This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft File: ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft (raw, json) Hash identifier: cussTx2UsYrkO6A1V8H6T043l7WSZixTRt0kAoRh6Qs= Subject key identifier: 2D:D4:21:12:E1:4F:FF:57:14:EA:AC:3E:59:65:41:C1:D3:80:E8:F6 Authority key identifier: 6A:10:B7:C5:4E:6F:95:B1:D9:B8:4A:AC:3D:9D:A7:42:A0:E0:2A:6C Certificate issuer: /CN=6a10b7c54e6f95b1d9b84aac3d9da742a0e02a6c Certificate serial: 019AF50A3EEA24C36B5C5DFDA79D19579345 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft Manifest number: 1322 Signing time: Sat 06 Dec 2025 19:01:20 +0000 Manifest this update: Sat 06 Dec 2025 19:01:20 +0000 Manifest next update: Sun 07 Dec 2025 19:01:20 +0000 Files and hashes: 1: ahC3xU5vlbHZuEqsPZ2nQqDgKmw.crl (hash: kcjvYcX9wM0uuY9c4RRqNwNZ/PESaLXLg284NHMhC/g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.crl rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft rsync://rpki.ripe.net/repository/DEFAULT/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0a:3e:ea:24:c3:6b:5c:5d:fd:a7:9d:19:57:93:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6a10b7c54e6f95b1d9b84aac3d9da742a0e02a6c Validity Not Before: Dec 6 19:01:20 2025 GMT Not After : Dec 7 19:01:20 2025 GMT Subject: CN=2dd42112e14fff5714eaac3e596541c1d380e8f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:66:da:46:4b:2b:f2:ac:00:da:40:7c:a0:fb: 89:b8:34:a4:12:fe:a0:06:f4:81:35:5e:1b:29:2a: dd:48:6e:35:42:76:03:86:c2:0e:c1:67:90:31:19: 68:3e:91:f7:fb:0f:54:24:d8:55:af:87:93:28:f2: 10:2b:95:60:af:ee:bd:89:ac:88:33:23:67:3d:73: 4e:52:16:5f:aa:0f:43:37:d8:ab:8c:99:6c:8f:0c: bd:24:8d:ff:66:13:75:da:ea:00:41:0c:b0:b5:97: 24:fe:38:64:c3:b6:62:0f:af:64:73:1b:83:7c:53: 6b:45:88:90:ac:9e:43:7f:5d:75:a6:b3:c5:83:32: 2a:9e:c5:24:99:58:ed:03:2c:5a:c1:28:85:02:d9: a4:c1:05:02:fc:36:d9:9f:bc:26:0a:71:1a:d9:70: 30:2f:61:d6:ce:ec:59:81:87:9a:53:2f:8e:ca:10: 10:02:6f:52:0d:89:15:f6:60:2d:17:87:8a:71:56: be:2d:77:fe:94:06:8d:dd:ab:83:88:a4:ae:30:3b: 9a:a2:b9:2f:80:fc:33:d1:f4:97:57:3f:87:53:8e: 9a:7d:67:f1:a8:eb:ed:f6:cd:59:94:48:88:ae:e4: 97:52:c1:a2:e0:90:46:33:f6:53:bb:d9:68:be:7b: ec:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:D4:21:12:E1:4F:FF:57:14:EA:AC:3E:59:65:41:C1:D3:80:E8:F6 X509v3 Authority Key Identifier: keyid:6A:10:B7:C5:4E:6F:95:B1:D9:B8:4A:AC:3D:9D:A7:42:A0:E0:2A:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:42:77:ee:30:50:c0:92:d0:c7:78:53:73:12:0e:2e:70:6c: 