This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft File: aomTYnatLRhxB9-3QAeTADrBSac.mft (raw, json) Hash identifier: BobH7Gwx0BMh1EtcAsxp/40Eo+XdMTLnJr2NIXXNEkE= Subject key identifier: 6C:C3:B1:2A:74:1D:77:ED:39:85:85:4D:A8:83:12:D7:40:A5:43:7C Authority key identifier: 6A:89:93:62:76:AD:2D:18:71:07:DF:B7:40:07:93:00:3A:C1:49:A7 Certificate issuer: /CN=6a89936276ad2d187107dfb7400793003ac149a7 Certificate serial: 019AF0885994C2325DA599533236563D5051 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft Manifest number: 16EF Signing time: Fri 05 Dec 2025 22:00:58 +0000 Manifest this update: Fri 05 Dec 2025 22:00:58 +0000 Manifest next update: Sat 06 Dec 2025 22:00:58 +0000 Files and hashes: 1: aomTYnatLRhxB9-3QAeTADrBSac.crl (hash: iq9PLtPwNe/PpvcWTkBbM9EwblaK+2s177rznaBGZXY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 22:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:88:59:94:c2:32:5d:a5:99:53:32:36:56:3d:50:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6a89936276ad2d187107dfb7400793003ac149a7 Validity Not Before: Dec 5 22:00:58 2025 GMT Not After : Dec 6 22:00:58 2025 GMT Subject: CN=6cc3b12a741d77ed3985854da88312d740a5437c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bd:3d:66:02:a0:1b:92:17:e8:37:dc:94:e4: 56:a6:ce:d2:ec:6e:25:64:78:ab:b3:d2:46:bb:e0: 85:c5:8a:59:58:57:7b:fd:3c:26:1e:90:98:10:2b: 7c:09:8f:7d:d6:6e:09:b2:81:74:61:ba:57:78:ad: 94:83:c5:51:e7:93:6d:e3:3b:c3:ba:b3:86:6c:48: 84:d4:c4:d7:e5:61:02:c8:5e:49:01:33:63:d2:66: 00:f0:40:4c:88:ff:7e:72:2c:18:79:03:46:5e:60: d1:ad:b7:da:f4:f5:c9:17:d6:42:84:77:f7:42:3f: 0b:ee:85:4a:a1:ad:13:f8:9b:28:bb:82:a7:e0:0b: d3:af:42:4d:3f:54:40:6c:4d:99:fc:e0:a8:c2:83: 4b:38:57:ca:ba:80:23:e5:2f:73:f9:f8:72:e6:d9: f1:07:64:66:2f:e2:4a:64:58:2a:d6:7f:88:50:19: 7a:d7:5c:ce:e2:5d:57:fb:7d:29:2a:d8:1f:2c:37: c5:a5:86:93:eb:ea:94:05:b4:2e:c0:27:8f:f4:bb: da:cf:ec:47:29:dd:87:4d:5a:ee:ec:59:fe:37:16: 8d:a3:d3:61:62:2f:b0:99:a6:69:65:38:48:c7:e8: e8:c0:88:1a:32:5f:d1:22:da:a0:43:76:3a:ce:f1: 81:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:C3:B1:2A:74:1D:77:ED:39:85:85:4D:A8:83:12:D7:40:A5:43:7C X509v3 Authority Key Identifier: keyid:6A:89:93:62:76:AD:2D:18:71:07:DF:B7:40:07:93:00:3A:C1:49:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:ff:68:80:2a:0d:1c:75:f8:be:d9:b2:ba:8a:6a:4a:e2:2e: e4:80:1e:2a:a3:27:08:03:ec:4d:fd:c5:b1:c3:53:21:a7:45: be:f1:21:25:07:ee:50:ca:18:bd:ab:78:29:86:9a:42:ca:5a: 30:32:6c:71:79:b0:34:dc:7a:ec:88:e6:a7:19:01:6b:9d:07: 07:36:44:2a:25:07:32:f9:63:18:69:6f:38:ec:82:a9:e0:85: 9c:ab:b6:86:e3:7b:17:84:89:6e:7f:4b:15:96:53:c1:3d:fb: dd:b4:8a:9e:05:29:84:7b:87:2e:78:48:bc:6e:31:24:a6:44: 6f:18:97:7c:79:56:8a:2c:ce:a7:ed:a1:f5:ff:16:d8:28:48: b2:54:0b:32:44:33:c0:fe:5f:1d:97:65:5a:38:85:ad:fe:43: b0:c6:2a:e4:f6:3a:4c:f1:96:82:b3:d6:4d:d9:31:ec:5e:27: 08:0f:47:c7:7f:ee:3c:79:30:82:da:76:22:20:ef:75:e6:71: 53:f9:7b:06:27:56:95:46:66:bc:ba:83:08:27:a3:ae:57:99: 31:e8:cd:5a:85:1f:f5:92:2b:1a:89:2b:30:bb:51:71:bd:5d: ae:3f:06:58:ab:fc:89:6a:80:0f:11:31:8e:0f:d5:70:ab:7c: cc:ef:fa:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwiFmUwjJdpZlTMjZWPVBRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhODk5MzYyNzZhZDJkMTg3MTA3ZGZiNzQwMDc5MzAwM2Fj MTQ5YTcwHhcNMjUxMjA1MjIwMDU4WhcNMjUxMjA2MjIwMDU4WjAzMTEwLwYDVQQD Eyg2Y2MzYjEyYTc0MWQ3N2VkMzk4NTg1NGRhODgzMTJkNzQwYTU0MzdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAur09ZgKgG5IX6DfclORWps7S7G4l ZHirs9JGu+CFxYpZWFd7/TwmHpCYECt8CY991m4JsoF0YbpXeK2Ug8VR55Nt4zvD urOGbEiE1MTX5WECyF5JATNj0mYA8EBMiP9+ciwYeQNGXmDRrbfa9PXJF9ZChHf3 Qj8L7oVKoa0T+Jsou4Kn4AvTr0JNP1RAbE2Z/OCowoNLOFfKuoAj5S9z+fhy5tnx B2RmL+JKZFgq1n+IUBl611zO4l1X+30pKtgfLDfFpYaT6+qUBbQuwCeP9Lvaz+xH Kd2HTVru7Fn+NxaNo9NhYi+wmaZpZThIx+jowIgaMl/RItqgQ3Y6zvGBQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGzDsSp0HXftOYWFTaiDEtdApUN8MB8GA1UdIwQY MBaAFGqJk2J2rS0YcQfft0AHkwA6wUmnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYW9tVFluYXRMUmh4QjktM1FBZVRBRHJCU2FjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi8yYWI2MmQtMDcwYy00YjA2LWIzOGEt NzNhN2E0NzM2MDM4LzEvYW9tVFluYXRMUmh4QjktM1FBZVRBRHJCU2FjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi8yYWI2MmQtMDcwYy00YjA2LWIzOGEtNzNhN2E0NzM2MDM4 LzEvYW9tVFluYXRMUmh4QjktM1FBZVRBRHJCU2FjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANP9ogCoN HHX4vtmyuopqSuIu5IAeKqMnCAPsTf3FscNTIadFvvEhJQfuUMoYvat4KYaaQspa MDJscXmwNNx67IjmpxkBa50HBzZEKiUHMvljGGlvOOyCqeCFnKu2huN7F4SJbn9L FZZTwT373bSKngUphHuHLnhIvG4xJKZEbxiXfHlWiizOp+2h9f8W2ChIslQLMkQz wP5fHZdlWjiFrf5DsMYq5PY6TPGWgrPWTdkx7F4nCA9Hx3/uPHkwgtp2IiDvdeZx U/l7BidWlUZmvLqDCCejrleZMejNWoUf9ZIrGokrMLtRcb1drj8GWKv8iWqADxEx jg/VcKt8zO/66Q== -----END CERTIFICATE-----Generated at Sat Dec 6 06:57:20 2025 by rpki-client