This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft File: A-pQioW8c6mqogOop7r5wWLm82w.mft (raw, json) Hash identifier: R985uDawRNYDSfzxD1R+IouZwLLHku4MMexTotO6MKs= Subject key identifier: E8:2A:D6:0C:5B:9B:09:12:69:AF:AF:1A:C3:77:8B:8C:A5:7B:19:1F Authority key identifier: 03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C Certificate issuer: /CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c Certificate serial: 019AF42E7435A51B4647A650605F859904AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft Manifest number: 08D4 Signing time: Sat 06 Dec 2025 15:01:16 +0000 Manifest this update: Sat 06 Dec 2025 15:01:16 +0000 Manifest next update: Sun 07 Dec 2025 15:01:16 +0000 Files and hashes: 1: 2j9Y51xwRYelF6JrKcKDFxJ1u_0.roa (hash: 0/wxjfgZFvKq0jXNMFirhtTQajhUkEHAhxXEqfHBgNk=) 2: A-pQioW8c6mqogOop7r5wWLm82w.crl (hash: loqhtFZBtvN/fEC9FQYKsuOV6iAEvtg9FKRqrCs/NQI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:2e:74:35:a5:1b:46:47:a6:50:60:5f:85:99:04:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c Validity Not Before: Dec 6 15:01:16 2025 GMT Not After : Dec 7 15:01:16 2025 GMT Subject: CN=e82ad60c5b9b091269afaf1ac3778b8ca57b191f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:3f:b2:cb:85:3d:6d:ce:dc:35:3d:aa:05:dc: 2e:fb:44:d2:71:05:ae:ff:70:b3:47:e9:f6:d5:4d: 90:20:f4:be:07:bc:75:0d:d5:61:e5:21:9a:db:27: fa:c0:77:a6:e0:81:d4:00:bc:27:0c:03:bd:d1:38: 61:db:6d:1e:0a:85:9d:d2:20:f6:8f:13:cf:77:cd: b9:3d:04:6a:55:2b:14:b2:3b:51:a7:c5:38:2b:82: ff:84:04:42:c8:ef:19:c2:bd:a8:14:4f:58:9a:7f: 4f:07:03:8a:b9:05:26:6c:3b:29:a2:5c:3b:a2:8c: f6:4b:0f:ef:0c:91:c6:fb:c3:10:06:8b:9d:e9:cc: 1e:e2:cf:d7:73:44:62:e4:90:5d:dd:e3:e7:b8:4a: aa:51:e5:af:66:91:61:03:ac:ef:59:fa:98:a7:3c: f3:37:78:78:45:c8:e8:ea:ae:77:23:56:88:7e:5f: 4c:30:1e:e6:a2:54:9a:92:9e:ab:3e:21:f0:01:65: c2:7f:ca:7a:98:27:22:29:84:b1:cd:3c:64:44:9f: eb:eb:5d:63:31:e4:70:05:24:a2:ed:c6:e5:fc:dd: d5:86:25:cd:52:6a:cb:ed:ad:13:6a:27:40:f8:8b: 8c:90:06:33:16:d3:eb:4a:c9:3a:9a:ee:cc:69:9f: 23:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:2A:D6:0C:5B:9B:09:12:69:AF:AF:1A:C3:77:8B:8C:A5:7B:19:1F X509v3 Authority Key Identifier: keyid:03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:30:37:dd:d8:b5:0d:ec:29:5f:38:b0:15:1f:78:fd:4f:31: 6b:c8:e3:64:35:b0:60:88:32:ed:75:73:77:30:26:b5:00:ac: 32:b4:4e:f7:e5:6c:4d:5b:b6:d0:9d:aa:dc:f7:97:2b:1f:f5: 70:6f:d1:08:d9:c4:5c:1e:4a:89:bd:f7:c9:52:b6:bf:ea:f4: 0d:16:68:7a:7c:34:c3:6a:17:ef:ef:92:42:36:2a:62:84:e6: 5b:5d:98:28:41:83:dd:c2:40:96:8b:fa:5b:ab:70:0e:26:6c: ed:32:e1:0d:29:9c:18:29:d5:6c:4d:2d:ed:f4:09:78:d0:35: a0:a5:46:03:f6:be:84:cb:2c:47:61:dc:9c:66:e7:92:29:43: 37:36:75:3f:80:79:24:04:e5:7b:a1:f3:20:2b:29:93:95:dd: 79:65:d9:11:b7:85:4a:15:62:ca:64:12:1d:65:ca:c4:f8:52: c3:93:51:a9:0b:93:2f:52:0a:1a:8a:ad:8d:ea:7a:a3:9a:8d: 81:30:ba:1c:8b:12:96:2c:28:5c:ba:5c:3b:44:c3:40:01:39: 89:65:d2:18:e0:4e:e1:2f:9b:cd:ac:8f:33:f9:fc:0d:96:cc: 9c:01:78:01:e4:a5:10:b0:05:28:4f:d4:2d:12:39:b9:9e:44: 9d:50:7a:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0LnQ1pRtGR6ZQYF+FmQSqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzZWE1MDhhODViYzczYTlhYWEyMDNhOGE3YmFmOWMxNjJl NmYzNmMwHhcNMjUxMjA2MTUwMTE2WhcNMjUxMjA3MTUwMTE2WjAzMTEwLwYDVQQD EyhlODJhZDYwYzViOWIwOTEyNjlhZmFmMWFjMzc3OGI4Y2E1N2IxOTFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6j+yy4U9bc7cNT2qBdwu+0TScQWu /3CzR+n21U2QIPS+B7x1DdVh5SGa2yf6wHem4IHUALwnDAO90Thh220eCoWd0iD2 jxPPd825PQRqVSsUsjtRp8U4K4L/hARCyO8Zwr2oFE9Ymn9PBwOKuQUmbDspolw7 ooz2Sw/vDJHG+8MQBoud6cwe4s/Xc0Ri5JBd3ePnuEqqUeWvZpFhA6zvWfqYpzzz N3h4Rcjo6q53I1aIfl9MMB7molSakp6rPiHwAWXCf8p6mCciKYSxzTxkRJ/r611j MeRwBSSi7cbl/N3VhiXNUmrL7a0TaidA+IuMkAYzFtPrSsk6mu7MaZ8jtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOgq1gxbmwkSaa+vGsN3i4ylexkfMB8GA1UdIwQY MBaAFAPqUIqFvHOpqqIDqKe6+cFi5vNsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi85ZWIzNDYtN2IwNy00MTA4LTlmYjAt ZDcyNzA5MDVlOTIzLzEvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi85ZWIzNDYtN2IwNy00MTA4LTlmYjAtZDcyNzA5MDVlOTIz LzEvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAezA33di1 DewpXziwFR94/U8xa8jjZDWwYIgy7XVzdzAmtQCsMrRO9+VsTVu20J2q3PeXKx/1 cG/RCNnEXB5Kib33yVK2v+r0DRZoenw0w2oX7++SQjYqYoTmW12YKEGD3cJAlov6 W6twDiZs7TLhDSmcGCnVbE0t7fQJeNA1oKVGA/a+hMssR2HcnGbnkilDNzZ1P4B5 JATle6HzICspk5XdeWXZEbeFShViymQSHWXKxPhSw5NRqQuTL1IKGoqtjep6o5qN gTC6HIsSliwoXLpcO0TDQAE5iWXSGOBO4S+bzayPM/n8DZbMnAF4AeSlELAFKE/U LRI5uZ5EnVB6Hw== -----END CERTIFICATE-----Generated at Sat Dec 6 20:28:32 2025 by rpki-client