This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft File: AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft (raw, json) Hash identifier: eIokWky65pwKVlV5Ku9Z+f7ryAIF8P8nAvVzijLQl4A= Subject key identifier: D6:3C:B4:9C:05:A1:3C:4D:47:19:0C:AC:AF:F9:0A:67:60:CF:F0:33 Authority key identifier: 02:64:0B:CC:B7:17:1F:19:9C:43:A0:A9:74:CA:B8:27:ED:18:E7:50 Certificate issuer: /CN=02640bccb7171f199c43a0a974cab827ed18e750 Certificate serial: 019AF2AD9090F4FCD10A5FAEE3DFAB571BE9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 08:00:52 +0000 Manifest this update: Sat 06 Dec 2025 08:00:52 +0000 Manifest next update: Sun 07 Dec 2025 08:00:52 +0000 Files and hashes: 1: AmQLzLcXHxmcQ6CpdMq4J-0Y51A.crl (hash: OKxzkztDJnMh0ifyXTlG2vcv/2UuMXHaU5dKjU3k9ck=) 2: oyTiWJ913wVTjnCcw6Q4RBUZbq8.roa (hash: /NMMdoNH5sZWYkg6OnNqyz5087fDkPkdrRkbme1onLo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.crl rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft rsync://rpki.ripe.net/repository/DEFAULT/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 08:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:90:90:f4:fc:d1:0a:5f:ae:e3:df:ab:57:1b:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02640bccb7171f199c43a0a974cab827ed18e750 Validity Not Before: Dec 6 08:00:52 2025 GMT Not After : Dec 7 08:00:52 2025 GMT Subject: CN=d63cb49c05a13c4d47190cacaff90a6760cff033 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e9:32:a3:7c:c0:55:ab:f2:2e:be:a0:08:6f: 7f:26:cf:0b:c1:bb:29:6c:25:73:df:eb:7d:71:22: 95:b5:e8:d6:a6:c7:d3:11:54:32:2e:13:b4:f9:83: 6b:da:33:66:bf:d6:47:93:58:a3:32:ea:92:3a:8a: d4:fe:1b:3c:25:91:3b:06:a6:f8:49:79:7e:96:86: c6:ed:47:65:c8:c5:97:a7:bc:38:34:ac:f0:10:46: 1a:5b:f0:0a:7a:ca:a1:da:25:aa:cc:14:11:94:b2: 3f:29:77:0e:31:3f:74:fc:ce:56:42:bd:bc:ed:65: 69:98:8b:f0:e1:6f:a0:2b:9f:7f:3f:91:f6:4f:4c: b5:a5:6e:4e:23:06:4d:e2:73:78:dd:99:ac:70:ca: b1:ef:f0:67:81:d5:c9:a6:3a:a3:dd:15:25:13:12: a4:a8:a5:53:c8:55:48:e3:30:c5:c4:dc:51:b8:e4: 02:95:e7:33:7e:24:47:27:93:33:8a:3d:e1:b0:6c: f6:ec:90:5d:80:e1:5a:9c:8c:27:c5:38:5c:8c:ea: 27:20:7e:75:e1:09:20:dd:ca:5a:88:28:ca:78:ed: 22:07:4e:3b:04:99:33:15:b1:e7:4a:78:82:7d:68: fc:53:3c:ae:88:42:73:fd:c4:ae:45:0d:d2:e6:b6: 3c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:3C:B4:9C:05:A1:3C:4D:47:19:0C:AC:AF:F9:0A:67:60:CF:F0:33 X509v3 Authority Key Identifier: keyid:02:64:0B:CC:B7:17:1F:19:9C:43:A0:A9:74:CA:B8:27:ED:18:E7:50 