This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft File: AlqBIsJH0--70vaoFKX2h0VBiN8.mft (raw, json) Hash identifier: RYRyVoogWmVZ7UKWR87gacATtMPZxQSLPO0NflRPQ98= Subject key identifier: E3:6B:1A:1C:C9:F4:17:38:57:22:F3:F8:06:89:BF:EC:2E:08:FC:A4 Authority key identifier: 02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF Certificate issuer: /CN=025a8122c247d3efbbd2f6a814a5f687454188df Certificate serial: 019AF0882B47FC6DA276D96DE18F68275E98 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft Manifest number: 1761 Signing time: Fri 05 Dec 2025 22:00:47 +0000 Manifest this update: Fri 05 Dec 2025 22:00:47 +0000 Manifest next update: Sat 06 Dec 2025 22:00:47 +0000 Files and hashes: 1: 8b2Sz4cL93cXk3-Io7s2vbwBznU.roa (hash: OdYsHSgXYM8f8BmJb0rgKjd3SquS1uJD7loVl2Lg/xI=) 2: AlqBIsJH0--70vaoFKX2h0VBiN8.crl (hash: ugoH9CKR6ACnNey7/2gJsjtSCpVUGqh5137v+XRcOHU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 22:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:88:2b:47:fc:6d:a2:76:d9:6d:e1:8f:68:27:5e:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=025a8122c247d3efbbd2f6a814a5f687454188df Validity Not Before: Dec 5 22:00:47 2025 GMT Not After : Dec 6 22:00:47 2025 GMT Subject: CN=e36b1a1cc9f417385722f3f80689bfec2e08fca4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:72:cb:45:4b:e3:88:a4:eb:f5:c1:28:0e:fe: 67:6a:c2:58:71:9c:37:0c:3a:7d:15:b0:1f:0e:fd: 38:23:12:d0:57:99:d6:bf:cf:9b:a1:df:af:dd:a4: 1e:fb:85:99:ee:a4:5f:70:90:97:6c:0f:eb:6b:c9: 7d:1d:25:f5:ec:30:79:be:68:bf:f6:7d:fb:82:5f: 8f:b5:93:78:97:3a:f8:92:50:6e:75:99:53:79:3c: f2:ca:59:62:fc:7e:59:42:d9:8a:fa:e7:ff:7a:e3: 39:fd:39:10:b7:e6:53:6c:c7:2e:cb:e7:06:0e:94: b3:98:8a:e7:e8:66:d5:38:71:f2:50:41:30:9d:6e: c3:c6:76:6d:44:56:f5:aa:6b:18:7a:76:33:97:0c: 76:0b:7a:f0:2e:65:0a:74:3b:ec:3b:6f:fd:e1:b6: 4d:7b:db:75:62:81:07:6e:28:56:40:b2:6e:bc:22: e8:fa:e6:ee:51:54:0f:48:ed:c7:06:41:88:19:13: bb:4e:54:11:1b:cf:75:58:3a:02:13:41:d5:d6:ed: b6:51:c8:13:92:78:62:95:8c:d7:4b:33:72:47:6d: cf:01:19:fe:96:5f:40:ed:8b:ca:aa:ea:d6:4c:29: 00:58:8f:61:df:fe:cf:75:19:64:f3:7d:20:5d:a3: b9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:6B:1A:1C:C9:F4:17:38:57:22:F3:F8:06:89:BF:EC:2E:08:FC:A4 X509v3 Authority Key Identifier: keyid:02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:a8:b3:4b:9d:a0:a8:86:d4:97:40:96:09:d4:59:65:6a:50: b4:88:5f:66:0b:8e:51:1d:a3:6c:15:f8:7e:78:45:c4:3b:12: 6f:a6:88:a7:70:67:66:50:10:e2:ac:e7:f3:39:22:7b:10:7e: 4e:00:bd:61:ee:12:76:e0:96:be:cf:38:be:34:70:64:24:57: 7b:1d:25:ad:70:9f:12:f4:58:72:bb:85:31:8a:f1:95:bb:49: b4:04:e2:93:dd:0c:4e:e4:e2:bc:d1:c7:f5:ba:c7:d4:45:a2: 15:f0:c6:3b:ad:60:c5:4d:f5:d4:db:94:7d:70:93:d8:1e:c2: 27:28:37:9e:d5:b6:59:cb:55:26:98:20:40:ad:51:2d:4a:8f: a8:7b:0f:2e:70:a4:bb:e0:83:1e:d0:5b:de:c6:47:7c:b2:25: 9c:35:02:fe:98:52:d0:87:9a:76:02:3c:9f:22:c8:95:24:d8: ca:11:da:db:98:4e:53:ee:e5:55:68:3c:42:2b:c0:e1:12:b0: 87:ed:e8:11:c3:e5:80:84:45:00:62:22:40:db:c4:7f:1f:0f: b9:7e:37:62:06:42:74:cd:17:60:92:3c:b1:c5:f5:d7:67:e2: f1:0c:3f:8d:87:a2:dc:80:4f:6c:b5:45:6a:55:4d:60:76:03: ee:e1:11:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwiCtH/G2idtlt4Y9oJ16YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyNWE4MTIyYzI0N2QzZWZiYmQyZjZhODE0YTVmNjg3NDU0 MTg4ZGYwHhcNMjUxMjA1MjIwMDQ3WhcNMjUxMjA2MjIwMDQ3WjAzMTEwLwYDVQQD EyhlMzZiMWExY2M5ZjQxNzM4NTcyMmYzZjgwNjg5YmZlYzJlMDhmY2E0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkXLLRUvjiKTr9cEoDv5nasJYcZw3 DDp9FbAfDv04IxLQV5nWv8+bod+v3aQe+4WZ7qRfcJCXbA/ra8l9HSX17DB5vmi/ 9n37gl+PtZN4lzr4klBudZlTeTzyylli/H5ZQtmK+uf/euM5/TkQt+ZTbMcuy+cG DpSzmIrn6GbVOHHyUEEwnW7DxnZtRFb1qmsYenYzlwx2C3rwLmUKdDvsO2/94bZN e9t1YoEHbihWQLJuvCLo+ubuUVQPSO3HBkGIGRO7TlQRG891WDoCE0HV1u22UcgT knhilYzXSzNyR23PARn+ll9A7YvKqurWTCkAWI9h3/7PdRlk830gXaO5gwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFONrGhzJ9Bc4VyLz+AaJv+wuCPykMB8GA1UdIwQY MBaAFAJagSLCR9Pvu9L2qBSl9odFQYjfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWxxQklzSkgwLS03MHZhb0ZLWDJoMFZCaU44LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi9lMjk5MWEtZGIwZi00YzNmLWJjMDgt MWIzZTM1OTUxMDFiLzEvQWxxQklzSkgwLS03MHZhb0ZLWDJoMFZCaU44Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi9lMjk5MWEtZGIwZi00YzNmLWJjMDgtMWIzZTM1OTUxMDFi LzEvQWxxQklzSkgwLS03MHZhb0ZLWDJoMFZCaU44LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlaizS52g qIbUl0CWCdRZZWpQtIhfZguOUR2jbBX4fnhFxDsSb6aIp3BnZlAQ4qzn8zkiexB+ TgC9Ye4SduCWvs84vjRwZCRXex0lrXCfEvRYcruFMYrxlbtJtATik90MTuTivNHH 9brH1EWiFfDGO61gxU311NuUfXCT2B7CJyg3ntW2WctVJpggQK1RLUqPqHsPLnCk u+CDHtBb3sZHfLIlnDUC/phS0IeadgI8nyLIlSTYyhHa25hOU+7lVWg8QivA4RKw h+3oEcPlgIRFAGIiQNvEfx8PuX43YgZCdM0XYJI8scX112fi8Qw/jYei3IBPbLVF alVNYHYD7uERXA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:16:29 2025 by rpki-client