This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft File: AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft (raw, json) Hash identifier: vfT3EE0ZmofTybTX5wpBMTva6ZUjKjOPTxbMLYD9Thk= Subject key identifier: 2E:F7:EB:95:5A:66:3C:A7:37:80:C7:20:11:22:3A:7D:35:FE:73:F8 Authority key identifier: 02:51:F6:AB:E0:BB:26:BF:E4:85:9E:54:DE:E0:FD:C9:A5:B7:8A:05 Certificate issuer: /CN=0251f6abe0bb26bfe4859e54dee0fdc9a5b78a05 Certificate serial: 019AF12E07BAA478A32E0BB2CCF1064C523F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft Manifest number: 175D Signing time: Sat 06 Dec 2025 01:01:56 +0000 Manifest this update: Sat 06 Dec 2025 01:01:56 +0000 Manifest next update: Sun 07 Dec 2025 01:01:56 +0000 Files and hashes: 1: AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl (hash: ksFkiPcd7rKV6tRwE6eHrKMOJBLcvJoEvjkDzweoaw8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:07:ba:a4:78:a3:2e:0b:b2:cc:f1:06:4c:52:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0251f6abe0bb26bfe4859e54dee0fdc9a5b78a05 Validity Not Before: Dec 6 01:01:56 2025 GMT Not After : Dec 7 01:01:56 2025 GMT Subject: CN=2ef7eb955a663ca73780c72011223a7d35fe73f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1e:fb:e1:5e:38:64:fb:ee:b8:5c:df:0c:7a: a7:4f:01:27:66:80:b8:ac:1f:13:3e:15:b3:50:dc: e8:5c:d1:86:f6:05:1d:e3:56:b7:75:50:92:c7:17: 08:a7:5a:16:76:88:c3:b8:07:8a:0b:ac:5e:87:54: 4c:11:1f:c5:3c:08:d5:ff:46:2c:e6:8e:9c:f1:af: d9:5e:19:99:d6:9f:b6:6a:81:9d:e4:b7:7a:de:bc: c9:96:6f:02:14:bf:ad:bc:ad:5a:d6:72:60:2a:60: 2a:74:d1:c5:85:b4:13:10:02:e5:a8:1e:94:ee:47: 3d:1b:6b:f6:22:8b:19:64:05:c1:2e:7b:7f:de:3f: 06:5a:97:67:02:0e:c6:6d:db:71:f7:53:fd:a3:f2: 11:9c:ca:2a:d0:fa:86:22:57:35:19:f0:83:a8:02: 04:52:9a:df:d9:82:6b:7a:47:5c:e9:76:57:d0:c7: 1d:1b:45:7d:21:13:b3:2d:22:10:89:6c:d0:5e:d7: 60:f0:83:46:81:d4:fc:29:ee:0e:67:cd:34:57:b1: 2e:92:30:20:03:66:d2:f9:a8:9c:6d:7b:95:c6:13: 0e:31:ea:c8:b4:fa:f8:9d:57:b0:c8:4a:b1:37:2c: dd:11:bd:f0:99:d2:8c:15:50:a3:b6:e4:48:ba:3a: 20:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:F7:EB:95:5A:66:3C:A7:37:80:C7:20:11:22:3A:7D:35:FE:73:F8 X509v3 Authority Key Identifier: keyid:02:51:F6:AB:E0:BB:26:BF:E4:85:9E:54:DE:E0:FD:C9:A5:B7:8A:05 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:3d:8e:d1:9c:6b:32:b7:69:24:86:02:0b:da:2c:b2:f0:45: 35:fd:6b:09:9f:2a:fc:31:2d:7a:8d:e5:7f:0e:11:38:05:98: 