This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.mft File: a1zOqpdLKQWssmKvRSwCKAMWqrs.mft (raw, json) Hash identifier: Zhvit/pLc0nbZ4RP2WZpzIQHMAD0C/Gg+xzosDgWLzg= Subject key identifier: 20:41:BA:30:25:04:18:8D:C3:E6:A2:A0:8D:AC:8B:A6:F8:6B:4C:AE Authority key identifier: 6B:5C:CE:AA:97:4B:29:05:AC:B2:62:AF:45:2C:02:28:03:16:AA:BB Certificate issuer: /CN=6b5cceaa974b2905acb262af452c02280316aabb Certificate serial: 019B1A96ABADD8164E4516B4274177D1611D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1zOqpdLKQWssmKvRSwCKAMWqrs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.mft Manifest number: 06B4 Signing time: Sun 14 Dec 2025 02:00:40 +0000 Manifest this update: Sun 14 Dec 2025 02:00:40 +0000 Manifest next update: Mon 15 Dec 2025 02:00:40 +0000 Files and hashes: 1: a1zOqpdLKQWssmKvRSwCKAMWqrs.crl (hash: LRyX1sisACW/gbNXzHp3B7TKD8aRs8lm8cC1z6Ys0QE=) 2: bItIvz4oTSzEDWqrAWUpQQfUMhI.roa (hash: F1ATAeaXzdv7TC8vaBAXGNSvaND60c6EFcHFAEWNuFY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.mft rsync://rpki.ripe.net/repository/DEFAULT/a1zOqpdLKQWssmKvRSwCKAMWqrs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1a:96:ab:ad:d8:16:4e:45:16:b4:27:41:77:d1:61:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6b5cceaa974b2905acb262af452c02280316aabb Validity Not Before: Dec 14 02:00:40 2025 GMT Not After : Dec 15 02:00:40 2025 GMT Subject: CN=2041ba302504188dc3e6a2a08dac8ba6f86b4cae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:27:9d:1b:f5:34:83:ee:9d:92:38:29:85:c5: 86:aa:fd:d5:5c:2a:51:d1:67:6b:49:6f:a3:5f:a1: 2d:ef:d9:20:a5:49:85:43:6c:b1:b7:f0:a0:ea:a2: 88:8a:02:27:6c:48:6b:69:92:09:33:b8:48:1e:c2: 2c:0a:25:43:d0:3e:cb:05:db:0f:92:a9:eb:b6:4e: 9c:e9:86:0b:64:bb:a6:e3:b4:fd:8f:e6:0b:39:06: 13:a3:d8:fb:36:fa:16:28:da:c1:01:10:cf:84:3e: db:b9:a6:78:63:f1:f0:8a:d4:07:b4:01:aa:6f:c8: 4a:d7:40:b7:7f:e6:75:41:ce:3c:72:bb:7e:a2:7b: 61:42:e3:4e:76:91:99:f1:79:63:f1:da:9d:dc:a4: a3:d8:74:91:b3:f8:27:b5:d3:c4:bf:96:08:23:b2: 61:72:1b:43:09:9d:b5:d7:57:7d:e3:16:6a:ca:6c: d3:4c:8e:44:1a:e7:53:ac:cb:1a:d1:8d:09:3e:35: 63:aa:51:68:46:60:0f:f5:de:3a:23:02:7c:25:e2: 4f:0a:12:05:a8:e3:f6:91:c1:9c:ca:97:ca:c5:09: 68:dc:54:b0:77:0d:1e:2e:f6:03:a0:17:76:0e:9b: b8:de:b6:c3:7f:d3:ef:70:a1:f1:7f:3e:9f:c8:af: a2:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:41:BA:30:25:04:18:8D:C3:E6:A2:A0:8D:AC:8B:A6:F8:6B:4C:AE X509v3 Authority Key Identifier: