This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/1a530f-efe3-4d8b-903a-a7136a145f1c/1/a1xW3Y1JexBoE6IloYFxST7jKoU.mft File: a1xW3Y1JexBoE6IloYFxST7jKoU.mft (raw, json) Hash identifier: pKU2kGwMrxzazTp/ilbYDaDB42VDwusi/3Uo4vmjcko= Subject key identifier: BE:5A:43:14:D0:E8:34:BD:21:85:9F:BF:E2:8E:2F:F9:5A:F7:37:B8 Authority key identifier: 6B:5C:56:DD:8D:49:7B:10:68:13:A2:25:A1:81:71:49:3E:E3:2A:85 Certificate issuer: /CN=6b5c56dd8d497b106813a225a18171493ee32a85 Certificate serial: 019AF23FB33B0A64B61D2A8BFE816CEAC9A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1xW3Y1JexBoE6IloYFxST7jKoU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/1a530f-efe3-4d8b-903a-a7136a145f1c/1/a1xW3Y1JexBoE6IloYFxST7jKoU.mft Manifest number: 01A2 Signing time: Sat 06 Dec 2025 06:00:52 +0000 Manifest this update: Sat 06 Dec 2025 06:00:52 +0000 Manifest next update: Sun 07 Dec 2025 06:00:52 +0000 Files and hashes: 1: a1xW3Y1JexBoE6IloYFxST7jKoU.crl (hash: /agTN/lklrEWlGe3lg6f9gveYhlO8S/ptcSpMBWc42c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/1a530f-efe3-4d8b-903a-a7136a145f1c/1/a1xW3Y1JexBoE6IloYFxST7jKoU.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/1a530f-efe3-4d8b-903a-a7136a145f1c/1/a1xW3Y1JexBoE6IloYFxST7jKoU.mft rsync://rpki.ripe.net/repository/DEFAULT/a1xW3Y1JexBoE6IloYFxST7jKoU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:b3:3b:0a:64:b6:1d:2a:8b:fe:81:6c:ea:c9:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6b5c56dd8d497b106813a225a18171493ee32a85 Validity Not Before: Dec 6 06:00:52 2025 GMT Not After : Dec 7 06:00:52 2025 GMT Subject: CN=be5a4314d0e834bd21859fbfe28e2ff95af737b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:79:fd:2b:04:db:b3:b1:91:33:43:48:ab:ab: c1:ff:04:f4:1d:c7:c3:79:f7:12:72:db:95:26:3a: 2f:ce:c0:35:c8:75:b3:a7:cb:79:0d:56:a4:6a:05: f2:d1:77:e6:10:df:cc:82:6d:b3:68:b8:00:6a:99: 3d:9f:03:48:73:7c:3c:b6:17:04:6b:51:48:5e:c6: 06:91:39:d8:7e:af:cd:82:73:bf:e4:9d:f0:75:82: c8:5f:77:7f:ac:8c:5f:83:1b:0e:28:0c:37:fa:e2: e5:4f:24:dc:a1:b7:d8:85:3b:65:04:e1:4f:aa:bd: e7:cd:6e:f9:73:8a:1d:1d:a6:10:12:45:06:10:f9: 76:a2:02:d9:ce:36:be:fa:eb:20:27:38:6e:bc:a1: 81:8c:8f:ef:b5:cc:7c:64:f3:4c:79:67:07:19:11: 68:25:44:07:13:cf:3b:82:f9:d6:fe:7f:14:e6:bf: 07:1c:fa:08:00:7d:8c:16:04:5a:b5:8f:99:b6:df: 39:e2:b7:e5:b4:4e:f1:ed:cd:eb:4e:12:15:88:c7: 37:f9:60:74:9d:2c:41:7d:4e:20:58:b1:15:cc:0f: 83:bd:6b:c9:d0:6a:22:7d:ba:b6:59:ef:a5:71:c6: 00:9d:74:ba:2d:d7:e7:81:c4:c7:a0:3e:21:a8:c9: d1:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:5A:43:14:D0:E8:34:BD:21:85:9F:BF:E2:8E:2F:F9:5A:F7:37:B8 X509v3 Authority Key Identifier: