This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft File: AlO5GdddwgTZyjjbeyihdINLOz0.mft (raw, json) Hash identifier: Fpn2kZqjcdfa+5iKnDvmbdEBsB3ylCU2sMLGTGmS3HI= Subject key identifier: B6:8F:68:15:C3:E0:4E:53:9E:6D:46:C4:DF:86:21:70:CD:A6:8F:85 Authority key identifier: 02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D Certificate issuer: /CN=0253b919d75dc204d9ca38db7b28a174834b3b3d Certificate serial: 019B3833919691D190CED4D4609768AC5D86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft Manifest number: 07A7 Signing time: Fri 19 Dec 2025 20:01:02 +0000 Manifest this update: Fri 19 Dec 2025 20:01:02 +0000 Manifest next update: Sat 20 Dec 2025 20:01:02 +0000 Files and hashes: 1: AlO5GdddwgTZyjjbeyihdINLOz0.crl (hash: 5ZV5ZZPix8JIOkHOX08H817NFlcFMkitd2Xf/LJ4IGA=) 2: nHJdEaQAZSSucNQfqLdmnzvaEhg.roa (hash: PyiLEuElU0BAtn89yNXkLzFcjN6+3nnt5xk1DxkgTgc=) 3: uTJHpPw8MiXzvmoOasbIM18rO48.roa (hash: 417uE377R+rkUzMmjx7quT0IM4A+QC6t0Oyj6z4KxVE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:38:33:91:96:91:d1:90:ce:d4:d4:60:97:68:ac:5d:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0253b919d75dc204d9ca38db7b28a174834b3b3d Validity Not Before: Dec 19 20:01:02 2025 GMT Not After : Dec 20 20:01:02 2025 GMT Subject: CN=b68f6815c3e04e539e6d46c4df862170cda68f85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:87:c3:69:da:d7:5c:52:9b:d5:6b:af:47:63: 15:71:31:18:cf:67:dd:45:ed:93:28:08:86:8b:87: 50:8c:a2:ba:49:3a:c4:ee:b2:01:e6:7d:4b:c2:41: e0:eb:c7:12:02:6d:d8:e0:b9:b2:54:65:1d:f8:56: 7b:db:86:a7:09:a7:54:ac:42:a4:77:2b:a0:93:5a: 28:aa:08:6e:27:de:66:19:d6:6a:48:34:ba:cd:83: e2:27:f9:af:f6:ce:e5:64:8d:b1:b3:6f:26:29:7f: f5:17:0d:c8:3d:7b:af:d6:a0:31:f7:ef:8a:45:93: 1b:c7:b6:88:15:c5:64:9a:79:20:7a:23:25:f4:45: 2a:f1:c8:cf:cd:18:f0:36:64:f9:00:d4:79:db:10: 0d:5f:ce:b9:54:5b:d2:8f:51:03:fa:d6:c3:39:6f: 7e:f9:38:a1:82:2b:2d:c3:c3:81:ed:b7:b7:24:01: 64:59:c1:d7:0a:59:e9:d3:cd:77:ed:7a:7e:11:50: 88:99:3c:87:70:80:d9:59:de:0d:a9:66:aa:f9:96: 18:8b:e4:71:77:e3:a5:ac:4b:94:8f:7e:7c:56:c9: 8c:a5:5d:9c:25:41:11:b9:22:14:59:af:ce:bd:fb: 20:82:0a:62:d2:b2:1a:85:71:7d:50:bf:7c:10:c7: e1:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:8F:68:15:C3:E0:4E:53:9E:6D:46:C4:DF:86:21:70:CD:A6:8F:85 X509v3 Authority Key Identifier: keyid:02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:bc:7d:7e:7d:ae:c9:85:d4:13:6d:42:9d:c8:74:ed:3c:64: 