This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft File: rlAYJxRKMYi-oczuWGVv1kKdj5U.mft (raw, json) Hash identifier: 6Q07Dw1rsGa6rACyQTuJK7qqV5wbY9t6Lvm+GljVmjo= Subject key identifier: D9:2A:0E:11:3D:45:06:3E:C2:2C:4A:90:31:5B:27:3D:42:34:DD:BF Authority key identifier: AE:50:18:27:14:4A:31:88:BE:A1:CC:EE:58:65:6F:D6:42:9D:8F:95 Certificate issuer: /CN=ae501827144a3188bea1ccee58656fd6429d8f95 Certificate serial: 019B1ACDF1741CCFB35782CB84B3FC404F21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rlAYJxRKMYi-oczuWGVv1kKdj5U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft Manifest number: 177C Signing time: Sun 14 Dec 2025 03:01:02 +0000 Manifest this update: Sun 14 Dec 2025 03:01:02 +0000 Manifest next update: Mon 15 Dec 2025 03:01:02 +0000 Files and hashes: 1: VNzG3ccHyaf-Ofv5con_nysGgHU.roa (hash: 2VzIYqdKT2jmdmX+vgJ//7c0c5nGJoT0dOFUmm0WlfQ=) 2: rlAYJxRKMYi-oczuWGVv1kKdj5U.crl (hash: vr0EUF0PPqlobxEPnzngQ5Nd8opderjuhc2qoTNc2TQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft rsync://rpki.ripe.net/repository/DEFAULT/rlAYJxRKMYi-oczuWGVv1kKdj5U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1a:cd:f1:74:1c:cf:b3:57:82:cb:84:b3:fc:40:4f:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae501827144a3188bea1ccee58656fd6429d8f95 Validity Not Before: Dec 14 03:01:02 2025 GMT Not After : Dec 15 03:01:02 2025 GMT Subject: CN=d92a0e113d45063ec22c4a90315b273d4234ddbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7c:bb:3d:82:ba:b9:a8:55:20:18:7f:1e:13: 17:f8:70:90:20:6c:62:4f:9e:d4:25:cd:91:44:23: 1f:e9:99:05:d2:9b:c0:b3:eb:0d:11:ef:ac:b9:17: df:a4:36:02:0e:b4:8e:6e:76:b0:9f:c3:97:8e:1d: 66:da:dc:ce:0f:e7:55:4d:03:b8:6e:af:2c:3f:b0: 43:90:50:cd:2d:0e:d3:11:4f:39:9e:0e:64:78:ac: f2:a3:7e:c8:68:f9:dd:15:f8:3f:c9:74:8e:5e:b7: bb:cc:a3:bf:8c:29:fa:a3:18:25:62:54:87:91:6d: 6e:34:26:1f:d6:35:89:da:e5:5a:41:d9:99:7e:cc: af:fe:f9:17:4b:10:da:66:d3:1c:3b:fc:96:2e:98: 7d:85:a2:eb:bf:b3:c8:6a:ff:24:92:92:c2:ac:63: 69:4e:ab:d6:c1:d6:78:2a:cd:2a:51:1b:6a:43:7d: 8f:2e:df:7b:94:a3:8f:11:89:87:59:d0:e9:c8:26: f3:a3:1b:82:7e:58:5f:7b:70:20:3e:c2:55:c8:70: ed:2f:d2:45:bd:92:04:71:53:46:79:09:0c:cb:d2: 7c:f1:02:d5:97:2d:58:c8:03:cc:0c:59:c0:f9:30: 21:18:9a:5d:71:fe:95:19:07:1b:2d:5e:ee:fa:9e: c5:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:2A:0E:11:3D:45:06:3E:C2:2C:4A:90:31:5B:27:3D:42:34:DD:BF X509v3 Authority Key Identifier: keyid:AE:50:18:27:14:4A:31:88:BE:A1:CC:EE:58:65:6F:D6:42:9D:8F:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rlAYJxRKMYi-oczuWGVv1kKdj5U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:d4:64:a1:ce:d8:da:28:c3:37:c3:a5:69:82:74:43:0f:9d: 