keyid:6B:5C:56:DD:8D:49:7B:10:68:13:A2:25:A1:81:71:49:3E:E3:2A:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1xW3Y1JexBoE6IloYFxST7jKoU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/1a530f-efe3-4d8b-903a-a7136a145f1c/1/a1xW3Y1JexBoE6IloYFxST7jKoU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/1a530f-efe3-4d8b-903a-a7136a145f1c/1/a1xW3Y1JexBoE6IloYFxST7jKoU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:8f:ec:99:dc:94:04:c6:70:28:65:45:41:3e:8f:2c:ac:9b: fd:f7:ff:f8:e8:83:33:16:a1:f6:36:57:f0:1c:28:cf:16:45: 89:3a:48:33:af:5c:c7:73:4e:d3:6d:9d:df:b9:b4:f0:cd:9a: 08:5e:39:73:65:07:9f:6f:fd:0f:15:2c:87:55:a8:8b:04:5e: 9b:b5:dc:9e:45:18:bf:1f:14:7a:f8:c6:3b:f2:93:45:d1:c0: 68:dd:82:7d:80:3e:b2:4c:a8:a7:c2:15:05:57:8d:07:2d:8d: 67:74:b5:b0:f6:3f:a0:4a:86:d0:ee:f4:2d:1b:bf:7e:cc:a3: 2c:e8:8f:b2:24:d3:5d:f5:e9:bb:4a:b9:c3:3b:6b:2e:7e:46: f0:d2:66:42:75:cc:e7:de:f3:ee:0e:80:ac:13:c5:cc:c8:e1: ce:49:85:26:bf:37:05:be:d7:03:89:51:f7:dd:9c:39:93:07: ad:46:2f:4a:02:54:7f:70:51:11:10:ac:91:39:3e:95:a9:8a: 0c:0d:33:cf:6b:f6:17:50:ee:5c:3f:f9:f5:4d:6d:f7:46:59: 20:d6:cd:34:3f:fa:de:50:93:e9:33:b1:d6:68:62:a1:f4:da: 09:fd:70:ab:fb:cb:34:33:a2:d4:ff:2f:35:d7:a7:59:aa:43: 97:f9:bb:9f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP7M7CmS2HSqL/oFs6smnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiNWM1NmRkOGQ0OTdiMTA2ODEzYTIyNWExODE3MTQ5M2Vl MzJhODUwHhcNMjUxMjA2MDYwMDUyWhcNMjUxMjA3MDYwMDUyWjAzMTEwLwYDVQQD EyhiZTVhNDMxNGQwZTgzNGJkMjE4NTlmYmZlMjhlMmZmOTVhZjczN2I4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuXn9KwTbs7GRM0NIq6vB/wT0HcfD efcSctuVJjovzsA1yHWzp8t5DVakagXy0XfmEN/Mgm2zaLgAapk9nwNIc3w8thcE a1FIXsYGkTnYfq/NgnO/5J3wdYLIX3d/rIxfgxsOKAw3+uLlTyTcobfYhTtlBOFP qr3nzW75c4odHaYQEkUGEPl2ogLZzja++usgJzhuvKGBjI/vtcx8ZPNMeWcHGRFo JUQHE887gvnW/n8U5r8HHPoIAH2MFgRatY+Ztt854rfltE7x7c3rThIViMc3+WB0 nSxBfU4gWLEVzA+DvWvJ0Goifbq2We+lccYAnXS6LdfngcTHoD4hqMnRnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL5aQxTQ6DS9IYWfv+KOL/la9ze4MB8GA1UdIwQY MBaAFGtcVt2NSXsQaBOiJaGBcUk+4yqFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYTF4VzNZMUpleEJvRTZJbG9ZRnhTVDdqS29VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8xYTUzMGYtZWZlMy00ZDhiLTkwM2Et YTcxMzZhMTQ1ZjFjLzEvYTF4VzNZMUpleEJvRTZJbG9ZRnhTVDdqS29VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS8xYTUzMGYtZWZlMy00ZDhiLTkwM2EtYTcxMzZhMTQ1ZjFj LzEvYTF4VzNZMUpleEJvRTZJbG9ZRnhTVDdqS29VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg4/smdyU BMZwKGVFQT6PLKyb/ff/+OiDMxah9jZX8BwozxZFiTpIM69cx3NO022d37m08M2a CF45c2UHn2/9DxUsh1WoiwRem7XcnkUYvx8UevjGO/KTRdHAaN2CfYA+skyop8IV BVeNBy2NZ3S1sPY/oEqG0O70LRu/fsyjLOiPsiTTXfXpu0q5wztrLn5G8NJmQnXM 597z7g6ArBPFzMjhzkmFJr83Bb7XA4lR992cOZMHrUYvSgJUf3BRERCskTk+lamK DA0zz2v2F1DuXD/59U1t90ZZINbNND/63lCT6TOx1mhiofTaCf1wq/vLNDOi1P8v NdenWapDl/m7nw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:22:47 2025 by rpki-client