This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft File: AF_5zInGaoo6XXNKDWXGH9yFGL4.mft (raw, json) Hash identifier: pHbmPFkorn9mZRvVXjUrotPcK7tfz8T2EMnvB5ZEXB8= Subject key identifier: 28:24:EC:6E:EE:03:AC:79:A8:A2:70:3C:97:AD:88:73:A5:EA:20:67 Authority key identifier: 00:5F:F9:CC:89:C6:6A:8A:3A:5D:73:4A:0D:65:C6:1F:DC:85:18:BE Certificate issuer: /CN=005ff9cc89c66a8a3a5d734a0d65c61fdc8518be Certificate serial: 019B0D80431F40E538242DD9553E165DCE64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft Manifest number: 1773 Signing time: Thu 11 Dec 2025 13:01:08 +0000 Manifest this update: Thu 11 Dec 2025 13:01:08 +0000 Manifest next update: Fri 12 Dec 2025 13:01:08 +0000 Files and hashes: 1: 0KFOTw8mw8rqvR73lDvTvz4eLlM.roa (hash: czZq6CrDBuBW60D89viYE/HEQ3Elp6ceJu/itDlsmLQ=) 2: 1-IEGfanW1eDg4hey_mFD59jQ4Tw.roa (hash: TEwUAYBqywOE+CrQSa2/94fxmftWbXC3tqwYRSHTWvM=) 3: 7fvFmCf70OoyCtjW6q-YAjjiptE.roa (hash: lD6p2V3Fh7qOAiBluHoM70XX68qSFbEeobI0lYUOj4E=) 4: AF_5zInGaoo6XXNKDWXGH9yFGL4.crl (hash: PKyv1Fi+Z/mhHFbIp9NtiSg6vcHJDSlncpnevWVmW1Q=) 5: XXc1R4QzqDrW8SviK6xRNkQ-hUM.roa (hash: YZxuonbhRtd70cdMZUvtG4tx6j8PhsH2pz0J9ByQ1UQ=) 6: mVS8rlA27Rm5BH1YZmHsYliJgHk.roa (hash: kSobMvLQWQPPJ+5wYRzt2RMBbz/GSTGKNOrc7qdwFJQ=) 7: svn5qGrzwkwprTn6parcyTvhbAo.roa (hash: /W0ZX7Qy3yFb8g6EosJAqdHBnY5DD0AAIXPV5XPQQ5A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 13:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0d:80:43:1f:40:e5:38:24:2d:d9:55:3e:16:5d:ce:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=005ff9cc89c66a8a3a5d734a0d65c61fdc8518be Validity Not Before: Dec 11 13:01:08 2025 GMT Not After : Dec 12 13:01:08 2025 GMT Subject: CN=2824ec6eee03ac79a8a2703c97ad8873a5ea2067 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:10:66:1b:68:b8:ea:d9:e5:71:e3:e8:21:44: e2:9f:03:83:97:bc:93:22:75:89:af:2e:50:c4:a5: f8:ea:a3:8e:48:47:39:04:d3:75:8f:28:02:d1:c6: 65:3a:d2:04:94:8d:33:fc:27:37:bb:ae:a7:69:c6: 81:70:0b:21:69:aa:3f:d8:03:cd:59:5d:f6:46:e7: 9c:b5:da:01:f6:ff:bd:46:55:07:25:a9:f2:d1:06: 6d:91:61:42:53:5e:7d:08:16:3c:07:67:b4:24:5f: 5f:69:fc:7d:4b:c4:5c:0f:8d:63:53:b1:f5:9e:e4: 8e:6b:71:dd:f4:04:c8:c2:0b:2a:17:81:79:d9:3d: 1f:53:da:7c:d0:25:b9:58:a9:2a:51:ab:18:fa:4a: 6f:be:1d:0a:a0:70:b7:72:f8:e3:45:1e:da:50:32: be:c4:0e:de:bd:02:04:1e:33:82:e4:09:ca:00:d8: 27:45:67:55:77:b9:f6:17:32:23:94:ab:c4:9f:0b: f2:31:7e:ad:7d:87:a1:13:60:dc:dc:c8:f5:49:0e: c7:db:09:74:52:ae:47:c2:b4:a1:2e:03:ed:9d:38: cb:f2:d4:a7:24:02:41:73:1e:1d:89:c1:a6:f2:0b: 6f:dd:77:de:aa:3f:a0:c5:a5:c6:d7:ab:6b:b9:83: 33:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:24:EC:6E:EE:03:AC:79:A8:A2:70:3C:97:AD:88:73:A5:EA:20:67 