This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft File: ASAlltXOzjfcNMhhBkV4_G2qXoY.mft (raw, json) Hash identifier: XDsnlK/wuWz+zteEx3/4rpGCa7PPztgVGv7s75R0c7c= Subject key identifier: 65:A5:DA:EB:00:E6:31:1F:AF:96:A9:F1:F1:9A:C8:E4:27:4B:C0:10 Authority key identifier: 01:20:25:96:D5:CE:CE:37:DC:34:C8:61:06:45:78:FC:6D:AA:5E:86 Certificate issuer: /CN=01202596d5cece37dc34c861064578fc6daa5e86 Certificate serial: 019AF31B356F4899E865BB95ED48152F4AC3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ASAlltXOzjfcNMhhBkV4_G2qXoY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft Manifest number: 0C2C Signing time: Sat 06 Dec 2025 10:00:37 +0000 Manifest this update: Sat 06 Dec 2025 10:00:37 +0000 Manifest next update: Sun 07 Dec 2025 10:00:37 +0000 Files and hashes: 1: ASAlltXOzjfcNMhhBkV4_G2qXoY.crl (hash: 7HIkatykD0M2OZvLtNNuCwzvo4hiPQQSc83nUsRToTk=) 2: GESlc56i4-gdhOlM9uZOfgy8aCc.roa (hash: 9R3PoH4Q7y5D2LVnthi2TWzvIx4vLCuEUl/il2GVgqM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft rsync://rpki.ripe.net/repository/DEFAULT/ASAlltXOzjfcNMhhBkV4_G2qXoY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:35:6f:48:99:e8:65:bb:95:ed:48:15:2f:4a:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01202596d5cece37dc34c861064578fc6daa5e86 Validity Not Before: Dec 6 10:00:37 2025 GMT Not After : Dec 7 10:00:37 2025 GMT Subject: CN=65a5daeb00e6311faf96a9f1f19ac8e4274bc010 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:30:d2:ae:0b:57:40:6d:77:48:50:44:b6:24: d2:23:f2:11:c1:67:33:28:6a:13:0a:84:c4:2c:0c: 4a:4f:2f:bf:0c:19:02:df:22:2b:92:ee:5c:3b:cb: ae:a3:0b:dd:54:f8:e5:a4:49:02:f4:89:b3:8e:79: 73:7f:74:e3:73:71:4a:86:52:ff:cd:af:0f:70:85: 56:2c:05:25:e0:02:91:e7:ae:03:87:10:4d:c6:6a: cd:f8:7a:05:e6:61:5f:5d:1f:ed:e3:37:2b:0e:7f: 88:cb:70:35:a5:3e:b2:e5:c3:5c:1d:7d:cc:c9:b6: a6:5c:14:1b:e1:f9:56:e7:62:7d:49:70:80:de:b8: 2a:c0:54:48:f9:63:19:8b:4f:58:a4:a9:59:d9:58: 34:7c:78:0c:ce:3a:4b:fd:14:e0:ea:3a:b2:81:c9: f3:86:33:86:ac:98:11:b9:fa:6e:32:a5:47:97:14: 65:c1:7c:7d:a3:3e:4f:e0:fa:77:0c:ed:1e:80:57: 23:c4:e1:75:61:f4:5b:fd:40:9d:b3:97:a0:3a:18: ec:7a:46:8e:2f:c8:31:bd:ca:d1:5c:a2:0a:ef:2d: 4f:1e:d7:ef:86:cf:bc:c0:48:68:d4:2e:90:e4:b7: 2d:0f:98:f7:f0:05:73:9c:f7:2c:11:d9:03:03:a8: b5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:A5:DA:EB:00:E6:31:1F:AF:96:A9:F1:F1:9A:C8:E4:27:4B:C0:10 X509v3 Authority Key Identifier: keyid:01:20:25:96:D5:CE:CE:37:DC:34:C8:61:06:45:78:FC:6D:AA:5E:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ASAlltXOzjfcNMhhBkV4_G2qXoY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:02:41:08:d9:92:8d:f3:c5:64:e4:e2:54:d6:b1:14:f0:87: 