31:f9:b9:fe:d8:1e:52:22:3d:de:ff:e8:12:3e:f3:ba:bc:dc: 0f:e1:96:b9:78:4c:36:3d:7a:f1:7f:df:63:e6:74:d3:34:9a: c3:7e:8a:60:d0:df:00:48:36:12:f5:5e:ea:3b:65:2d:5c:b1: ce:80:f6:bc:1d:fa:bb:d9:af:f0:59:96:22:ae:ef:f2:89:3b: 93:29:3f:b6:b9:72:6d:1b:5a:90:a9:a1:6d:27:78:ef:ee:6c: f5:4f:6b:53:cf:8b:4d:67:c0:00:e5:a7:a1:bb:bd:8f:45:5e: 45:83:7e:bf:58:39:62:15:20:89:48:bd:28:2a:a4:20:12:7a: 4c:40:48:ed:43:82:97:41:f4:93:b8:14:1e:49:08:de:72:4c: a2:61:b4:49:fe:43:dd:ae:19:32:a5:08:0a:84:72:f8:e7:3e: 35:50:f1:2b:bd:1c:60:e9:c4:fd:08:2c:63:14:eb:ab:75:98: 01:50:55:d7:a9:7f:41:87:92:ca:da:8a:94:48:0c:6d:11:fd: 1d:ed:7f:ab:f8:fd:75:1f:c8:60:5d:de:27:43:1a:74:d8:24: 25:ec:46:eb:f9:b6:2c:38:b3:33:da:02:5d:2f:94:d7:62:d8: 57:8f:31:f8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1Cj7qJMNrXF39p50ZV5NFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhMTBiN2M1NGU2Zjk1YjFkOWI4NGFhYzNkOWRhNzQyYTBl MDJhNmMwHhcNMjUxMjA2MTkwMTIwWhcNMjUxMjA3MTkwMTIwWjAzMTEwLwYDVQQD EygyZGQ0MjExMmUxNGZmZjU3MTRlYWFjM2U1OTY1NDFjMWQzODBlOGY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4GbaRksr8qwA2kB8oPuJuDSkEv6g BvSBNV4bKSrdSG41QnYDhsIOwWeQMRloPpH3+w9UJNhVr4eTKPIQK5Vgr+69iayI MyNnPXNOUhZfqg9DN9irjJlsjwy9JI3/ZhN12uoAQQywtZck/jhkw7ZiD69kcxuD fFNrRYiQrJ5Df111prPFgzIqnsUkmVjtAyxawSiFAtmkwQUC/DbZn7wmCnEa2XAw L2HWzuxZgYeaUy+OyhAQAm9SDYkV9mAtF4eKcVa+LXf+lAaN3auDiKSuMDuaorkv gPwz0fSXVz+HU46afWfxqOvt9s1ZlEiIruSXUsGi4JBGM/ZTu9lovnvsiQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC3UIRLhT/9XFOqsPlllQcHTgOj2MB8GA1UdIwQY MBaAFGoQt8VOb5Wx2bhKrD2dp0Kg4CpsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWhDM3hVNXZsYkhadUVxc1BaMm5RcURnS213LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS84YTJlODUtOTQ4MC00MWEyLWEyNTUt MmRjYWQ2ZWU3MWZiLzEvYWhDM3hVNXZsYkhadUVxc1BaMm5RcURnS213Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS84YTJlODUtOTQ4MC00MWEyLWEyNTUtMmRjYWQ2ZWU3MWZi LzEvYWhDM3hVNXZsYkhadUVxc1BaMm5RcURnS213LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPkJ37jBQ wJLQx3hTcxIOLnBsMfm5/tgeUiI93v/oEj7zurzcD+GWuXhMNj168X/fY+Z00zSa w36KYNDfAEg2EvVe6jtlLVyxzoD2vB36u9mv8FmWIq7v8ok7kyk/trlybRtakKmh bSd47+5s9U9rU8+LTWfAAOWnobu9j0VeRYN+v1g5YhUgiUi9KCqkIBJ6TEBI7UOC l0H0k7gUHkkI3nJMomG0Sf5D3a4ZMqUICoRy+Oc+NVDxK70cYOnE/QgsYxTrq3WY AVBV16l/QYeSytqKlEgMbRH9He1/q/j9dR/IYF3eJ0MadNgkJexG6/m2LDizM9oC XS+U12LYV48x+A== -----END CERTIFICATE-----Generated at Sun Dec 7 02:18:14 2025 by rpki-client