This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft File: al1BD0JdNedNRW9_h7ro7ZKzyCk.mft (raw, json) Hash identifier: z8B+6zNDYeHypf9RIcOGi/EZhQlfj0hq35pn3mBDG3A= Subject key identifier: B8:13:32:8D:42:A6:6A:D3:C5:B9:68:A4:71:D3:E5:8F:AA:89:8E:D3 Authority key identifier: 6A:5D:41:0F:42:5D:35:E7:4D:45:6F:7F:87:BA:E8:ED:92:B3:C8:29 Certificate issuer: /CN=6a5d410f425d35e74d456f7f87bae8ed92b3c829 Certificate serial: 019AF35284F3C650CABB8E84B2546BC4FCD4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft Manifest number: 16F4 Signing time: Sat 06 Dec 2025 11:01:02 +0000 Manifest this update: Sat 06 Dec 2025 11:01:02 +0000 Manifest next update: Sun 07 Dec 2025 11:01:02 +0000 Files and hashes: 1: YRcPB026UNAbaic7bC0XnagQJ_8.roa (hash: F5LbuOIZKUKKLsIhj9ecbNiDMJqNxgANq1yR2w3iRxE=) 2: al1BD0JdNedNRW9_h7ro7ZKzyCk.crl (hash: DKbLRQOwHG6HvRiCFpmjE5s6z/ZQJDVZ7qxK1Dodmmo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.crl rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:84:f3:c6:50:ca:bb:8e:84:b2:54:6b:c4:fc:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6a5d410f425d35e74d456f7f87bae8ed92b3c829 Validity Not Before: Dec 6 11:01:02 2025 GMT Not After : Dec 7 11:01:02 2025 GMT Subject: CN=b813328d42a66ad3c5b968a471d3e58faa898ed3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b1:33:b2:57:85:ba:1e:53:6d:ac:94:8c:4f: a3:7f:15:f3:10:e3:c3:d8:c6:23:b8:76:4b:39:19: b5:76:c7:8c:cf:d4:60:f4:61:0c:53:eb:56:8c:d9: e4:56:bc:46:0d:af:09:b5:8d:33:d4:c3:24:36:72: 15:4f:21:5c:a2:cc:76:65:cd:27:92:93:f5:a9:7d: a2:1e:6e:ab:7c:ae:40:a7:20:6a:68:8a:d3:6f:c1: 24:a9:64:e9:24:85:18:99:c0:42:ba:2a:8e:c0:82: 6c:86:f7:f8:51:56:6a:7d:03:aa:89:22:28:78:5e: eb:6f:43:25:d7:2d:a4:59:ea:a8:3e:c8:e7:66:33: 5d:d4:b8:b4:43:2b:f8:91:99:1a:50:28:e4:dc:e3: 2f:2d:ab:93:a3:84:8b:d9:7c:ac:5b:16:c2:fa:66: 60:ac:99:76:54:66:34:ce:3e:08:b0:2a:af:87:ec: c3:40:84:25:7d:14:fc:b9:05:00:14:ed:92:e8:0e: 16:fd:db:ce:e6:67:23:40:e7:6c:37:11:a3:d9:a8: 10:da:5d:2e:33:3c:4b:9c:d4:8d:18:27:e4:eb:07: 28:cc:53:a4:69:f7:0b:25:6f:45:1e:e0:6c:97:dd: 05:81:95:db:eb:7e:56:47:a7:ee:c3:b6:e9:e8:2d: 5b:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:13:32:8D:42:A6:6A:D3:C5:B9:68:A4:71:D3:E5:8F:AA:89:8E:D3 X509v3 Authority Key Identifier: keyid:6A:5D:41:0F:42:5D:35:E7:4D:45:6F:7F:87:BA:E8:ED:92:B3:C8:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:2d:ef:d8:f6:5b:ab:00:1f:3a:3b:70:23:d9:43:5d:12:00: 