66:01:92:0a:a3:22:3b:bb:36:6e:17:bc:74:dd:c0:83:5a:dc: a7:da:f3:3d:48:18:e3:82:3f:a9:85:1e:db:60:8c:5d:eb:c4: 0a:0a:1c:6f:d8:a0:e8:4e:ef:71:0e:80:99:49:26:43:15:2c: 21:f3:d7:b5:57:96:d3:af:43:b7:2c:56:06:f8:fd:5a:2e:f3: 42:3d:5a:76:d1:ce:09:d8:dc:fa:81:46:df:28:31:9c:d9:ab: 56:a0:40:c1:9b:45:48:19:8e:ec:fa:40:6b:60:1b:7d:4e:8a: 0f:3e:d9:ce:62:e6:9a:41:6c:a3:2a:50:a6:d6:86:5a:ff:b1: de:98:b3:17:5a:33:47:d9:7e:e3:2f:7d:11:21:dd:08:16:77: d6:4b:82:7d:a2:48:85:b1:f4:8d:23:dd:a6:a9:9e:d7:55:39: 86:52:db:4c:b4:a7:36:97:40:88:b3:c8:7c:eb:c5:5b:2a:a6: 9d:2f:ec:6f:20:82:17:ca:b9:79:fd:63:21:52:5c:9d:ae:88: 4b:85:26:a9:60:d3:d1:84:1f:68:b2:23:e0:39:73:fc:c2:2b: b9:fb:e7:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLge6pHijLguyzPEGTFI/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyNTFmNmFiZTBiYjI2YmZlNDg1OWU1NGRlZTBmZGM5YTVi NzhhMDUwHhcNMjUxMjA2MDEwMTU2WhcNMjUxMjA3MDEwMTU2WjAzMTEwLwYDVQQD EygyZWY3ZWI5NTVhNjYzY2E3Mzc4MGM3MjAxMTIyM2E3ZDM1ZmU3M2Y4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnB774V44ZPvuuFzfDHqnTwEnZoC4 rB8TPhWzUNzoXNGG9gUd41a3dVCSxxcIp1oWdojDuAeKC6xeh1RMER/FPAjV/0Ys 5o6c8a/ZXhmZ1p+2aoGd5Ld63rzJlm8CFL+tvK1a1nJgKmAqdNHFhbQTEALlqB6U 7kc9G2v2IosZZAXBLnt/3j8GWpdnAg7Gbdtx91P9o/IRnMoq0PqGIlc1GfCDqAIE Uprf2YJrekdc6XZX0McdG0V9IROzLSIQiWzQXtdg8INGgdT8Ke4OZ800V7EukjAg A2bS+aicbXuVxhMOMerItPr4nVewyEqxNyzdEb3wmdKMFVCjtuRIujoguQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC7365VaZjynN4DHIBEiOn01/nP4MB8GA1UdIwQY MBaAFAJR9qvguya/5IWeVN7g/cmlt4oFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWxIMnEtQzdKcl9raFo1VTN1RDl5YVczaWdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS8yZmFiZjUtZTNlZC00ZDlhLTljZDgt MmY0ZWI5YzA2MDM1LzEvQWxIMnEtQzdKcl9raFo1VTN1RDl5YVczaWdVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS8yZmFiZjUtZTNlZC00ZDlhLTljZDgtMmY0ZWI5YzA2MDM1 LzEvQWxIMnEtQzdKcl9raFo1VTN1RDl5YVczaWdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACz2O0Zxr MrdpJIYCC9ossvBFNf1rCZ8q/DEteo3lfw4ROAWYZgGSCqMiO7s2bhe8dN3Ag1rc p9rzPUgY44I/qYUe22CMXevECgocb9ig6E7vcQ6AmUkmQxUsIfPXtVeW069DtyxW Bvj9Wi7zQj1adtHOCdjc+oFG3ygxnNmrVqBAwZtFSBmO7PpAa2AbfU6KDz7ZzmLm mkFsoypQptaGWv+x3pizF1ozR9l+4y99ESHdCBZ31kuCfaJIhbH0jSPdpqme11U5 hlLbTLSnNpdAiLPIfOvFWyqmnS/sbyCCF8q5ef1jIVJcna6IS4UmqWDT0YQfaLIj 4Dlz/MIrufvnzw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:18:15 2025 by rpki-client