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:24:98:e9:fe:b2:28:6e:c3:1d:72:f0:7d:1e:1a:e4:7c:d1: de:49:b5:51:68:61:a7:ca:8e:3f:7a:e9:3c:91:35:68:4a:88: 5f:99:5b:10:b9:8a:ae:58:22:5b:a4:1b:55:61:f2:fd:17:93: 18:60:1a:4b:f9:16:19:a8:aa:cc:7a:7a:83:70:42:57:1d:b9: cc:8e:c2:d5:3a:c5:db:0a:7e:db:78:c7:b7:80:7e:32:38:7b: 19:f3:e4:72:3d:b6:a7:e3:53:79:26:be:84:6c:a8:6e:ca:a0: ba:b7:55:19:5a:b4:81:ee:68:d1:68:5a:6a:50:b7:2a:98:7f: 8e:48:30:d6:7d:ad:db:98:21:20:8d:43:86:57:71:fd:d6:2c: 4d:5a:41:74:1c:70:d9:71:ab:f2:6b:8e:d0:24:7c:3e:99:8e: 7d:90:47:33:c9:c4:93:db:b4:91:63:5d:df:4e:01:19:b1:87: 50:56:9c:7d:06:ae:72:d3:6b:93:b0:5e:e3:17:cf:73:30:37: 5e:f0:fb:aa:1a:17:54:16:e2:69:f2:15:29:31:09:1f:42:87: 4c:18:4b:b6:41:88:8f:07:cb:d8:9f:7d:c0:3b:9e:7a:48:45: ec:0f:a8:d9:d1:1a:a3:45:36:7d:4c:6f:df:97:c4:a0:23:23: d7:2f:8f:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrZCQ9PzRCl+u49+rVxvpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyNjQwYmNjYjcxNzFmMTk5YzQzYTBhOTc0Y2FiODI3ZWQx OGU3NTAwHhcNMjUxMjA2MDgwMDUyWhcNMjUxMjA3MDgwMDUyWjAzMTEwLwYDVQQD EyhkNjNjYjQ5YzA1YTEzYzRkNDcxOTBjYWNhZmY5MGE2NzYwY2ZmMDMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwOkyo3zAVavyLr6gCG9/Js8Lwbsp bCVz3+t9cSKVtejWpsfTEVQyLhO0+YNr2jNmv9ZHk1ijMuqSOorU/hs8JZE7Bqb4 SXl+lobG7UdlyMWXp7w4NKzwEEYaW/AKesqh2iWqzBQRlLI/KXcOMT90/M5WQr28 7WVpmIvw4W+gK59/P5H2T0y1pW5OIwZN4nN43ZmscMqx7/BngdXJpjqj3RUlExKk qKVTyFVI4zDFxNxRuOQCleczfiRHJ5Mzij3hsGz27JBdgOFanIwnxThcjOonIH51 4Qkg3cpaiCjKeO0iB047BJkzFbHnSniCfWj8UzyuiEJz/cSuRQ3S5rY88QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNY8tJwFoTxNRxkMrK/5Cmdgz/AzMB8GA1UdIwQY MBaAFAJkC8y3Fx8ZnEOgqXTKuCftGOdQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQW1RTHpMY1hIeG1jUTZDcGRNcTRKLTBZNTFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi80MjRiZDEtOTUzYi00MjYyLTgzOTYt YzdiZjk1ZTVhYjdiLzEvQW1RTHpMY1hIeG1jUTZDcGRNcTRKLTBZNTFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi80MjRiZDEtOTUzYi00MjYyLTgzOTYtYzdiZjk1ZTVhYjdi LzEvQW1RTHpMY1hIeG1jUTZDcGRNcTRKLTBZNTFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbiSY6f6y KG7DHXLwfR4a5HzR3km1UWhhp8qOP3rpPJE1aEqIX5lbELmKrlgiW6QbVWHy/ReT GGAaS/kWGaiqzHp6g3BCVx25zI7C1TrF2wp+23jHt4B+Mjh7GfPkcj22p+NTeSa+ hGyobsqgurdVGVq0ge5o0WhaalC3Kph/jkgw1n2t25ghII1Dhldx/dYsTVpBdBxw 2XGr8muO0CR8PpmOfZBHM8nEk9u0kWNd304BGbGHUFacfQauctNrk7Be4xfPczA3 XvD7qhoXVBbiafIVKTEJH0KHTBhLtkGIjwfL2J99wDueekhF7A+o2dEao0U2fUxv 35fEoCMj1y+P2g== -----END CERTIFICATE-----Generated at Sat Dec 6 15:56:00 2025 by rpki-client