77:8b:4c:78:39:bc:50:db:20:2f:9d:97:fb:81:15:2c:d8:1a: 27:8e:00:16:67:2d:0b:7a:4a:d3:2f:b8:eb:e9:2d:ce:5e:1a: 34:64:42:87:d5:e3:36:57:20:d8:74:dd:52:3c:b6:ed:c5:65: 9d:10:1e:48:bb:63:e8:c2:1d:97:5f:a8:27:d7:22:05:20:17: 64:9b:da:be:3c:a6:8b:7d:00:6b:5a:ce:75:82:ee:dd:a5:f1: aa:2a:1f:c1:e7:97:29:57:20:5c:b1:d1:e6:1c:9c:4a:30:b8: 6e:85:f0:48:13:03:09:d9:86:a0:0b:d0:ec:53:69:2b:17:05: 96:99:9d:7a:a9:bc:5c:95:23:be:45:e5:29:66:8d:bf:77:5e: 0c:6d:b0:ad:96:11:9b:81:51:83:4f:e1:b7:aa:bc:a9:9d:19: 5e:da:f2:99:dd:75:cb:8a:42:90:af:6c:a5:0e:04:b9:0c:d3: 0b:1f:ef:62:bd:59:e8:4a:30:76:c2:e5:8a:ca:84:3d:c5:5a: f3:83:9e:79:cb:58:0a:2c:3d:77:5a:e3:2b:7c:67:1c:06:00: aa:62:21:58:ad:de:d7:17:fd:09:6f:57:a2:8b:f2:80:81:4e: 44:0c:dd:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs4M5GWkdGQztTUYJdorF2GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyNTNiOTE5ZDc1ZGMyMDRkOWNhMzhkYjdiMjhhMTc0ODM0 YjNiM2QwHhcNMjUxMjE5MjAwMTAyWhcNMjUxMjIwMjAwMTAyWjAzMTEwLwYDVQQD EyhiNjhmNjgxNWMzZTA0ZTUzOWU2ZDQ2YzRkZjg2MjE3MGNkYTY4Zjg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwIfDadrXXFKb1WuvR2MVcTEYz2fd Re2TKAiGi4dQjKK6STrE7rIB5n1LwkHg68cSAm3Y4LmyVGUd+FZ724anCadUrEKk dyugk1ooqghuJ95mGdZqSDS6zYPiJ/mv9s7lZI2xs28mKX/1Fw3IPXuv1qAx9++K RZMbx7aIFcVkmnkgeiMl9EUq8cjPzRjwNmT5ANR52xANX865VFvSj1ED+tbDOW9+ +Tihgistw8OB7be3JAFkWcHXClnp08137Xp+EVCImTyHcIDZWd4NqWaq+ZYYi+Rx d+OlrEuUj358VsmMpV2cJUERuSIUWa/Ovfsgggpi0rIahXF9UL98EMfhsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLaPaBXD4E5Tnm1GxN+GIXDNpo+FMB8GA1UdIwQY MBaAFAJTuRnXXcIE2co423sooXSDSzs9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWxPNUdkZGR3Z1RaeWpqYmV5aWhkSU5MT3owLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS8zYmFmZDgtYzM0ZS00ODkwLWI0Y2Yt NzNkYjBmMjg0MWM5LzEvQWxPNUdkZGR3Z1RaeWpqYmV5aWhkSU5MT3owLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS8zYmFmZDgtYzM0ZS00ODkwLWI0Y2YtNzNkYjBmMjg0MWM5 LzEvQWxPNUdkZGR3Z1RaeWpqYmV5aWhkSU5MT3owLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo7x9fn2u yYXUE21Cnch07Txkd4tMeDm8UNsgL52X+4EVLNgaJ44AFmctC3pK0y+46+ktzl4a NGRCh9XjNlcg2HTdUjy27cVlnRAeSLtj6MIdl1+oJ9ciBSAXZJvavjymi30Aa1rO dYLu3aXxqiofweeXKVcgXLHR5hycSjC4boXwSBMDCdmGoAvQ7FNpKxcFlpmdeqm8 XJUjvkXlKWaNv3deDG2wrZYRm4FRg0/ht6q8qZ0ZXtrymd11y4pCkK9spQ4EuQzT Cx/vYr1Z6EowdsLlisqEPcVa84OeectYCiw9d1rjK3xnHAYAqmIhWK3e1xf9CW9X oovygIFORAzdjA== -----END CERTIFICATE-----Generated at Fri Dec 19 21:51:16 2025 by rpki-client