:aa:09:fc:43:71:0f:29: f9:78:12:6c:f9:8b:f6:9b:97:ad:fd:fb:ee:08:41: 40:b7:5b:7f:e5:60:42:34:d5:7a:0f:f5:80:89:83: bc:38:f0:2f:b8:6b:06:4c:30:70:0a:d0:9e:f0:5a: a7:b4:9e:dc:35:65:62:3e:83:0e:65:c0:c3:cc:b6: f6:fe:76:e1:fc:74:f0:c4:55:a5:92:d0:a6:93:89: 71:c4:1b:3e:48:ea:dd:4e:a7:1a:35:e0:c7:eb:1b: 90:27:90:56:d1:e1:79:7a:83:2b:f1:ca:53:26:15: 68:a2:cc:e2:2c:1f:20:ee:3a:a7:51:71:69:c2:2f: 50:f1:be:7e:82:04:c2:1f:10:c5:38:f5:12:63:24: 4d:ea:89:cb:87:08:c2:2f:b5:ce:df:f0:a2:b9:eb: ce:61:b1:35:aa:74:c0:50:82:a3:53:59:c9:d0:7f: f3:6e:49:0b:8c:79:73:0b:ba:dc:31:a0:25:bb:38: 7c:ef:b8:57:e9:ed:82:33:2b:21:97:f9:58:d0:25: 08:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:A6:11:A8:AC:F5:BE:53:A4:F9:7D:73:E0:7C:CB:42:31:4E:CF:5C X509v3 Authority Key Identifier: keyid:69:F6:36:A5:B6:B3:A2:8A:DD:83:F9:74:46:D7:B0:83:B9:4C:3D:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/afY2pbazoordg_l0Rtewg7lMPa4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:8d:06:6d:94:bb:86:69:6c:b5:70:75:a6:32:fe:9b:7c:92: 05:8c:c8:17:0d:2a:60:cc:07:e0:dc:ee:30:9a:bd:94:c4:76: f0:99:d9:d0:8a:a7:02:37:37:b1:f3:e6:f3:56:9b:9f:ec:fe: 51:a6:53:dc:ab:83:41:de:d4:95:71:e9:93:4a:8f:f0:4a:89: 6a:00:a7:07:10:ba:dc:4f:06:d0:41:cf:77:7e:f5:62:20:f4: ed:7a:8d:8b:fd:2f:06:11:37:5e:00:d9:d9:be:ed:45:96:9e: 3f:67:b1:ac:4d:e3:86:2d:7f:ed:ee:f1:16:e0:4a:9f:89:dc: a9:a9:a2:a9:c6:ef:90:0c:09:fb:ed:68:c4:48:7f:b5:e6:c7: 5b:e3:57:d5:92:b4:b2:5a:da:14:a2:f7:7e:36:d6:4b:2c:d3: 54:60:84:7e:6a:f3:4d:45:bc:71:db:33:1b:ab:d5:cc:b1:b3: 25:67:b7:79:ba:09:3a:bf:74:63:ba:83:9b:fe:c5:a3:3d:e1: f5:eb:1b:29:41:36:27:52:ae:53:ad:94:b8:08:82:8e:82:d9: 7e:77:4c:9b:d8:c4:6d:d9:7a:84:07:bd:a1:08:2c:3e:22:92: ff:01:2e:a4:16:2a:ab:28:c7:b1:0a:ab:3f:2c:b6:bc:5f:c9: 4e:2a:be:ae -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZCGbki2j93wk644RgXe19MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ZjYzNmE1YjZiM2EyOGFkZDgzZjk3NDQ2ZDdiMDgzYjk0 YzNkYWUwHhcNMjUxMjI2MDUwMTIxWhcNMjUxMjI3MDUwMTIxWjAzMTEwLwYDVQQD EyhkNmE2MTFhOGFjZjViZTUzYTRmOTdkNzNlMDdjY2I0MjMxNGVjZjVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxVabWuOCgkgdGfFnj/bk0YIVV1PQ 3+KlIdxtwwKXA3GdtUvcsD++JZvaoCiGF1qMnHKpPqoJ/ENxDyn5eBJs+Yv2m5et /fvuCEFAt1t/5WBCNNV6D/WAiYO8OPAvuGsGTDBwCtCe8FqntJ7cNWViPoMOZcDD zLb2/nbh/HTwxFWlktCmk4lxxBs+SOrdTqcaNeDH6xuQJ5BW0eF5eoMr8cpTJhVo osziLB8g7jqnUXFpwi9Q8b5+ggTCHxDFOPUSYyRN6onLhwjCL7XO3/CiuevOYbE1 qnTAUIKjU1nJ0H/zbkkLjHlzC7rcMaAluzh877hX6e2CMyshl/lY0CUIMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNamEais9b5TpPl9c+B8y0IxTs9cMB8GA1UdIwQY MBaAFGn2NqW2s6KK3YP5dEbXsIO5TD2uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWZZMnBiYXpvb3JkZ19sMFJ0ZXdnN2xNUGE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9lOTk5NTQtYzAwZi00MDE0LThlNzEt OGFlZTJiZjg5YjkxLzEvYWZZMnBiYXpvb3JkZ19sMFJ0ZXdnN2xNUGE0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS9lOTk5NTQtYzAwZi00MDE0LThlNzEtOGFlZTJiZjg5Yjkx LzEvYWZZMnBiYXpvb3JkZ19sMFJ0ZXdnN2xNUGE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi40GbZS7 hmlstXB1pjL+m3ySBYzIFw0qYMwH4NzuMJq9lMR28JnZ0IqnAjc3sfPm81abn+z+ UaZT3KuDQd7UlXHpk0qP8EqJagCnBxC63E8G0EHPd371YiD07XqNi/0vBhE3XgDZ 2b7tRZaeP2exrE3jhi1/7e7xFuBKn4ncqamiqcbvkAwJ++1oxEh/tebHW+NX1ZK0 slraFKL3fjbWSyzTVGCEfmrzTUW8cdszG6vVzLGzJWe3eboJOr90Y7qDm/7Foz3h 9esbKUE2J1KuU62UuAiCjoLZfndMm9jEbdl6hAe9oQgsPiKS/wEupBYqqyjHsQqr Pyy2vF/JTiq+rg== -----END CERTIFICATE-----Generated at Fri Dec 26 14:16:01 2025 by rpki-client