This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft File: Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft (raw, json) Hash identifier: 1zTIj34vf+rpfLRhG/PeFO4lTtDbT1uBMS1DupkC4GI= Subject key identifier: 1B:AB:C9:D9:3C:9E:A9:EC:86:79:5D:DD:22:90:A3:5C:42:4A:A3:B9 Authority key identifier: 02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3 Certificate issuer: /CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3 Certificate serial: 019B1A96F815A0493485BA8892591607571F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft Manifest number: 1784 Signing time: Sun 14 Dec 2025 02:01:00 +0000 Manifest this update: Sun 14 Dec 2025 02:01:00 +0000 Manifest next update: Mon 15 Dec 2025 02:01:00 +0000 Files and hashes: 1: 6QBVEiLusjnuHnwecVMK9Kg-WII.roa (hash: OapSvDTUmzDRZu9Q3KlIrLgI0CjCfgxrem8xot5UiSo=) 2: Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl (hash: i0miYnoBnGFWDFWi+bJp9bsKKUw3U+VuIpjHoV9syvU=) 3: JeT3PicL3j6wpeXRT3s8FrJpy3w.roa (hash: tjXOPJYxlFtc8BfVkznJC0Nu37PcV0Dt33rxJApZ9kY=) 4: L5lOWtMXwmLYho3Arxcpd76R5sw.roa (hash: XM0Za1PmkukhwAWipMkx42usukTFibdWlbabSAWWgH4=) 5: Lwic0o2gw3k82wpfSkPa-wUg5Aw.roa (hash: pZ1a8TMxYqDEEa657nYARi2g7u3tXGj01SXvh3eUl1s=) 6: YBIU31Bau4IHlrYcDanR7_BCiuw.roa (hash: t02Hz19f7jw3zKy57+diFTpZafQk0Oywl27vP0An1/U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1a:96:f8:15:a0:49:34:85:ba:88:92:59:16:07:57:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3 Validity Not Before: Dec 14 02:01:00 2025 GMT Not After : Dec 15 02:01:00 2025 GMT Subject: CN=1babc9d93c9ea9ec86795ddd2290a35c424aa3b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:2e:eb:75:d0:2f:2f:d5:58:94:f6:58:67:0d: 46:33:4f:b1:43:7e:fa:3f:93:48:2f:b4:51:21:5d: 94:04:0e:fd:48:14:f4:63:09:7f:eb:fa:69:bf:27: 2b:7d:d8:15:90:e2:e5:65:03:58:ea:92:dd:69:5a: 35:70:0a:9a:15:9b:13:7e:63:91:0b:ee:0e:8c:b1: ed:de:63:7c:3b:1a:20:e0:1a:6a:71:5a:b3:39:ee: 86:8d:7e:53:3b:91:4e:6d:c4:b7:41:53:a3:1f:46: 10:b9:99:66:d6:db:5f:8b:36:67:bd:b8:0d:88:ea: 28:65:e5:08:a3:c8:be:c2:c9:5e:86:69:bb:38:9a: 9e:e3:01:6c:18:43:88:96:d3:b3:c7:53:9a:b1:7d: 66:16:74:74:b0:09:3b:26:ae:9a:20:ad:d0:a3:dd: f6:0c:27:17:50:92:2e:61:60:34:90:c9:42:27:4c: c3:9a:bf:6d:dc:e7:fe:31:86:6e:5d:49:a0:d9:85: 0f:0e:da:d2:81:ad:d5:ed:82:5d:d6:7b:e6:c8:78: 96:2d:65:f5:0b:ac:09:aa:25:ad:5a:57:a6:06:e4: ac:4c:88:31:31:a8:14:21:1b:d5:82:fa:68:06:48: ba:f4:24:23:5b:bc:a8:18:6a:b2:64:25:5b:e1:39: 57:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:AB:C9:D9:3C:9E:A9:EC:86:79:5D:DD:22:90:A3:5C:42:4A:A3:B9 X509v3 