65:75:a7:e5:88:7a:6b:39:7f:1a:6c:7d:7c:c4:e6:2c:ef:9d: db:f8:53:d3:6a:03:f0:13:4a:17:6e:77:53:79:ec:46:f8:f0: 85:8f:6e:21:58:e9:3b:46:d4:e0:d1:21:b5:7b:7b:08:2d:2a: f0:83:59:d9:5b:3a:e2:77:4f:e2:4d:7e:56:a2:04:06:26:80: 9a:13:40:b5:7d:c2:cc:08:fb:02:44:09:61:2e:b4:ac:ca:3e: 02:75:fa:12:12:2f:f8:69:2f:8e:74:ee:33:1e:59:ac:55:d6: 4f:4f:65:4e:70:85:b9:e4:dc:2a:64:98:f1:67:f7:e9:f0:c1: c1:49:f8:fb:00:24:35:ef:84:f7:13:d8:81:23:f5:b3:71:eb: 80:fd:cf:aa:fa:e3:f2:3c:6f:9e:82:cd:29:52:10:ad:72:99: 7f:da:19:59:86:b5:08:c1:6d:41:fb:50:f8:b3:e6:69:d7:c7: 0e:e8:6c:61:d9:c3:7f:e1:af:71:d3:b9:17:51:44:5e:cf:bf: c0:8a:0c:0a:73:ca:7c:1f:df:51:81:56:21:80:f3:08:26:ff: 3e:3e:79:3f:c0:a2:fe:d8:83:ce:0c:9b:26:88:6b:67:d1:9d: f7:2e:d8:3f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUoTzxlDKu46EslRrxPzUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhNWQ0MTBmNDI1ZDM1ZTc0ZDQ1NmY3Zjg3YmFlOGVkOTJi M2M4MjkwHhcNMjUxMjA2MTEwMTAyWhcNMjUxMjA3MTEwMTAyWjAzMTEwLwYDVQQD EyhiODEzMzI4ZDQyYTY2YWQzYzViOTY4YTQ3MWQzZTU4ZmFhODk4ZWQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4bEzsleFuh5TbayUjE+jfxXzEOPD 2MYjuHZLORm1dseMz9Rg9GEMU+tWjNnkVrxGDa8JtY0z1MMkNnIVTyFcosx2Zc0n kpP1qX2iHm6rfK5ApyBqaIrTb8EkqWTpJIUYmcBCuiqOwIJshvf4UVZqfQOqiSIo eF7rb0Ml1y2kWeqoPsjnZjNd1Li0Qyv4kZkaUCjk3OMvLauTo4SL2XysWxbC+mZg rJl2VGY0zj4IsCqvh+zDQIQlfRT8uQUAFO2S6A4W/dvO5mcjQOdsNxGj2agQ2l0u MzxLnNSNGCfk6wcozFOkafcLJW9FHuBsl90FgZXb635WR6fuw7bp6C1bmwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLgTMo1CpmrTxblopHHT5Y+qiY7TMB8GA1UdIwQY MBaAFGpdQQ9CXTXnTUVvf4e66O2Ss8gpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWwxQkQwSmROZWROUlc5X2g3cm83Wkt6eUNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC9kNWYxNGYtMjcwNS00MmVjLTkwMGYt NjkzNGNhZmI2YmNkLzEvYWwxQkQwSmROZWROUlc5X2g3cm83Wkt6eUNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC9kNWYxNGYtMjcwNS00MmVjLTkwMGYtNjkzNGNhZmI2YmNk LzEvYWwxQkQwSmROZWROUlc5X2g3cm83Wkt6eUNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsy3v2PZb qwAfOjtwI9lDXRIAZXWn5Yh6azl/Gmx9fMTmLO+d2/hT02oD8BNKF253U3nsRvjw hY9uIVjpO0bU4NEhtXt7CC0q8INZ2Vs64ndP4k1+VqIEBiaAmhNAtX3CzAj7AkQJ YS60rMo+AnX6EhIv+GkvjnTuMx5ZrFXWT09lTnCFueTcKmSY8Wf36fDBwUn4+wAk Ne+E9xPYgSP1s3HrgP3Pqvrj8jxvnoLNKVIQrXKZf9oZWYa1CMFtQftQ+LPmadfH DuhsYdnDf+GvcdO5F1FEXs+/wIoMCnPKfB/fUYFWIYDzCCb/Pj55P8Ci/tiDzgyb JohrZ9Gd9y7YPw== -----END CERTIFICATE-----Generated at Sat Dec 6 20:24:35 2025 by rpki-client