91:cf:ad:a4:68:19:45:a2:b2:82:48:8f:2e:2e:51:b9:4f:b0: a3:34:39:8b:5f:9e:4d:3f:3d:db:a7:56:d3:4b:42:0d:9d:76: 74:6b:18:3e:28:e5:31:f9:2a:c8:70:12:1a:31:80:d9:19:01: ec:89:82:2f:ef:10:1b:fd:f3:a6:47:8d:d2:c3:14:82:e3:78: bc:43:82:0b:60:e1:56:ea:4f:f7:4b:55:36:3e:3f:28:07:e7: 93:16:30:6e:63:29:ca:26:cf:b9:87:ba:fc:bb:48:48:ef:4f: 40:e4:c3:d3:4a:fd:fa:32:83:50:4d:c5:a7:b1:f0:37:15:6a: 54:46:43:e2:ca:b6:a3:24:11:71:19:63:15:b3:b0:20:cb:17: 72:b7:12:97:00:29:14:cb:89:76:c8:31:61:4c:21:d6:50:c4: 57:22:60:28:51:ec:ed:bd:c4:da:ce:b9:73:dc:bc:45:2f:57: fe:66:ff:63:0d:c3:3f:23:05:d6:1d:db:7c:4f:ee:e7:ec:04: 38:c8:9d:cf:9b:b7:9d:3e:fd:50:bb:49:ae:dc:ec:a7:ab:0f: 8b:50:ae:51:12:24:49:05:e7:d1:20:39:78:a8:6a:bc:dc:56: 7e:28:59:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzGzVvSJnoZbuV7UgVL0rDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxMjAyNTk2ZDVjZWNlMzdkYzM0Yzg2MTA2NDU3OGZjNmRh YTVlODYwHhcNMjUxMjA2MTAwMDM3WhcNMjUxMjA3MTAwMDM3WjAzMTEwLwYDVQQD Eyg2NWE1ZGFlYjAwZTYzMTFmYWY5NmE5ZjFmMTlhYzhlNDI3NGJjMDEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5zDSrgtXQG13SFBEtiTSI/IRwWcz KGoTCoTELAxKTy+/DBkC3yIrku5cO8uuowvdVPjlpEkC9Imzjnlzf3Tjc3FKhlL/ za8PcIVWLAUl4AKR564DhxBNxmrN+HoF5mFfXR/t4zcrDn+Iy3A1pT6y5cNcHX3M ybamXBQb4flW52J9SXCA3rgqwFRI+WMZi09YpKlZ2Vg0fHgMzjpL/RTg6jqygcnz hjOGrJgRufpuMqVHlxRlwXx9oz5P4Pp3DO0egFcjxOF1YfRb/UCds5egOhjsekaO L8gxvcrRXKIK7y1PHtfvhs+8wEho1C6Q5LctD5j38AVznPcsEdkDA6i1gwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGWl2usA5jEfr5ap8fGayOQnS8AQMB8GA1UdIwQY MBaAFAEgJZbVzs433DTIYQZFePxtql6GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVNBbGx0WE96amZjTk1oaEJrVjRfRzJxWG9ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi85ODYxNjQtODAzMC00ZTQ3LTk4YjUt NDgxMTUxYWNmMzI5LzEvQVNBbGx0WE96amZjTk1oaEJrVjRfRzJxWG9ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi85ODYxNjQtODAzMC00ZTQ3LTk4YjUtNDgxMTUxYWNmMzI5 LzEvQVNBbGx0WE96amZjTk1oaEJrVjRfRzJxWG9ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqQJBCNmS jfPFZOTiVNaxFPCHkc+tpGgZRaKygkiPLi5RuU+wozQ5i1+eTT8926dW00tCDZ12 dGsYPijlMfkqyHASGjGA2RkB7ImCL+8QG/3zpkeN0sMUguN4vEOCC2DhVupP90tV Nj4/KAfnkxYwbmMpyibPuYe6/LtISO9PQOTD00r9+jKDUE3Fp7HwNxVqVEZD4sq2 oyQRcRljFbOwIMsXcrcSlwApFMuJdsgxYUwh1lDEVyJgKFHs7b3E2s65c9y8RS9X /mb/Yw3DPyMF1h3bfE/u5+wEOMidz5u3nT79ULtJrtzsp6sPi1CuURIkSQXn0SA5 eKhqvNxWfihZHA== -----END CERTIFICATE-----Generated at Sat Dec 6 13:35:28 2025 by rpki-client