X509v3 Authority Key Identifier: keyid:00:5F:F9:CC:89:C6:6A:8A:3A:5D:73:4A:0D:65:C6:1F:DC:85:18:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:08:27:8b:a7:b0:45:ef:e5:62:71:6c:3d:77:6c:54:16:86: 2c:87:5a:f4:be:c4:1b:8f:e8:cc:d1:5d:9e:e8:a3:8c:9f:b2: 8d:e2:08:dd:03:ee:c7:2c:d5:a5:67:d9:f3:4a:89:a6:c4:a7: 97:12:3a:e9:5d:a4:31:48:7e:61:c6:9d:fa:1a:d1:d2:67:66: 8a:f0:fc:c1:7c:b3:8e:8d:b4:85:7f:d8:46:88:ac:2b:24:b5: bb:9e:51:0e:1b:03:fa:08:d4:be:20:a6:46:13:9a:52:85:53: 1e:3b:93:0b:9c:41:09:a6:51:8b:6c:b4:b1:60:32:d0:7e:41: 59:5b:01:04:ed:d6:7c:21:f4:f2:84:1f:95:f9:34:fe:94:ae: ce:01:92:93:a5:2a:6b:c7:ad:32:8e:7f:10:47:db:0b:e7:9b: 8f:78:4f:32:61:7c:59:62:dc:a7:11:20:44:30:a8:f5:07:96: e6:99:3c:1b:2c:19:bd:d5:fa:93:16:e1:9f:47:b6:a8:13:63: 0f:6e:d6:20:50:81:41:e0:f2:48:db:ed:b9:f6:ca:7e:36:c1: 48:ab:16:c1:db:ac:d5:99:a2:79:ef:ec:c4:74:8b:c4:0c:50: fe:b8:2a:d0:59:11:8f:6e:c3:95:b5:d3:72:d9:ae:9e:8a:b8: 01:4b:1b:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsNgEMfQOU4JC3ZVT4WXc5kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwNWZmOWNjODljNjZhOGEzYTVkNzM0YTBkNjVjNjFmZGM4 NTE4YmUwHhcNMjUxMjExMTMwMTA4WhcNMjUxMjEyMTMwMTA4WjAzMTEwLwYDVQQD EygyODI0ZWM2ZWVlMDNhYzc5YThhMjcwM2M5N2FkODg3M2E1ZWEyMDY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4xBmG2i46tnlcePoIUTinwODl7yT InWJry5QxKX46qOOSEc5BNN1jygC0cZlOtIElI0z/Cc3u66nacaBcAshaao/2APN WV32RuectdoB9v+9RlUHJany0QZtkWFCU159CBY8B2e0JF9fafx9S8RcD41jU7H1 nuSOa3Hd9ATIwgsqF4F52T0fU9p80CW5WKkqUasY+kpvvh0KoHC3cvjjRR7aUDK+ xA7evQIEHjOC5AnKANgnRWdVd7n2FzIjlKvEnwvyMX6tfYehE2Dc3Mj1SQ7H2wl0 Uq5HwrShLgPtnTjL8tSnJAJBcx4dicGm8gtv3Xfeqj+gxaXG16truYMzgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCgk7G7uA6x5qKJwPJetiHOl6iBnMB8GA1UdIwQY MBaAFABf+cyJxmqKOl1zSg1lxh/chRi+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUZfNXpJbkdhb282WFhOS0RXWEdIOXlGR0w0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9kNTNjNzgtMGQ1Yi00MjM3LTk5OTkt MGUyZDY5N2IyN2UzLzEvQUZfNXpJbkdhb282WFhOS0RXWEdIOXlGR0w0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC9kNTNjNzgtMGQ1Yi00MjM3LTk5OTktMGUyZDY5N2IyN2Uz LzEvQUZfNXpJbkdhb282WFhOS0RXWEdIOXlGR0w0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASggni6ew Re/lYnFsPXdsVBaGLIda9L7EG4/ozNFdnuijjJ+yjeII3QPuxyzVpWfZ80qJpsSn lxI66V2kMUh+Ycad+hrR0mdmivD8wXyzjo20hX/YRoisKyS1u55RDhsD+gjUviCm RhOaUoVTHjuTC5xBCaZRi2y0sWAy0H5BWVsBBO3WfCH08oQflfk0/pSuzgGSk6Uq a8etMo5/EEfbC+ebj3hPMmF8WWLcpxEgRDCo9QeW5pk8GywZvdX6kxbhn0e2qBNj D27WIFCBQeDySNvtufbKfjbBSKsWwdus1Zmiee/sxHSLxAxQ/rgq0FkRj27DlbXT ctmunoq4AUsbwg== -----END CERTIFICATE-----Generated at Thu Dec 11 23:13:34 2025 by rpki-client