86:d2:b0:56:44:18:bc:fc:9a:a4:67:57:84:72:4e:36:f8:6c: 2f:62:d9:70:db:31:a9:c3:08:93:d2:95:b8:83:09:ba:49:e0: da:0d:c4:16:db:8d:98:de:e0:5c:42:9f:a6:81:d8:78:75:06: df:76:f7:cf:6d:70:a1:ed:49:a2:70:13:a6:2a:f6:5f:9a:47: 88:e3:f2:72:17:0b:13:51:6c:85:bc:62:fa:95:53:65:b4:b3: 3a:5e:8e:fb:eb:96:3d:9e:23:37:0f:1b:c8:13:2c:f2:d6:83: 20:35:84:8a:a2:5d:22:c8:05:3d:04:2d:78:69:18:a3:58:87: 7c:e7:e8:47:6e:92:f7:0f:ea:aa:28:99:4d:78:cd:39:e9:dc: 64:6b:e4:e5:31:43:d0:41:2f:89:78:7d:ed:72:2b:ba:b3:de: 5b:28:8f:f7:ec:cf:ef:59:d1:0a:60:38:ee:f5:03:8f:e9:fe: 70:75:41:96:71:66:93:f5:08:f3:7d:98:22:88:a5:25:c8:e7: 18:96:66:58:86:bf:35:9f:a1:79:75:56:4e:a7:8e:00:e5:b8: 1f:2f:be:cb:83:8d:f5:38:c3:cc:99:ed:42:6b:fc:2e:8d:d2: c3:74:43:72 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsazfF0HM+zV4LLhLP8QE8hMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlNTAxODI3MTQ0YTMxODhiZWExY2NlZTU4NjU2ZmQ2NDI5 ZDhmOTUwHhcNMjUxMjE0MDMwMTAyWhcNMjUxMjE1MDMwMTAyWjAzMTEwLwYDVQQD EyhkOTJhMGUxMTNkNDUwNjNlYzIyYzRhOTAzMTViMjczZDQyMzRkZGJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzHy7PYK6uahVIBh/HhMX+HCQIGxi T57UJc2RRCMf6ZkF0pvAs+sNEe+suRffpDYCDrSObnawn8OXjh1m2tzOD+dVTQO4 bq8sP7BDkFDNLQ7TEU85ng5keKzyo37IaPndFfg/yXSOXre7zKO/jCn6oxglYlSH kW1uNCYf1jWJ2uVaQdmZfsyv/vkXSxDaZtMcO/yWLph9haLrv7PIav8kkpLCrGNp TqvWwdZ4Ks0qURtqQ32PLt97lKOPEYmHWdDpyCbzoxuCflhfe3AgPsJVyHDtL9JF vZIEcVNGeQkMy9J88QLVly1YyAPMDFnA+TAhGJpdcf6VGQcbLV7u+p7FSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNkqDhE9RQY+wixKkDFbJz1CNN2/MB8GA1UdIwQY MBaAFK5QGCcUSjGIvqHM7lhlb9ZCnY+VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmxBWUp4UktNWWktb2N6dVdHVnYxa0tkajVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC81ZjU2YWYtZWJmYi00Yzg4LWEwODIt MDk4NmQ4YjBjNmQ5LzEvcmxBWUp4UktNWWktb2N6dVdHVnYxa0tkajVVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC81ZjU2YWYtZWJmYi00Yzg4LWEwODItMDk4NmQ4YjBjNmQ5 LzEvcmxBWUp4UktNWWktb2N6dVdHVnYxa0tkajVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEdRkoc7Y 2ijDN8OlaYJ0Qw+dhtKwVkQYvPyapGdXhHJONvhsL2LZcNsxqcMIk9KVuIMJukng 2g3EFtuNmN7gXEKfpoHYeHUG33b3z21woe1JonATpir2X5pHiOPychcLE1Fshbxi +pVTZbSzOl6O++uWPZ4jNw8byBMs8taDIDWEiqJdIsgFPQQteGkYo1iHfOfoR26S 9w/qqiiZTXjNOencZGvk5TFD0EEviXh97XIrurPeWyiP9+zP71nRCmA47vUDj+n+ cHVBlnFmk/UI832YIoilJcjnGJZmWIa/NZ+heXVWTqeOAOW4Hy++y4ON9TjDzJnt Qmv8Lo3Sw3RDcg== -----END CERTIFICATE-----Generated at Sun Dec 14 11:44:35 2025 by rpki-client