This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/854c21-5e1a-451d-aea1-fca0741a586e/1/aluKc4anCgzU9gC-dYHe-JRHOkE.mft File: aluKc4anCgzU9gC-dYHe-JRHOkE.mft (raw, json) Hash identifier: QxcclZXYcoxgAce1WzSqQNd0ZTH9mLps3D4Gp9W+VCc= Subject key identifier: 67:9B:4E:85:E1:B5:4B:1E:CE:A1:5C:8D:6F:C7:6B:3C:7B:E0:48:3F Authority key identifier: 6A:5B:8A:73:86:A7:0A:0C:D4:F6:00:BE:75:81:DE:F8:94:47:3A:41 Certificate issuer: /CN=6a5b8a7386a70a0cd4f600be7581def894473a41 Certificate serial: 019AF1D1D84F7058BFE21DE4957173A5712F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aluKc4anCgzU9gC-dYHe-JRHOkE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/854c21-5e1a-451d-aea1-fca0741a586e/1/aluKc4anCgzU9gC-dYHe-JRHOkE.mft Manifest number: 0880 Signing time: Sat 06 Dec 2025 04:00:52 +0000 Manifest this update: Sat 06 Dec 2025 04:00:52 +0000 Manifest next update: Sun 07 Dec 2025 04:00:52 +0000 Files and hashes: 1: aluKc4anCgzU9gC-dYHe-JRHOkE.crl (hash: 1Vdur55l0dDx9rTsiffPEIWZlAfhGDnfQIkczA7GMXc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/854c21-5e1a-451d-aea1-fca0741a586e/1/aluKc4anCgzU9gC-dYHe-JRHOkE.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/854c21-5e1a-451d-aea1-fca0741a586e/1/aluKc4anCgzU9gC-dYHe-JRHOkE.mft rsync://rpki.ripe.net/repository/DEFAULT/aluKc4anCgzU9gC-dYHe-JRHOkE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:d8:4f:70:58:bf:e2:1d:e4:95:71:73:a5:71:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6a5b8a7386a70a0cd4f600be7581def894473a41 Validity Not Before: Dec 6 04:00:52 2025 GMT Not After : Dec 7 04:00:52 2025 GMT Subject: CN=679b4e85e1b54b1ecea15c8d6fc76b3c7be0483f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d6:78:f0:99:5b:74:c5:5e:f2:56:84:a4:f3: 6d:e9:9e:ed:ed:46:2f:1f:50:c2:c9:28:00:b8:d3: a1:6c:af:74:e3:f3:ef:ee:d1:b3:5e:03:fb:e4:d0: 57:1c:7e:2e:95:73:4c:99:71:c0:09:1e:7e:26:b9: d1:2b:7a:cb:d4:0d:a8:9c:f1:f5:55:f8:7a:43:8b: 1f:5d:e3:a2:c6:13:79:47:45:a1:c4:62:8b:a3:de: ad:39:af:8e:92:89:9a:f8:74:2c:3b:ad:3c:6a:bc: 73:14:26:30:ee:80:be:b7:ea:0e:f9:0f:68:bc:ae: 0b:9c:e9:20:17:4d:b3:23:cb:d6:32:06:2d:e8:2d: a6:0f:d7:09:26:bf:55:07:90:ac:0d:66:d2:78:60: 59:22:59:26:6c:50:22:ab:6e:56:f1:84:c1:1f:6f: 2e:43:33:6a:e4:2e:02:dd:6f:70:45:21:1b:95:b2: 0d:3e:a5:1a:ae:91:6a:76:38:ca:40:af:42:62:43: b8:3f:57:b2:e3:7c:e5:ea:65:ae:1b:df:82:07:51: 97:13:36:47:d4:e5:9e:77:4f:43:3c:6a:ac:e5:d1: 9f:34:a4:e8:e4:cc:2a:e4:fd:2c:ac:32:6a:2b:d2: 6f:69:2f:0d:7d:17:9d:c3:a6:3a:45:c3:f0:aa:c6: 41:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:9B:4E:85:E1:B5:4B:1E:CE:A1:5C:8D:6F:C7:6B:3C:7B:E0:48:3F X509v3 Authority Key Identifier: keyid:6A:5B:8A:73:86:A7:0A:0C:D4:F6:00:BE:75:81:DE:F8:94:47:3A:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aluKc4anCgzU9gC-dYHe-JRHOkE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/854c21-5e1a-451d-aea1-fca0741a586e/1/aluKc4anCgzU9gC-dYHe-JRHOkE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/854c21-5e1a-451d-aea1-fca0741a586e/1/aluKc4anCgzU9gC-dYHe-JRHOkE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:65:14:27:c2:7f:5a:36:1f:13:f4:de:b2:07:fa:5d:28:bf: 31:c2:90:5e:c5:be:08:4f:82:be:fd:26:59:f9:e2:0c:94:97: 67:fb:86:8b:a9:cf:c0:86:22:57:8c:11:e0:80:e5:dc:8f:ac: 10:49:77:c4:66:fb:af:fb:79:a2:96:15:b6:f1:c7:40:9b:8a: 20:74:d7:1f:19:14:ee:57:63:9f:d2:b6:2a:b7:a5:41:eb:59: 1d:a3:01:e8:cc:17:0c:c0:37:03:08:04:ca:82:ee:e0:2f:77: 37:84:84:91:f6:d4:b1:01:d4:a3:e5:61:31:d1:ca:f0:55:c4: 82:f0:c3:6a:3a:61:4d:81:03:0a:87:8b:a2:fd:c9:11:83:e1: ab:c6:28:e9:88:00:92:e8:68:d1:dc:55:47:d9:14:3b:83:67: ae:c9:3c:ed:54:4f:a7:7e:1b:08:83:b2:ef:6a:47:bc:f8:60: 98:5a:5c:60:9f:c0:96:6b:79:1f:17:39:7a:0c:09:31:77:78: 38:35:6f:92:89:f6:4b:24:d9:c0:6f:6c:b7:80:7f:b2:b1:6e: f5:7e:16:cc:af:f0:cc:96:0a:cc:c1:01:14:0d:f4:c1:68:07: 93:3b:84:21:54:df:3a:50:ce:3a:5d:98:88:28:2e:e9:a5:0c: cf:26:90:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0dhPcFi/4h3klXFzpXEvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhNWI4YTczODZhNzBhMGNkNGY2MDBiZTc1ODFkZWY4OTQ0 NzNhNDEwHhcNMjUxMjA2MDQwMDUyWhcNMjUxMjA3MDQwMDUyWjAzMTEwLwYDVQQD Eyg2NzliNGU4NWUxYjU0YjFlY2VhMTVjOGQ2ZmM3NmIzYzdiZTA0ODNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAptZ48JlbdMVe8laEpPNt6Z7t7UYv H1DCySgAuNOhbK904/Pv7tGzXgP75NBXHH4ulXNMmXHACR5+JrnRK3rL1A2onPH1 Vfh6Q4sfXeOixhN5R0WhxGKLo96tOa+Okoma+HQsO608arxzFCYw7oC+t+oO+Q9o vK4LnOkgF02zI8vWMgYt6C2mD9cJJr9VB5CsDWbSeGBZIlkmbFAiq25W8YTBH28u QzNq5C4C3W9wRSEblbINPqUarpFqdjjKQK9CYkO4P1ey43zl6mWuG9+CB1GXEzZH 1OWed09DPGqs5dGfNKTo5Mwq5P0srDJqK9JvaS8NfRedw6Y6RcPwqsZBbwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGebToXhtUsezqFcjW/Hazx74Eg/MB8GA1UdIwQY MBaAFGpbinOGpwoM1PYAvnWB3viURzpBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWx1S2M0YW5DZ3pVOWdDLWRZSGUtSlJIT2tFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS84NTRjMjEtNWUxYS00NTFkLWFlYTEt ZmNhMDc0MWE1ODZlLzEvYWx1S2M0YW5DZ3pVOWdDLWRZSGUtSlJIT2tFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS84NTRjMjEtNWUxYS00NTFkLWFlYTEtZmNhMDc0MWE1ODZl LzEvYWx1S2M0YW5DZ3pVOWdDLWRZSGUtSlJIT2tFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh2UUJ8J/ WjYfE/Tesgf6XSi/McKQXsW+CE+Cvv0mWfniDJSXZ/uGi6nPwIYiV4wR4IDl3I+s EEl3xGb7r/t5opYVtvHHQJuKIHTXHxkU7ldjn9K2KrelQetZHaMB6MwXDMA3AwgE yoLu4C93N4SEkfbUsQHUo+VhMdHK8FXEgvDDajphTYEDCoeLov3JEYPhq8Yo6YgA kuho0dxVR9kUO4Nnrsk87VRPp34bCIOy72pHvPhgmFpcYJ/Almt5Hxc5egwJMXd4 ODVvkon2SyTZwG9st4B/srFu9X4WzK/wzJYKzMEBFA30wWgHkzuEIVTfOlDOOl2Y iCgu6aUMzyaQ4w== -----END CERTIFICATE-----Generated at Sat Dec 6 09:26:14 2025 by rpki-client