keyid:6B:5C:CE:AA:97:4B:29:05:AC:B2:62:AF:45:2C:02:28:03:16:AA:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1zOqpdLKQWssmKvRSwCKAMWqrs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:a3:3d:e7:13:b9:c7:b2:aa:45:c8:e0:f8:43:f5:06:ad:84: 0a:77:3e:01:25:ea:49:d1:ae:1b:3f:7a:97:db:bb:c3:75:6c: f4:3b:69:64:56:81:fb:4b:d4:b3:58:23:5c:c2:a9:80:50:39: ee:8b:77:99:e3:9a:09:5b:21:a2:d3:35:38:cc:7b:cf:c1:00: 3e:57:65:25:ce:40:56:a5:cf:a1:98:9a:6f:a4:54:4b:4c:0d: 49:0a:f7:34:2d:65:a7:97:47:19:7b:7a:ce:40:1e:e3:02:a1: d2:fd:56:5b:fd:f2:0a:c3:ce:d3:1b:7f:a4:65:fc:e8:85:89: 2d:76:d7:18:35:5e:a2:ed:e6:ef:6c:9d:e2:f5:69:79:e3:aa: 20:6d:86:5e:bc:12:ca:79:f0:bd:f3:94:35:71:65:83:3e:b8: f1:c0:6a:48:37:9e:3e:4f:63:b7:aa:a9:32:ac:33:e1:39:0a: cc:9e:43:6a:ca:48:a7:18:52:6f:87:b7:1f:a2:8f:1e:5f:4e: 48:41:1b:81:b4:14:9a:1b:c2:c1:1f:0c:66:42:48:94:91:f0: 4c:b2:3b:4f:df:c0:1f:ff:b4:4a:52:fb:47:02:fc:e0:b0:03: a1:b2:73:bd:7f:91:91:cd:91:1e:65:70:da:8b:04:67:ea:97: f2:15:03:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsalqut2BZORRa0J0F30WEdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiNWNjZWFhOTc0YjI5MDVhY2IyNjJhZjQ1MmMwMjI4MDMx NmFhYmIwHhcNMjUxMjE0MDIwMDQwWhcNMjUxMjE1MDIwMDQwWjAzMTEwLwYDVQQD EygyMDQxYmEzMDI1MDQxODhkYzNlNmEyYTA4ZGFjOGJhNmY4NmI0Y2FlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwSedG/U0g+6dkjgphcWGqv3VXCpR 0WdrSW+jX6Et79kgpUmFQ2yxt/Cg6qKIigInbEhraZIJM7hIHsIsCiVD0D7LBdsP kqnrtk6c6YYLZLum47T9j+YLOQYTo9j7NvoWKNrBARDPhD7buaZ4Y/HwitQHtAGq b8hK10C3f+Z1Qc48crt+onthQuNOdpGZ8Xlj8dqd3KSj2HSRs/gntdPEv5YII7Jh chtDCZ2111d94xZqymzTTI5EGudTrMsa0Y0JPjVjqlFoRmAP9d46IwJ8JeJPChIF qOP2kcGcypfKxQlo3FSwdw0eLvYDoBd2Dpu43rbDf9PvcKHxfz6fyK+ioQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCBBujAlBBiNw+aioI2si6b4a0yuMB8GA1UdIwQY MBaAFGtczqqXSykFrLJir0UsAigDFqq7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYTF6T3FwZExLUVdzc21LdlJTd0NLQU1XcXJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy8zOWYxZTAtMzYyNy00OTJmLWFlOTMt OGIwN2FjZDA3Yzk0LzEvYTF6T3FwZExLUVdzc21LdlJTd0NLQU1XcXJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy8zOWYxZTAtMzYyNy00OTJmLWFlOTMtOGIwN2FjZDA3Yzk0 LzEvYTF6T3FwZExLUVdzc21LdlJTd0NLQU1XcXJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI6M95xO5 x7KqRcjg+EP1Bq2ECnc+ASXqSdGuGz96l9u7w3Vs9DtpZFaB+0vUs1gjXMKpgFA5 7ot3meOaCVshotM1OMx7z8EAPldlJc5AVqXPoZiab6RUS0wNSQr3NC1lp5dHGXt6 zkAe4wKh0v1WW/3yCsPO0xt/pGX86IWJLXbXGDVeou3m72yd4vVpeeOqIG2GXrwS ynnwvfOUNXFlgz648cBqSDeePk9jt6qpMqwz4TkKzJ5DaspIpxhSb4e3H6KPHl9O SEEbgbQUmhvCwR8MZkJIlJHwTLI7T9/AH/+0SlL7RwL84LADobJzvX+Rkc2RHmVw 2osEZ+qX8hUDyA== -----END CERTIFICATE-----Generated at Sun Dec 14 06:14:59 2025 by rpki-client