This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft File: al1BD0JdNedNRW9_h7ro7ZKzyCk.mft (raw, json) Hash identifier: Q+jl3dZfayg97am8xGhmnsW2get0g3cmGhmzNsrpBzw= Subject key identifier: 3D:42:37:E3:A8:E1:80:AC:94:BC:AE:77:97:14:FB:BA:35:9D:6F:C0 Authority key identifier: 6A:5D:41:0F:42:5D:35:E7:4D:45:6F:7F:87:BA:E8:ED:92:B3:C8:29 Certificate issuer: /CN=6a5d410f425d35e74d456f7f87bae8ed92b3c829 Certificate serial: 019AF5411CC0CC2A1517D42BD416780754BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft Manifest number: 16F5 Signing time: Sat 06 Dec 2025 20:01:16 +0000 Manifest this update: Sat 06 Dec 2025 20:01:16 +0000 Manifest next update: Sun 07 Dec 2025 20:01:16 +0000 Files and hashes: 1: YRcPB026UNAbaic7bC0XnagQJ_8.roa (hash: F5LbuOIZKUKKLsIhj9ecbNiDMJqNxgANq1yR2w3iRxE=) 2: al1BD0JdNedNRW9_h7ro7ZKzyCk.crl (hash: M46mUAuOnxo+dAXEZktXjRCadSrXyj9RK0WL+XS8x4A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.crl rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 20:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:41:1c:c0:cc:2a:15:17:d4:2b:d4:16:78:07:54:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6a5d410f425d35e74d456f7f87bae8ed92b3c829 Validity Not Before: Dec 6 20:01:16 2025 GMT Not After : Dec 7 20:01:16 2025 GMT Subject: CN=3d4237e3a8e180ac94bcae779714fbba359d6fc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fc:96:82:4a:8b:07:8a:9c:c3:cc:74:95:18: 10:87:18:0a:0b:d4:37:30:30:c1:88:62:b0:fe:9b: db:23:03:c5:f5:48:3e:f5:10:81:46:54:6a:37:ae: e8:e1:99:47:71:8c:89:e6:4e:e3:30:74:af:45:9d: d2:9f:b2:c1:5c:de:01:a4:27:45:47:2b:e7:3b:30: 1a:bb:f5:45:93:8c:04:27:22:df:ee:2c:a8:54:d6: 96:b2:9c:d8:b0:92:e7:26:2a:1e:33:52:fb:82:4b: f9:90:ad:42:36:c7:6b:c6:d6:4b:9e:de:42:00:d0: 51:a3:a9:9c:0b:f6:c3:63:1a:ec:0e:b3:0d:e2:6e: c9:29:aa:6a:e1:b9:f6:8e:85:2e:fa:a4:92:6c:1f: b6:eb:b6:53:e4:b4:1a:7c:4a:a6:26:22:a6:2e:72: 3b:c7:e4:03:4b:a3:04:61:22:7b:80:e9:98:ef:60: ed:d1:cb:7b:b4:ec:b7:9c:a1:40:fc:91:54:98:49: cb:6d:27:a4:c9:9a:3c:54:eb:2f:47:a3:9c:eb:ad: d3:53:e3:df:57:dd:46:96:f0:2b:72:10:85:23:88: c1:54:c2:12:9b:0f:bb:ec:06:a1:33:00:74:8b:45: 74:5a:69:56:ce:c6:27:19:99:f9:40:c7:b5:6f:9e: db:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:42:37:E3:A8:E1:80:AC:94:BC:AE:77:97:14:FB:BA:35:9D:6F:C0 X509v3 Authority Key Identifier: keyid:6A:5D:41:0F:42:5D:35:E7:4D:45:6F:7F:87:BA:E8:ED:92:B3:C8:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:c7:43:9d:93:61:8f:32:4d:4f:b1:fb:e5:dd:33:6e:d7:47: c9:6f:34:6a:8c:73:99:c4:c5:fa:8f:97:dc:57:ab:8f:f9:e7: 15:89:fc:0b:94:5f:4b:54:75:ff:62:a5:98:29:93:91:6f:4f: 74:7b:cf:64:40:b5:7a:4e:af:66:15:c0:a6:8e:0a:65:67:8c: 9f:f9:1d:c0:d3:87:a4:8d:63:82:2f:6c:66:d8:8c:de:41:07: 5e:74:1d:4a:28:df:f5:d4:4d:8b:45:3f:ca:ea:95:90:c5:5d: 79:c7:2c:23:28:77:05:3e:51:b6:9e:24:36:c6:19:05:63:f7: f2:14:c9:e7:f3:0f:78:19:fc:e6:6f:44:7e:c6:3f:88:50:2f: 6d:6d:35:79:b0:e0:86:ba:46:c9:39:e2:d6:1a:3c:05:a4:83: 10:4f:87:e6:3d:74:da:fb:dd:90:d6:ca:8f:9c:e5:57:94:c1: 78:ba:a6:59:56:a1:75:de:c7:c1:03:b9:05:6e:58:15:10:ec: e2:35:c1:1d:c9:12:db:7d:c9:0d:03:b5:1e:e6:2f:82:a0:43: 50:f2:17:d1:50:69:58:b4:ef:b9:3f:b8:ff:52:bb:6e:f4:a5: f2:50:b2:d3:14:05:63:0e:ec:bf:b8:15:a3:2e:cb:b4:fa:45: 48:6d:6d:66 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1QRzAzCoVF9Qr1BZ4B1S/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhNWQ0MTBmNDI1ZDM1ZTc0ZDQ1NmY3Zjg3YmFlOGVkOTJi M2M4MjkwHhcNMjUxMjA2MjAwMTE2WhcNMjUxMjA3MjAwMTE2WjAzMTEwLwYDVQQD EygzZDQyMzdlM2E4ZTE4MGFjOTRiY2FlNzc5NzE0ZmJiYTM1OWQ2ZmMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvPyWgkqLB4qcw8x0lRgQhxgKC9Q3 MDDBiGKw/pvbIwPF9Ug+9RCBRlRqN67o4ZlHcYyJ5k7jMHSvRZ3Sn7LBXN4BpCdF RyvnOzAau/VFk4wEJyLf7iyoVNaWspzYsJLnJioeM1L7gkv5kK1CNsdrxtZLnt5C ANBRo6mcC/bDYxrsDrMN4m7JKapq4bn2joUu+qSSbB+267ZT5LQafEqmJiKmLnI7 x+QDS6MEYSJ7gOmY72Dt0ct7tOy3nKFA/JFUmEnLbSekyZo8VOsvR6Oc663TU+Pf V91GlvArchCFI4jBVMISmw+77AahMwB0i0V0WmlWzsYnGZn5QMe1b57bjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD1CN+Oo4YCslLyud5cU+7o1nW/AMB8GA1UdIwQY MBaAFGpdQQ9CXTXnTUVvf4e66O2Ss8gpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWwxQkQwSmROZWROUlc5X2g3cm83Wkt6eUNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC9kNWYxNGYtMjcwNS00MmVjLTkwMGYt NjkzNGNhZmI2YmNkLzEvYWwxQkQwSmROZWROUlc5X2g3cm83Wkt6eUNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC9kNWYxNGYtMjcwNS00MmVjLTkwMGYtNjkzNGNhZmI2YmNk LzEvYWwxQkQwSmROZWROUlc5X2g3cm83Wkt6eUNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARcdDnZNh jzJNT7H75d0zbtdHyW80aoxzmcTF+o+X3Ferj/nnFYn8C5RfS1R1/2KlmCmTkW9P dHvPZEC1ek6vZhXApo4KZWeMn/kdwNOHpI1jgi9sZtiM3kEHXnQdSijf9dRNi0U/ yuqVkMVdeccsIyh3BT5Rtp4kNsYZBWP38hTJ5/MPeBn85m9EfsY/iFAvbW01ebDg hrpGyTni1ho8BaSDEE+H5j102vvdkNbKj5zlV5TBeLqmWVahdd7HwQO5BW5YFRDs 4jXBHckS233JDQO1HuYvgqBDUPIX0VBpWLTvuT+4/1K7bvSl8lCy0xQFYw7sv7gV oy7LtPpFSG1tZg== -----END CERTIFICATE-----Generated at Sun Dec 7 05:55:17 2025 by rpki-client