Authority Key Identifier: keyid:02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:30:9d:91:83:11:2b:d9:66:64:ef:a9:95:20:6d:4e:e2:c3: db:a9:b3:48:2e:92:e5:23:1f:1c:45:4f:1b:72:74:78:58:11: 74:a8:12:8a:91:70:4c:96:9b:fd:0f:bc:a6:f0:0b:91:d2:23: 71:50:84:b7:21:66:5f:12:37:84:da:c2:42:d7:14:ac:55:9e: 4c:a1:b1:91:76:90:2d:4b:7b:1b:cc:1e:ef:02:62:bb:46:63: 60:ab:4e:67:9d:ad:55:7a:06:76:46:2a:a5:60:d7:6f:2e:bc: 6e:79:93:c2:33:b5:54:5c:c5:98:50:51:8f:8a:82:76:4f:b6: 60:39:b9:e4:36:38:77:c3:34:50:7d:a4:b3:5d:49:dd:22:04: 31:a7:63:96:f3:96:3c:ef:d2:4c:e3:18:b5:d2:79:fb:73:70: b8:92:28:2f:41:06:3a:12:32:34:0f:4a:b3:34:3f:32:2a:11: 12:00:6d:5e:c6:b2:5e:a0:a9:4f:8e:5f:18:8c:08:24:68:81: d0:76:bf:cc:80:21:13:cb:3b:e6:8a:fe:54:d8:bc:c1:43:67: 56:f1:c3:26:7c:a9:b4:ed:09:a4:e4:6a:82:90:e6:75:b3:61: ab:0a:27:74:f4:af:39:25:4d:34:48:52:c0:00:1c:69:a1:30: 93:37:ca:2b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsalvgVoEk0hbqIklkWB1cfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyNWYyYTkzZGIxMGYyZGQ1ZjZhNTViYjJhNDQwZjY3NDg2 Y2QxYTMwHhcNMjUxMjE0MDIwMTAwWhcNMjUxMjE1MDIwMTAwWjAzMTEwLwYDVQQD EygxYmFiYzlkOTNjOWVhOWVjODY3OTVkZGQyMjkwYTM1YzQyNGFhM2I5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9C7rddAvL9VYlPZYZw1GM0+xQ376 P5NIL7RRIV2UBA79SBT0Ywl/6/ppvycrfdgVkOLlZQNY6pLdaVo1cAqaFZsTfmOR C+4OjLHt3mN8Oxog4BpqcVqzOe6GjX5TO5FObcS3QVOjH0YQuZlm1ttfizZnvbgN iOooZeUIo8i+wslehmm7OJqe4wFsGEOIltOzx1OasX1mFnR0sAk7Jq6aIK3Qo932 DCcXUJIuYWA0kMlCJ0zDmr9t3Of+MYZuXUmg2YUPDtrSga3V7YJd1nvmyHiWLWX1 C6wJqiWtWlemBuSsTIgxMagUIRvVgvpoBki69CQjW7yoGGqyZCVb4TlXjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBurydk8nqnshnld3SKQo1xCSqO5MB8GA1UdIwQY MBaAFAJfKpPbEPLdX2pVuypED2dIbNGjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWw4cWs5c1E4dDFmYWxXN0trUVBaMGhzMGFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8yMDVkMjQtMDA5Zi00ODZhLTk3NmYt MmVjZGExMWRlMTUzLzEvQWw4cWs5c1E4dDFmYWxXN0trUVBaMGhzMGFNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi8yMDVkMjQtMDA5Zi00ODZhLTk3NmYtMmVjZGExMWRlMTUz LzEvQWw4cWs5c1E4dDFmYWxXN0trUVBaMGhzMGFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHDCdkYMR K9lmZO+plSBtTuLD26mzSC6S5SMfHEVPG3J0eFgRdKgSipFwTJab/Q+8pvALkdIj cVCEtyFmXxI3hNrCQtcUrFWeTKGxkXaQLUt7G8we7wJiu0ZjYKtOZ52tVXoGdkYq pWDXby68bnmTwjO1VFzFmFBRj4qCdk+2YDm55DY4d8M0UH2ks11J3SIEMadjlvOW PO/STOMYtdJ5+3NwuJIoL0EGOhIyNA9KszQ/MioREgBtXsayXqCpT45fGIwIJGiB 0Ha/zIAhE8s75or+VNi8wUNnVvHDJnyptO0JpORqgpDmdbNhqwondPSvOSVNNEhS wAAcaaEwkzfKKw== -----END CERTIFICATE-----Generated at Sun Dec 14 06:12:09 2025 by rpki-client