This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft File: AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft (raw, json) Hash identifier: Mc+j6/bnBQz1UeqQqVpD3PJ7qziWiZbiF2ZLRz2nqyc= Subject key identifier: F2:F5:43:5E:FB:47:21:0A:B5:07:31:94:7E:C3:22:7B:60:63:60:CD Authority key identifier: 03:21:BF:EA:03:05:C4:8E:94:9E:6C:24:9F:48:10:B4:69:05:C8:86 Certificate issuer: /CN=0321bfea0305c48e949e6c249f4810b46905c886 Certificate serial: 019AF2093DAD7C4D63FC1D2626D8E1589408 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyG_6gMFxI6Unmwkn0gQtGkFyIY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft Manifest number: 1766 Signing time: Sat 06 Dec 2025 05:01:23 +0000 Manifest this update: Sat 06 Dec 2025 05:01:23 +0000 Manifest next update: Sun 07 Dec 2025 05:01:23 +0000 Files and hashes: 1: AyG_6gMFxI6Unmwkn0gQtGkFyIY.crl (hash: mWMHhnAOXnMoe7Rj8OLcUi5CmuVUfRihJ+sTdtuKSsg=) 2: HrI_ZNL0dOaa5SSqv99U6ELy6t4.roa (hash: n13hSIM8J7SvepGBD+Vp8UM2xhOsDHmf6h7aK70kh0Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft rsync://rpki.ripe.net/repository/DEFAULT/AyG_6gMFxI6Unmwkn0gQtGkFyIY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:3d:ad:7c:4d:63:fc:1d:26:26:d8:e1:58:94:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321bfea0305c48e949e6c249f4810b46905c886 Validity Not Before: Dec 6 05:01:23 2025 GMT Not After : Dec 7 05:01:23 2025 GMT Subject: CN=f2f5435efb47210ab50731947ec3227b606360cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a2:d8:1f:a9:9b:17:a1:a3:97:f8:6b:90:26: e9:1e:c0:23:83:37:29:fc:e0:ee:f4:18:7a:b2:c7: 55:3b:1a:97:dc:72:51:d1:a3:bf:5a:e5:06:09:98: 8d:2f:5f:fe:45:77:a7:f7:56:76:62:ad:ba:e8:f5: 9d:a2:1d:24:98:3e:ea:00:d2:20:d9:ed:bb:bc:48: 6e:51:02:55:4d:20:82:ce:9b:2f:70:ce:52:85:95: a3:66:ff:d3:7d:9f:3c:fa:7b:44:50:bf:7f:4d:2a: 0b:db:2d:c7:43:e1:05:c9:74:67:ec:da:da:3a:ac: 28:e0:6e:f3:da:fa:77:08:2d:d9:de:b4:14:bd:bb: f9:88:1b:2f:15:a1:a3:a0:31:c6:00:d2:48:80:bf: f3:8f:8d:6b:78:08:9e:fc:7d:9b:33:f6:15:9f:49: 7e:a5:a2:49:71:1f:45:8b:b1:94:f2:b6:c3:4d:64: dc:8b:25:a0:05:70:b8:a2:0a:91:51:89:cb:09:d5: 4c:de:c0:bc:a6:3a:4d:37:9f:f5:5a:de:f1:a9:7a: 86:4c:c0:44:e8:72:a9:46:44:e1:ac:bd:b0:07:79: 4d:3c:ef:6b:4c:66:65:e3:18:f4:dd:61:0d:d6:34: e1:60:a5:19:67:16:cc:65:a8:7e:18:50:03:bd:10: be:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:F5:43:5E:FB:47:21:0A:B5:07:31:94:7E:C3:22:7B:60:63:60:CD X509v3 Authority Key Identifier: keyid:03:21:BF:EA:03:05:C4:8E:94:9E:6C:24:9F:48:10:B4:69:05:C8:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyG_6gMFxI6Unmwkn0gQtGkFyIY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:85:dc:13:78:53:c9:6d:ef:ed:27:66:25:de:5c:e9:43:42: 7d:85:c7:6c:b9:25:0a:e3:54:cc:99:2e:f4:44:34:19:17:de: 4f:23:48:93:35:bb:97:ea:1b:52:b3:24:0e:7e:c3:85:8e:07: 68:22:86:68:eb:36:14:46:9b:69:36:f5:f9:c0:39:89:43:c3: 7b:2e:87:5f:2c:5f:e1:3a:c7:e1:96:15:e6:be:5c:80:d1:8c: c5:86:b2:f0:1d:e0:0f:f7:66:81:38:34:fa:04:49:93:44:28: 8f:09:a4:aa:7a:c3:66:1d:93:5c:2e:7f:60:a0:67:9a:74:e2: f4:e0:7f:7b:9b:77:e5:1a:6f:d0:7a:41:63:e6:0f:bd:e3:dc: 00:20:84:fa:eb:8f:61:34:81:64:72:48:3f:d6:4e:24:54:0a: fa:98:ab:48:82:31:5b:06:70:06:85:03:96:0d:aa:fd:8c:b4: f5:a4:75:9c:fe:d8:3f:93:2d:4a:1a:ca:0d:9c:75:61:3b:b2: 47:10:df:42:78:2b:03:54:6e:21:a5:7b:8e:31:32:a5:3f:1d: 36:c4:22:a9:8b:fd:fa:b0:68:09:9a:20:d6:0d:f0:ac:5d:36: ed:6e:dc:a7:21:79:f0:6c:17:3f:c5:1e:05:f4:42:e3:09:1b: 9e:d6:1d:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCT2tfE1j/B0mJtjhWJQIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzMjFiZmVhMDMwNWM0OGU5NDllNmMyNDlmNDgxMGI0Njkw NWM4ODYwHhcNMjUxMjA2MDUwMTIzWhcNMjUxMjA3MDUwMTIzWjAzMTEwLwYDVQQD EyhmMmY1NDM1ZWZiNDcyMTBhYjUwNzMxOTQ3ZWMzMjI3YjYwNjM2MGNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3KLYH6mbF6Gjl/hrkCbpHsAjgzcp /ODu9Bh6ssdVOxqX3HJR0aO/WuUGCZiNL1/+RXen91Z2Yq266PWdoh0kmD7qANIg 2e27vEhuUQJVTSCCzpsvcM5ShZWjZv/TfZ88+ntEUL9/TSoL2y3HQ+EFyXRn7Nra Oqwo4G7z2vp3CC3Z3rQUvbv5iBsvFaGjoDHGANJIgL/zj41reAie/H2bM/YVn0l+ paJJcR9Fi7GU8rbDTWTciyWgBXC4ogqRUYnLCdVM3sC8pjpNN5/1Wt7xqXqGTMBE 6HKpRkThrL2wB3lNPO9rTGZl4xj03WEN1jThYKUZZxbMZah+GFADvRC+xQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPL1Q177RyEKtQcxlH7DIntgY2DNMB8GA1UdIwQY MBaAFAMhv+oDBcSOlJ5sJJ9IELRpBciGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQXlHXzZnTUZ4STZVbm13a24wZ1F0R2tGeUlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8xMWRhMmItNzdiZC00MWM3LWJiZjMt NTYwYzllN2MwNzQ3LzEvQXlHXzZnTUZ4STZVbm13a24wZ1F0R2tGeUlZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS8xMWRhMmItNzdiZC00MWM3LWJiZjMtNTYwYzllN2MwNzQ3 LzEvQXlHXzZnTUZ4STZVbm13a24wZ1F0R2tGeUlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqoXcE3hT yW3v7SdmJd5c6UNCfYXHbLklCuNUzJku9EQ0GRfeTyNIkzW7l+obUrMkDn7DhY4H aCKGaOs2FEabaTb1+cA5iUPDey6HXyxf4TrH4ZYV5r5cgNGMxYay8B3gD/dmgTg0 +gRJk0QojwmkqnrDZh2TXC5/YKBnmnTi9OB/e5t35Rpv0HpBY+YPvePcACCE+uuP YTSBZHJIP9ZOJFQK+pirSIIxWwZwBoUDlg2q/Yy09aR1nP7YP5MtShrKDZx1YTuy RxDfQngrA1RuIaV7jjEypT8dNsQiqYv9+rBoCZog1g3wrF027W7cpyF58GwXP8Ue BfRC4wkbntYd2Q== -----END CERTIFICATE-----Generated at Sat Dec 6 08:43:00 2025 by rpki-client