This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/a860bf-1a27-4f0f-bd91-7ae6911ca126/1/AlWFCeHA7BYN4uB0F3IT3jBhXW8.mft File: AlWFCeHA7BYN4uB0F3IT3jBhXW8.mft (raw, json) Hash identifier: Kp8qNWikKtf1rI16zj1NK3Zsn6nEPM67kXrcZgEsD9U= Subject key identifier: A8:B5:72:2A:EB:60:97:5C:C1:00:D6:E4:15:6D:32:07:C9:DB:F8:66 Authority key identifier: 02:55:85:09:E1:C0:EC:16:0D:E2:E0:74:17:72:13:DE:30:61:5D:6F Certificate issuer: /CN=02558509e1c0ec160de2e074177213de30615d6f Certificate serial: 019ABBBF12F8AA0ABA161328BC55C26DB74D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlWFCeHA7BYN4uB0F3IT3jBhXW8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/a860bf-1a27-4f0f-bd91-7ae6911ca126/1/AlWFCeHA7BYN4uB0F3IT3jBhXW8.mft Manifest number: 164B Signing time: Tue 25 Nov 2025 16:00:52 +0000 Manifest this update: Tue 25 Nov 2025 16:00:52 +0000 Manifest next update: Wed 26 Nov 2025 16:00:52 +0000 Files and hashes: 1: AlWFCeHA7BYN4uB0F3IT3jBhXW8.crl (hash: eATn8uBJmjFFCzMNkSNbcZFlYjVNrxpKuG5w3DI5P48=) 2: kSz4LlQ62tJYPQQ8qxacl2uxsCY.roa (hash: 8GdPcvKpfPL7jxJZaxJa9Y6MJqoF7wYY1b8gzsfXwWY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/a860bf-1a27-4f0f-bd91-7ae6911ca126/1/AlWFCeHA7BYN4uB0F3IT3jBhXW8.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/a860bf-1a27-4f0f-bd91-7ae6911ca126/1/AlWFCeHA7BYN4uB0F3IT3jBhXW8.mft rsync://rpki.ripe.net/repository/DEFAULT/AlWFCeHA7BYN4uB0F3IT3jBhXW8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 26 Nov 2025 16:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:bb:bf:12:f8:aa:0a:ba:16:13:28:bc:55:c2:6d:b7:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02558509e1c0ec160de2e074177213de30615d6f Validity Not Before: Nov 25 16:00:52 2025 GMT Not After : Nov 26 16:00:52 2025 GMT Subject: CN=a8b5722aeb60975cc100d6e4156d3207c9dbf866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:e9:37:28:7e:d3:d7:a1:20:ac:c9:44:23:2a: af:93:93:e8:ee:2e:e3:cf:5a:85:23:a1:71:56:52: 59:79:0e:1d:4c:03:65:fe:52:6f:09:39:19:d2:dd: 87:0c:74:5d:c1:a6:4f:79:95:46:f3:2c:b1:84:03: 39:e5:22:ab:7d:81:ba:87:86:1e:29:b7:cd:9f:06: 60:b3:b1:35:ee:f7:42:26:7a:d8:ec:63:1a:b0:cd: 4a:ea:1b:68:77:e9:3a:08:69:5e:08:02:f6:94:46: 80:6d:7e:c6:60:e1:7a:0f:19:52:3e:55:3e:41:94: 25:f4:0d:7a:ad:ff:3a:fd:dd:fd:c9:16:87:e4:57: e5:94:28:0b:1f:33:02:2a:ce:5b:99:88:44:fe:b3: 44:12:13:11:b2:d0:1f:d6:d6:58:1e:ef:c3:8f:1b: 7b:ca:67:64:53:6a:db:09:5e:57:ca:68:75:a4:da: 12:21:be:b8:3e:12:e9:35:fc:5e:d0:d6:66:dc:3b: c2:76:03:91:3f:16:35:c1:b4:0a:4e:d7:e5:fd:56: 2b:a3:80:bb:27:2f:c0:6d:42:ed:23:3d:b0:6b:b7: bd:50:63:f5:47:05:9c:bb:d7:79:16:b4:5b:45:fb: 3e:de:70:85:7a:a5:00:6b:be:fe:6b:b7:d6:cc:8c: 91:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:B5:72:2A:EB:60:97:5C:C1:00:D6:E4:15:6D:32:07:C9:DB:F8:66 X509v3 Authority Key Identifier: keyid:02:55:85:09:E1:C0:EC:16:0D:E2:E0:74:17:72:13:DE:30:61:5D:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlWFCeHA7BYN4uB0F3IT3jBhXW8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/a860bf-1a27-4f0f-bd91-7ae6911ca126/1/AlWFCeHA7BYN4uB0F3IT3jBhXW8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/a860bf-1a27-4f0f-bd91-7ae6911ca126/1/AlWFCeHA7BYN4uB0F3IT3jBhXW8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:62:b8:e8:99:c6:6b:83:3e:4e:77:99:4f:1f:06:a8:1a:4e: 21:d9:66:33:a7:e7:f2:01:64:bc:67:79:2c:b6:ee:2d:8c:12: 3e:0a:a6:54:66:21:c2:ea:2e:27:c3:a5:45:c0:f7:d8:f2:6f: a3:b4:63:81:1c:98:40:a3:c6:c0:d8:bd:6d:d9:51:53:d2:62: b7:c2:36:66:2d:42:17:bb:5f:e7:4e:c7:ad:0b:68:e3:ec:9b: 54:d6:8f:94:fa:99:19:e9:08:2d:83:68:18:10:2e:f0:c5:33: 6f:0c:94:92:d7:18:b7:4c:34:72:cf:86:a8:4f:06:8f:d5:6a: 02:f8:42:d5:85:93:19:cd:20:fc:97:83:32:96:69:0e:42:f7: d7:8e:69:7a:00:bf:b0:e0:d0:0f:fe:38:cb:b8:16:7a:b4:cb: 24:f7:c5:5b:1d:c8:4b:39:66:4d:99:a9:47:c0:60:cd:be:4a: dc:f1:9e:16:03:04:de:91:a3:c6:d9:10:7c:c9:ea:5a:a3:2d: b4:65:f1:20:00:5d:b0:8b:37:d0:4c:86:3b:23:6e:2c:37:5a: 6c:1d:6c:17:3e:f1:6e:4f:74:3e:54:60:6c:9e:d9:1d:9c:c1: e0:4b:8a:79:24:19:28:4a:b8:47:e7:4a:c8:17:0e:58:72:a4: 4b:24:c3:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZq7vxL4qgq6FhMovFXCbbdNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyNTU4NTA5ZTFjMGVjMTYwZGUyZTA3NDE3NzIxM2RlMzA2 MTVkNmYwHhcNMjUxMTI1MTYwMDUyWhcNMjUxMTI2MTYwMDUyWjAzMTEwLwYDVQQD EyhhOGI1NzIyYWViNjA5NzVjYzEwMGQ2ZTQxNTZkMzIwN2M5ZGJmODY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk+k3KH7T16EgrMlEIyqvk5Po7i7j z1qFI6FxVlJZeQ4dTANl/lJvCTkZ0t2HDHRdwaZPeZVG8yyxhAM55SKrfYG6h4Ye KbfNnwZgs7E17vdCJnrY7GMasM1K6htod+k6CGleCAL2lEaAbX7GYOF6DxlSPlU+ QZQl9A16rf86/d39yRaH5FfllCgLHzMCKs5bmYhE/rNEEhMRstAf1tZYHu/Djxt7 ymdkU2rbCV5Xymh1pNoSIb64PhLpNfxe0NZm3DvCdgORPxY1wbQKTtfl/VYro4C7 Jy/AbULtIz2wa7e9UGP1RwWcu9d5FrRbRfs+3nCFeqUAa77+a7fWzIyRZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKi1cirrYJdcwQDW5BVtMgfJ2/hmMB8GA1UdIwQY MBaAFAJVhQnhwOwWDeLgdBdyE94wYV1vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWxXRkNlSEE3QllONHVCMEYzSVQzakJoWFc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9hODYwYmYtMWEyNy00ZjBmLWJkOTEt N2FlNjkxMWNhMTI2LzEvQWxXRkNlSEE3QllONHVCMEYzSVQzakJoWFc4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi9hODYwYmYtMWEyNy00ZjBmLWJkOTEtN2FlNjkxMWNhMTI2 LzEvQWxXRkNlSEE3QllONHVCMEYzSVQzakJoWFc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhGK46JnG a4M+TneZTx8GqBpOIdlmM6fn8gFkvGd5LLbuLYwSPgqmVGYhwuouJ8OlRcD32PJv o7RjgRyYQKPGwNi9bdlRU9Jit8I2Zi1CF7tf507HrQto4+ybVNaPlPqZGekILYNo GBAu8MUzbwyUktcYt0w0cs+GqE8Gj9VqAvhC1YWTGc0g/JeDMpZpDkL3145pegC/ sODQD/44y7gWerTLJPfFWx3ISzlmTZmpR8Bgzb5K3PGeFgME3pGjxtkQfMnqWqMt tGXxIABdsIs30EyGOyNuLDdabB1sFz7xbk90PlRgbJ7ZHZzB4EuKeSQZKEq4R+dK yBcOWHKkSyTDwg== -----END CERTIFICATE-----Generated at Wed Nov 26 02:02:58 2025 by rpki-client